Lessons Learned Hunting IoT Malware

Explore the challenges and techniques of hunting IoT malware in this conference talk from 44CON 2017. Delve into the world of embedded device threats as the speaker shares insights on reverse-engineering and tracking malicious code in the Internet of Things ecosystem. Learn about the importance of honeypots in collecting malware samples, and examine proposed IoT honeypot architectures featuring full packet capture, man-in-the-middle frameworks, and emulators. Discover practical solutions to reverse-engineering problems specific to embedded systems, and analyze three real-world cases of embedded malware: Linux/Moose, a stealthy social media botnet; a MIPS architecture ELF binary dropper; and LizardSquad's LizardStresser DDoS malware. Gain valuable knowledge to better equip yourself for hunting next-generation malware using primarily open-source tools.