Breaking Bulbs Briskly by Bogus Broadcasts

Presented at ShmooCon XII (2016), Jan. 15, 2016, 3:30 p.m. (30 minutes)

Smart energy and building automation are powerful technologies with significant promise. Unfortunately, the global rush to connect as many devices to the network as possible leads to unintended vulnerabilities. The ability to physically damage hardware by abusing network access is particularly interesting. This talk has two goals: 1) introduce an open source tool for pen-testing proprietary Z-Wave wireless automation networks and 2) discuss a rapid process for destroying florescent lights. Frustrated at the lack of functionality in current Z-Wave hacking tools, we introduce a tool called EZ-Wave. Once access is gained to an automated lighting system, regardless of the protocol used, we demonstrate how to destroy florescent lamps rated for 30K hours within a single night of abuse.

Presenters:

• Ben Ramsey
  Ben Ramsey has been hacking networks for over a decade; he finds it therapeutic.
• Joseph Hall
  Joseph Hall has eight years of experience in information security management. Eager to get his hands dirty, he focused his attention on investigating Z-Wave over the past year.

Links:

• https://infocon.org/cons/ShmooCon/ShmooCon 2016/Breaking Bulbs Briskly By Bogus Broadcasts 1.mp4
• https://infocon.org/cons/ShmooCon/ShmooCon 2016/Breaking Bulbs Briskly By Bogus Broadcasts 1.srt (subtitles)

Similar Presentations:

• Black Hat USA 2013 / Honey, I'm Home!! - Hacking Z-Wave Home Automation Systems
• Black Hat Europe 2017 / A Universal Controller to Take Over a Z-Wave Network
• DEF CON 23 (2015) / "Quantum" Classification of Malware