June 2, 2026/
How RFID access control fails when badges use broken MIFARE Classic, demonstrated with a Proxmark3, and the move to modern...
- All Posts
- Cryptography
- Firmware
- Hardware
- Industry
- Learning
- Pen Testing
- Protocols
- Secure Boot
- Secure Development
- Side-Channel
- Threat Modeling
- Tutorials
- Back
- STM32
June 2, 2026/
How a secure element like the ATECC608 protects device keys by generating them on-chip so a firmware dump yields nothing...
June 2, 2026/
How power side-channel analysis with ChipWhisperer recovers an AES key from a chip's power draw, and the constant-time defenses against...
June 2, 2026/
How Modbus security fails on a modern network, reading and writing a PLC with no authentication, and the segmentation that...
June 2, 2026/
How one trusting MQTT broker exposes and controls an entire IoT fleet, and the per-device auth and topic ACLs that...
June 2, 2026/
How LoRaWAN security is undermined by static ABP keys and ignored frame counters, and how OTAA with unique keys fixes...
June 2, 2026/
How to harden U-Boot for production by locking the console, requiring verified boot, and protecting the environment before a product...
June 2, 2026/
How to harden a FreeRTOS application with the MPU port, stack overflow detection, and unprivileged tasks so one bug cannot...
June 2, 2026/
How to harden an embedded Linux userland with BusyBox and Dropbear, dropping privilege and shrinking what a foothold can reach.