a zone for no one and everyone :) Btw this blog is only for adults! Dieser Blog ist nur für Erwachsene!
CHIPSEC is a framework for analyzing the security of PC platforms including hardware, system firmware (BIOS/UEFI), and platform components. It includes a security test suite, tools for accessing various low level interfaces, and forensic capabilities. It can be run on Windows, Linux, Mac OS X and UEFI shell. Instructions for installing and using CHIPSEC can be found in the
…
Github page: https://github.com/chipsec/chipsec
“Software-based “jailbreak” allowing all ivybridge-based xx30 thinkpads to softmod custom bios images…”
features: – automatic exploit chain unlocking bios region for flashing – model detection and automatic bios flashing – support for custom bios images (coreboot, skulls, heads) – self-signed BIOSes ensure TPM continues working
modded bios includes: – overclocking support (37xx, 38xx, 39xx cpus) – whitelist removal; use any wlan adapter – advanced menu (custom fan curve, tdp, etc) – intel me disablement via advanced menu
Supported Systems
X230 X330* X230t T430 T430s T530 W530
*X330 machines are supported but not automatically detected. They are detected as normal X230 machines. The flashing menu has an additional option to flash a BIOS with the LVDS patch for machines detected as an X230. -i models of the above are also supported because of a shared firmware and motherboard
Page: https://1vyra.in/
A good FAQ by George Kushnir(n4ru): https://medium.com/@n4ru/1vyrain-an-xx30-thinkpad-jailbreak-fd4bb0bdb654
Github Source page: https://github.com/n4ru/1vyrain
A quick explainer on ACPI
So what are DSDTs and SSDTs? Well, these are tables present in your firmware that outline hardware devices like USB controllers, CPU threads, embedded controllers, system clocks and such. A DSDT(Differentiated System Description Table) can be seen as the body holding most of the info with smaller bits of info being passed by the SSDT(Secondary System Description Table). You can think of the DSDT as the building blueprints with SSDTs being sticky notes outlining extra details to the project…
https://dortania.github.io/Getting-Started-With-ACPI/#a-quick-explainer-on-acpi
https://caizhiyuan.gitee.io/opencore-install-guide/extras/big-sur/virtualbox.html
https://developer.apple.com/library/archive/navigation/
https://developer.apple.com/documentation
Apple Open Source –
Part of the XNU kernel is open sourced by Apple, which is also an invaluable resource.
Intro
Sometimes you get hit with ideas for side-projects that sound absolutely plausible in your head. The idea grips you, your mind’s eye can practically visualize it already. And then reality strikes, and you realize how utterly insane this would be, and just how much work would need to go into it…
Google Earth Enterprise is deployed with default credentials. We discovered that educational, government, private enterprise and military organizations all rely on GEE for day-to-day operations…
Many people used to ask me where to start learning about macOS security or exploitation, what are the trainings or books out there that can help with this topic. Nowadays there are a few trainings, which can get you started. Other great resources for macOS security are blog posts and conference talks.
I thought I will try to collect some resources that can help people to get started in this field…
Source: https://theevilbit.github.io/posts/getting_started_in_macos_security/
Scanning software for 6000+ scanners
VueScan is an application for scanning documents, photos, film, and slides on Windows, macOS, and Linux. VueScan supports over 6000 scanners from 42 manufacturers – even when there isn't a driver available from the manufacturer.
The base VueScan app is available for free but will leave a watermark on your scanned images unless you purchase a license from Hamrick Software.
NOTE: This wrapper is not verified by, affiliated with, or supported by Hamrick Software.
I must be a lucky fellow, :) I have found this program. Open up the terminal(CTRL+Alt+t)
sudo apt-get update
sudo apt-get install cpu-checker
Then enter the command below
sudo kvm-ok
If you receive this output
INFO: /dev/kvm exists
KVM acceleration can be used
All is good. If you don't receive this output, you have to enter the BIOS/UEFI and to enable virtualization.
systemctl --firmware-setup reboot
The settings can look different from system to system due to the BIOS/UEFI OEM's like. Some examples
With this command you can verify if your CPU is even capable, which most CPU's nowadays are.
grep -E 'svm|vmx' /proc/cpuinfo
With this command you can ensure if the proper kernel module is loaded after. The BIOS settings had been enabled
# lsmod | grep kvm
Further reading
https://www.thomas-krenn.com/en/wiki/Activating_the_Intel_VT_Virtualization_Feature
These articles have been archived, the original links are dead :(
https://www.smarthomebeginner.com/enable-hardware-virtualization-vt-x-amd-v/
Some info in German
https://web.archive.org/web/20180804151829/https://wiki.ubuntu.com/UEFI/SecureBoot/DKMS
https://support.google.com/a/answer/6328676?hl=en&ref_topic=6079327
Disclaimer: This is a gov.uk site, use tor or something to protect your privacy!
https://www.ncsc.gov.uk/collection/device-security-guidance/platform-guides/ubuntu-lts
The step-by-step instructions are unfortunately gone, :( But there is still the GitHub post script