IoT and OT Firmware Security Analysis with EMBA - From Firmware to Exploit
Offered By: BSidesLV via YouTube
Course Description
Overview
Explore the complexities of firmware security analysis in IoT and OT devices during this 25-minute conference talk from BSidesLV. Dive into the world of embedded devices and their critical role in private, industrial, and infrastructure environments. Learn about EMBA, an open-source firmware analyzer designed to simplify and optimize the challenging task of firmware security testing. Discover how EMBA automates the detection of 1-day vulnerabilities at the binary level, going beyond simple CVE detection to identify available public exploits for target firmware. Gain insights into EMBA's support for 0-day vulnerability discovery, including its ability to identify critical binary functions, protection mechanisms, and network behavior. Explore additional features such as automated firmware extraction, file system vulnerability detection, and hard-coded credential identification. Presented by Michael Messner, this talk offers valuable knowledge for penetration testers and security professionals working with IoT and OT systems.
Syllabus
BG - EMBA - From firmware to exploit
Taught by
BSidesLV
Related Courses
Network SecurityGeorgia Institute of Technology via Udacity Proactive Computer Security
University of Colorado System via Coursera Identifying, Monitoring, and Analyzing Risk and Incident Response and Recovery
(ISC)² via Coursera Hacker101
HackerOne via Independent CNIT 127: Exploit Development
CNIT - City College of San Francisco via Independent