Completed
NIT Script Execution
Class Central Classrooms beta
YouTube videos curated by Class Central.
Classroom Contents
Breaking BHAD - Abusing Belkin Home Automation Devices
Automatically move to the next video in the Classroom when playback concludes
- 1 Introduction
- 2 Agenda
- 3 What is Wemo
- 4 How Wemo works
- 5 Why Wemo
- 6 Headlines
- 7 Command Injection Vulnerability
- 8 Attack Scenario
- 9 How Rules Work
- 10 Rule Updating Algorithm
- 11 Rule ID
- 12 Sequel Injection
- 13 Attach Database Syntax
- 14 OpenWRT
- 15 Command Execution
- 16 Malicious Database
- 17 NIT Script
- 18 NIT Script Execution
- 19 NIT Script Demo
- 20 Anatomy of the Attack
- 21 Takeaways
- 22 Teardown
- 23 Logging In
- 24 You Boot Console
- 25 No Dev Console
- 26 Modifying Linux File System
- 27 Modifying Flash Password
- 28 Application Process
- 29 Conclusions
- 30 The Cloud
- 31 Cordova
- 32 Changing Device Name
- 33 Java Classes
- 34 Alert Box
- 35 Second and Third Order Effects
- 36 Disclosure Timeline