Obvious disclaimer and as mentioned in the video: Do not do this on any device you don't own! That would be illegal and could have serious consequences.

This is a recording from a lecture I gave at a Sydney Based University. In this video I demonstrated the vulnerabilities of IoT devices and how they need the same protection as any other device we expose to the internet.
Obviously to fit within a 15minute time frame, this process is expedited, and the scanning and information gather / enumeration phases would take much longer. As well as the exploit phase could rely on a CSRF attack as opposed to a bruteforce. Regardless, the aim was to demonstrate the same vulnerabilities can still be present of devices we may not expect to have them.

Brought to you by INE (AKA eLearnSecurity) Check out their range of training materials for all things tech here https://get.ine.com/2hwqod8t1q9s

Links:
__________________________________________
Website: https://www.jsonsec.com
X: https://x.com/jsonsec
LinkedIn:   / jasonford2  
Github: https://www.github.com/jsonsec
Buy me a kofi: https://kofi.com/jsonsec

About JSON SEC
___________________________________________
JSON SEC is a channel dedicated to helping you advance your cyber security career, whether you're on the Red Team or Blue Team side. Focusing on Training and Course reviews, exam prep guides, career guidance and advice as well as hacking tutorials.

Please consider subscribing if you enjoyed this video.