DJI Drone Security: A Hacker's Perspective on UAV Vulnerabilities

Explore the security vulnerabilities of DJI drones, particularly the Mini-series, in this 43-minute conference talk. Delve into a hacker's perspective on commercial drone security, examining hardware components, potential attack vectors, and the process of compromising current drone models for custom firmware implementation. Analyze the numerous security flaws that enable device exploitation, likening the experience to an engaging hardware Capture The Flag (CTF) challenge. Investigate topics such as hardware bus sniffing, improper usage of System-on-Chip (SoC) security features, and DJI's consistent GPL violations. Learn about executing custom code on both the flight controller and Linux system, gaining valuable insights into the world of drone security and exploitation.