Automotive hackathons

The ‎blog‏ ‎post details ‎of ‎two ‎hackathons ‎organized‏ ‎by ‎the‏ ‎Cyber-Defence‏ ‎campus ‎of ‎armasuisse‏ ‎Science ‎and‏ ‎Technology.

ICS ‎Hackathon

📌Focus: ‎Forensics ‎and‏ ‎attack‏ ‎detection ‎in‏ ‎Industrial ‎Control‏ ‎Systems ‎(ICS).

Activities:

📌Reverse ‎engineering ‎of ‎firmware‏ ‎in‏ ‎SCADA ‎scenarios.

📌Network‏ ‎traffic ‎analysis.

📌Hands-on‏ ‎technical ‎training ‎in ‎ICS ‎forensics.

📌Crafting‏ ‎and‏ ‎testing‏ ‎attacks ‎in‏ ‎a ‎simulated‏ ‎SCADA ‎environment.

Tools‏ ‎and‏ ‎Devices:

📌Devices ‎like‏ ‎ABB ‎Relion ‎670, ‎Elvexys ‎XPG,‏ ‎Omicron ‎Stationguard‏ ‎RBX1,‏ ‎and ‎Omicron ‎CMC256-6.

📌Nozomi‏ ‎Networks' ‎Guardian‏ ‎sensor ‎was ‎used ‎to‏ ‎identify‏ ‎devices ‎and‏ ‎firmware ‎versions.

Outcomes:

📌Improved‏ ‎skills ‎in ‎analyzing ‎SCADA ‎devices.

📌Decoding‏ ‎and‏ ‎understanding ‎proprietary‏ ‎protocols.

📌Contribution ‎to‏ ‎collective ‎cybersecurity ‎knowledge ‎through ‎data‏ ‎collection‏ ‎and‏ ‎analysis.

Automotive ‎Hackathon

📌Focus:‏ ‎Automotive ‎cybersecurity,‏ ‎specifically ‎electric‏ ‎vehicle‏ ‎attack ‎vectors‏ ‎and ‎vulnerabilities.

Activities:

📌Analysis ‎of ‎car ‎infotainment‏ ‎system ‎firmware.

📌Exploration‏ ‎of‏ ‎wireless ‎attack ‎surfaces.

📌Interaction‏ ‎with ‎electric‏ ‎vehicles ‎(Renault ‎Zoes, ‎Skoda‏ ‎Octavia,‏ ‎Skoda ‎Enyaq‏ ‎IV ‎80,‏ ‎Honda).

Tools:

📌OBD2 ‎Dongles, ‎CAN ‎to ‎USB‏ ‎adapters,‏ ‎Software-Defined ‎Radios‏ ‎(HackRF, ‎USRP),‏ ‎Wi-Fi/Bluetooth ‎antennas.

Notable ‎Presentation:

📌"Broken ‎Wire» ‎attack‏ ‎against‏ ‎the‏ ‎Combined ‎Charging‏ ‎System ‎(CCS)‏ ‎for ‎EVs,‏ ‎demonstrating‏ ‎how ‎replaying‏ ‎a ‎special ‎packet ‎can ‎disrupt‏ ‎charging.