[分享]OffensiveCon24 UEFI 和翻译器的任务:使用跨架构 UEFI Quines 作为 UEFI 漏洞开发的框架
链接:OffensiveCon24-uefi-task-of-the-translator
x64 assembly x64 程序集
x64 assembly source code for BGGP4 entry:
BGGP4 条目的 x64 程序集源代码:
bggp4 winning entry - x64 assembly source code
BGGP4 获奖作品 - x64 汇编源代码
BGGP4 UEFI Self-replicating app:
BGGP4 UEFI 自复制应用:
bggp4 winning entry - UEFI self-replicating app, compiled from x64 asm source
bggp4 获奖作品 - UEFI 自复制应用程序,编译自 x64 asm 源代码
x64 UEFI shellcode template:
x64 UEFI shellcode 模板:
source code for basic UEFI app, written in x64, to be used as a template for writing x64 UEFI shellcode
用 x64 编写的基本 UEFI 应用的源代码,用作编写 x64 UEFI shellcode 的模板
arm64 assembly ARM64 组件
quinearm64.S:
arm64 assembly source code for self-replicating UEFI application
用于自复制 UEFI 应用程序的 arm64 程序集源代码
QuineArm64.inf:
INF file for building QuineArm64 UEFI app using edk2 build system
INF 文件,用于使用 edk2 构建系统构建 QuineArm64 UEFI 应用
The UEFI apps for both the final arm64 assembly solution and the original cross-compiled C solution are in the directory UEFI_bb_disk:
最终 arm64 程序集解决方案和原始交叉编译 C 解决方案的 UEFI 应用位于目录 UEFI_bb_disk:
QuineArm64.efi:
UEFI app QuineArm64.efi -- built from arm64 asm source code quinearm64.S
UEFI 应用 QuineArm64.efi -- 从 arm64 asm 源代码 quinearm64 构建。S
UEFISelfRep.efi:
UEFI app UEFISelfRep.efi -- built from C source code, cross-compiled for aarch64 architecture using edk2 build system
UEFI 应用程序 UEFISelfRep.efi -- 从 C 源代码构建,使用 edk2 构建系统针对 aarch64 架构进行交叉编译
poc_arm64.py:
Python script to test arm64 self-rep app in QEMU; includes option for running in QEMU with GDB debugging session
用于在 QEMU 中测试 arm64 self-rep 应用程序的 Python 脚本;包括用于在 QEMU 中使用 GDB 调试会话运行的选项
SMM PoCs SMM PoC
in the coming weeks.
