HackDig : Dig high-quality web security articles for hacker

Broken, Abandoned, and Forgotten Code, Part 5

2015-05-23 01:20
Part 5 is up. In this and the next several parts we start analyzing
the structure of Netgear R6200 firmware updates. We switch over to the
HTTP daemon because it's less broken and a little easier to analyze
than upnpd.

The overall goal is to reverse engineer the firmware format so we can
generate a malicious firmware image to use when exploiting the
SetFirmware SOAP action described in parts 1-4.

Binary patching, emulating with QEMU, and debugging with IDA Pro are
recommended for the next several installments. Here is some
recommended reading to help get that set up:
- Remote Debugging with QEMU and IDA Pro
- Patching, Emulating, and Debugging a Netgear Embedded Web Server

If you missed my post to Full Disclosure where I introduced the
series, here's that:

As always I welcome feedback via email or Twitter. I'm @zcutlip.

I hope you enjoy it.



Sent through the Full Disclosure mailing list
Web Archives & RSS: http://seclists.org/fulldisclosure/

Source: 001/yaM/5102/erusolcsidlluf/gro.stsilces

Read:2797 | Comments:0 | Tags:No Tag

“Broken, Abandoned, and Forgotten Code, Part 5”0 Comments

Submit A Comment



Blog :

Verification Code:


Share high-quality web security related articles with you:)


Tag Cloud