What We Do · File No. 06
Green Shoe Lab
IoT and ICS security research. Helping to fight the never-ending cat-and-mouse security game.
We design and build embedded systems, which means we understand, first-hand, how messy the attack surface gets when physical processes meet connected devices. IoT and industrial control environments aren’t just “IT with sensors.” The risks are broader and the stakes are higher.
We deliver end-to-end security assessments for Internet-connected products and OT deployments: teardown and hardware review (JTAG / SWD / UART exposure, tamper paths), firmware extraction and reverse engineering, secure-boot and key-management validation, RF / OTA update testing, and web / API / mobile penetration testing tied back to your cloud. In plants and buildings, we map assets and exercise ICS protocols (Modbus/TCP, DNP3, BACnet, PROFINET) to uncover unsafe states, segmentation gaps, and escalation paths.
The outcome isn’t just a bug list. It’s a prioritized mitigation plan: threat models, hardening guidance, an SBOM and update strategy, and practical fixes aligned to frameworks like IEC 62443 and NIST 800-82 where applicable. Our research focuses on embedded hardware, firmware, and human-facing control surfaces (web / HMI / mobile) across consumer IoT, home and building automation, and industrial IoT.
Services at a Glance
From hardware to cloud.
- Vulnerability assessments and penetration testing (hardware → firmware → RF → app / cloud)
- ICS / OT security reviews (PLCs, RTUs, HMIs, network segmentation, protocol fuzzing)
- Exploit reproduction and proof-of-concepts to validate real-world impact
- Secure design and remediation support (secure boot, key rotation, OTA, SBOM)
- Executive-level risk summaries that translate findings into uptime and safety gains
Ready When You Are
Let's turn your idea into a tangible object.
Concept to delivered product. Mechanical, electronics, and software, built under one roof. Quickly and within budget.
Schedule a Consultation