Showing posts from 2019

Dumping the Firmware from the device Using buspirate - SPI

One of the best way to get the firmware from the hardware While doing penetration testing there are scenarios in which we need to dump the firmware from the devices.This method is typically used when there are no firmware’s available from vendor site. Today we are going to show you how to dump the firmware from an Wireless router Binatone DT 850W Software and hardware Requirements: Buspirate Ubuntu 16.04 or any other Linux machine Flashrom tool SOIC cable pin 8 Buspirate connectors               This is a Wireless router from Binatone DT 850W which will be used as an example for dumping the firmware. Let’s us Analyze the Inside Device.You can see IC chips like  EEPROM, UART  pins and Ralink  CPU  and also some Other   IC  chips Let us focus mainly on the  EEPROM chip (winbond W25Q16). What is EEPROM : EEPROM (also written E2PROM and pronounced “e-e-prom”, “double-e-prom” or “e-squared-prom”) stands for electrically erasable program

OWASP IoT I9: Firmware analysis part -1

Firmware static analysis is a process used to examine the firmware of IoT devices and other embedded systems without executing the code. This analysis is crucial for identifying vulnerabilities, security flaws, or violations of coding standards, misconfiguration and hardcoded data within the firmware. The general what i follow after dumping firmware from hardware. • Get the firmware (vendor/hidden forums/dumping from hardware) • Reconnaissance (get to know about architecture and filesysteminfo) • Unpacking (extracting firmware also fun) • Localize point of interest (always keep the priority what exactly looking for (hardcoded data, or shell scripts or command injetion function)) • Decompile/pentest/fun! (binary decompiling) What are the requirements i will explain step by step. Here i am using the Ubuntu Xenial 16.04 you can use which Linux is comfortable with you. Static analysis tools: Name Description EMBA (Embedded Malware Binary Analysis) A Python-based frame

Software Defined Radio

Software Defined Radio  Part 1   SDR is Software defined Radio is used for the to Capturing and analyzing the various radio frequency signals , we can monitor and transmit the signals also , according to security reasons i am not showing transmission of open source  signals but soon i will update how to pentest the replay attacks of key fobs and smart door lock systems. what we going to discuss 1. Introduction about Radio And Software Defined Radio 2. Various types of devices 3. Antennas 4. Radio waves 5. Capturing the FM Signals And Analyzing Requirements: 1. Software Defined Radio (SDR) 2. Antenna 3. GQRX software for Linux , windows - SDR software 4. Gnu Radio Companion 5. Computer Radio: Radio is the technology of using radio waves to carry information, such as sound, by systematically modulating some property of electromagnetic energy waves transmitted through space, such as their amplitude, frequency, phase, or pulse w