Team Infosect
IoT and embedded systems are ubiquitous in the world we live in. From home routers, security cameras and alarms, to devices like Network Attached Storage (NAS). These systems often run Linux as the Operating System of choice, and typically use a variety of instruction set architectures like ARM or MIPS. Typically, embedded systems have fewer exploit mitigations than desktop and server systems. Additionally, bugs are often easier to find.
In this workshop, delegates will work through a set of CTF challenges targeting a popular commercial-off-the-shelf Network Attached Storage (NAS) device. The NAS firmware has been customized to include a number of vulnerabilities, which you’ll be guided to discover and exploit.
Delegates will be physically provided with the customised NAS for use during the workshop. Lectures and online tutorials will guide students through the challenges. Individuals and small teams can participate. A laptop is required.