Hacking Randomized Linux Kernel Images at the DEF CON 33 Car Hacking Village

Red Balloon Security’s DEF CON 33 Car Hacking Village CTF write-up: unpacking firmware, cracking a repeating-key XOR, and exploiting a buffer overflow on ARM64 to ROP into mprotect() and execute shellcode—despite randomized Linux syscall numbers.

Introducing RASPUTIN: Automated Hardware Reversing by Red Balloon Security

Introducing RASPUTIN: the human-on-the-loop automated hardware reversing platform from Red Balloon Security. Launched in May 2025, RASPUTIN revolutionizes hardware analysis and firmware extraction by combining advanced automation with human oversight.

Hacking Secure Software Update Systems at the DEF CON 32 Car Hacking Village

Read about Red Balloon’s CTF at DEF CON 32’s Car Hacking Village, highlighting secure software updates.

Hacking In-Vehicle Infotainment Systems with OFRAK 3.2.0 at DEF CON 31

Red Balloon Security attended DEF CON 31 in Las Vegas, Nevada where we contributed two challenges to the Car Hacking Village Capture the Flag (CTF) competition.

RBS’s Satellite 2022 Conference quick take on cybersecurity: Increasing urgency, few immediate solutions

The Ukrainian conflict amplified serious questions about satellite security in this year’s conference. But questions aren’t action, which is needed now to protect this critical industry.  The Ukrainian conflict amplified serious questions about satellite security in this year’s conference. But questions aren’t action, which is needed now to protect this critical industry.  The Ukrainian conflict […]