Security Weekly
Content

SEC535 – Embedded Device Hacking – Update

General Excitement
The course has been written, w00t! The one day embedded device, OpenWrt, Linksys WRT54GL hacking extravaganza is complete! I am so excited to teach this course, and can’t wait to start showing students how to hack embedded devices. The first time students rip open the packaging on a fresh, band new, WRT54GL, and then gratutiously violate the warranty will truly be a treat!
Current Offerings
I wanted to inform everyone that the September 11th and September 25th offerings of this coruse are still on for OSHEAN and Tech Collective members. The September 11th offering is just about full, however registrations will be accepted soon for the September 25th course. Check the Tech Collective and OSHEAN web sites for more information.
The September 25th course at SANS NS2007 in Las Vegas has been cancelled. It was a tough day to give a course (on the last day of all the 6-day tracks), but it means that people felt committed to their 6-day tracks, so at least thats a good thing :) However, we are one for a new offering on Friday January 11, 2008 in New Orleans! More information can be found here:
SECURITY 535, Embedded Device Hacking, Friday, January 11, 2008 : 9am – 5pm, Paul Asadoorian, Defensive Intuition
New Course Description
A new course description has been posted with more extensive information about the course, and more importantly why you would want or need to hack embedded devices. You can find it here:
SEC535 – Embedded Device Hacking
It really captures the heart of the course, and explains some benefits of using embedded devices for various networking and security problem solving tasks. The reasons include low cost, low engery, small footprint, a minimalistic approach to computing, and “Remoteness”. So, go check it out!

Paul Asadoorian

Paul Asadoorian is currently the Principal Security Researcher for Eclypsium, focused on firmware and supply chain security awareness. Paul’s passion for firmware security extends back many years to the WRT54G hacking days and reverse engineering firmware on IoT devices for fun. Paul and his long-time podcast co-host Larry Pesce co-authored the book “WRTG54G Ultimate Hacking” in 2007, which fueled the firmware hacking fire even more. Paul has worked in technology and information security for over 20 years, holding various security and engineering roles in a lottery company, university, ISP, independent penetration tester, and security product companies such as Tenable. In 2005 Paul founded Security Weekly, a weekly podcast dedicated to hacking and information security. In 2020 Security Weekly was acquired by the Cyberrisk Alliance. Paul is still the host of one of the longest-running security podcasts, Paul’s Security Weekly, he enjoys coding in Python & telling everyone he uses Linux.

Related

DevSecOps Scanning Challenges & Tips

There are many ways to do DevSecOps, and each organization — each security team, even — uses a different approach. Questions such as how many environments you have and the frequency of deployment of those environments are important in understanding how to integrate a security scanner into your DevSecOps machinery. The ultimate goal is speed […]

It Should Be ‘Cybersecurity Culture Month’

It’s Cybersecurity Awareness Month, but security awareness is about much more than just dedicating a month to a few activities. Security awareness is a journey, requiring motivation along the way. And culture. Especially culture.That’s the point Proofpoint Cybersecurity Evangelist Brian Reed drove home in a recent appearance on Business Security Weekly.“If your security awareness program […]

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news

By clicking the Subscribe button below, you agree to SC Media Terms of Use and Privacy Policy.

You can skip this ad in 5 seconds