Dennis Giese
Dennis Giese is a researcher with focus on the security and privacy of IoT devices. While being interested in physical security and lockpicking, he enjoys applied research and reverse engineering malware and all kinds of devices.
His most known projects are the documentation and hacking of various vacuum robots. He calls himself a "robot collector" and his current vacuum robot army consists of over 60 different models from various vendors.
He talked about his research at the Chaos Communication Congress, REcon BRX, NULLCON and DEFCON.
XL
Sessions
For a complete analysis of an IoT device, it is required to look at the firmware itself. In most cases this means that the firmware, data or encryption keys need to be extracted from the device memory. Many researchers are hesitant to do that as there is a high risk of destroying the device or leaving it in an inoperable state. But do not worry! You can try your skills by playing with one of the used Amazon Echo Dots that we got very cheaply on eBay in bulk! While we are outside the soldering smoke wont hurt us.
In this workshop we will look at different flash memory types (EEPROM, SPI flash, NAND flash, eMMC flash) and how to extract the information from them.
Sign up here: https://forms.gle/r8dv8MD3JYNpQgQN7