{"product_id":"hacking-connected-cars-isbn-9781119491804","title":"Hacking Connected Cars","description":"\u003cp\u003e\u003cb\u003eA field manual on contextualizing cyber threats, vulnerabilities, and risks to connected cars through penetration testing and risk assessment\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003e\u003ci\u003eHacking Connected Cars\u003c\/i\u003e deconstructs the tactics, techniques, and procedures (TTPs) used to hack into connected cars and autonomous vehicles to help you identify and mitigate vulnerabilities affecting cyber-physical vehicles. Written by a veteran of risk management and penetration testing of IoT devices and connected cars, this book provides a detailed account of how to perform penetration testing, threat modeling, and risk assessments of telematics control units and infotainment systems. This book demonstrates how vulnerabilities in wireless networking, Bluetooth, and GSM can be exploited to affect confidentiality, integrity, and availability of connected cars.\u003c\/p\u003e \u003cp\u003ePassenger vehicles have experienced a massive increase in connectivity over the past five years, and the trend will only continue to grow with the expansion of The Internet of Things and increasing consumer demand for always-on connectivity. Manufacturers and OEMs need the ability to push updates without requiring service visits, but this leaves the vehicle’s systems open to attack. This book examines the issues in depth, providing cutting-edge preventative tactics that security practitioners, researchers, and vendors can use to keep connected cars safe without sacrificing connectivity.\u003c\/p\u003e \u003cul\u003e \u003cli\u003ePerform penetration testing of infotainment systems and telematics control units through a step-by-step methodical guide\u003c\/li\u003e \u003cli\u003eAnalyze risk levels surrounding vulnerabilities and threats that impact confidentiality, integrity, and availability\u003c\/li\u003e \u003c\/ul\u003e \u003cul\u003e \u003cli\u003eConduct penetration testing using the same tactics, techniques, and procedures used by hackers\u003c\/li\u003e \u003c\/ul\u003e \u003cp\u003eFrom relatively small features such as automatic parallel parking, to completely autonomous self-driving cars—all connected systems are vulnerable to attack. As connectivity becomes a way of life, the need for security expertise for in-vehicle systems is becoming increasingly urgent. \u003ci\u003eHacking Connected Cars\u003c\/i\u003e provides practical, comprehensive guidance for keeping these vehicles secure.\u003c\/p\u003e \u003cp\u003eAbout the Author v\u003c\/p\u003e \u003cp\u003eAcknowledgments vii\u003c\/p\u003e \u003cp\u003eForeword xv\u003c\/p\u003e \u003cp\u003eIntroduction xix\u003c\/p\u003e \u003cp\u003e\u003cb\u003ePart I Tactics, Techniques, and Procedures 1\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003e\u003cb\u003eChapter 1 Pre-Engagement 3\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003ePenetration Testing Execution Standard 4\u003c\/p\u003e \u003cp\u003eScope Definition 6\u003c\/p\u003e \u003cp\u003eArchitecture 7\u003c\/p\u003e \u003cp\u003eFull Disclosure 7\u003c\/p\u003e \u003cp\u003eRelease Cycles 7\u003c\/p\u003e \u003cp\u003eIP Addresses 7\u003c\/p\u003e \u003cp\u003eSource Code 8\u003c\/p\u003e \u003cp\u003eWireless Networks 8\u003c\/p\u003e \u003cp\u003eStart and End Dates 8\u003c\/p\u003e \u003cp\u003eHardware Unique Serial Numbers 8\u003c\/p\u003e \u003cp\u003eRules of Engagement 9\u003c\/p\u003e \u003cp\u003eTimeline 10\u003c\/p\u003e \u003cp\u003eTesting Location 10\u003c\/p\u003e \u003cp\u003eWork Breakdown Structure 10\u003c\/p\u003e \u003cp\u003eDocumentation Collection and Review 11\u003c\/p\u003e \u003cp\u003eExample Documents 11\u003c\/p\u003e \u003cp\u003eProject Management 13\u003c\/p\u003e \u003cp\u003eConception and Initiation 15\u003c\/p\u003e \u003cp\u003eDefinition and Planning 16\u003c\/p\u003e \u003cp\u003eLaunch or Execution 22\u003c\/p\u003e \u003cp\u003ePerformance\/Monitoring 23\u003c\/p\u003e \u003cp\u003eProject Close 24\u003c\/p\u003e \u003cp\u003eLab Setup 24\u003c\/p\u003e \u003cp\u003eRequired Hardware and Software 25\u003c\/p\u003e \u003cp\u003eLaptop Setup 28\u003c\/p\u003e \u003cp\u003eRogue BTS Option 1: OsmocomBB 28\u003c\/p\u003e \u003cp\u003eRogue BTS Option 2: BladeRF + YateBTS 32\u003c\/p\u003e \u003cp\u003eSetting Up Your WiFi Pineapple Tetra 35\u003c\/p\u003e \u003cp\u003eSummary 36\u003c\/p\u003e \u003cp\u003e\u003cb\u003eChapter 2 Intelligence Gathering 39\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eAsset Register 40\u003c\/p\u003e \u003cp\u003eReconnaissance 41\u003c\/p\u003e \u003cp\u003ePassive Reconnaissance 42\u003c\/p\u003e \u003cp\u003eActive Reconnaissance 56\u003c\/p\u003e \u003cp\u003eSummary 59\u003c\/p\u003e \u003cp\u003e\u003cb\u003eChapter 3 Threat Modeling 61\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eSTRIDE Model 63\u003c\/p\u003e \u003cp\u003eThreat Modeling Using STRIDE 65\u003c\/p\u003e \u003cp\u003eVast 74\u003c\/p\u003e \u003cp\u003ePasta 76\u003c\/p\u003e \u003cp\u003eStage 1: Define the Business and Security Objectives 77\u003c\/p\u003e \u003cp\u003eStage 2: Define the Technical Scope 78\u003c\/p\u003e \u003cp\u003eStage 3: Decompose the Application 79\u003c\/p\u003e \u003cp\u003eStage 4: Identify Threat Agents 80\u003c\/p\u003e \u003cp\u003eStage 5: Identify the Vulnerabilities 82\u003c\/p\u003e \u003cp\u003eStage 6: Enumerate the Exploits 82\u003c\/p\u003e \u003cp\u003eStage 7: Perform Risk and Impact Analysis 83\u003c\/p\u003e \u003cp\u003eSummary 85\u003c\/p\u003e \u003cp\u003e\u003cb\u003eChapter 4 Vulnerability Analysis 87\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003ePassive and Active Analysis 88\u003c\/p\u003e \u003cp\u003eWiFi 91\u003c\/p\u003e \u003cp\u003eBluetooth 100\u003c\/p\u003e \u003cp\u003eSummary 105\u003c\/p\u003e \u003cp\u003e\u003cb\u003eChapter 5 Exploitation 107\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eCreating Your Rogue BTS 108\u003c\/p\u003e \u003cp\u003eConfiguring NetworkinaPC 109\u003c\/p\u003e \u003cp\u003eBringing Your Rogue BTS Online 112\u003c\/p\u003e \u003cp\u003eHunting for the TCU 113\u003c\/p\u003e \u003cp\u003eWhen You Know the MSISDN of the TCU 113\u003c\/p\u003e \u003cp\u003eWhen You Know the IMSI of the TCU 114\u003c\/p\u003e \u003cp\u003eWhen You Don’t Know the IMSI or MSISDN of the TCU 114\u003c\/p\u003e \u003cp\u003eCryptanalysis 117\u003c\/p\u003e \u003cp\u003eEncryption Keys 118\u003c\/p\u003e \u003cp\u003eImpersonation Attacks 123\u003c\/p\u003e \u003cp\u003eSummary 132\u003c\/p\u003e \u003cp\u003e\u003cb\u003eChapter 6 Post Exploitation 133\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003ePersistent Access 133\u003c\/p\u003e \u003cp\u003eCreating a Reverse Shell 134\u003c\/p\u003e \u003cp\u003eLinux Systems 136\u003c\/p\u003e \u003cp\u003ePlacing the Backdoor on the System 137\u003c\/p\u003e \u003cp\u003eNetwork Sniffing 137\u003c\/p\u003e \u003cp\u003eInfrastructure Analysis 138\u003c\/p\u003e \u003cp\u003eExamining the Network Interfaces 139\u003c\/p\u003e \u003cp\u003eExamining the ARP Cache 139\u003c\/p\u003e \u003cp\u003eExamining DNS 141\u003c\/p\u003e \u003cp\u003eExamining the Routing Table 142\u003c\/p\u003e \u003cp\u003eIdentifying Services 143\u003c\/p\u003e \u003cp\u003eFuzzing 143\u003c\/p\u003e \u003cp\u003eFilesystem Analysis 148\u003c\/p\u003e \u003cp\u003eCommand-Line History 148\u003c\/p\u003e \u003cp\u003eCore Dump Files 148\u003c\/p\u003e \u003cp\u003eDebug Log Files 149\u003c\/p\u003e \u003cp\u003eCredentials and Certificates 149\u003c\/p\u003e \u003cp\u003eOver-the-Air Updates 149\u003c\/p\u003e \u003cp\u003eSummary 150\u003c\/p\u003e \u003cp\u003e\u003cb\u003ePart II Risk Management 153\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003e\u003cb\u003eChapter 7 Risk Management 155\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eFrameworks 156\u003c\/p\u003e \u003cp\u003eEstablishing the Risk Management Program 158\u003c\/p\u003e \u003cp\u003eSAE J3061 159\u003c\/p\u003e \u003cp\u003eISO\/SAE AWI 21434 163\u003c\/p\u003e \u003cp\u003eHEAVENS 164\u003c\/p\u003e \u003cp\u003eThreat Modeling 166\u003c\/p\u003e \u003cp\u003eSTRIDE 168\u003c\/p\u003e \u003cp\u003ePASTA 171\u003c\/p\u003e \u003cp\u003eTRIKE 175\u003c\/p\u003e \u003cp\u003eSummary 176\u003c\/p\u003e \u003cp\u003e\u003cb\u003eChapter 8 Risk-Assessment Frameworks 179\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eHEAVENS 180\u003c\/p\u003e \u003cp\u003eDetermining the Threat Level 180\u003c\/p\u003e \u003cp\u003eDetermining the Impact Level 183\u003c\/p\u003e \u003cp\u003eDetermining the Security Level 186\u003c\/p\u003e \u003cp\u003eEVITA 187\u003c\/p\u003e \u003cp\u003eCalculating Attack Potential 189\u003c\/p\u003e \u003cp\u003eSummary 192\u003c\/p\u003e \u003cp\u003e\u003cb\u003eChapter 9 PKI in Automotive 193\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eVANET 194\u003c\/p\u003e \u003cp\u003eOn-board Units 196\u003c\/p\u003e \u003cp\u003eRoadside Unit 196\u003c\/p\u003e \u003cp\u003ePKI in a VANET 196\u003c\/p\u003e \u003cp\u003eApplications in a VANET 196\u003c\/p\u003e \u003cp\u003eVANET Attack Vectors 197\u003c\/p\u003e \u003cp\u003e802.11p Rising 197\u003c\/p\u003e \u003cp\u003eFrequencies and Channels 197\u003c\/p\u003e \u003cp\u003eCryptography 198\u003c\/p\u003e \u003cp\u003ePublic Key Infrastructure 199\u003c\/p\u003e \u003cp\u003eV2X PKI200\u003c\/p\u003e \u003cp\u003eIEEE US Standard 201\u003c\/p\u003e \u003cp\u003eCertificate Security 201\u003c\/p\u003e \u003cp\u003eHardware Security Modules 201\u003c\/p\u003e \u003cp\u003eTrusted Platform Modules 202\u003c\/p\u003e \u003cp\u003eCertificate Pinning 202\u003c\/p\u003e \u003cp\u003ePKI Implementation Failures 203\u003c\/p\u003e \u003cp\u003eSummary 203\u003c\/p\u003e \u003cp\u003e\u003cb\u003eChapter 10 Reporting 205\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003ePenetration Test Report 206\u003c\/p\u003e \u003cp\u003eSummary Page 206\u003c\/p\u003e \u003cp\u003eExecutive Summary 207\u003c\/p\u003e \u003cp\u003eScope 208\u003c\/p\u003e \u003cp\u003eMethodology 209\u003c\/p\u003e \u003cp\u003eLimitations 211\u003c\/p\u003e \u003cp\u003eNarrative 211\u003c\/p\u003e \u003cp\u003eTools Used 213\u003c\/p\u003e \u003cp\u003eRisk Rating 214\u003c\/p\u003e \u003cp\u003eFindings 215\u003c\/p\u003e \u003cp\u003eRemediation 217\u003c\/p\u003e \u003cp\u003eReport Outline 217\u003c\/p\u003e \u003cp\u003eRisk Assessment Report 218\u003c\/p\u003e \u003cp\u003eIntroduction 219\u003c\/p\u003e \u003cp\u003eReferences 220\u003c\/p\u003e \u003cp\u003eFunctional Description 220\u003c\/p\u003e \u003cp\u003eHead Unit 220\u003c\/p\u003e \u003cp\u003eSystem Interface 221\u003c\/p\u003e \u003cp\u003eThreat Model 222\u003c\/p\u003e \u003cp\u003eThreat Analysis 223\u003c\/p\u003e \u003cp\u003eImpact Assessment 224\u003c\/p\u003e \u003cp\u003eRisk Assessment 224\u003c\/p\u003e \u003cp\u003eSecurity Control Assessment 226\u003c\/p\u003e \u003cp\u003eExample Risk Assessment Table 229\u003c\/p\u003e \u003cp\u003eSummary 230\u003c\/p\u003e \u003cp\u003eIndex 233\u003c\/p\u003e \u003cdiv\u003eAlissa Knight has worked in cybersecurity for more than 20 years. For the past ten years, she has focused her vulnerability research into hacking connected cars, embedded systems, and IoT devices for clients in the United States, Middle East, Europe, and Asia. She continues to work with some of the world’s largest automobile manufacturers and OEMs on building more secure connected cars.\u003cbr\u003e\u003cbr\u003e\n\u003c\/div\u003e \u003cdiv\u003eAlissa is the Group CEO of Brier \u0026amp; Thorn and is also the managing partner at Knight Ink, where she blends hacking with content creation of written and visual content for challenger brands and market leaders in cybersecurity. As a serial entrepreneur, Alissa was the CEO of Applied Watch and Netstream, companies she sold in M\u0026amp;A transactions to publicly traded companies in international markets.\u003cbr\u003e\u003cbr\u003e\n\u003c\/div\u003e \u003cdiv\u003eHer passion professionally is meeting and learning from extraordinary leaders around the world and sharing her views on the disruptive forces reshaping global markets. Alissa’s long-term goal is to help as many organizations as possible develop and execute on their strategic plans and focus on their areas of increased risk, bridging silos to effectively manage risk across organizational boundaries, and enable them to pursue intelligent risk taking as a means to long-term value creation. You can learn more about Alissa on her homepage at http:\/\/www.alissaknight.com, connect with her on LinkedIn, or follow her on Twitter @alissaknight.\u003c\/div\u003e","brand":"Wiley","offers":[{"title":"Default Title","offer_id":47989322907877,"sku":"NP9781119491804","price":52.0,"currency_code":"USD","in_stock":false}],"thumbnail_url":"\/\/cdn.shopify.com\/s\/files\/1\/1842\/7735\/files\/9781119491804.jpg?v=1761783666","url":"https:\/\/k12savings.com\/products\/hacking-connected-cars-isbn-9781119491804","provider":"K12savings","version":"1.0","type":"link"}