Extract, Emulate and Exploit ARM IoT in this exclusive 2020 Preview
The world of ARM IoT devices is growing rapidly. Routers, IP cameras, Network video recorders, VoIP systems and several other “smart” appliances are now running on ARM SoCs. While the hardware is the latest and greatest, the software running on it is a different story.
The ARM IoT Firmware Laboratory is a brand new class, beginning where the ARM IoT Exploit Laboratory left off. This class takes a closer look at the hardware and the firmware running on it. Learn how to extract firmware from IoT hardware, accurately emulate it with the Saumil’s latest unreleased ARM-X framework and cover new hardware targets including Network video recorders, IP cameras, routers and more.
This 4-day course takes place at the Novotel London West, Hammersmith from the 2nd – 5th of December, 2019.
Who Should Take This Course
"Extract, Emulate and Exploit IoT at scale with this course"
Going Beyond The ARM IoT Exploit Lab With An Exclusive 2020 Preview
- Hardware level firmware extraction from IoT devices.
- ARM-X: A new firmware emulation framework for accurate emulation of IoT devices, including nvram.
- New hardware targets: Network video recorders, multiple IP cameras, multiple routers, and more.
- A conceptual understanding of how functions work in C programming
- Knowledge of how a stack works, basic stack operations
- Familiarity with debuggers (gdb, WinDBG, OllyDBG or equivalent)
- Not be allergic to command line tools.
- Have a working knowledge of shell scripts, cmd scripts or Perl.
- If none of the above apply, then enough patience to go through the pre-class tutorials.
- Skill Level: Intermediate (leaning towards advanced)
Day 1 - Reversing ARM-based IoT
Day 2 - Emulating IoT Devices
Day 3 - Attacking and Exploiting IoT
Day 4 - Advanced Exploitation
What To Bring
What Students Are Provided With
4 Days of Training at a Premium London Venue.
Book Now at only £2600 Inc. VAT!
4 Reasons Why You'll Want To Train With 44CON
Focus on learning with our spacious, air-conditioned rooms. The comfort doesn’t stop there, with incredible food at lunch and in breaks.
Save over 50% with us compared to the same courses at other events in London. Get the Vegas experience without the cost.
Get exclusive invites to 44CONnect – our quarterly event with talks and more. Invites run for 12 months after your last course.
You’ll receive an exclusive £50 discount code for standard tickets to the next main 44CON event: the UK’s best security conference.
Meet The Trainer: Saumil Shah
Saumil Shah is the founder and CEO of Net-Square, providing cutting edge information security services to clients around the globe. Saumil is an internationally recognized speaker and instructor, having regularly presented at awesome conferences like Deepsec, Blackhat, RSA, CanSecWest, PacSec, EUSecWest, Hack.lu, Hack-in-the-box and others. He has authored two books titled “Web Hacking: Attacks and Defense” and “The Anti-Virus Book”.
Saumil graduated with an M.S. in Computer Science from Purdue University, USA and a B.E. in Computer Engineering from Gujarat University. He spends his leisure time breaking software, flying kites, traveling around the world and taking pictures.
44CON December Bonus: Hootenanny Tickets Included!
The 44CONnect Hootenanny is an end-of-year one day event on the 6th of December.
The Hootenanny has a single talk track, a workshop track and an escape room track. We’ll have workshops from our trainers so you can get a taste of their courses, and a bunch of invited talks at the level of quality you’ve come to expect from a full 44CON. The event is fully catered, of course.
All December training attendees automatically receive a Hootenanny ticket as part of their booking. Those who’ve attended training at any time in 2019 can join our wait list. Tickets will be issued to the wait list two weeks before the Hootenanny event.
Watch Saumil Talk
ARM Assembly and Shellcode Basics - 2 Hour 44CON Workshop
A two hour workshop on writing ARM Shellcode from scratch. The workshop covers simple ARM assembly, and then two shellcode examples: A simple execve() shell and a fully working Reverse Shell. The shellcode will be tested in an ARM QEMU Emulator as well as on actual ARM hardware.
Stegosploit – Drive by Browser Exploits using only Images
Stay In Touch
Like the NSA, our newsletter will be in your inbox every Tuesday. Unlike the NSA, you can unsubscribe at any time.