speaker-photo

Roland Sako

Security Researcher
Roland Sako is a security researcher based in Geneva, Switzerland.

He teaches programming, security and networking classes at the University of Applied Science in Geneva. Prior to that, he worked 7 years for Kaspersky ICS CERT where he conducted vulnerability research against various targets.

Roland has a strong interest in embedded devices security, fuzzing and gamification to engage learners in security-related subjects.

 

10:15 - 11:45

20 September 2024 Workshops

IoT Security Basics: Hardware Hacking Quickstart

This workshop aims to equip participants with foundational skills in hardware hacking and IoT security, focusing on the practical aspects of extracting and analyzing firmware from IoT devices. Over the course of 90 minutes, attendees will gain hands-on experience in identifying key components on printed circuit boards (PCBs), understanding memory chips and hardware interfaces, and performing firmware extraction using commonly available tools.
Designed for beginners with no prior knowledge of electronics or hardware hacking, this workshop emphasizes practical learning. Participants will work with a target IoT device provided by myself to learn how to safely disassemble it, identify interesting components, interact with hardware interfaces and extract the firmware.
Then we will quickly introduce basic firmware analysis, highlighting tools and techniques for identifying potential security vulnerabilities within the extracted firmware.

Attendees are required to bring a laptop with VirtualBox installed; all other materials and pre-configured virtual machines will be provided.