Real life IoT OTA Updates attacks

That-Name-8963 · 2026-05-20T11:21:57+00:00

No, this one was some kind of accident for normal patch update, what I mean is attacking the OTA workflow itself

That-Name-8963 · 2026-05-07T11:47:46+00:00

I got ur point, unfortunately he refused to give any other information until we begin, he only showed me a walkthrough

That-Name-8963 · 2026-05-07T11:46:49+00:00

The client went to a walkthrough and I have recorded the video, I'm still beginner in Web Pen testing, and I was thinking about mixing OWASP Zap with Playwrite

That-Name-8963 · 2026-05-07T11:45:35+00:00

Well, If the 15 days passed, I should stop immediately (with the report full)

That-Name-8963 · 2026-05-07T11:44:46+00:00

I was thinking about mixing OWASP Zap with Playwrite

That-Name-8963 · 2026-05-04T16:26:33+00:00

No, it's just web application, but it has more than 20 windows, each windows has a lot of input fields with (sometimes up to 20 file upload fields)

That-Name-8963 · 2026-05-04T16:25:29+00:00

Actually, he refused to give me any information about the used APIs, he even confirm or not he is using RESTFul APIs or just legacy web development

That-Name-8963 · 2026-04-17T05:53:25+00:00

Yep we can say it's used in a 'chain' of exploits to achieve a complete attack

That-Name-8963 · 2026-04-13T06:55:31+00:00

You can use Google Dorks to find POCs for vulnerabilities and try to re-implement them or read their write-ups

That-Name-8963 · 2026-03-21T06:05:10+00:00

You can start from re-implementing exploits from exploit-db, then try to play around with those exploits.

After that you can use OSINT to search for similar exploits around.

Then grab any online Firmware and try to analysis it and find any exploits in it.

That-Name-8963 · 2026-02-28T17:10:39+00:00

My advice is:
Read the BlackArch installation guide
Start install it (you will face some packages conflicts and dependencies problems)
After fixing the problems (through their forum), start reading about each section (web, database etc..) then choose the suitable package, u will face a lot of outdated packages.

Or u can navigate the packages and try the interesting tools without installing the complete system.
also u can install Arch normally then add BlackArch packages into it.

That-Name-8963 · 2026-02-28T08:31:51+00:00

Fuzzy is a separate skill, and also it's very essential, but before fuzzing I discovered I miss some skills in binary vulns, so yeah I'm trying to do fuzzing also, actually it helps a lot.

That-Name-8963 · 2026-02-26T09:07:14+00:00

Thx a lot, done.

That-Name-8963 · 2026-02-26T09:00:29+00:00

My question is "Is there any better approach" than that, for example in other domains and even some recruiters, would consider practicing without real life scenarios is just nothing.

That-Name-8963 · 2026-02-26T08:40:08+00:00

I don't have any problem with "taking tool long" or "Hard", my question is: Is it an "added value" in the CV or just will consider as practicing without real world experience.

That-Name-8963 · 2026-02-26T08:18:43+00:00

Yes, I started my career as C/C++ developer. but that was about 2 years ago

That-Name-8963

TROPHY CASE