back

Hardsploit: A Metasploit-like tool for hardware hacking

A complete toolbox for IoT security

If you suspend your transcription on amara.org, please add a timestamp below to indicate how far you progressed! This will help others to resume your work!

Please do not press “publish” on amara.org to save your progress, use “save draft” instead. Only press “publish” when you're done with quality control.

Video duration
00:59:22
Language
English
Abstract
It is clear that something is needed to help the security community to evaluate, audit and control the security level of hardware products.

Hardsploit is a complete tool box (hardware & software), a framework which aims to:

- Facilitate the audit of electronic systems for industry 'security' workers (consultants, auditors, pentesters, product designers, etc.)

- Increase the level of security (and trust !) of new products designed by the industry

Hardsploit is an all-in-one hardware pentesting tool with software and electronic aspects. It's a technical and modular platform (using FPGA) to perform security tests by using electronic communication bus.

The main hardware security audit functions are:
- Sniffer
- Interact
- Dump

Hardsploit's modules will let users intercept, replay and / or send data via each type of electronic bus used by the target. The level of interaction that pentesters will have depends on the targeted bus features.

Hardsploit's modules also enable you to analyze electronic bus (serial and parallel types) like JTAG, SPI, I2C's, parallel addresses and more will come !

We also provide a graphical interface to manage your components and their commands. A wiring helper module is available too. It will help you connect easily your target to Hardsploit.

Our ambition is to provide a tool equivalent to those offered by the company Qualys or the Metasploit Framework but in the domain of embedded systems/electronics.

Talk ID
7496
Event:
32c3
Day
2
Room
Hall 6
Start
8:30 p.m.
Duration
01:00:00
Track
Hardware & Making
Type of
lecture
Speaker
Yann.A
Julien MOINARD
Gwénolé Audic
Talk Slug & media link
32c3-7496-julien_moinard_opale-security_com
English
0.0% Checking done0.0%
0.0% Syncing done0.0%
0.0% Transcribing done0.0%
100.0% Nothing done yet100.0%
  

Work on this video on Amara!

English: Transcribed until

Last revision: 2 years, 2 months ago