Bio: Michał Sajdak, pentester, founder of sekurak.pl portal. Discloses information about security bugs in embedded devices since 2009.
Embedded Devices Hacking
The presentation will cover a few simple but unusual methods of obtaining root shell on embedded devices. I will also present my latest research – backdoor in TP-Link devices which allows for unauthenticated remote root execution. The whole discovery features such problems as – path traversal, ftp chroot escape, http communication, tftp communication and configuration files overwriting.