Tarlogic IoT Security Audit is a professional security testing service that evaluates IoT devices and their supporting infrastructure. The service examines connected devices across multiple layers including hardware components, embedded operating systems, firmware, backend services, and wireless communications. The audit process models attacks based on device specifications and the data they manage. Testing covers short-range networks such as NFC, Bluetooth, and ZigBee, which require specialized equipment. The service includes analysis of backend services that support the IoT infrastructure, examination of exposed ports for debug connections, and hardware hacking tests combined with reverse engineering of device firmware. The methodology follows the OWASP Top 10 Internet of Things (2018) standard to test common weaknesses including weak passwords, insecure network services, insecure ecosystem interfaces, lack of secure update mechanisms, use of insecure components, insufficient privacy protection, insecure data transfer and storage, lack of device management, insecure default settings, and lack of physical hardening. For Bluetooth security assessments, Tarlogic has developed the BSAM (Bluetooth Security Assessment Methodology) and specialized applications to conduct comprehensive audits of both Bluetooth Classic and Bluetooth Low Energy (BLE) implementations. Testing covers discovery, pairing, authentication, encryption, services, and application layers. The service provides clients with an assessment of their security posture and recommendations for addressing identified vulnerabilities.