$30 off During Our Annual Pro Sale. View Details »

Firmware Reverse Engineering & Exploitation

Vaibhav Bedi
November 25, 2018
Technology
0
430

Firmware Reverse Engineering & Exploitation

What is Firmware
Analysis Firmware
How to get firmware from any device
Extracting Firmware
Firmware scanning Tool

Vaibhav Bedi

November 25, 2018
Tweet

Other Decks in Technology

See All in Technology
アンドパッドが Ruby と RubyKaigi にコミットする理由
andpad
1
270
RealSense T265とD415とUFACTORY Lite 6で模倣学習の実験
hygradme
0
290
2023/11/15 コンテナでDb2やMQを動かす
hfukunak
0
110
Java Language Future
chiroito
4
1.1k
11/10 watsonx.aiに関する資料
masaaki_k
2
130
Why run OpenShift on Google Cloud
shkitayama
1
170
決済事業のアーキテクチャとそれを⽀える AlloyDB
sansantech
PRO
6
1.3k
CPOが開発する覚悟 〜コンパウンドスタートアップにおける、爆速の新規プロダクト開発スタイル〜
mosa_siru
3
820
Honoが良さそう🔥
is_ryo
0
150
ExaDB-D dbaascli で出来ること
oracle4engineer
PRO
0
1.1k
開発生産性の多角的接点〜1,000名のクリエイター組織 × 開発生産性〜 / Multifaceted touchpoints of development productivity
i35_267
2
260
イベント企画設計における「フロントエンド」な考え方とその魅力
kgsi
1
1.8k

Featured

See All Featured
Intergalactic Javascript Robots from Outer Space
tanoku
264
26k
Optimising Largest Contentful Paint
csswizardry
6
2k
Producing Creativity
orderedlist
PRO
336
38k
Code Review Best Practice
trishagee
53
14k
How New CSS Is Changing Everything About Graphic Design on the Web
jensimmons
215
12k
Designing Experiences People Love
moore
133
23k
Side Projects
sachag
450
39k
Bash Introduction
62gerente
603
210k
Agile that works and the tools we love
rasmusluckow
323
20k
Visualizing Your Data: Incorporating Mongo into Loggly Infrastructure
mongodb
33
8.6k
Learning to Love Humans: Emotional Interface Design
aarron
265
39k
Rebuilding a faster, lazier Slack
samanthasiow
71
7.9k

Transcript

  1. @VaibhavXX95/NullHumla

    View Slide

  2. View Slide

  3.  What is Firmware
     Analysis Firmware
     How to get firmware from any device
     Extracting Firmware
     Firmware scanning Tool

    View Slide

  4. • Binwalk
    • Attify OS
    • Firmware Analysis Toolkit
    • Fimware Scanning Tool
    • Qemu
    • Firmwalker

    View Slide

  5. Firmware is nothing but just a piece of code
    residing on the non-volatile section of the
    device to perform different tasks required for
    the functioning of the device.
    Components
    • Kernel
    • Boot loader
    • File System

    View Slide

  6. Most popular attack on IoT devices:
    • Mirai Botnet infects

    View Slide

  7. File system in the Embedded or IoT device can be of different types, depending on
    the manufacturer’s requirements and the device functionality. Each of the different
    file system types have their own unique signature headers which we will later use to
    identify the location where file system starts in the entire firmware binary. The
    common file systems which we typically encounter in IoT devices:
    1. Squashfs
    2. Cramfs
    3. JFFS2
    4. YAFFS2
    5. ext2

    View Slide

  8. • Getting it online
    • Extracting from the device
    • Sniffing OTA
    • Reversing applications

    View Slide

  9. View Slide

  10. Damn Vulnerable Router Firmware

    View Slide

  11. View Slide

  12. View Slide

  13. View Slide

  14. View Slide

  15. View Slide

  16. View Slide

  17. View Slide

  18. View Slide

  19. readelf –h bin/busybox

    View Slide

  20. Reference :https://idafchev.github.io/crypto/2017/04/13/crypto_part1.html

    View Slide

  21. View Slide

  22. View Slide

  23. • It’s used to access the device remotely. Example like baby
    monitor having telnet access enabled with a hard-coded password.
    • Now we have to find the word telenet in the entire firmware
    folder.

    View Slide

  24. View Slide

  25. View Slide

  26. View Slide

  27. View Slide

  28. View Slide