Ethical hacking of a Smart Wi-Fi Plug

Newton Hedelin, Markus, Samuelsson, Marcus

January 2022

This bachelor’s thesis paper investigates the security of a smart Wi-Fi plug a power outlet remotely controlled by a smart phone, the Deltaco Smart Home SH-P01. In order to raise the security standards of the numerous new digital products produced every year, the possible security flaws of these devices must be exposed and made official to the general public. Especially since these flaws could be exploited by an adversary. By the means of ethical hacking, this paper aims to contribute with a security assessment of a device with components from a globally leading actor, Tuya. This is done by picking up where a previous study of the same device left off; penetration testing of the smart plug’s Android mobile application and its related cloud service, following the guidelines based on years of previous tests in the field. The final security assessment is that Tuya has made a real effort to securing the smart plug’s systems. The Android app, Tuya Smart, does contain some sensitive information and lacks two-factor authentication, but this did not allow for critical exploits. The cloud is deemed well-protected, and overall, there were no severe security flaws exposed by this investigation. Through more extensive penetration testing and by targeting the device’s firmware, future work could perhaps render an even more substantial assessment. / Det här kandidatexamensarbetet undersöker säkerheten hos ett smart Wi-fi-uttag - ett eluttag som styrs trådlöst av en mobiltelefon, uttaget Deltaco Smart Home SH-P01. För att kunna höja säkerhetsstandarden hos de otaliga nya digitala produkter som produceras varje år, måste de eventuella säkerhetsbristerna inom dessa enheter exponeras och offentliggöras för allmänheten. Framför allt då dessa brister kan utnyttjas av någon med fientlig agenda. Genom användning av etisk hackning är avsikten med denna rapport att bidra med en säkerhetsbedömning av en enhet innehållandes komponenter från en världsledande aktör, Tuya. Utförandet påbörjades där ett tidigare arbete avslutades; med penetrationstestning av det smarta uttagets Android-mobilapplikation och enhetens relaterade molntjänst, utfört i riktlinjer baserat på flera år av tidigare tester inom området. Den slutgiltiga säkerhetsbedömningen är att Tuya verkligen har satsat på säkerheten hos det smarta uttaget. Mobilappen, Tuya Smart, visades innehålla känslig information och saknade två-stegs-autentisering, men detta möjliggjorde inte någon kritisk exploatering. Molntjänsten bedöms vara väl skyddad, och överlag hittades inga allvarliga säkerhetsbrister under undersökningen. Ytterligare mer omfattande penetrationstestning, samt undersökning av enhetens mjukvara, skulle kunna bidra till en ännu mer gedigen säkerhetsbedömning i framtida arbeten.

Bachelor’s thesis

Ethical hacking

Penetration testing

Internet of things

Smart plug

Mobile application

Cloud service

Kandidatexamensarbete

Etisk hackning

Penetrationstestning

Sakernas internet

Smart uttag

Mobilapplikation

Molntjänst

Computer and Information Sciences

Data- och informationsvetenskap

Utilization of a Programmable Node in a “Black-Box” Controller Area Network in Conjunction with a Serial Gateway to Prototype Control of a P0+P4 Hybrid Architecture on an Existing Conventional Platform

Sovey, Gage Stephen

10 November 2022

No description available.

Engineering

Automotive Engineering

Mechanical Engineering

Web Penetration testing : Finding and evaluating vulnerabilities in a web page based on C#, .NET and Episerver

Lundquist Amir, Ameena, Khudur, Ivan

January 2022

Today’s society is highly dependent on functional and secure digital resources, to protect users and to deliver different kinds of services. To achieve this, it is important to evaluate the security of such resources, to find vulnerabilities and handle them before they are exploited. This study aimed to see if web applications based on C#, .NET and Episerver had vulnerabilities, by performing different penetration tests and a security audit. The penetration tests utilized were SQL injection, Cross Site Scripting, HTTP request tampering and Directory Traversal attacks. These attacks were performed using Kali Linux and the Burp Suite tool on a specific web application. The results showed that the web application could withstand the penetration tests without disclosing any personal or sensitive information. However, the web application returned many different types of HTTP error status codes, which could potentially reveal areas of interest to a hacker. Furthermore, the security audit showed that it was possible to access the admin page of the web application with nothing more than a username and password. It was also found that having access to the URL of a user’s invoice file was all that was needed to access it. / Dagens samhälle är starkt beroende av funktionella och säkra digitala resurser, för att skydda användare och för att leverera olika typer av tjänster. För att uppnå detta är det viktigt att utvärdera säkerheten för sådana resurser för att hitta sårbarheter och hantera dem innan de utnyttjas. Denna studie syftar till att se om webapplikationer baserade på C#, .NET och Episerver har sårbarheter, genom att utföra olika penetrationstester och genom att göra en säkerhetsgranskning. Penetrationstesterna som användes var SQL-injektion, Cross Site Scripting, HTTP-förfrågningsmanipulering och Directory Traversal-attacker. Dessa attacker utfördes med Kali Linux och Burp Suite-verktygen på en specifik webbapplikation. Resultaten visade att webbapplikationen klarade penetrationstesterna utan att avslöja någon personlig eller känslig information. Webbapplikationen returnerade dock många olika typer av HTTP-felstatuskoder, som potentiellt kan avslöja områden av intresse för en hackare. Vidare visade säkerhetsgranskningen att det var möjligt att komma åt webbapplikationens adminsida med inget annat än ett användarnamn och lösenord. Det visade sig också att allt som behövdes för att komma åt en användares fakturafiler var webbadressen.

Ethical hacking

Penetration testing

Cybersecurity

DREAD

HTTP

HTTPS

Episerver

Kali Linux

Burp Suite

SQL injection

XSS

HTTP Method Tampering

Directory Traversal

HSTS

IDOR

Authentication

MFA

Computer and Information Sciences

Data- och informationsvetenskap

L’œuvre Capter les fréquences optiques : une performance sonore ancrée dans la matérialité par le détournement de circuits électroniques

Castonguay, Stephanie

08 1900

Mémoire en recherche-création. / Ce mémoire de recherche-création explore le processus de conception et de production menant à la performance audiovisuelle Capter les fréquences optiques. Ce processus repose sur la rétro-ingénierie de dispositifs optiques, tels que des têtes de numériseurs, afin de générer des sons et des images à partir d'objets en proximité des senseurs. Des panneaux solaires sont également détournés de leur fonction habituelle afin de rendre audibles diverses sources lumineuses. Les stratégies d’élaboration dans la création de ces dispositifs de lutherie expérimentale entre en résonances avec la culture du do-it-yourself (le faire par soi-même), caractérisée en partie par le recyclage, l’intégration des résidus et le détournement. Passant par la notion de nostalgie technologique vers la matérialité du bruit et de l’approche critique dans le glitch art, ce texte examine comment la matérialité infuse le processus à travers la réappropriation d’objets électroniques. Par conséquent, l'œuvre met en évidence la façon dont la matérialité des circuits électroniques sert de vecteur d'agentivité, jouant un rôle esthétique et conceptuel crucial tout au long du processus de création, et ce, jusqu'au contexte de la performance. / This research-creation memoir explores the design and production process leading to the audiovisual performance Capturing Light Frequencies. This process relies on the reverse engineering of optical devices, such as scanner heads, to generate sounds and images from objects in proximity to their sensors. Solar panels are also redirected from their usual function to generate sound from various light sources. The strategies employed in these experimental instruments resonate with the do-it-yourself culture, characterized in part by recycling, the integration of residuals and hardware hacking. Examining the notion of technological nostalgia towards the materiality of noise and the critical approach in glitch art, this text examines how materiality infuses the process through the appropriation of electronic circuitry. Consequently, the work highlights how the materiality of electronic circuits serves as a vector of agentivity, playing a crucial aesthetic and conceptual role throughout the creative process, right up to the context of performance.

art sonore

matérialité

bruit

lutherie électronique

faire par soi-même

performance

art du glitch

piratage matériel

sound art

materiality

noise

electronic instrument-making

do-it-yourself

circuit bending

performance

glitch art

hardware hacking

Music / Musique (UMI : 0413)

Auster: A service designed on the context of a surveillance society in an increasingly connected world

Koelemeijer, Dorien

January 2015

The privacy and surveillance issues that are consequences of the Internet of Things are the motivation and grounding for this thesis project. The Internet of Things (IoT) is a scenarioin which physical objects are able to communicate to each other and the environment, by transferring data over communication networks. The IoT allows technology to become smaller and more ubiquitous, and by being integrated in the environment around us, the world is becoming increasingly connected. Even though these developments will generally make our lives easier and more enjoyable, the Internet of Things also faces some challenges. One of these are the aforementioned privacy and surveillance issues that are the results of transferring sensitive data over communication networks. The aim of this thesis project is therefore to answer, both in a theoretical, as well as in a practical way, the following research question: How can the Internet of Things be more accessible and safe for the everyday user? Accordingly, the Auster online platform, the Auster app and the Data Obfuscation Kit were developed to provide people with the tools and knowledge to construct home automation projects themselves, as an alternative for using applications from governments and corporations alike. The aim is to create a way to endow people with the capability to exploit their talents, realise their visions and share this with a community joining forces. By enabling people to create their own home automation projects, personal data is kept in the user’s possession and the collection of data by governments and companies alike is prevented. Moreover, by giving the control over technology back to the user, creativity and innovation in the field of the Internet of Things in domestic environments are expected to increase.

interaction design

human computer interaction

internet of things

the internet of things

IoT

surveillance

sousveillance

hacking

do it yourself

diy

data

big data

data obfuscation

arduino

decentralisation

internet

privacy

security

data mining

data analysis

Engineering and Technology

Teknik och teknologier

Autocraft Runners : Anticipating a future of customized physiology and advanced body hacking. Crafting footwear through tissue engineering for enhanced long-distance running.

Wolfgang, Laimer

January 2024

This work explores the fusion of bio-technology and sports footwear design and envisions a future where people enhance their physiology to meet their specific needs. Through tissue engineering, the wearer’s own biomaterials are utilized to optimize performance and customization. It seeks to redefine the enhancement of long-distance running by creating a physical bond between footwear and feet. Based on both design fiction and industrial design, the project speculates on the impact of biotechnological advances. It reflects a curiosity-driven exploration of the human body and its potential transformation. The thesis concludes with reflections on such innovations in footwear design and the role of design fiction in imagining future possibilities. It forms a contribution to Design Ecologies and illustrates the intersection of design, ecology, biology, and fiction, in addressing contemporary challenges.

Design Ecologies

Running Footwear

Biotech-design

Bioengineering

Body hacking

Footwear Design

Design fiction

Industrial Design

Biotechnology

Transhumanism

Design

Design

Bioprocess Technology

Bioprocessteknik

Eavesdropping Attacks on Modern-Day Connected Vehicles and Their Ramifications / Avlyssningsattacker på moderna uppkopplade bilar och deras följder

Bakhshiyeva, Afruz, Berefelt, Gabriel

January 2022

Vehicles today are becoming increasingly more connected. Most cars are equipped with Bluetooth, Wi-Fi and Wi-Fi hotspot capabilities and the ability to connect to the internet via a cellular modem. This increase in connectivity opens up new attack surfaces for hackers to exploit. This paper aims to study the security of three different cars, a Tesla Model 3 (2020), an MG Marvel R (2021) and a Volvo V90 (2017), in regards to three different eavesdropping attacks. The performed attacks were a port scan of the vehicles, a relay attack of the key fobs and a MITM attack. The study discovered some security risks and discrepancies between the vehicles, especially regarding the open ports and the relay attack. This hopefully promotes further discussion on the importance of cybersecurity in connected vehicles. / Bilar idag har blivit alltmer uppkopplade. Idag har de inte bara bluetooth och Wi-Fi funktionalitet utan vissa bilar har förmågan att kopplas till internet via ett mobilt bredband. Denna trend har visats ge bilar nya attackytor som hackare kan utnyttja. Målet med denna studie är att testa säkerheten hos tre olika bilar, Tesla Model 3 (2020), MG Marvel R (2021) och Volvo V90 (2017) med åtanke på tre olika avlyssningsattacker. De attackerna som studien valde var port-skanning på bilen, relä-attack på bilnycklarna och mannen-i-mitten attack. Studien hittar vissa säkerhetsrisker och skillnader mellan de olika bilarna särskilt vid reläattacken och port-skanningen som förhoppningsvis främjar en fortsatt diskussion om cybersäkerhetens vikt för säkrare uppkopplade bilar.

Connected vehicle

hacking

pentest

eavesdropping

security

Tesla Model 3

Volvo XC40

MG Marvel R

automotive cybersecurity

interception attacks

passive attacks

wireless attacks

Wi-Fi attacks

attack surface

relay attack

port scan

man-in-the-middle attack

Uppkopplade fordon

hacking

avlyssning

säkerhet

Tesla Model 3

Volvo XC40

MG Marvel R

fordonscybersäkerhet

avlyssningsattacker

passiva attacker

trådlösa attacker

Wi-Fi-attacker

attackyta

relä-attack

port-skanning

mannen-i-mitten attack

Computer Sciences

Datavetenskap (datalogi)

Cyber crime: a comparative law analysis

Maat, Sandra Mariana

11 1900

The Electronic Communications and Transactions Act, 25 of 2002, eradicated various lacunae that previously existed in respect of cyber crimes. Cyber crimes such as inter alia hacking, rogue code, unauthorised modification of data and denial of service attacks have now been criminalised. Specific criminal provisions in relation to spamming, computer-related fraud and extortion have also been included in the Act. It is argued that theft of incorporeal items such as information has already been recognised in our law, but has not been taken to its logical conclusion in our case law. However, there are instances where neither the common law nor our statutory provisions are applicable and where there is still a need for legislative intervention. The Act sufficiently deals with jurisdiction, the admissibility of data messages, the admissibility of electronic signatures and the regulation of cryptography. Cyber inspectors are a new addition to law enforcement. / Jurisprudence / L. L. M.

Digital signatures

Cryptography

Cyber inspectors

Unauthorised interception

Computer-related fraud

Theft of information

Denial of service attacks

Cyber crime

Hacking

Rogue code

343.9944068

Computer crimes -- South Africa

Cyber crime: a comparative law analysis

Maat, Sandra Mariana

11 1900

The Electronic Communications and Transactions Act, 25 of 2002, eradicated various lacunae that previously existed in respect of cyber crimes. Cyber crimes such as inter alia hacking, rogue code, unauthorised modification of data and denial of service attacks have now been criminalised. Specific criminal provisions in relation to spamming, computer-related fraud and extortion have also been included in the Act. It is argued that theft of incorporeal items such as information has already been recognised in our law, but has not been taken to its logical conclusion in our case law. However, there are instances where neither the common law nor our statutory provisions are applicable and where there is still a need for legislative intervention. The Act sufficiently deals with jurisdiction, the admissibility of data messages, the admissibility of electronic signatures and the regulation of cryptography. Cyber inspectors are a new addition to law enforcement. / Jurisprudence / L. L. M.

Digital signatures

Cryptography

Cyber inspectors

Unauthorised interception

Computer-related fraud

Theft of information

Denial of service attacks

Cyber crime

Hacking

Rogue code

343.9944068

Computer crimes -- South Africa

The human element in information security : an analysis of social engineering attacks in the greater Tshwane area of Gauteng, South Africa

Van Rensburg, Kim Shandre Jansen

06 1900

Criminology and Security Science / D. Litt. et Phil. (Criminology)

Criminological theories

Hacking

Impersonation

Information security

Personal information

Phishing

Privacy

Risk

Social engineering

Social networks

Threat

Vulnerability

Multi-inter-transdisciplinary (MIT)

005.80968227