UDS Diagnostics as an Attack Surface
UDS gives powerful access to a vehicle’s ECUs by design. Here is how that diagnostic protocol becomes an attack surface and how it should be defended.
Securing PLCs against Firmware Tampering
PLCs run physical processes and were never designed for a hostile network. Here is how firmware tampering threatens them and how to defend against it.
Threat Modeling an Implantable Device
An implantable device cannot be patched easily and lives inside a person. Here is how threat modeling has to adapt to those brutal constraints.
Security Testing for Medical Devices
Medical device security carries stakes most products do not: patient safety. Here is how testing differs and what regulators now expect.
Attacking Keyless Entry Systems
Keyless entry is convenient and a rich attack surface. Here is how relay, replay, and rolling-code attacks work against modern car and building entry.
Persistence Techniques on Embedded Devices
Getting onto a device is one thing; staying there across reboots and updates is another. Here is how persistence works on embedded systems and how to detect it.
From Recon to Root: An Embedded Pentest Walkthrough
A start-to-finish look at how an embedded penetration test goes, from first contact with the board to a root shell and what it means.
Writing a Hardware Pentest Report That Gets Fixed
A finding nobody fixes is wasted work. Here is how to write a hardware penetration test report that engineers act on instead of filing away.
Scoping a Hardware Penetration Test
A good hardware pen test starts with good scope. Here is how to define what gets tested, how deeply, and what the risks are before any probe touches a board.
Testing IoT Cloud APIs from the Device Side
A connected device’s cloud API is part of its attack surface. Here is how to test it from the device’s perspective, where the real trust assumptions live.