This workshop is for pentesters, security researchers or someone looking to get into IoT security but is reluctant due to the wide range of technologies involved and plethora of different tools. While it does require a considerable amount of knowledge in the domain, it is not as difficult as you may think. In this workshop we will introduce you to some of the important concepts and EXPLIoT framework in a very simple way that can be used for the various IoT attack vectors. The primary focus of this workshop is to introduce the attendees to the open source IoT Security Testing and Exploitation Framework - EXPLIoT (https://gitlab.com/expliot_framework/expliot) and enable them to use as well as extend it by writing plugins for new IoT based exploits and analysis test cases. It’s a flexible and extendable framework that would help the security community in writing quick IoT test cases and exploits. The objectives of the framework are:
1. Easy to use
2. Extendable
3. Support for hardware, radio and IoT protocol analysis
EXPLIoT currently supports the following protocols which can be utilized for writing new plugins/exploits:
1. Radio – BLE , Zigbee
2. Network – MQTT, CoAP, DICOM, MODBUS, MDNS, NMAP, TCP, UDP
3. Hardware – CAN, SPI, I2C, UART, JTAG
This talk would give attendees a first-hand view of the functionality, how to use it and how to write plugins to extend the framework.
Curriculum
- 1.Introduction - About Course, Speaker, Topics Covered (7:32)
- 2.EXPLIot Framework (13:50)
- 3.Extend The Framework - Write Your Own Plugin (29:55)
- 4.MQTT Plugin Implementation (24:07)
- 5.MQTT Hands On Labs Using Plugins (8:24)
- 6.Write Custom Plugin- Hands On (Part 1) (10:02)
- 6.Write Custom Plugin- Hands On (Part 2) (14:45)
- 6.Write Custom Plugin- Hands On (Part 3) (14:08)
- 6.Write Custom Plugin- Hands On (Part 4) (16:47)
- 6.Write Custom Plugin- Hands On (Part 5) (9:23)
- 7.Plugin Demos (29:18)
Other Courses
Here are a few more courses you may be interested in
