Recently a Smart Pet Feeder landed in my home. Out of curiosity, I have decided to check how secure this IoT device is and also extended this “research” to another brand and model... and got some interesting results...

Biometrics applied to PACS (Physical Access Control Systems) has been an hot-topic for a few years now. The handpunch PACS are based on the hand-geometry recognition. In this article it will be demonstrated how to hack them.

Become familiar with developing applications for Flipper Zero, which will be capable of activating adult toys all at once or completely inhibit their use for those within your range (i.e. Denial of Pleasure Attack).

PIZZAbite: A cheaper and open-hardware version of the blasoned Sensepeek's PCBite, perfect for holding your PCB while soldering or inspection. BRUSCHETTA-board: THE Multi-Protocol Swiss-Army-Knife you wanna have around your Hardware Hacking Lab

MojoBox is vulnerable to replay attack via BLE. Moreover, the app suffers from issues like hardcoded credentials, unobfuscated code  and others.

With this new blog post I wanted to present you a new toy I can’t live without: NANDoBoard

For sake of sharing some good tech know-how and hoping this will be of inspiration for some hacker out there… here I am writing a tutorial on how to build a POTAEbox. What’s it? It’s a Pentest Dropbox & stands for Penetration Over The Air & Ethernet box.

Here you can find my previous blog posts, that one day I will transfer here. https://lucabongiorni.medium.com/

While driving to work I have seen the advertisement of a Fireworks Festival that’s going to happen in the city. And, as usual, my curiosity brought me to one question: “How they trigger the fireworks?”

Recently I bought a X-RAY machine from China to have some ghetto-style desktop setup in order to inspect/reverse engineer some PCBs and hardware implants.

Deep-dive into a nice concept for a security token & password manager that turned into a horrible product due to lack of proper R&D and Threat Modeling.