$51.72 with 6 percent savings
List Price: $54.99
The List Price is the suggested retail price of a new product as provided by a manufacturer, supplier, or seller. Except for books, Amazon will display a List Price if the product was purchased by customers on Amazon or offered by other retailers at or above the List Price in at least the past 90 days. List prices may not necessarily reflect the product's prevailing market price.
Learn more
FREE International Returns
No Import Fees Deposit & $12.43 Shipping to Austria Details

Shipping & Fee Details

Price $51.72
AmazonGlobal Shipping $12.43
Estimated Import Fees Deposit $0.00
Total $64.15

Delivery Friday, October 11. Order within 17 hrs 40 mins
Or fastest delivery Tuesday, October 1
In Stock
$$51.72 () Includes selected options. Includes initial monthly payment and selected options. Details
Price
Subtotal
$$51.72
Subtotal
Initial payment breakdown
Shipping cost, delivery date, and order total (including tax) shown at checkout.
Ships from
Amazon.com
Ships from
Amazon.com
Sold by
Amazon.com
Sold by
Amazon.com
Returns
30-day refund/replacement
30-day refund/replacement
This item can be returned in its original condition for a full refund or replacement within 30 days of receipt.
Read full return policy
Returns
30-day refund/replacement
This item can be returned in its original condition for a full refund or replacement within 30 days of receipt.
Read full return policy
Payment
Secure transaction
Your transaction is secure
We work hard to protect your security and privacy. Our payment security system encrypts your information during transmission. We don’t share your credit card details with third-party sellers, and we don’t sell your information to others. Learn more
Payment
Secure transaction
We work hard to protect your security and privacy. Our payment security system encrypts your information during transmission. We don’t share your credit card details with third-party sellers, and we don’t sell your information to others. Learn more
Added to

Sorry, there was a problem.

There was an error retrieving your Wish Lists. Please try again.

Sorry, there was a problem.

List unavailable.
Kindle app logo image

Download the free Kindle app and start reading Kindle books instantly on your smartphone, tablet, or computer - no Kindle device required.

Read instantly on your browser with Kindle for Web.

Using your mobile phone camera - scan the code below and download the Kindle app.

QR code to download the Kindle App

Follow the author

Jean-Georges Valle
Follow
Something went wrong. Please try your request again later.

Practical Hardware Pentesting: A guide to attacking embedded systems and protecting them against the most common hardware attacks

by Jean-Georges Valle (Author)
4.5 4.5 out of 5 stars 24 ratings
See all formats and editions

There is a newer edition of this item:

Practical Hardware Pentesting: Learn attack and defense techniques for embedded systems in IoT and other devices, 2nd Edition
Practical Hardware Pentesting: Learn attack and defense techniques for embedded systems in IoT and other devices, 2nd Edition
$47.49
This title will be released on October 9, 2024.
{"desktop_buybox_group_1":[{"displayPrice":"$51.72","priceAmount":51.72,"currencySymbol":"$","integerValue":"51","decimalSeparator":".","fractionalValue":"72","symbolPosition":"left","hasSpace":false,"showFractionalPartIfEmpty":true,"offerListingId":"yBl4LCJj8IgCRHGqxpAM47Hqge8445QJujJgFvF1QKqsJ6LBWo2fZQWh02oReJwiPVpjVL9b%2FNCGXQZi57OaGyIqX3OEWsPYYJoGg1Y%2FOspMo%2FC107O4sqsd6Oz1vPCGCA2cvZJnkae6XydzQcnuQw%3D%3D","locale":"en-US","buyingOptionType":"NEW","aapiBuyingOptionIndex":0}]}

Purchase options and add-ons

Explore embedded systems pentesting by applying the most common attack techniques and patterns


Key Features:

  • Learn various pentesting tools and techniques to attack and secure your hardware infrastructure
  • Find the glitches in your hardware that can be a possible entry point for attacks
  • Discover best practices for securely designing products


Book Description:

Hardware pentesting involves leveraging hardware interfaces and communication channels to find vulnerabilities in a device. Practical Hardware Pentesting will help you to plan attacks, hack your embedded devices, and secure the hardware infrastructure.


Throughout the book, you will see how a specific device works, explore the functional and security aspects, and learn how a system senses and communicates with the outside world. You will start by setting up your lab from scratch and then gradually work with an advanced hardware lab. The book will help you get to grips with the global architecture of an embedded system and sniff on-board traffic. You will also learn how to identify and formalize threats to the embedded system and understand its relationship with its ecosystem. Later, you will discover how to analyze your hardware and locate its possible system vulnerabilities before going on to explore firmware dumping, analysis, and exploitation. Finally, focusing on the reverse engineering process from an attacker point of view will allow you to understand how devices are attacked, how they are compromised, and how you can harden a device against the most common hardware attack vectors.


By the end of this book, you will be well-versed with security best practices and understand how they can be implemented to secure your hardware.


What You Will Learn:

  • Perform an embedded system test and identify security critical functionalities
  • Locate critical security components and buses and learn how to attack them Discover how to dump and modify stored information
  • Understand and exploit the relationship between the firmware and hardware
  • Identify and attack the security functions supported by the functional blocks of the device
  • Develop an attack lab to support advanced device analysis and attacks


Who this book is for:

This book is for security professionals and researchers who want to get started with hardware security assessment but don't know where to start. Electrical engineers who want to understand how their devices can be attacked and how to protect against these attacks will also find this book useful.

Previous slide of product details
  1. ISBN-10
    1789619130
  2. ISBN-13
    978-1789619133
  3. Publisher
    Packt Publishing
  4. Publication date
    April 1, 2021
  5. Language
    English
  6. Dimensions
    9.25 x 7.5 x 0.8 inches
  7. Print length
    382 pages
  8. See all details
Next slide of product details

Frequently bought together

Practical Hardware Pentesting: A guide to attacking embedded systems and protecting them against the most common hardware att
This item: Practical Hardware Pentesting: A guide to attacking embedded systems and protecting them against the most common hardware attacks
$51.72
In Stock
Ships from and sold by Amazon.com.
+
The Hardware Hacking Handbook: Breaking Embedded Security with Hardware Attacks
$29.53
In Stock
Ships from and sold by Amazon.com.
+
The Hardware Hacker: Adventures in Making and Breaking Hardware
$18.95
Only 16 left in stock (more on the way).
Ships from and sold by Amazon.com.
Total price:
To see our price, add these items to your cart.
Details
Added to Cart
spCSRF_Treatment
Some of these items ship sooner than the others.
Show details Hide details
Choose items to buy together.

Editorial Reviews

Review

"Practical Hardware Pentesting is a comprehensive resource for those looking to discover the world of hardware hacking. It's not only a book - it's a collection of knowledge, scripts, and videos that will guide you through many of the common hardware hacking techniques and processes. By following along with Jean-Georges, you'll be exploring and exploiting hardware in no time." --Joe Grand aka Kingpin, Hardware Hacker, Computer Engineer, and Member of L0pht Heavy Industries

About the Author

Jean-Georges Valle is a hardware penetration tester based in Belgium. His background was in software security, with hardware being a hobby, and he then started to look into the security aspects of hardware. He has spent the last decade testing various systems, from industrial logic controllers to city-scale IoT, and from media distribution to power metering. He has learned to attack embedded systems and to leverage them against cloudscale infrastructure. He is the lead hardware technical expert in an offensive security team of a big four company. Jean-Georges holds a master's degree in information security and focuses on security at the point of intersection with hardware and software, hardware and software interaction, exploit development in embedded systems, and open source hardware.

Product details

  • Publisher ‏ : ‎ Packt Publishing (April 1, 2021)
  • Language ‏ : ‎ English
  • Paperback ‏ : ‎ 382 pages
  • ISBN-10 ‏ : ‎ 1789619130
  • ISBN-13 ‏ : ‎ 978-1789619133
  • Item Weight ‏ : ‎ 1.45 pounds
  • Dimensions ‏ : ‎ 9.25 x 7.5 x 0.8 inches
  • Customer Reviews:
    4.5 4.5 out of 5 stars 24 ratings

About the author

Follow authors to get new release updates, plus improved recommendations.
Jean-Georges Valle

Jean-Georges Valle

Brief content visible, double tap to read full content.
Full content visible, double tap to read brief content.

Discover more of the author’s books, see similar authors, read author blogs and more

Customer reviews

4.5 out of 5 stars
24 global ratings
Great book for those getting started.
5 out of 5 stars
Great book for those getting started.
Practical Hardware Pentesting is written very well for those getting started with hardware hacking. Jean-Georges Valle takes a good step by step approach to helping hackers get setup and experimenting with various aspects of hardware. Throughout the book are good suggestions for tools and approaches.
Hide
Thank you for your feedback
Sorry, there was an error
Sorry we couldn't load the review

Top reviews from the United States

Tiny
5.0 out of 5 stars Break anything
Reviewed in the United States on August 29, 2022
Normally, I’m a strictly software guy, I know how the hardware works but don’t spend all that much time on it. However, “Practical Hardware Pentesting” Packt, by Jean-Georges Valle is a great reference and introduction to this complicated area. If once the cover comes off, you are lost, this will rebuild your basic references, tell you where to find additional information, and guide you all the way through reengineering a design for your home lab. The first section deals with setup and practical tips, the second suggests networking and interface techniques to break the hardware, and the final section links that to other tools to finish the exploitation.
The first section provides a valuable refresher in what the various parts of the hardware do, if you were a little behind, and then building an appropriate setup to dive into solutions. Valle suggests all the appropriate tools, buying at different price ranges for the amateur beginner, and professional, and then suggests the pros and cons for different brands of devices. As a former intelligence professional for the Air Force, the sections on planning for the target were as good as gospel. If you haven’t done a lot of pentesting, knowing the basics of target exploitation goes a long way towards achieving a successful pen test. Almost as entertaining is the choice to use a Furby for the penetration test example subject.
The middle section also is filled with gold in conducting a pen test. Each type of approach for networking, as well as the tools are covered in exhaustive detail. The code segments to drive the hardware, the interaction of the machinery, and the expected results appear at every step. The section covers how to find the memory, how to extract the memory and then the challenges associated with converting it to a usable format to find vulnerabilities. I love the references back to Wireshark, which I have used extensively with multiple tasks. He rounds this out by building on common networking interfaces and then expanding to cover Software Defined Radio interfaces.
Finally, the last section covers the software interactions to hardware as well as building an effective report for your customer. Building a report seems small, but if you can’t communicate where the vulnerabilities are, what they effect, and potential fixes than you are leaving your customer in the dark. The sections on static versus dynamic analysis are invaluable from a security perspective as well as pen testing for discovering how the vulnerabilities are being executed, and their interaction with the overall system.
If there was one area that was lacking, it was some of the build process for breadboarding. There are multiple diagrams and suggestions included, and architectural diagrams but my own skills in this area are lacking which probably made it more difficult for me. If I had spent a little more time with wiring and soldering tools, I probably would have been fine. Still, a chapter on the various breadboard approaches would have been useful for me.
Overall, a truly excellent work. The reference sections are solid, the pen testing approaches valuable, and the whole book exceptional. Valle also recommends cheap practice by going to local flea markets and buying technological devices to crack. One of those last wishes for me would have been taking a class much earlier in my career just based on this approach to break into various devices. I’d recommend this for anyone either doing current pen testing, or hoping to break into that areas.
3 people found this helpful
Helpful
 Report
Ryan S.
5.0 out of 5 stars Great book for those getting started.
Reviewed in the United States on June 28, 2021
Practical Hardware Pentesting is written very well for those getting started with hardware hacking. Jean-Georges Valle takes a good step by step approach to helping hackers get setup and experimenting with various aspects of hardware. Throughout the book are good suggestions for tools and approaches.
Customer image
Ryan S.
5.0 out of 5 stars Great book for those getting started.
Reviewed in the United States on June 28, 2021
Practical Hardware Pentesting is written very well for those getting started with hardware hacking. Jean-Georges Valle takes a good step by step approach to helping hackers get setup and experimenting with various aspects of hardware. Throughout the book are good suggestions for tools and approaches.
Images in this review
Customer image
Customer image
One person found this helpful
Helpful
 Report
Cassadee
4.0 out of 5 stars Great introduction to hardware hacking with a touch of reverse engineering
Reviewed in the United States on August 30, 2021
Practical Hardware Pentesting by Jean-Georges Valle provides a thorough introduction to understanding and hacking common electronic devices and the associated protocols that run on those devices. Its target audience is mainly security researchers who want to learn how to get started with hardware security assessments, electrical engineers who create electronic devices, and hardware hobbyists. The book is divided into three sections: Getting to Know the Hardware, Attacking the Hardware, and Attacking the Software. You’ll get a hands-on approach to hardware hacking as you’ll use specific hardware devices to perform the lab exercises, even for three of the chapters in the software section.

Section 1 includes a good overview of all of the tools one needs to set up their own pen testing lab. *Spoiler Alert* A lab is estimated to cost anywhere between <500€ for a beginner lab to ~8,000€ for a professional lab. Fortunately, to perform most of the exercises in the book, you won’t need a dedicated lab.

Section 1 also gives a basic overview of all of the components that make up an embedded system and how to identify and analyze those components. The author uses a Furby as an example for identifying and diagramming system components. Note, for those who are on a budget, the Furbies I found listed on eBay and Amazon cost over $100 each. Lastly, Section 1 discusses how to approach a hardware pentest; it reviews the various types of pentests, the goals of a hardware pentest, and one test methodology.

Section 2 is the heart of the book that delivers what I would expect from a book about hardware pentesting. This section begins with an overview to the STM32 bluepill board, which will be used in several exercises throughout the book. It also gives a brief review of the C programming language before delving into discussions of several common hardware chips, including the protocols that run on those chips, and the various logical and physical layers within those chips. While I think these discussions are a good primer into understanding any of these chips, the author assumes that the reader already has some knowledge of the common pieces that make up these chips, such as how a chip’s clock works, or how signals work on these devices. Regardless, there are many detailed walkthroughs on how to connect and hack these devices. There are also very good supplemental materials provided on the book’s GitHub repo and YouTube page that help guide the reader through completing the exercises. Section 2 also demonstrates how to sniff and attack wireless protocols such as bluetooth, WiFi, and radio signals. For the enthusiastic reader, there are even links provided that instruct on how to build your own radio.

Section 3 teaches the reader how to perform static and dynamic reverse engineering on some of the chips that were used in previous exercises in the book. It also contains a nice introduction to Ghidra, and has several examples for reversing binaries found on embedded systems. This section concludes with how to rate vulnerabilities you found during a pentest and how to discuss and report those vulnerabilities to a client.

I only gave this book a four star review instead of five because of the multiple Furby examples, where a more current or “cheaper” children’s toy could have been used. Furthermore, the preface of the book states you only need a Linux OS, a bluepill board (STM32F103), Ghidra 9.2+, GCC 9+, and OpenOCD 9+. However, this is not true as to follow along with the exercises in Chapters 6 through 12, you’ll need several chips, boards, and other peripherals. I spent a bit over $100 just to complete the exercises in Chapter 6 alone. The book does not provide much guidance on where to find some of these components either (beyond “auction,” or “second-hand” sites). I understand that they don’t want to give free advertising or endorsements for non-affiliated sites, but a few of these pieces were not easy to find (as Google, eBay, and Amazon searches were not always helpful) without talking to someone who had prior knowledge of where to purchase the components.

In conclusion, I enjoyed this book and learned a lot from it. The exercises were interesting and informative and the author presented the material in a straightforward manner with even a small bit of humor scattered within the book. All of the software required to complete the exercises in the book is open source and free, which is much appreciated. Practical Hardware Pentesting is a great introduction to hardware hacking and reverse engineering, and also serves as a wonderful reference to these topics.
3 people found this helpful
Helpful
 Report

Top reviews from other countries

J
5.0 out of 5 stars A very informative and well written book
Reviewed in France on April 23, 2021
Verified Purchase
This book is a must have for anyone who wants to start dive into hardware pentesting. As a junior in that field, in my opinion , at this time, is the best one available.
Report