Following up on my previous blogpost, I got some people asking to clarify how to connect the Analog CMOS to the ESP32 glitcher so I listened to them. I hope this helps everyone trying to reproduce the results!
https://www.gabrielcybersecurity.com/fault-injection-iii-connecting-the-maxim4619/
Using the ESP8266 for Low-Cost Fault Injection - As a general concept, fault injection is a technique that studies how a system rea... - https://hackaday.com/2025/01/15/using-the-esp8266-for-low-cost-fault-injection/ #voltageglitching #faultinjection #securityhacks #toolhacks #esp8266
Great talk by Aedan Cullen at #38c3 on breaking security on the #RP2350 by glitching the OTP VDD.
https://streaming.media.ccc.de/38c3/relive/625
I expect the bus between the state machine and OTP is like Wishbone or M68K and has a request and an acknowledge, and the data is latched on the ACK. No ACK? Guard word stays in the latch.
Use PicoGlitcher For Voltage Glitching Attacks - We see a fair few glitcher projects, especially the simpler voltage glitchers. Sti... - https://hackaday.com/2024/10/30/use-picoglitcher-for-voltage-glitching-attacks/ #voltageglitching #faultinjection #securityhacks #voltageglitch #toolhacks #pipico #rp2040
The fault injection library (PicoGlitcher, Chipwhisper etc) was just updated with the results of me playing around with my PicoGlitcher yesterday evening. This info comes from actual glitches against a so-far unnamed IoT device based on the STM32F412.
https://github.com/MKesenheimer/fault-injection-library/tree/master/stm32f412-glitching
Summary:
1) No, it's not realistic to glitch ReadMemory to read out the internal flash from these devices with the known methods.
2) Still fun though and why not study the v3.1 bootloader intensely?
Laser Fault Injection, Now With Optional Decapping - Whether the goal is reverse engineering, black hat exploitation, or just simple cu... - https://hackaday.com/2024/09/20/laser-fault-injection-now-with-optional-decapping/ #reverseengineering #faultinjection #laserhacks #decapping #ablation #package #silicon #epoxy #laser #die
Laser Fault Injection on the Cheap - One can only imagine the wonders held within the crypto labs of organizations like... - https://hackaday.com/2024/08/09/laser-fault-injection-on-the-cheap/ #laserfaultinjection #reverseengineering #faultinjection #galvanometer #glitching #galvo #lfi
Get Your Glitch on With a PicoEMP and a 3D Printer - We’re not sure what [Aaron Christophel] calls his automated chip glitching setup b... - https://hackaday.com/2024/08/03/get-your-glitch-on-with-a-picoemp-and-a-3d-printer/ #reverseengineering #faultinjection #chipwhisperer #picoemp #glitch #emfi
Glitching An ATMega328P Has Never Been Simpler - Did you know just how easily you can glitch microcontrollers? It’s so easy, you re... - https://hackaday.com/2024/06/03/glitching-an-atmega328p-has-never-been-simpler/ #microcontrollers #voltageglitching #faultinjection #securityhacks #voltageglitch #eminjection #atmega328p #glitching #how-to #attack #glitch
Happy Friday folks! Here are some slides on fault injection:
https://wrongbaud.github.io/replicant-slides/
Feel free to ping me with any questions, corresponding blog post is here:
Everything You Didn’t Know You Need to Know About Glitching Attacks - If you’ve always been intrigued by the idea of performing hardware attacks but nev... - https://hackaday.com/2022/08/25/everything-you-didnt-know-you-need-to-know-about-glitching-attacks/ #faultinjection #securityhacks #chipwhisperer #glitching #hardware #picoemp #trezor #stm32
Remoticon 2021 // Colin O’Flynn Zaps Chips (And They Talk) - One of the many fascinating fields that’s covered by Hackaday’s remit lies in the ... - https://hackaday.com/2022/02/03/remoticon-2021-colin-oflynn-zaps-chips-and-they-talk/ #2021hackadayremoticon #hackadaycolumns #faultinjection #securityhacks #chipwhisperer #poweranalysis #chipshouter #eminjection #hardware #cons
Hackaday Links: January 30, 2022 - After all the fuss and bother along the way, it seems a bit anticlimactic now that... - https://hackaday.com/2022/01/30/hackaday-links-january-30-2022/ #jameswebbspacetelescope #hackadaycolumns #faultinjection #flighttracking #hackadaylinks #deathstar #libration #elonmusk #lagrange #slider #crypto #roomba #saturn #trezor #wallet #mimas #adsb #jwst #l2
Blast Chips with This BBQ Lighter Fault Injection Tool - Looking to get into fault injection for your reverse engineering projects, but don... - https://hackaday.com/2022/01/29/blast-chips-with-this-bbq-lighter-fault-injection-tool/ #reverseengineering #faultinjection #securityhacks #piezoelectric #toolhacks #glitching #ferrite #ignitor #toroid #emfi
