Stitcher: Correlating digital forensic evidence on internet-of-things devices

Attacks on Internet-of-Things (IoT) devices have grown immensely and there is an urgent need to empower Digital Forensic Investigators (DFI)...

Public Disclosure: Firmware Vulnerabilities in iSmartAlarm CubeOne

As part of my Masters' research, I investigated the firmware of a widely popular smart home security device - the...

Upcoming Research Findings

Research on an IoT product for vulnerabilities have yielded some results.

AiSP – Public Disclosure of Two Previously Undisclosed Vulnerabilities in an IoT Product

Upcoming public disclosure talk at AiSP.

SANS InfoSec Handlers Diary Blog – Rediscovering Limitations of Stateful Firewalls: “NAT Slipstreaming” ? Implications, Detections and Mitigations

by Yee Ching
Posted on November 6, 2020November 7, 2020
Blog

I recently wrote a guest diary on the SANS Internet Storm Center about a recent technique named “NAT Slipstreaming”.

by Yee Ching
Posted on October 21, 2020October 21, 2020
Research

Attacks on Internet-of-Things (IoT) devices have grown immensely and there is an urgent need to empower Digital Forensic Investigators (DFI) who are tasked to investigate such attacks. In this accepted journal paper, we conduct a user study with 39 digital forensic investigators from both public and private sectors to document the challenges they faced in traditional and IoT digital forensics.

SANS NetWars Core Experience – RSA APJ Conference 2019 (17 July 2019)

SANS Community Night Talk – Building and Operating an OT/ICS SOC (11 July 2019)

SANS Community Night in Singapore – 11 July 2019

SANS Community Night Talk – Touring the Windows Security Model with Mimikatz (9 July 2019)

SANS Community Night in Singapore – 9 July 2019

by Yee Ching
Posted on September 21, 2018September 25, 2018
Events

Inaugural Student Volunteer & Recognition Seminar 2018 for the launch of Student Volunteer Recognition Programme Framework in Singapore.