CVE Hunting: Wi-Fi Routers, OSINT & 'The Tyranny of the Default', is a first hand account of CVE Hunting techniques that initially stemmed from a common issue in Cybersecurity: The use of default credentials. Through my research, I've uncovered a trend of critically insecure default password algorithms & other security misconfigurations across several manufacturers that lead to the discovery and reporting of multiple CVEs.

This talk will explore a few practical approaches & strategies that have been fruitful during the bug discovery process . I will cover practical & applied OSINT techniques that have helped find vulnerabilities in router WI-FI passwords, communication protocols & parallel security issues. Join me in exploring the implications of these approaches to CVE hunting & the subsequent vulnerabilities found in vulnerable networks in order to enhance our collective cybersecurity posture.