Changes

From Security Weekly Wiki
Jump to navigationJump to search
67 bytes removed ,  02:19, 26 November 2014
no edit summary
= Stories =
<!--<center>{{#ev:youtube|sy9HWpuORvgV3U-8ZkWgpM"}}</center>--> 
== Sponsors ==
#[http://reversemode.com/index.php?Itemid=0&id=80&option=com_content&task=view Reversing Industrial firmware for fun and backdoors I] - Some updates posted here, I wonder if everyone has updated their firmware? Likely not... We seem to lack adequate testing tools, given the nature of embedded systems and how each one is unique. How does your enterprise ensure firmware updates across devices?
#[http://reversemode.com/index.php?Itemid=0&id=77&option=com_content&task=view Reversing DELL's DRAC firmware] - Turns out, this firmware does not use /etc/shadow. This means the backdoor found is not accessible remotely. Oh well. This happens when you are reverse engineering firmware. You find artifacts, but sometimes they are not used in the production environment. Maybe it was only used in a test environment or another hardware revision. Or sometimes the firmware is copied from a different hardware device and some features are not implemented.
 
== Larry's Stories ==
Why, when I was your age one time I... <br>No, wait, that wasn't me.<br><br>
Oh, yeah. Have a CISSP or other (ISC)2 cert? VOTE. The Board elections are open. Vote. Just do it.
 
== Joff's musings from down under ==
842

edits

Navigation menu