Minsoo Son · Automotive Security Research

Close to the metal. Close to the vehicle.

Automotive hardware and embedded security researcher working across CAN, RF/LF, firmware, PCBs, and real-world vehicle attack surfaces.

Minsoo Son

Automotive Hardware & Embedded Security Researcher

Selected Achievements

2026 Pwn2Own Automotive Tokyo. Successful exploit demonstration.
2025 DEF CON 33 Car Hacking Village CTF — 3rd place.

About

I work on automotive security from the physical layer upward.

The work usually starts where clean documentation ends — opening ECUs, tracing circuits, identifying CAN lines, extracting firmware, analyzing RF/LF behavior, building test equipment, and turning uncertain hardware behavior into repeatable security testcases.

I have worked across vehicle controllers, black box systems, HSM validation, Tesla demonstration environments, RF/UWB attack methodology, and custom LF relay equipment. The common thread is simple: understand the system deeply enough to make the attack path real.

What I Work On

Vehicle hardware security
Embedded firmware analysis
CAN / UDS testing
RF / LF signal analysis
UWB attack surface analysis
Fault injection setup
ECU board analysis
Custom test equipment
Red team methodology

Selected Work

Vehicle Hardware Red Teaming

CAN, RF, LF, PCB analysis, firmware extraction, and hardware testcase design for real vehicle security assessments.

CAN / UDS-based security testing
Circuit-based testcase design
SPI / FLASH / JTAG / UART access
Real vehicle testing and field issue response

Tesla Demonstration System

Built the hardware and embedded layer for a Tesla security demonstration environment.

Identified CAN lines from Tesla harnesses
Built CAN Y-cable setup
PCB and harness analysis
Embedded firmware development
Demonstration scripts and GUI

Custom LF Relay Equipment

Designed and built dedicated LF relay equipment when existing tools were unstable or impractical.

Analyzed limitations of existing equipment
Hardware module selection
Firmware extraction and reverse engineering
New firmware optimized for testcases
Deployed in real engagements

RF / UWB Attack Methodology

Structured RF attack experience into reusable methodology and testcases for vehicle external access systems.

RF signal analysis and attack research
External access controller testcase design
UWB-related technical response
Wireless security methodology development

Fault Injection & Board-Level Recovery

Hands-on hardware work for fault injection setup, board repair, signal access, and debugging.

Voltage / clock glitching setup
JTAG / UART line access
Precision soldering and PCB recovery
Oscilloscope signal analysis
ECU failure analysis and repair

Tools / Surfaces

CANUDSSPIFLASHJTAGUARTRFLFUWBPCBECUHSMIVIOscilloscopeLogic AnalyzerSDRFirmwareGlitching

Contact