Practical Hardware Pentesting - Jean-Georges Valle

Practical Hardware Pentesting

Learn attack and defense techniques for embedded systems in IoT and other devices
Buch | Softcover
2025 | 2nd Revised edition
Packt Publishing Limited (Verlag)
978-1-80324-932-2 (ISBN)
47,35 inkl. MwSt
Get up to speed with the latest attack techniques and patterns to pentest and secure all your devices

Key Features

Find the best practices for securely designing your IoT devices with practical examples
Explore various penetration testing tools and techniques to secure your hardware infrastructure
Practice attacking and securing various modern devices with step-by-step guidance

Book DescriptionPractical Hardware Pentesting, Second Edition, is an example-driven guide that will help you plan attacks, hack your embedded devices, and secure the hardware infrastructure.

Throughout the book, you’ll explore the functional and security aspects of a device and learn how a system senses and communicates with the outside world. You’ll set up a lab from scratch and gradually work towards an advanced hardware lab.

The first part of this book will get you attacking the software of an embedded device. This will get you thinking from an attacker point of view; you’ll understand how devices are attacked, compromised, and how you can harden a device against the most common hardware attack vectors. As you progress, you’ll get to grips with the global architecture of an embedded system and sniff on-board traffic, learn how to identify and formalize threats to the embedded system, and understand its relationship with its ecosystem. This 2nd Edition covers real-world examples featuring various devices like smart TVs, baby monitors, or pacemakers, you’ll discover how to analyze hardware and locate its possible vulnerabilities before going on to explore firmware dumping, analysis, and exploitation.

By the end of this book, you’ll and understand how to implement best practices to secure your hardware.What you will learn

Perform an embedded system test and identify security critical functionalities
Locate critical security components and buses and learn how to attack them
Discover how to dump and modify stored information
Understand and exploit the relationship between the firmware and hardware
Identify and attack the security functions supported by the functional blocks of the device
Develop an attack lab to support advanced device analysis and attacks

Who this book is forIf you’re a researcher or a security professional who wants a comprehensive and practical introduction into hardware security assessment, then this book is for you. Electrical engineers who want to understand the vulnerabilities of their devices and design them with security in mind will also find this book useful. You won’t need any prior knowledge with hardware pentesting before you get started; everything you need is in the chapters.

Jean-Georges Valle is a hardware penetration tester based in Belgium. His background was in software security, with hardware being a hobby, and he then started to look into the security aspects of hardware. He has spent the last decade testing various systems, from industrial logic controllers to city-scale IoT, and from media distribution to power metering. He has learned to attack embedded systems and to leverage them against cloudscale infrastructure. He is the lead hardware technical expert in an offensive security team for a leader company in the security and incident response sector. Jean-Georges holds a master's degree in information security and focuses on security at the point of intersection with hardware and software, hardware and software interaction, exploit development in embedded systems, and open source hardware.

Table of Contents

Setting Up Your Pentesting Lab and Ensuring Lab Safety
Our Main Attack Platform
Sniffing and Attacking the Most Common Protocols
Extracting and Manipulating Onboard Storage
Attacking Wi-Fi, Bluetooth, and BLE
Attacking phone connected devices
Software-Defined Radio Attacks
Accessing the Debug Interfaces
Static Reverse Engineering and Analysis
Dynamic Reverse Engineering
Scoring and Reporting Your Vulnerabilities
Understanding Your Target
Identifying the Components of Your Target
Approaching and Planning the Test
Wrapping It Up

Erscheinungsdatum
Verlagsort Birmingham
Sprache englisch
Maße 191 x 235 mm
Themenwelt Informatik Netzwerke Sicherheit / Firewall
Mathematik / Informatik Informatik Web / Internet
Informatik Weitere Themen Hardware
ISBN-10 1-80324-932-3 / 1803249323
ISBN-13 978-1-80324-932-2 / 9781803249322
Zustand Neuware
Haben Sie eine Frage zum Produkt?
Mehr entdecken
aus dem Bereich
Das Lehrbuch für Konzepte, Prinzipien, Mechanismen, Architekturen und …

von Norbert Pohlmann

Buch | Softcover (2022)
Springer Vieweg (Verlag)
34,99
Management der Informationssicherheit und Vorbereitung auf die …

von Michael Brenner; Nils gentschen Felde; Wolfgang Hommel

Buch (2024)
Carl Hanser (Verlag)
69,99

von Chaos Computer Club

Buch | Softcover (2024)
KATAPULT Verlag
28,00