IRobot Roomba
Kayvon2008 (Talk | contribs) |
Dan Tobias (Talk | contribs) |
||
| (3 intermediate revisions by one user not shown) | |||
| Line 1: | Line 1: | ||
| − | {{FormatInfo | + | {{DISPLAYTITLE:iRobot Roomba}}{{FormatInfo |
|formattype=physical | |formattype=physical | ||
|subcat=Networked devices | |subcat=Networked devices | ||
}} | }} | ||
Roombas are smart vacuum cleaners. They are the most popular smart vacuum cleaners. | Roombas are smart vacuum cleaners. They are the most popular smart vacuum cleaners. | ||
| + | ==Firmware Structure== | ||
| + | It is not in the traditional filesystem. Instead, it is just text. Here are some findings from a budding IoT forensic specialist. You need text or a hex editor to analyze this. | ||
| + | |||
| + | Offset "0x600C" - Software Version | ||
| + | |||
| + | Offset "0x602A" - Robot ID | ||
| + | |||
| + | Offset "0x60A0" - Cloud Certificate | ||
| + | |||
| + | Offset "0x6ABD" - Cloud Privkey | ||
| + | |||
| + | Offset "0x71F9" - Product SKU (Stock Keeping Unit) | ||
| + | |||
| + | Offset "0x7232" - Wi-Fi Network SSID | ||
| + | |||
| + | Offest "0x7264" - Wi-Fi Network Password (in clear-text) | ||
| + | |||
| + | Offset "0x728A" - Other Wi-Fi settings | ||
| + | |||
| + | Offset "0x73C5" - rbt_passwd | ||
| + | |||
| + | Offset "0x73FF" - sdiscUrl | ||
| + | |||
| + | Offset "0x7484" - Timezone | ||
| + | |||
| + | Offset "0x74AC" - NTP Hosts at offset | ||
| + | |||
| + | Offset "0x751E" - Country | ||
| + | |||
| + | Offset "0x7557" - Wi-Fi Network SSID | ||
| + | |||
| + | Offset "0x75E1" - Wi-Fi Network Password (in clear text) | ||
| + | |||
| + | Offset "0x76B0" - SDISCVAR | ||
| + | |||
| + | Offset "0x77EE" - tzevents | ||
| + | |||
| + | Offset "0x7CA0" - Robot name | ||
| + | |||
| + | ==Links== | ||
| + | *https://blog.digital-forensics.it/2020/12/a-journey-into-iot-forensics-episode-4.html | ||
Latest revision as of 06:06, 23 November 2021
Roombas are smart vacuum cleaners. They are the most popular smart vacuum cleaners.
[edit] Firmware Structure
It is not in the traditional filesystem. Instead, it is just text. Here are some findings from a budding IoT forensic specialist. You need text or a hex editor to analyze this.
Offset "0x600C" - Software Version
Offset "0x602A" - Robot ID
Offset "0x60A0" - Cloud Certificate
Offset "0x6ABD" - Cloud Privkey
Offset "0x71F9" - Product SKU (Stock Keeping Unit)
Offset "0x7232" - Wi-Fi Network SSID
Offest "0x7264" - Wi-Fi Network Password (in clear-text)
Offset "0x728A" - Other Wi-Fi settings
Offset "0x73C5" - rbt_passwd
Offset "0x73FF" - sdiscUrl
Offset "0x7484" - Timezone
Offset "0x74AC" - NTP Hosts at offset
Offset "0x751E" - Country
Offset "0x7557" - Wi-Fi Network SSID
Offset "0x75E1" - Wi-Fi Network Password (in clear text)
Offset "0x76B0" - SDISCVAR
Offset "0x77EE" - tzevents
Offset "0x7CA0" - Robot name
