PSPReverse / ftpm_attack
Code and data artifacts for our paper: "faulTPM: Exposing AMD fTPMs’ Deepest Secrets"
☆103Updated last year
Related projects ⓘ
Alternatives and complementary repositories for ftpm_attack
- A repo for TPM sniffing greatness☆167Updated this week
- A list of public attacks on BitLocker☆181Updated last year
- UEFI and SMM Assessment Tool☆165Updated 6 months ago
- a low pin count sniffer for icestick☆90Updated 5 years ago
- iTLB multihit PoC☆40Updated last year
- Research tools developed for Intel Wi-Fi chips☆49Updated 9 months ago
- The Binarly Firmware Hunt (FwHunt) rule format was designed to scan for known vulnerabilities in UEFI firmware.☆227Updated 7 months ago
- libsigrok stacked Protocol Decoder for TPM 2.0 & TPM 1.2 transactions from an SPI bus. BitLocker Volume Master Key (VMK) are automaticall…☆22Updated 2 years ago
- Tools for analyzing UEFI firmware and checking UEFI modules with FwHunt rules☆213Updated 2 months ago
- ☆143Updated 2 weeks ago
- Binarly Vulnerability Research Advisories☆167Updated last month
- A Binary Ninja plugin that automatically resolves type information for EFI protocol usage.☆36Updated 2 months ago
- A framework for creating smart cards (ICC-based cards with contacts).☆134Updated 3 months ago
- Intel Management Engine JTAG Proof of Concept☆138Updated 4 years ago
- A Saleae Analyzer for TPM traffic that only requires the LADD & LFRAME signals, no clock.☆127Updated last year
- Overview of Secure-Launch process on Qualcomm devices☆55Updated 9 months ago
- Firmware Analysis Tool☆154Updated this week
- Determine which CPU architecture is used in a binary file.☆104Updated 8 months ago
- Tools for decoding TPM SPI transaction and extracting the BitLocker key from them.☆283Updated 2 years ago
- Decrypt the bitlocker FVEK for a bitlocker encrypted drive.☆19Updated last month
- A tool for firmware cartography☆139Updated 8 months ago
- Supplemental material to our paper: "One Glitch to Rule Them All: Fault Injection Attacks Against AMD's Secure Encrypted Virtualization"☆81Updated 2 years ago
- ☆25Updated last year
- Binary Ninja plugin for the Avnera AV6xxx/AV7xxx architecture☆25Updated 5 months ago
- Arbitrary Speculative Code Execution with Return Instructions☆153Updated 9 months ago
- Binja loader for AMD-SP or PSP firmware binaries.☆30Updated last year
- baton drop (CVE-2022-21894): Secure Boot Security Feature Bypass Vulnerability☆293Updated last year
- ☆18Updated 3 years ago
- Intel ATR Training: Security of BIOS/UEFI System Firmware from Attacker and Defender Perspectives☆91Updated 7 years ago
- A custom ELF linker/loader for installing ET_REL binary patches at runtime☆150Updated last month