Extracting Firmware from Embedded Devices (SPI NOR Flash) ⚡

preview_player
Показать описание
Learn tricks and techniques like these, with us, in our amazing training courses!

One of the first things you have to do when hacking and breaking embedded device security is to obtain the firmware. If you're lucky, you can download it from the manufacturer's website or, if you have a shell, you can just copy it over to your computer.

But what if none of these options are available?

In this video, we will show you how you can connect directly to a NOR flash chip with the SPI protocol to dump the firmware and find your vulns, even if off the shelf tools don't work!

00:00 Intro
00:40 Technical Introduction
01:55 Flash Memory Types
03:51 NOR Flash
06:25 SPI Protocol
07:55 Our Training
09:27 Logic Analyzer
12:04 How SPI Works
13:53 Firmware Extraction

Did you enjoy this video? Then follow us on Twitter, and subscribe to our channel for more awesome hacking videos.

~ Flashback Team
  1. Flashback Team
  2. security
  3. vulnerability research
  4. SPI
  5. NOR Flash
  6. Flash
Рекомендации по теме
Extracting Firmware from 0:18:41

Extracting Firmware from Embedded Devices (SPI NOR Flash) ⚡

Extracting and Modifying 0:21:03

Extracting and Modifying Firmware with JTAG

I'M BACK: Firmware 0:10:13

I'M BACK: Firmware Extraction Tips and Tricks

Intro to Hardware 0:12:07

Intro to Hardware Reversing: Finding a UART and getting a shell

Let's Hack: Extracting 1:03:59

Let's Hack: Extracting Firmware from Amazon Echo Dot and Recovering User Data

Extracting Firmware from 0:12:27

Extracting Firmware from Linux Router using the U-Boot Bootloader and UART

#04 - How 0:34:08

#04 - How To Get The Firmware - Hardware Hacking Tutorial

Whiteboard Wednesday: Memory 0:03:39

Whiteboard Wednesday: Memory Extraction from SPI Flash Devices

Hacker's Guide to 0:17:40

Hacker's Guide to UART Root Shells

Chip-Off Firmware Extraction 0:39:42

Chip-Off Firmware Extraction on a Linux Embedded Device

Intro to hardware 0:21:00

Intro to hardware security: UART access and SPI firmware extraction

IoT Hacking - 0:30:27

IoT Hacking - Netgear AC1750 NightHawk - Firmware Extraction via Root Shell

IoT Security: Backdooring 0:13:08

IoT Security: Backdooring a smart camera by creating a malicious firmware upgrade

Extracting Firmware from 0:07:59

Extracting Firmware from External Memory via JTAG

Getting Started in 0:11:28

Getting Started in Firmware Analysis & IoT Reverse Engineering

Hacking The Mojo 0:40:11

Hacking The Mojo C-75 - Chip-Off Firmware Extraction

Introduction to Firmware 0:11:32

Introduction to Firmware Reversing

Extracting Firmware | 0:09:54

Extracting Firmware | IoT Hacking Tutorial | Hakin9 Magazine

#05 - How 0:33:20

#05 - How To Get The Root File System - Hardware Hacking Tutorial

U-Boot Bootloader Firmware 0:19:20

U-Boot Bootloader Firmware Extraction Tools

extracting read protected 0:01:35

extracting read protected firmware (RDP level 1) from stm32f03

Chip-Off Firmware Extraction 0:31:08

Chip-Off Firmware Extraction and Reverse Engineering of Arris SB6121 Cable Modem

#68 [GUIDE] Reverse 0:33:29

#68 [GUIDE] Reverse engineering 🖥 firmware 📃

Hacking the Arlo 0:40:58

Hacking the Arlo Q Security Camera: Firmware Extraction

Комментарии
Автор

Really informative video, thank you! Sadly I see there will be fewer and fewer devices "hackable" in the near future as more and more manufacturers (especially of routers / e.g. DOCSIS 3.1) start using hardware based encryption technology for their ROM. With little to no possibility to ever read extracted data. What do you think about this?

TheFlatronify
Автор

Everything is explained clearly without wasting time or over-explaining. Well done.

jakesweany
Автор

Very helpful for someone like myself just beginning to understand this stuff. Explaining the function and description of terminology is something i would normally have to do significant research for.

billclark
Автор

Please never delete this video, it's very helpful.

MoisesCaster
Автор

Your videos are the best! Please don't stop making the tutorials! Thank you.

terminaltears
Автор

I will use this information to fix my kitchen stove as it had a rom checksum error. $400 is way to much for a control board. HACK THE PLANET. RIGHT TO REPAIR.

idiotwithasolderingiron
Автор

What an entertaining channel! I've been watching some pluralsight and udemy courses recently, and I wish the presenters of those courses had the same style and pace as you guys. You are always interesting. Well done!

StarsManny
Автор

What a beautiful work!. Thank you for sharing your time and effort.

electrolabs
Автор

Damn this channel is so underrated.. just stumbled upon this while scrolling but definitely gonna stay for more .. Thanks for explaining this so well!

noambergauz
Автор

Thanks for this content, it is really well explained.

justusjonas
Автор

Thank you for explaining this for those who are trying to get into this line of work but find it difficult to do so. Keep up the great work!!!

bradrickrobinson
Автор

Thanks for this content we can see al the time you have spend to make this incredible video !

plunder
Автор

wow.... this is one of the most fascinating videos I've ever seen on YT....

pawel
Автор

I just discovered your team, thank you so much for this interesting content!

kevinwydler
Автор

Perfect! Not to simple, not to complicated, with practical information.. Thank You

stevekoehn
Автор

That's nice. Great video brother!

diegolucassilva
Автор

WOW mind blow stunmbled on this channel and glued to the screen...

PcParamedics
Автор

Very interesting, and looking forward to more content!

ProfessorLinux
Автор

impressive stuff guys. I'm just getting started with electrical engineering. I've been seeing that a lot of intelligence agencies like to play games with each other at this level. It's all really fascinating.

ZeekSuds
Автор

thank you so much, Ive learnt alot from you in this video.

miladgolfam