DisguiseDelimit: Exploiting Synology NAS with Delimiters and Novel Tricks

Name: DisguiseDelimit: Exploiting Synology NAS with Delimiters and Novel Tricks
Description: Ryan Emmons, a staff security researcher at Rapid7, delivered this talk to chronicle his zero-day research into Synology network-attached storage (NAS) devices and the $40,000 prize it earned him at t

Ryan Emmon

DEF CON 33 · Day 1 · Main Stage

Ryan Emmons, a staff security researcher at Rapid7, delivered this talk to chronicle his zero-day research into Synology network-attached storage (NAS) devices and the $40,000 prize it earned him at t

AI review

Pwn2Own-validated pre-auth RCE on a ubiquitous NAS platform, plus a novel Linux exploitation primitive that generalizes across embedded targets — this is the real thing.

Watch on YouTube