CHIPSEC (@CHIPSEC)

30 Jul 2021

New release from @CHIPSEC. Check it out here: github.com/chipsec/chipsec/r…

Release Chipsec v1.7.0 · chipsec/chipsec

New or Updated Modules/UtilCmds: tools.smm.smm_ptr - Update smm_ptr.py to use print_buffer_bytes when logging in verbose mode utilcmd.mmio_cmd - Update to work with multibus enhancements utilcmd.t...

Yuriy Bulygin

CHIPSEC retweeted

26 Jun 2021

Yep, @CHIPSEC has TPM interface too: chipsec_util.py tpm help No ROCA test yet? #TPM15minsOfFame

Assaf Carlsbad

CHIPSEC retweeted

26 Jun 2021

Added new module to dump and parse the Windows SMM Mitigations Table.

26 Jun 2021

New release from @CHIPSEC ! Check it out: github.com/chipsec/chipsec/r…

Chipsec Release

CHIPSEC retweeted

26 Jun 2021

New release from @CHIPSEC ! Check it out: github.com/chipsec/chipsec/r…

Release Chipsec v1.6.4 · chipsec/chipsec

New or Updated Modules/UtilCmds: tools.cpu.sinkhole - Minor improvements to sinkhole.py tools.uefi.scan_blocked - Fix to exit if no FW image is found utilcmd.acpi_cmd - Prompt the user to specify ...

Assaf Carlsbad

CHIPSEC retweeted

John Loucaides @JohnLoucaides

24 Feb 2021

Replying to @CHIPSEC

@CHIPSEC now exposes the common.smm_code_chk module that verifies MSR_SMM_FEATURE_CONTROL is configured properly to mitigate SMM callout vulnerabilities.

19 Dec 2018

Replying to @JohnLoucaides

I find it super interesting that practical testing showed SMM_CODE_CHK_EN to be readable outside SMM, contrary to @intel docs! Way more useful if someone can check whether it's on, if you ask me. :-)

Assaf Carlsbad

CHIPSEC retweeted

23 Feb 2021

Now, cross your fingers and pass this address as an additional argument to the CHIPSEC command. If all goes well, CHIPSEC should now be able to scan the boot script for any potential call-out vulnerabilities. Disclaimer: I only tried this on my own computer. Use at your own risk!

CHIPSEC

CHIPSEC @CHIPSEC

19 May 2021

Great point. Can also think of improving s3bootscript module to dump NVRAM directly (rather than read from runtime) and look up the AcpiGlobalVariable in NVRAM

23 Feb 2021

If you ever encountered a machine where @CHIPSEC fails to obtain and parse the S3 boot script, chances are the 'AcpiGlobalVariable' (which should contain the pointer to the boot script) simply doesn't have the 'Runtime' attribute, and therefore it can't be enumerated from the OS.

Chipsec Release

CHIPSEC retweeted

7 May 2021

New release from @CHIPSEC. Check it out here: github.com/chipsec/chipsec/r…

Release Chipsec v1.6.2 · chipsec/chipsec

New or Updated Modules/UtilCmds: common.sgx_check - Update missed formatting changes common.uefi.access_uefispec - Get rid of call to ord(), delete unreferenced lists, print error message only if ...

Chipsec Release

CHIPSEC retweeted

5 Apr 2021

New release from @CHIPSEC. Check it out here: github.com/chipsec/chipsec/r…

Release Chipsec v1.6.1 · chipsec/chipsec

New or Updated Modules/UtilCmds: None New or Updated Configurations: 8086/pch_5xxh - Fix missing type attribute Removed Modules: None Additional Changes: chipsec.chipset - Update exception l...

Chipsec Release

CHIPSEC retweeted

28 Jan 2021

New release from @CHIPSEC. Check it out here: github.com/chipsec/chipsec/r…

Release Chipsec v2.0.4 · chipsec/chipsec

What's Changed Bump step-security/harden-runner from 2.19.0 to 2.19.1 by @dependabot[bot] in #2738 Bump ubuntu from c4a8d55 to f3d2860 in /chipsec_tools/log_parser by @dependabot[bot] in #2740...

Yuriy Bulygin

CHIPSEC retweeted

25 Dec 2020

. @eclypsium and @CHIPSEC badges 🎉

Maggie @_m46s

24 Dec 2020

I give you the cyberpunk #badgelife Christmas tree of my dreams 🎄☠️ Happy Holidays, everyone!!!

0:48

Maggie

CHIPSEC retweeted

Maggie @_m46s

24 Dec 2020

I give you the cyberpunk #badgelife Christmas tree of my dreams 🎄☠️ Happy Holidays, everyone!!!

0:48

307

Eclypsium

CHIPSEC retweeted

Eclypsium @eclypsium

3 Dec 2020

TrickBot Now Offers ‘TrickBoot' @VK_Intel @IntelAdvanced and @Eclypsium have discovered a new module in the TrickBot toolset aimed at detecting UEFI / BIOS firmware vulnerabilities, enabling #malware to persist, brick, and profit. #TrickBoot bit.ly/33DO1Qd

Chipsec Release

CHIPSEC retweeted

20 Nov 2020

New release from @CHIPSEC. Check it out here: github.com/chipsec/chipsec/r…

Release Chipsec v1.5.7 · chipsec/chipsec

New or Updated Modules/UtilCmds: utilcmd.iommu_cmd - Updated command to use argparse utilcmd.mem_cmd - Updated command to use argparse utilcmd.msr_cmd - Updated command to use argparse utilcmd.smb...

Chipsec Release

CHIPSEC retweeted

29 Oct 2020

Replying to @CHIPSEC

@CHIPSEC 1.5.6 has been released! Check it out: github.com/chipsec/chipsec/r…

Release Chipsec v1.5.6 · chipsec/chipsec

New or Updated Modules/UtilCmds: common.secureboot.variables - Changed verbiage around "Blacklist" and "Whitelist" to use neutral terms tools.smm.smm_ptr - Fixed python3 str/by...

Yuriy Bulygin

CHIPSEC retweeted

This tweet is unavailable

19 Oct 2020

Use @CHIPSEC to play with UEFI variables. Lots of cool stuff there. OS sees a lot fewer variables that there is stored in NVRAM

Yuriy Bulygin

CHIPSEC retweeted

10 Aug 2020

Easy to unpack any SPI dump with @CHIPSEC : chipsec_util decode spi.bin

5 Aug 2020

The first part of @liba2k and mine research on UEFI just went online. This time it's merely a refresher on how to dump SPI flash memory, but the next posts in the series will be more innovative and discuss techniques to reverse, debug and fuzz UEFI drivers labs.sentinelone.com/moving-…

Assaf Carlsbad

CHIPSEC retweeted