Introducing RASPUTIN: Automated Hardware Reversing by Red Balloon Security
Introducing RASPUTIN: the human-on-the-loop automated hardware reversing platform from Red Balloon Security. Launched in May 2025, RASPUTIN revolutionizes hardware analysis and firmware extraction by combining advanced automation with human oversight.
Hacking Secure Software Update Systems at the DEF CON 32 Car Hacking Village
Read about Red Balloon’s CTF at DEF CON 32’s Car Hacking Village, highlighting secure software updates.
Red Balloon Security Identifies Critical Vulnerability in Kratos NGC-IDU
Red Balloon Security Researchers discover and patch vulnerabilities regularly. One such recent discovery is CVE-2023-36670, which affects the Kratos NGC-IDU 9.1.0.4 system. Let’s dive into the details of this security issue.
Hacking In-Vehicle Infotainment Systems with OFRAK 3.2.0 at DEF CON 31
Red Balloon Security attended DEF CON 31 in Las Vegas, Nevada where we contributed two challenges to the Car Hacking Village Capture the Flag (CTF) competition.
Brief Tour of OFRAK 3.1.0
The latest version of OFRAK 3.1.0 on PyPI includes a range of new and experimental features. Click here t our full breakdown and demo clip.
The Power of ChatGPT, in the Palm of My OFRAK
Transform Cisco output strings into engaging visuals with ChatGPT and OFRAK. Elevate your network troubleshooting skills – learn how in our latest blog.
In OFRAK 3.0.0, the App Writes the Code for You
One of the neat features we’ve had in mind for the OFRAK GUI, almost since it came out, is to be able to show you a Python script version of your actions in the GUI.
This is helpful for a few reasons: remembering what you did, learning the Python API, generalizing your work in the GUI to a reusable script or component, and probably more.
Well, now this feature is here!
How to Patch Functions with OFRAK’s FunctionReplacementModifier
OFRAK’s FunctionReplacementModifier provides an easy-to-use API that leverages the PatchMaker to replace one or more functions in a binary. This post will walk through how this works.
Brief Tour of OFRAK 2.2.1
We published OFRAK 2.2.1 to PyPI on March 8, 2023. As always, a detailed list of changes can be viewed in the OFRAK Changelog.
Critical Architectural Vulnerabilities in Siemens SIMATIC S7-1500 Series Allow for Bypass of All Protected Boot Features
Discover critical architectural vulnerabilities in the Siemens SIMATIC S7-1500 series PLCs that could allow attackers to bypass all protected boot features. Red Balloon’s research reveals that these flaws enable persistent arbitrary modifications of operating code and data, posing significant risks in industrial environments. With the potential for offline attackers to generate bootable firmware for over 100 different CPU modules, the implications are alarming. Siemens has acknowledged these vulnerabilities and is working on solutions. Learn more about the findings, the affected devices, and the recommended mitigations to safeguard your systems against these threats.