Overview
Explore advanced techniques for detecting vulnerabilities and backdoors in firmware through static binary analysis. Delve into the challenges of analyzing complex embedded device software, including proprietary binary blobs and cryptographically signed firmware. Learn about Angr, an automated vulnerability analysis system that combines static program analysis, value set analysis, and symbolic execution to identify buffer overflows and authentication bypasses in diverse hardware platforms. Examine real-world examples of discovered firmware flaws and observe a live demonstration showcasing the capabilities of this cutting-edge analysis tool. Gain valuable insights into securing the expanding Internet of Things ecosystem and protecting privacy-sensitive data in increasingly intelligent embedded devices.
Syllabus
Using Static Binary Analysis To Find Vulnerabilities And Backdoors In Firmware
Taught by
Black Hat