Preview Mode Links will not work in preview mode

Unnamed Reverse Engineering Podcast

The main website has moved to

Mirror of PoC||GTFO

Jan 3, 2018

M. Carlton joined us to talk about being part of leading professional reverse engineering team at We discussed her Embedded Systems talk about IoT and in particular Devil’s Ivy (Check out the important ROP video to better understand the key concept ). In this particular case, they found that the M300 camera model using GSOAP (SOAP) parse for buffer overflow.

Not only did this issue allow spread quickly as a DOS among the M300 cameras but over 200 other Axis cameras (Hurray for code-reuse) due to using the third party code library.

M. uses several tools in her work:

  • IDA Pro
  • Binwalk
  • Nmap
  • Debuggers like gdb
  • Multimeters and oscilloscopes
  • VMWare

She had some excellent suggestions for improving the odds of NOT getting hacked:

  1. Put a password on any consoles and let it be changeable.
  2. Anticipate issues by performing security reviews.
  3. Be wary of any third party libraries you use. If there are updates to these libraries, prepare to update quickly.
  4. Make sure your systems are field patchable/updateable, securely.
  5. Limit surface area. Limit the ability for others to analyze your system by removing/disabling consoles, UARTs, features, and JTAG interfaces.
  6. Put more gates/obstacles on how easily any found exploits can be used in the system.
  7. Unearth any default credentials used in your system and resolve.

In the worse case, plan in advance for a security breach to expedite deployment.

Have comments or suggestion names for us? Find us on twitter @unnamed_show,  or email us at

Music by TeknoAxe (