June 4, 2026/
A finding nobody fixes is wasted work. Here is how to write a hardware penetration test report that engineers act...
- All Posts
- Cryptography
- Firmware
- Hardware
- Industry
- Learning
- Pen Testing
- Protocols
- Secure Boot
- Secure Development
- Side-Channel
- Threat Modeling
- Tutorials
- Back
- STM32
June 4, 2026/
A good hardware pen test starts with good scope. Here is how to define what gets tested, how deeply, and...
June 4, 2026/
A connected device's cloud API is part of its attack surface. Here is how to test it from the device's...
June 4, 2026/
An attack tree breaks a goal into the steps an attacker would take. Here is how to build one for...
June 4, 2026/
Many RF remotes send the same code every time, which makes replay trivial. Here is how replay attacks work and...
June 4, 2026/
Security that is not written down does not get built. Here is how to turn a threat model into requirements...
June 4, 2026/
The OWASP IoT testing guidance gives a shared structure for assessing connected devices. Here is how to apply it to...
June 4, 2026/
The cheapest time to fix a security flaw is before the board exists. Here is why threat modeling belongs in...
June 4, 2026/
Not every finding deserves equal attention. Here is how to rank embedded vulnerabilities so you fix the ones that matter...