What to Expect?

The IoT Hacking Bootcamp is a 4-week beginner-friendly hands-on bootcamp where you go hands-on with Raspberry Pi, hardware protocols, chip-off forensics, and firmware analysis - no experience required.

This bootcamp teaches you how to break down and understand IoT devices from the inside out. You’ll build your own lab using Raspberry Pi, connect to devices using UART and I2C, extract flash chips like a forensic analyst, and analyze real firmware using tools like AttifyOS and QEMU. Whether you're a student, hacker, developer, or just a curious techie, this course will make you confident in navigating the fascinating world of IoT hacking.

What You'll Learn?

• How IoT devices work and communicate (Modbus, MQTT, etc.)
• Setting up Raspberry Pi for both attacking and simulating IoT systems
• Interfacing with serial protocols: UART, I2C, SPI, JTAG
• Flash memory extraction using chip-off techniques
• Firmware unpacking, analysis, and emulation
• Exploring tools like Binwalk, Flashrom, AttifyOS, and QEMU

Get Certified (CIPT)

The Certified IoT Penetration Tester (CIPT) certification shows that you have real-world experience and knowledge in IoT security. CIPT certifies your ability to hack and protect the connected world by breaking down firmware, using UART interfaces, emulating smart devices, and finding real-world weaknesses in hardware devices. This certification sets you up for jobs like IoT Security Researcher, Embedded Systems Analyst, or Hardware Pentester, whether you're just starting out in cybersecurity or want to improve your skills.

Bootcamp Agenda

Session 1: IoT Basics + Raspberry Pi Setup

• What is IoT? Architecture and attack surface
• Raspberry Pi 101: flashing Kali/Ubuntu, headless setup, SSH
• Deploying and testing IoT protocols: MQTT and Modbus
• Writing basic IoT Python scripts for sensor simulation
• How IoT devices are tested and attacked
• Hands-On Labs:
  • Flash and configure the Raspberry Pi
  • Install and run MQTT/Modbus services
  • Capture and analyze IoT traffic using Wireshark

Session 2: Serial Communication & Protocol Demos

• Intro to serial protocols: UART, I2C, SPI, JTAG
• Pinouts, voltage levels, and safe wiring
• Identifying UART interfaces on real boards
• Live demos using Arduino Nano, NodeMCU
• Reading sensor data, sniffing UART, flashing EEPROMs
• Hands-On Labs
  • Connect the UART to a real IoT device (router, NodeMCU)
  • Use a minicom/serial terminal to get shell access

Session 3: Chip-Off Forensics (Demo + Hands-On)

• What is chip-off forensics, and when is it used?
• NAND vs NOR flash, common ICs, target chip selection
• Tools overview: CH341A, hot air rework, clips and adapters
• Instructor demo: Desoldering and dumping a SPI flash chip
• Dumping firmware using flashrom and analyzing with binwalk
• Hands-On Labs
  • Practice using the sample dumps provided
  • Locate and extract file systems (SquashFS, JFFS2)

Session 4: Firmware Analysis & Emulation

• Firmware basics: formats, file systems, where to find them
• Using binwalk, firmware-mod-kit, and firmwalker
• Setting up AttifyOS and the toolchain
• Exploring extracted configs, credentials, and scripts
• Emulating firmware with QEMU (pre-configured walkthrough)
• Hands-On Labs
  • Analyze a real firmware sample
  • Emulate firmware locally and access the web UI

Bootcamp Schedule (October 2025 Batch)

This live bootcamp is delivered over four consecutive Saturdays, starting from October 4th, 2025, and concluding on October 25th, 2025.

Live Session Dates

Who Should Join This Bootcamp?

• Cybersecurity students and ethical hackers
• Developers and QA professionals building IoT products
• Tech enthusiasts who love hardware and tinkering
• Anyone new to IoT hacking looking for a structured start