Breaking Secure Boot with SMM

Mar 31, 2022 1 min read

Insomni-Hack-2022

Exploit for CVE-2021-0157 & CVE-2021-0158.

Slides from our Insomi’Hack2022 talk Insomnihack_Presentation.pdf
Detailed discription of the exploitation ROP chain ROP.md
Python code for exploitation, based on Chipsec latitude_chipsec_secureboot.py.

Exploitation tools and techniques

Micropython environment for EFI shell.
- Example script for MicroPython peachpy under EFI shell peachpy_test.py.
- Example script for MicroPython UEFI protocol usage capabilities.py
Patched version of EFI shell without 5 seconds delay bootx64.efi

Executing brick on the EFI module

Secure Boot bypass demo

Related projects

https://github.com/Sentinel-One/brick

GitHub

View Github

Security Patterns

John was the first writer to have joined pythonawesome.com. He has since then inculcated very effective writing and reviewing culture at pythonawesome which rivals have found impossible to imitate.

Breaking Secure Boot with SMM

Insomni-Hack-2022

Exploit for CVE-2021-0157 & CVE-2021-0158.

Exploitation tools and techniques

Executing brick on the EFI module

Secure Boot bypass demo

Related projects

GitHub

John

A plug and play GraphQL API for Wagtail, powered by Strawberry

BDDM: Bilateral Denoising Diffusion Models for Fast and High-Quality Speech Synthesis

Insomni-Hack-2022

Exploit for CVE-2021-0157 & CVE-2021-0158.

Exploitation tools and techniques

Executing brick on the EFI module

Secure Boot bypass demo

Related projects

GitHub

A plug and play GraphQL API for Wagtail, powered by Strawberry

BDDM: Bilateral Denoising Diffusion Models for Fast and High-Quality Speech Synthesis

You might also like...