Hacking Network APIs

Ever wanted to dive deeper in to how devices communicate? We will discuss cross-platform desktop apps, computer network protocols, and embedded IoT malware. With 2 live network-related demos, this presentation moves fast, is light on slides, and heavy on demos. A foundational component of communication between devices is the TCP/IP network stack. Web browsing, streaming video, secure control, and innumerable other applications are built upon this technology. This 2-part demonstration will use open source tools to focus on the data transfer components UDP and TCP while targeting an IoT device. Part 1 is reverse-engineering the network commands to better understand them and then mimic it (a common attack strategy). Network protocols will be discussed during this process. Armed with our new knowledge and skills, part 2 will take them a step further to discover and analyze malware present on the IoT device.

Presented at Security Fest 2022.

Speaker: Dan Nagle

About Dan Nagle

Dan Nagle

Dan Nagle has over 15 years of software development experience. He has written and published apps for desktop, mobile, servers, and embedded. His apps are used daily by security researchers, featured in manuals from major tech companies, and are taught in universities around the world. He is also the author of 2 network-related U.S patents and a book published by CRC Press. His open-source contributions have received international awards, and he has presented at many developer conferences about them.

 
Get all relevant information and news regarding Security Fest, when we release recordings of talks, etc.