IoT device Forensic...
 
Notifications
Clear all

IoT device Forensics

6 Posts
4 Users
0 Likes
294 Views
(@mani3196)
Posts: 4
New Member
Topic starter
 

Hai,
I have dump image of the smart alarm device. I want to write a python that will parse the dump .img file and extract the list of events
that occurred in the device. I tried reading the dump file by writing a python program but I am unable to read it. Can you suggest me how to go forward for reading the dump file of an IoT device?

 
Posted : 26/11/2018 6:16 am
azrael
(@azrael)
Posts: 656
Honorable Member
 

Could you give over a little more information ? What is the make/model of the device ? How have you obtained the "dump" ?

 
Posted : 26/11/2018 7:52 am
(@mani3196)
Posts: 4
New Member
Topic starter
 

The device is a smart alarm device and I have dump of it. I obtained from dfwrs competition 2018.

 
Posted : 26/11/2018 7:57 am
azrael
(@azrael)
Posts: 656
Honorable Member
 

I think that you may have missed the point of the competition …

Generally the idea is to solve the mystery yourself not ask others to do it for you.

I'm out.

 
Posted : 26/11/2018 8:46 am
watcher
(@watcher)
Posts: 125
Estimable Member
 

Hai,
I have dump image of the smart alarm device. I want to write a python that will parse the dump .img file and extract the list of events
that occurred in the device. I tried reading the dump file by writing a python program but I am unable to read it. Can you suggest me how to go forward for reading the dump file of an IoT device?

As a general approach to unknown data, step #1 is almost always a hex editor to look at what you've got.

 
Posted : 28/11/2018 9:42 pm
(@randomaccess)
Posts: 385
Reputable Member
 

As a general approach to unknown data, step #1 is almost always a hex editor to look at what you've got.

and then maybe binwalk https://gist.github.com/briankip/8f8747a2488af827e3b4

 
Posted : 30/11/2018 12:02 am
Share: