Regarding:
https://firmwaresecurity.com/2016/11/25/uk-national-cyber-security-center-and-firmware/
There’s a second post:
As we noted back in November, it’s common knowledge that keeping device software up to date and securely configured is important. System firmware, on the other hand, is often overlooked. Despite being critical to the secure operation of a device, it’s frequently out of date. But how bad is the problem? How widespread? And what can be done to remedy the situation? To answer these questions we decided to put our money where our mouth is and run some simple tests on one of our research networks. The goal was gain an accurate picture of the BIOS version running on all connected devices. The results were a wake-up call. The firmware of devices running on our own network required some attention. This may be the case for you as well.[…]
https://www.ncsc.gov.uk/blog-post/firmware-ii-status-check
with some source code:
https://www.ncsc.gov.uk/file/1972/download?token=wIpTEpLO
Firmware Security 