Apologies in advance for the shameless self-promotion.
I wrote and teach Software Exploitation via Hardware Exploits along with Stephen Ridley at Xipiter. We ran a dry run last spring that a couple rainsec folks took and enjoyed. Since then, the class has sold out at black hat - twice - so we're holding a public training in portland in june.
The class focuses on using physical access to hardware to subvert, control, debug, and dump information that would then enable more informed software exploitation.
Stephen will also be teaching
Practical ARM Exploitation class the following week:
http://www.xipiter.com/practical-arm-exploitation.html By combining the two classes you should walk away with the skills to buy an off the shelf home router, extract and analyze its firmware, and then craft a software exploit to remotely subvert the same model router.
I'll be at rainsec tuesday evening, don't hesitate to ask me any questions about the class.
-joe
Joe FitzPatrick
@securelyfitz