Preface

• Who this book is for
• What this book covers
• To get the most out of this book
• Download the example code files
• Code in Action
• Download the color images
• Conventions used
• Get in touch
• Reviews

1. Section 1: Getting to Know the Hardware

2. Chapter 1: Setting Up Your Pentesting Lab and Ensuring Lab Safety FREE CHAPTER

• Prerequisites – the basics you will need
• Approach to buying test equipment
• The component pantry
• Sample labs
• Summary
• Questions

3. Chapter 2: Understanding Your Target

• The CPU block
• The storage block
• The power block
• The networking blocks
• The sensor blocks
• The actuator blocks
• The interface blocks
• Summary
• Questions
• Further reading

4. Chapter 3: Identifying the Components of Your Target

• Technical requirements
• Harvesting information – reading the manual
• Harvesting information — researching on the internet
• Starting the system diagram
• Continuing system exploration – identifying and putting components in the diagram
• Summary
• Questions

5. Chapter 4: Approaching and Planning the Test

• The STRIDE methodology
• Security properties – what do we expect?
• Reaching the crown jewels – how do we create impacts?
• Planning the test
• Summary
• Questions
• Further reading

6. Section 2: Attacking the Hardware

7. Chapter 5: Our Main Attack Platform

• Technical requirements
• Introduction to the bluepill board
• Why C and not Arduino?
• The toolchain
• Introduction to C
• Summary
• Questions
• Further reading

8. Chapter 6: Sniffing and Attacking the Most Common Protocols

• Technical requirements
• Understanding I2C
• Understanding SPI
• Understanding UART
• Understanding D1W
• Summary
• Questions

9. Chapter 7: Extracting and Manipulating Onboard Storage

• Technical requirements
• Finding the data
• Extracting the data
• Understanding unknown storage structures
• Mounting filesystems
• Repacking
• Summary
• Questions
• Further reading

10. Chapter 8: Attacking Wi-Fi, Bluetooth, and BLE

• Technical requirements
• Basics of networking
• Networking in embedded systems using Wi-Fi
• Networking in embedded systems using Bluetooth
• Summary
• Questions

11. Chapter 9: Software-Defined Radio Attacks

• Technical requirements
• Introduction to arbitrary radio/SDR
• Understanding and selecting the hardware
• Looking into the radio spectrum
• Finding back the data
• Identifying modulations – a didactic example
• Demodulating the signal
• Sending it back
• Summary
• Questions

12. Section 3: Attacking the Software

13. Chapter 10: Accessing the Debug Interfaces

• Technical requirements
• Debugging/programming protocols – What are they and what are they used for?
• Finding the pins
• Using OpenOCD
• Practical case
• Summary
• Questions

14. Chapter 11: Static Reverse Engineering and Analysis

• Technical requirements
• Executable formats
• Dump formats and memory images
• Analyzing firmware – introduction to Ghidra
• Summary
• Questions

15. Chapter 12: Dynamic Reverse Engineering

• Technical requirements
• What is dynamic reverse engineering and why do it?
• Leveraging OpenOCD and GDB
• Understanding ARM assembly – a primer
• Using dynamic reverse engineering – an example
• Summary
• Questions

16. Chapter 13: Scoring and Reporting Your Vulnerabilities

• Scoring your vulnerabilities
• Being understandable to everyone
• When engineers do not want to re-engineer
• Summary
• Questions

17. Chapter 14: Wrapping It Up – Mitigations and Good Practices

• Industry good practices – what are they and where to find them
• Common problems and their mitigations
• What about now? Self-teaching and your first project
• Closing words

18. Assessments

• Chapter 2
• Chapter 3
• Chapter 4
• Chapter 5
• Chapter 6
• Chapter 7
• Chapter 8
• Chapter 9
• Chapter 10
• Chapter 11
• Chapter 12
• Chapter 13
• Why subscribe?

19. Other Books You May Enjoy

• Packt is searching for authors like you
• Leave a review - let other readers know what you think