2. § ./../Arun Mane
§ Founder and director of AmynaSec
Labs
§ Security (Hardware,Vehicle, ICS,IoT )
§ Speaker and Trainer –
Defcon,Blackhat,
Nullcon,HITB,HIP,Defcon….many
§ Reachable on twitter @rootkill3r
§ armane@amynasec.io
2
3. 3
• IoT Devices
• Connected CAR/Vehicle devices – FMS,ECU etc
• Medical Devices
• Industrial Control System – PLC, RTU, IED, Sensors etc
• Telco Devices
4. 4
• Publicly accessible i.e on public IP address
• Backdoor access management
• Hardcoded credentials
• Crypto issues
• Web application management issues
• Etc
5. 5
• Web application/Cloud Security Testing
• Mobile application testing
• External communication testing with respect to embedded device (BLE,Wifi,Zigbee,LoRA etc.)
• Hardware Testing
6. 6
• PCB reverse engineering (Interface or test pad identification etc)
• Component identification
• Analyzing Datasheet
• Communication interception between IC’s (SPI,I2C etc)
• Data Dump from storage
• Data analysis of dumped data
• Fault injection
• Side channel analysis.