Practical IoT Hacking: Software Edition Training


Practical IoT Hacking: Software Edition Training


Duration : 2 days training


Practical Internet of Things (IoT) Hacking: Software Edition” is a unique course which offers security professionals, a comprehensive understanding of the IoT software, IoT protocols, client side, mobile and their underlying weaknesses. The course combines learning with CTF for fun and better grasp, with the labs running as a CTF. The extensive hands-on labs enable attendees to identify vulnerabilities in IoT software.

The course focuses on the attack surface on current and evolving IoT protocols and mobile apps in various domains such as home, enterprise etc. It covers grounds-up on various IoT protocols including internals, specific attack scenarios for individual protocols and open source software/hardware tools one needs to have in their IoT penetration testing arsenal. It also covers how and when to use the open source IoT exploitation framework: ExplIoT, developed by us (

Throughout the course, we will use eXos, a VM/Platform on Raspberry Pi, created by us specifically for IoT penetration testing. eXos is the result of our R&D and has most of the required tools for IoT security analysis.

The “Practical Internet of Things (IoT) Hacking: Software Edition” course is aimed at security professionals who want to enhance their skills and move to/specialise in IoT security. The course is structured for beginner level attendees who do not have any experience in IoT

Course outline

  •  Introduction to IOT
  •  IOT Architecture
  • Identify attack surfaces
  • IoT Security Testing Process
  • Expliot – IoT exploitation framework
    • Introduction 
    • Architecture
    • Test Cases
  • IoT Protocols Overview
  • MQTT
    • Introduction
    • Protocol Internals
    • Reconnaisance 
    • Information leakage
    • DOS attackss 
    • Hands-on with open source tools
  • CoAP
    •  Introduction
    • Protocol Internals
    • Reconnaissance
    • Security issues
    • Hands-on with open source tools
  • CanBus
    •  Introduction and protocol Overview 
    • Reconnaissance (Active and Passive)
    • Replay Attack
  • BLE– Introduction and protocol Overview
    •  Reconnaissance (Active and Passive) with HCI tools
    •  GATT service Enumeration
    •  Sniffing GATT protocol communication
    •  Reversing GATT protocol communication
    •  Read and writing on GATT protocol
    •  Fuzzing Characteristic value
    •  Hands-on with open source tools
  • Mobile security (Android)
    •  Introduction to Android 
    • App architecture 
    • Security architecture
    • App reversing and Analysis
    • Mobile App vulnerabilities 
    • Hands-on
  • Firmware
    • Types 
    • Firmware updates
    • Firmware analysis
    • Hands-on
  • Conventional Attacks
  •  External Storage Attacks
    •  Symlink files
    • Compressed files

Who should take this course

  • Penetration testers tasked with auditing IoT Software
  • Government officials from defensive or offensive units
  • Security professionals who want to build IoT software security skills
  • Embedded security professionals who want to get into IoT software security
  • IoT Developers and testers
  • Anyone interested in IoT security


  • Basic knowledge of web and mobile security
  • Knowledge of Linux OS and commandline
  • Basic knowledge of programming – python

What attendees should bring

  • Laptop with at least 50 GB free space
  • 8+ GB minimum RAM (4+GB for the VM)
  • External USB access (min. 2 USB ports)
  • Administrative privileges on the system
  • Virtualization software – Latest VirtualBox (5.2.X) (including Virtualbox extension pack)
  • Linux host machines should have exfat-utils and exfat-fuse installed (ex: sudo apt-get install exfat-utils exfat-fuse).
  • Virtualization (Vx-t) option enabled in the BIOS settings for virtualbox to work

What attendees will be provided With

  • Smart Watch for hands-on (only during the class)
  • eXos VM – Platform for IoT Penetration testing
  • Training material/slides
  • Practical IoT hacking Lab manual PDF

What to expect

  • Hands-on Labs
  • Getting familiar with the IoT Protocol and mobile app security
  • This course will give you a direction to start performing pentests on IoT software

What not to expect

  • Becoming a IoT hacker overnight. Use the knowledge gained in the training to start pentesting IoT devices and sharpen your skills.

About Trainers

Aseem Jakhar is the Director, research at Payatu a boutique security testing company specializing in IoT, embedded, mobile and cloud security assessments. He is well known in the hacking and security community as the founder of null – The open security community, registered not-for-profit organization and also the founder of nullcon security conference and security conference He has worked on various security software including UTM appliances, messaging/security appliances, anti-spam engine, anti- virus software, Transparent HTTPS proxy with captive portal, bayesian spam filter to name a few. He currently spends his time researching on IoT security and hacking things. He is an active speaker and trainer at security conferences like AusCERT, Black Hat, Brucon, Defcon, Hack In The Box,, Hack in Paris, PHDays and many more. He is the author of various open source security tools including:

  1. ExplIoT – An open source Internet Of Things Security Testing and Exploitation framework

  1. Linux thread injection kit – Jugaad and Indroid which demonstrate a stealthy in- memory

malware infection technique. Indroid – Jugaad –

  1. DIVA Android (Damn Insecure and Vulnerable App for Android) which gamifies Android

App vulnerabilities and is used for learning Android Security issues.

  1. Dexfuzzer – Dex file format Fuzzer.

Arun Magesh works as IoT Security Researcher at payatu and has worked on numerous smart devices pentest in the past couple of years. With an electrical engineering academic background, he serves as a core committee member for several IoT local chapters and hackerspaces in India, where he regularly delivers talks and hands-on workshops. He has 5+ years hands-on experience in both building and breaking IoT devices and has been previously awarded for India’s Top 25 under 25 technologist and also a Intel Software Innovator. His main focus area in IoT is embedded device and SDR security. He has also build and contributed to a number of projects such as Brain- Computer interfacing and Augment Reality solutions. He has delivered training to numerous governmental and private organizations around the globe