Explore a conference presentation that demonstrates advanced techniques for generating Software Bill of Materials (SBOM) through hardware hacking, specifically focusing on the Bob the Minions WiFi router by Davolink. Learn the methodical process of extracting firmware from devices with restricted access, including hardware disassembly techniques and the utilization of SPI flash and JTAG/SWD interfaces. Master the tools and approaches needed for firmware recovery and subsequent SBOM creation, while understanding how to identify and report security vulnerabilities to vendors. Gain practical knowledge in overcoming IoT security challenges through hands-on hardware manipulation and discover how to leverage firmware analysis and SBOMs for enhanced security assessment.
Generating Software Bill of Materials Through Hardware Hacking - A Case Study of Bob the Minion Router
Overview
Syllabus
DEF CON 32 - SBOMs the Hard Way Hacking Bob the Minion - Larry Pesce
Taught by
DEFCONConference
