Cantact - An Open Tool for Automotive Exploitation

Explore the world of automotive network security in this 54-minute Black Hat conference talk. Dive into the Controller Area Network (CAN) protocol, its significance in automotive and industrial control systems, and learn about CANtact - an open-source hardware and software tool for CAN bus analysis. Discover how CANtact provides a low-cost solution for converting CAN to USB and enables users to view, decode, and manipulate CAN traffic. Gain insights into reverse engineering and fuzzing techniques specifically designed for breaking CAN systems. Understand the limitations of existing commercial tools and the advantages of open-source alternatives. Learn about emerging technologies and approaches for securing vehicle networks. By the end of this talk, acquire valuable knowledge about automotive exploitation and the tools available for CAN bus analysis.

Intro
Automotive Security
What is CAN?
How CAN Works
The Commercial Tools
Open Source Tools
CANtact Hardware
Current Software Limitations
Design Goals
Design Choices
ISOTP
Diagnostics
Scripting
What's Next
Emerging Tech
Securing Vehicle Networks
Questions?