The Agile Embedded Podcast

Offensive Cybersecurity with Ryan Torvik

Apr 9, 2025

Ryan Torvik, Founder and CEO of Tulip Tree Technology, dives into the world of offensive cybersecurity and embedded system security. He shares his journey from defense contracting to vulnerability research, highlighting the emotional rollercoaster hackers face. Ryan emphasizes the necessity of integrating security from the start in firmware development. He discusses advanced techniques like Address Space Layout Randomization and the challenges small companies face without dedicated security staff. Plus, he offers resources for anyone looking to learn about cybersecurity and hacking.

48:51

Creator website

Episode guests

Ryan Torvik

AI Summary

AI Chapters

Episode notes

Podcast summary created with Snipd AI

Quick takeaways

Offensive cybersecurity requires a profound understanding of hardware and software interactions to identify and exploit vulnerabilities effectively.

Conducting thorough attack surface analyses is crucial for hackers, guiding them to assess exploitable input points in embedded devices.

Proactive security measures, including secure coding practices and the use of established cryptographic libraries, are essential for embedded device developers to mitigate risks.

Deep dives

Understanding Offensive Cybersecurity

Offensive cybersecurity entails a unique mindset focused on identifying vulnerabilities within systems rather than developing them. Individuals working in this space require deep knowledge of hardware and software interactions, memory allocation, and operating systems to effectively discover security flaws. The process often includes an emotional rollercoaster, where researchers experience excitement upon finding a vulnerability, only to be frustrated by timely patches that eliminate their discoveries. This aspect of vulnerability research requires persistence and an analytical approach to understand how software malfunctions and how such flaws can be exploited.

Intro

2min

Navigating Offensive Cybersecurity in Embedded Systems

22min

Integrating Cybersecurity into Device Development

2min

Securing Firmware Development

8min

Modern Cybersecurity Insights

13min

Exploring Beginner-Friendly Cybersecurity CTFs

3min

Key Topics

* [03:00] Ryan's background in offensive cybersecurity and defense contracting

* [04:30] The mindset and challenges of vulnerability research and hacking

* [09:15] How security researchers approach attacking embedded devices

* [13:45] Techniques for extracting and analyzing firmware

* [19:30] Security considerations for embedded developers

* [24:00] The importance of designing security from the beginning

* [28:45] Security challenges for small companies without dedicated security staff

* [33:20] Address Space Layout Randomization (ASLR) and other security measures

* [37:00] Emulation technology for testing embedded systems

* [45:30] Tulip Tree's approach to embedded system emulation and security testing

* [50:15] Resources for learning about cybersecurity and hacking

Notable Quotes

> "When you're on the vulnerability research side, you're trying to find a time when the software does something wrong. When it does something unexpected." — Ryan Torvik

> "Don't roll your own cryptography. Use a standard library for cryptography." — Ryan Torvik

> "We're seeing that the maintenance costs are what are getting people now. You're expected to maintain this device, but now you got to be able to actually update the device." — Ryan Torvik

> "It's so much more expensive to put security in after the fact if it's possible in the first place. Why is that even something that needs to be debated?" — Luca Ingianni

Resources Mentioned

[Tulip Tree Technology](tuliptreetech.com) - Ryan's company focused on embedded system security and emulation

* IDA Pro - Interactive disassembler for firmware analysis

* Binary Ninja - Interactive disassembler from Vector35

* Ghidra - NSA's open-source software reverse engineering tool

* Microcorruption - Beginner-friendly CTF challenge for learning embedded system hacking

* National Vulnerability Database - Public database of security vulnerabilities

Things to do

* Join the Agile Embedded Podcast Slack channel to connect with the hosts and other listeners

* Check out Tulip Tree Technology's website for their emulation tools and security services

* Try Microcorruption CTF challenges to learn about embedded system security vulnerabilities

* Consider security implications early in your design process rather than as an afterthought

* Use secure programming languages like Rust that help prevent common security issues

You can find Jeff at https://jeffgable.com.
You can find Luca at https://luca.engineer.

Want to join the agile Embedded Slack? Click here

Remember Everything You Learn from Podcasts

Save insights instantly, chat with episodes, and build lasting knowledge - all powered by AI.

Get the app

The Agile Embedded Podcast

Offensive Cybersecurity with Ryan Torvik

Episode guests

Podcast summary created with Snipd AI

Quick takeaways

Deep dives

Understanding Offensive Cybersecurity

Conducting Attack Surface Analysis

Challenges in Embedded Systems Security

Shifting Mindset for Developers

Emulation as a Tool for Testing

Remember Everything You Learn from Podcasts