Class Central is learner-supported. When you buy through links on our site, we may earn an affiliate commission.

YouTube

When IoT Attacks - Hacking a Linux-Powered Rifle

Black Hat via YouTube

Overview

Explore the security vulnerabilities of a Linux-powered precision-guided firearm in this Black Hat conference talk. Delve into the reverse engineering process of TrackingPoint's long-range tactical rifle, including its ARM-powered scope, modified Linux firmware, and mobile applications. Learn about the rifle's advanced features, such as target tracking, ballistics calculation, and video streaming capabilities. Discover various attack surfaces and potential security risks associated with network-connected firearms. Witness demonstrations of normal operations, exploits, and remote code execution. Gain insights into the implications of IoT devices in weaponry, the importance of robust security measures, and the need for manufacturers to improve their cybersecurity practices in this emerging field of smart weapons.

Syllabus

When lot Attacks: Hacking A Linux-Powered Rifle
Tracking Point TP750
Tag Track Xact (TTX)
Things to keep in mind
The scope
Portscan
Mobile apps
Tracking Point app
Recon
Public API
Round I findings, part II
From Tracking Point's website
Tearing it open
UART
Round Il findings
Let's get destructive!
The real filesystem
System backend
Demo: normal operation
Demo: you missed!
Software updates
Demo: got root?
Demo: remote code execution
It's not all bad
Will it get better?
Vendors should level up

Taught by

Black Hat

Reviews

Start your review of When IoT Attacks - Hacking a Linux-Powered Rifle

Never Stop Learning.

Get personalized course recommendations, track subjects and courses with reminders, and more.

Someone learning on their laptop while sitting on the floor.