Code and data artifacts for our paper: "faulTPM: Exposing AMD fTPMs’ Deepest Secrets"
☆116Apr 14, 2023Updated 2 years ago
Alternatives and similar repositories for ftpm_attack
Users that are interested in ftpm_attack are comparing it to the libraries listed below
Sorting:
- amd-nv-tool can extract and modify information from BIOS images of AMD systems☆14Jan 7, 2026Updated 2 months ago
- PSP emulator☆93May 2, 2021Updated 4 years ago
- Supplemental material to our paper: "One Glitch to Rule Them All: Fault Injection Attacks Against AMD's Secure Encrypted Virtualization"☆95Sep 5, 2022Updated 3 years ago
- Documentation about the reversed engineered PSP interfaces/hardware components.☆28Mar 22, 2022Updated 3 years ago
- ☆11Apr 7, 2022Updated 3 years ago
- Binja loader for AMD-SP or PSP firmware binaries.☆42Jan 29, 2023Updated 3 years ago
- Use hardware performance counters to find mapping of addresses to L3 slices in Intel processors☆17Jul 30, 2023Updated 2 years ago
- Decrypt the bitlocker FVEK for a bitlocker encrypted drive.☆46Mar 7, 2026Updated last week
- Display, extract, and manipulate PSP firmware inside UEFI images☆682Feb 23, 2026Updated 3 weeks ago
- libsigrok stacked Protocol Decoder for TPM 2.0 & TPM 1.2 transactions from an SPI bus. BitLocker Volume Master Key (VMK) are automaticall…☆25May 23, 2022Updated 3 years ago
- ☆20Nov 16, 2024Updated last year
- A disassembler☆22May 2, 2022Updated 3 years ago
- Tools for decoding TPM SPI transaction and extracting the BitLocker key from them.☆319Mar 8, 2022Updated 4 years ago
- Two plugins to recover TMP keys from Saleae logic analyser traces☆15Jun 10, 2022Updated 3 years ago
- SEP firmware splitter, made in rust.☆45Oct 11, 2024Updated last year
- Generic exploit for all version 7 (maybe others) LM32-based AMD SMU's used in APUs (and probably works on GPUs too)☆39Aug 15, 2023Updated 2 years ago
- A framework for lifting ARM32 to LLVM-IR and merging resulting code with LLVM-IR generated from source-code.☆12Oct 20, 2022Updated 3 years ago
- Linux integrity monitoring for CentOS/RHEL☆13May 13, 2020Updated 5 years ago
- Intel Management Engine JTAG Proof of Concept - 2022 Instructions☆32Sep 4, 2022Updated 3 years ago
- Minimal CPU Emulator Powered by the ARM PL080 DMA Controller☆36Jul 25, 2024Updated last year
- The first analysis framework for CPU microcode☆412Mar 13, 2023Updated 3 years ago
- Virtual DANCERUSH pad for Spicetools☆20Aug 4, 2023Updated 2 years ago
- Python bindings for Apple's libcompression.☆15Updated this week
- iTLB multihit PoC☆43Nov 4, 2023Updated 2 years ago
- SPI flash read MitM attack PoC☆40May 24, 2022Updated 3 years ago
- A SLEIGH processor spec for Ghidra for the GameCube DSP☆20Apr 27, 2025Updated 10 months ago
- ☆24Apr 30, 2023Updated 2 years ago
- Tool for working with AMD SMU☆54Sep 16, 2016Updated 9 years ago
- Proof-of-concept implementation for the paper "Indirect Meltdown: Building Novel Side-Channel Attacks from Transient Execution Attacks" (…☆22Sep 24, 2023Updated 2 years ago
- ☆11Nov 6, 2023Updated 2 years ago
- A list of public attacks on BitLocker☆417Aug 9, 2025Updated 7 months ago
- A tool that bypasses PN553 signature protection☆50Aug 16, 2023Updated 2 years ago
- ☆21Oct 3, 2021Updated 4 years ago
- ☆98Oct 24, 2025Updated 4 months ago
- ☆187Nov 29, 2023Updated 2 years ago
- Exploit writeups I've authored☆57Oct 22, 2023Updated 2 years ago
- BIOS Guard script tool☆55Dec 6, 2020Updated 5 years ago
- petitboot for ps3 with kexec "sort_segments failed" fixed☆12May 28, 2025Updated 9 months ago
- A tool used to generate stubs for the Open Orbis SDK☆21Aug 28, 2018Updated 7 years ago