Recon Montreal 2019

Dennis Mantz

Dennis is a Pentester and Security Researcher at ERNW focusing on mobile and embedded security. His fields of interest include firmware reverse engineering, binary exploitation and software defined radios. In his free time he enjoys participating in, and sometimes also hosting Capture The Flag (CTF) competitions.


Reversing and Exploiting Broadcom Bluetooth

Lower layers of the Bluetooth protocol are very interesting with regards to security. Mobile devices with Bluetooth enabled will parse frames addressed to them even if they are currently not discoverable. Improper parsing and weird state machines lead to funny exploits.