Gabriel Gonzalez

Reverse Engineering Mask ROM @gabrielcybersecurity/note/p-190487513?utm_source=notes-share-action&r=2ut046" target="_blank" rel="nofollow noopener">substack.com/@gabrielcybers…

ICYMI: Check out this research from IOActive Security Consultant Carlos Gomez Quintana, where he identified a critical attack vector for multi-factor authentication (MFA). ioactive.com/authentication…

Gabriel Gonzalez, IOA Director of Hardware Security, recently wrote an op-ed for @thesignforyou. “... modern SATCOM systems resemble under-secured enterprise networks – except their failure modes carry national, economic, & physical consequences.” thesign.media/blog/satcom-ne…

This was a great conversation! We covered #fault #injection using my past research on Drones as an example!

If #side_channel analysis is about listening to the device, #fault_injection is about kicking it just enough to make it lie.

I have more control and information available : D With the commands below, it prints strings (and symbols if it’s a structured executable): r2 -qq -e scr.color=0 -c "iz;is" or -c "izz" for raw binaries

For years I have relied on our dear strings command to get a quick sense of an embedded firmware or executable before I begin #reverse #engineering. But lately, I’ve found it much more convenient to use #radare2 for this task!

and the next value the address where the code the processor needs to start executing after reset. This area is very important because it can be very useful when rebasing a firmware or, for example, finding the SVC entry point.

What are those values we often see at the beginning of a firmware binary while we are performing #reverse #engineering? That's the vector table and is used by the chip to begin the execution of the software. In ARM it usually contains the stack pointer [...]

@rce_trent Thanks for using the book! I hope you can learn and practice something new : ) yeah, the first example is for people who is new to U-Boot to see how an unprotected device looks like

@GabrielGonzalez hey going through this book, nice work. the example in #1 is broken though, there is no script to prevent just putting in boot.

I have finally release my book on Attacking and Securing U-Boot! The goal is to provide a *hands-on* approach to the bootloader via a VM that includes practical examples so any security consultant or embedded developer. amazon.com/dp/B0DJ7M2JNN

We have recently been assigned 12 CVEs found in an smart grid equipment. The one I enjoyed the most is a critical one would allow pre auth RCE in TACACS+! incibe.es/en/incibe-cert… @IOActive

How did @GabrielGonzalez and our team of researchers crack a Bitcoin ATM? The trick was getting our custom QR code to appear on the ATM's terminal. Check out the full video explanation along with the research findings in this blog! ioactive.com/owning-a-bitco…

I have found that some people tend to underestimate the compounded risk when vulnerabilities are presented individually. One good example is our research on the Bitcoin ATM, where we chained two vulns to get full control: ioactive.com/owning-a-bitco…

Have you ever seen a Bitcoin ATM be jackpotted? While we can't share the payload, check out this preview of the results of our research where we got a Bitcoin ATM to spit cash. Check out the full video & related research at the following link! ioactive.com/owning-a-bitco…

Check out this preview of how IOActive’s Director of Hardware, Gabriel Gonzalez, got a Bitcoin ATM to spit out cash by exploiting a vulnerability. You can see the full video and the research associated by checking out the following link! ioactive.com/owning-a-bitco…

Few weeks ago I got invited to the RunSafe podcast to chat about automotive security. It was a nice experience, I hope you enjoy too! runsafesecurity.com/podcast/securi…

Lo pase muy bien en la tertulia! Gracias por la invitacion

¿Cómo se podría hackear la red eléctrica española? ¿Qué es una red OT? ¿Qué herramientas existen para auditar sistemas industriales? Para contestar a estas y más preguntas, nos acompaña @GabrielGonzalez , Director de Hardware Hacking en IOActive. youtube.com/watch?v=GzNZ1R…

Summer 2025 Technical Readings - Fault attacks & Cryptographic security - 👏👏@GabrielGonzalez gabrielcybersecurity.com/summer25-Techn…

REMINDER: We have our IOA Lab's Summer BBQ coming up at the end of the month, taking place at our Seattle Hardware Lab. Learn how our advanced equipment can accomplish amazing feats! Request your invite today! Spots are limited. info.ioactive.com/acton/fs/block…