.png)
1 day ago
3
Security researcher Hal Martin bought his first secondhand Meraki device in 2019 and has since jailbroken them to use open-source software and reduce e-waste. Now, he shares his research on the secure boot process of Meraki devices - and the vulnerability he used to succeed multiple times.
The most impressive part is how understanding the flow gives you the power to break it in the right place. Everything was secure - except the NAND wasn't encrypted, and you could change a value there to disable secure boot.
Simple and elegant. Kudos! Enjoy the read - and please share it with your colleagues and team.
More details:
Slides [PDF]: https://orangecon.nl/legacy/2024/assets/slides/2024/OrangeCon2024%20-%20Securing%20Devices%20or%20Profits.pdf
Video [Youtube]: https://lnkd.in/dMCBGaZ2
