Code and data artifacts for our paper: "faulTPM: Exposing AMD fTPMs’ Deepest Secrets"
☆115Apr 14, 2023Updated 2 years ago
Alternatives and similar repositories for ftpm_attack
Users that are interested in ftpm_attack are comparing it to the libraries listed below
Sorting:
- amd-nv-tool can extract and modify information from BIOS images of AMD systems☆14Jan 7, 2026Updated last month
- PSP emulator☆92May 2, 2021Updated 4 years ago
- Supplemental material to our paper: "One Glitch to Rule Them All: Fault Injection Attacks Against AMD's Secure Encrypted Virtualization"☆95Sep 5, 2022Updated 3 years ago
- Documentation about the reversed engineered PSP interfaces/hardware components.☆28Mar 22, 2022Updated 3 years ago
- ☆11Apr 7, 2022Updated 3 years ago
- A disassembler☆22May 2, 2022Updated 3 years ago
- Proof-of-concept implementation for the paper "Indirect Meltdown: Building Novel Side-Channel Attacks from Transient Execution Attacks" (…☆22Sep 24, 2023Updated 2 years ago
- Use hardware performance counters to find mapping of addresses to L3 slices in Intel processors☆17Jul 30, 2023Updated 2 years ago
- Display, extract, and manipulate PSP firmware inside UEFI images☆675Updated this week
- Binja loader for AMD-SP or PSP firmware binaries.☆41Jan 29, 2023Updated 3 years ago
- A framework for lifting ARM32 to LLVM-IR and merging resulting code with LLVM-IR generated from source-code.☆12Oct 20, 2022Updated 3 years ago
- SEP firmware splitter, made in rust.☆42Oct 11, 2024Updated last year
- Intel Management Engine JTAG Proof of Concept - 2022 Instructions☆32Sep 4, 2022Updated 3 years ago
- libsigrok stacked Protocol Decoder for TPM 2.0 & TPM 1.2 transactions from an SPI bus. BitLocker Volume Master Key (VMK) are automaticall…☆25May 23, 2022Updated 3 years ago
- SPI flash read MitM attack PoC☆40May 24, 2022Updated 3 years ago
- Minimal CPU Emulator Powered by the ARM PL080 DMA Controller☆36Jul 25, 2024Updated last year
- Generic exploit for all version 7 (maybe others) LM32-based AMD SMU's used in APUs (and probably works on GPUs too)☆39Aug 15, 2023Updated 2 years ago
- A SLEIGH processor spec for Ghidra for the GameCube DSP☆20Apr 27, 2025Updated 10 months ago
- iTLB multihit PoC☆42Nov 4, 2023Updated 2 years ago
- NAND (JEDEC / ONFI) Analyzer for Saleae Logic☆14Apr 18, 2024Updated last year
- ☆11Nov 6, 2023Updated 2 years ago
- Tools for decoding TPM SPI transaction and extracting the BitLocker key from them.☆318Mar 8, 2022Updated 3 years ago
- Python bindings for Apple's libcompression.☆15Updated this week
- Exploit writeups I've authored☆57Oct 22, 2023Updated 2 years ago
- The first analysis framework for CPU microcode☆412Mar 13, 2023Updated 2 years ago
- ☆23Oct 14, 2013Updated 12 years ago
- Microarchitectural weird machine implementation using exceptions, TSX, branch predictors, and branch target buffers.☆17May 24, 2023Updated 2 years ago
- ☆32May 2, 2023Updated 2 years ago
- A tool that bypasses PN553 signature protection☆50Aug 16, 2023Updated 2 years ago
- Tool for working with AMD SMU☆54Sep 16, 2016Updated 9 years ago
- Unmaintained and incorrect - use LibOrbisPkg instead☆14Feb 2, 2017Updated 9 years ago
- ☆18Nov 16, 2024Updated last year
- Support of Nvidia Falcon processors for Ghidra☆74Sep 7, 2024Updated last year
- ☆70Jul 4, 2024Updated last year
- Modern C++, range-based Mach-O parser designed for embedded use. Uses stack allocations only.☆34Oct 31, 2022Updated 3 years ago
- A list of public attacks on BitLocker☆413Aug 9, 2025Updated 6 months ago
- BIOS Guard script tool☆55Dec 6, 2020Updated 5 years ago
- Research tools developed for Intel Wi-Fi chips☆57Jun 14, 2025Updated 8 months ago
- ☆98Oct 24, 2025Updated 4 months ago