filmov
tv
[SecWed] 8 Sep 21 | Firmware Bug hunting with Taint analysis
Показать описание
Security Wednesday 08/09/2021
Talk Title: Identifying Bugs in Router Firmware at Scale with Taint Analysis
Taint analysis is a very useful technique in reverse engineering and bug hunting. For some common vulnerability classes such as command injection or buffer overflow, it can be tedious for a researcher to find them through manual reverse engineering. In this talk, Daniel will share about a tool that he helped develop during his internship, which uses taint analysis techniques to automate the process of finding such bugs in router firmware.
Speaker: Daniel is a Year 3 Computer Engineering student in NUS. He is currently an intern at STARLabs, to fulfil his Industrial Attachment programme requirement by the Faculty of Engineering. He is also a member of the Greyhats core team.
Talk Title: Identifying Bugs in Router Firmware at Scale with Taint Analysis
Taint analysis is a very useful technique in reverse engineering and bug hunting. For some common vulnerability classes such as command injection or buffer overflow, it can be tedious for a researcher to find them through manual reverse engineering. In this talk, Daniel will share about a tool that he helped develop during his internship, which uses taint analysis techniques to automate the process of finding such bugs in router firmware.
Speaker: Daniel is a Year 3 Computer Engineering student in NUS. He is currently an intern at STARLabs, to fulfil his Industrial Attachment programme requirement by the Faculty of Engineering. He is also a member of the Greyhats core team.
![[SecWed] 8 Sep](https://i.ytimg.com/vi/D2jHvjeFQCM/hqdefault.jpg)
0:36:02
0:00:11
0:00:22
0:00:06
![[SecWed] 15 Sept](https://i.ytimg.com/vi/4gw7zvm28RU/hqdefault.jpg)
1:19:05
0:00:28
0:00:14
0:00:18
0:00:36
0:00:24
0:00:19
0:07:18
0:00:23
0:00:34
0:00:14
0:00:11
0:00:22
0:00:30
1:45:46
0:00:12
0:00:30
0:00:34
0:00:52
0:00:25