Eclypsium research on SuperMicro BMC/Redfish vulnerability

https://blog.eclypsium.com/2018/09/06/insecure-firmware-updates-in-server-management-systems/

https://twitter.com/campuscodi/status/1037688091350368256

Ulf on Total Meltdown at SEC-T

If you aren’t in Sweden, it appears there may be live streaming of the presentation! There are multiple other firmware presentations as well!

https://www.sec-t.org/talks/

https://www.sec-t.org/schedule/

 

 

Hypervisor From Scratch – Part 2: Entering VMX Operation

Re: https://firmwaresecurity.com/2018/08/22/hypervisor-from-scratch-part-1-basic-concepts-configure-testing-environment/

The second part of this tutorial series has been publsihed.

https://rayanfam.com/topics/hypervisor-from-scratch-part-2/

BIOSUtilities: Various BIOS Utilities for Modding/Research

https://github.com/platomav/BIOSUtilities

*Multiple* tools!

Howard Oakley on Booting the Mac

Howard Oakley has yet another new blog post on how Apple EFI works:

Booting the Mac: Will my Mac boot from this disk? A visual guide

There have been multiple recent blog posts on Apple EFI from this author! Eg:

Booting the Mac: bless, and what makes a volume bootable

Booting the Mac: Visual Summary

What’s stored in Mac NVRAM?

Booting the Mac: the kernel and extensions

Booting the Mac: loading boot.efi and Secure Boot

Genode 18.08 released

The latest release of the Genode OS has changes to microcode updates, as well as other firmware-related interface changes.

https://genode.org/documentation/release-notes/18.08#New_Intel_Microcode_update_mechanism

https://genode.org/documentation/release-notes/18.08

c-efi – UEFI Reference Specification Protocol Constants and Definitions

The c-efi project provides the protocol constants and definitions of the UEFI Reference Specification as native C11 code. The scope of this project is limited to those protocol definitions. The protocols are not actually implemented. As such, this project serves as base for any UEFI application that needs to interact with UEFI, or implement (parts of) the UEFI specification. Additionally to providing a C library, this project also serves as documentation base for UEFI programming in C. It provides target-triples for UEFI, bootstrap helpers, and a bunch of documentation how to get started.

https://github.com/c-util/c-efi