Workshop: Introduction to Automotive Firmware Reverse Engineering

WILLEM MELCHING

Abstract

In this workshop we will cover the basics of reverse engineering automotive firmware. An ECU firmware can consist of millions of lines of code which would take a long time to fully reverse engineer. Tips and tricks will be taught to quickly identify parts of the firmware that are of interest.

Workshop Outline

The following subjects will be covered during the workshop:

• Common processor architectures used in Automotive
• Diagnostic protocols used for reflashing ECUs
• Obtaining firmware files
• Typical firmware layout
• Loading firmware into Ghidra
• Identify common patterns, such as diagnostic handlers, CAN parsing, etc

What to bring:

• A laptop with the latest version of Ghidra installed
• Experience with reverse engineering recommended for the hands-on part of the workshop

Willem's BOOTSTRAP25 Training

All trainings come with complimentary access to our BOOTSTRAP25 event! Book a virtual or in-person trainings and get a taste of the others at BOOTSTRAP25!

Practical Car Hacking - A Hands-On Approach

This course covers a wide variety of topics - from automotive networks, diagnostic protocols, firmware extraction and wireless attack surfaces. The course is very hands-on, with many real ECUs to practice on.

Ringzer0Ringzer0

Willem Melching

Willem Melching (https://twitter.com/PD0WM) is an independent security researcher. He has over 7 years of experience working on automotive security and reverse engineering. During his time at comma.ai he worked an aftermarket ADAS device and providing open source tools to help the community reverse and interact with a wide variety of cars. Check out his blog (https://icanhack.nl/blog) for recent work.

https://www.linkedin.com/in/willem-melching-54a2982b/
https://twitter.com/PD0WM