u/That-Name-8963

Has anyone witnessed a real life OTA Updates cyber threat before, there are a lot of research papers out their that discuss security of OTA updates, and why we can't just use SSL as secure communication, some people are using separated encryption algorithms for the Firmware (AES, RSA) beside the secure communication part, and even some people are Steganography, but as far as I know we didn't have a real OTA attack until now

I got a freelance job in which the customer wants to do a penetration test on a complete ERP system with all modules (inventory, CRM pipeline etc...), the system is full of pages and each page has a lot of input fields, how to estimate the time I need to finish the project?

I have already estimated it to take 15 working days (8 hours per day) which include time to run ZAP for Fuzzing and other automation and verify false positives.