Jim Fear joins Apple

January 5, 2017 ~ hucktech ~ Leave a comment

I missed this, earlier this month. Wow, Apple has hired MANY great UEFI security researchers. Looking forward to seeing the results of their product.

https://twitter.com/snare/status/809436303980838912

I hope the open source project Voltron, and his EFI tools will be maintained. It seems some who join Apple are not permitted to work on open source projects.

https://github.com/snare/ida-efiutils
https://github.com/snare/efitools
https://github.com/snare/efiguid
http://ho.ax/tag/efi/

(In vaguely-related news, last night my MacBook just self-destructed, the non-replacable battery expanded and popped the system open, knocking the trackpad out. The sausage expired. 😦

Voltron integration for Binary Ninja

September 4, 2016 ~ hucktech ~ Leave a comment

Binary Ninja plugins, Based on Binary Ninja, voltron. https://t.co/7OwcQ4IhEx

— PythonArsenal (@PythonArsenal) September 1, 2016

https://github.com/snare/binjatron
https://github.com/snare/voltron
http://ho.ax/

Binary Ninja plugin for Voltron integration.

Features:
* Synchronise the selected instruction in Binary Ninja with the instruction pointer in the debugger
* Mark breakpoints that are set in the debugger in Binary Ninja
* Set and delete breakpoints in the debugger from Binary Ninja

https://firmwaresecurity.com/2016/04/09/voltron/

https://firmwaresecurity.com/2016/06/05/binary-ninja/

Voltron

April 9, 2016 ~ hucktech ~ Leave a comment

If you have not looked at Voltron, by Jim Fear, please check it out, it is quite powerful:

https://twitter.com/snare/status/718720138866917376

Voltron is an extensible debugger UI toolkit written in Python. It aims to improve the user experience of various debuggers (LLDB, GDB, VDB and WinDbg) by enabling the attachment of utility views that can retrieve and display data from the debugger host. By running these views in other TTYs, you can build a customised debugger user interface to suit your needs. Voltron does not aim to be everything to everyone. It’s not a wholesale replacement for your debugger’s CLI. Rather, it aims to complement your existing setup and allow you to extend your CLI debugger as much or as little as you like. If you just want a view of the register contents in a window alongside your debugger, you can do that. If you want to go all out and have something that looks more like OllyDbg, you can do that too.

https://github.com/snare/voltron