StarkeBlog

Firmware and Hacking


Project run by Nicholas Starke Music I have written
26 February 2023

Determining U-Boot Base Address without uImage

21 February 2023

CVE Wednesday - CVE-2022-40021

06 February 2023

U-Boot HTTP Client

25 January 2023

CVE Wednesday - CVE-2022-34400

18 January 2023

CVE Wednesday - CVE-2022-46456

11 January 2023

CVE Wednesday - CVE-2022-43973

04 January 2023

Fun and Games with Intel AMT

22 September 2022

Reverse Engineering MenuetOS 64 - Primary Boot Loader

28 August 2022

Extracting BIOS Image from Lenovo Update Exe

07 August 2022

Backdooring Grub2

11 July 2022

DisplayLink USB Video Card for EFI

22 May 2022

MAC Address Changing Revisited

10 May 2022

SMM Callouts in HP Products

05 April 2022

SMM Callouts via Notify

13 March 2022

Reverse Engineering a Netgear Nday

02 March 2022

Is it JS or Tar? A Polyglot Story

22 February 2022

HP Firmware DXE Extraction

22 December 2021

2021 End of the Year Post

12 December 2021

Raspberry Pi4 VC4 Bootloader Analysis

24 November 2021

Onn Laptop Smi Analysis

24 October 2021

UEFITool and Reset Vector

27 August 2021

Hexdump to Binary

11 August 2021

Device Coredump and Firmware Images

01 August 2021

Realtek Wifi Firmware: Part 1

31 July 2021

AT51 Libfind Results - Keil Toolchain

28 July 2021

ACER Predator Helios 300 Complaint / BIOS Analysis

27 June 2021

BIOS Disconnect Vulnerability Diffing

25 June 2021

Enumerating SMI Handlers

12 June 2021

Netgear S8000 Custom Firmware

08 June 2021

Firmware Archaeology II: Return of the Devshell

07 June 2021

Firmware Archaeology I: Netgear GS110TPv2

06 June 2021

Bruteforcing Ghidra File Offsets

15 May 2021

Inpoutx64.sys Windows Driver Analysis

18 April 2021

Beginning SMM Module Analysis

13 April 2021

Ghidra-firmware-utils Adventure

02 April 2021

Kexec and Kdump on Raspberry Pi

01 April 2021

Denial of Service in NMRP Protocol

12 March 2021

U-Boot Fuzzing

20 January 2021

How to Execute Raw U-Boot Bootloader Binary with QEMU

20 January 2021

Netgear Bootloader Analysis: Part 2

18 January 2021

Netgear Bootloader Analysis

01 December 2020

Loading Das U-Boot Images in Ghidra

26 November 2020

ONN Laptop BIOS Exploration

15 October 2020

Running GCC 10's Static Analyzer Against the Linux Kernel

01 August 2020

Modifying BIOS Using RU.EFI

19 July 2020

Decrypting DLINK Proprietary Firmware Images

24 March 2020

Linksys WRT54G - v3.1

24 March 2020

Linksys EA4500 v1.0 Write Up

24 March 2020

Linksys EA4500 v3.0 Firmware Decryption

14 March 2020

Dial Up Connections on Linux

07 March 2020

CVE-2020-8597 - Buffer Overflow in pppd

25 February 2020

Building and Running OVMF in Qemu

22 February 2020

Car hacking with ScanTool ECUSim 2000

19 January 2020

Netgear Signed TLS Cert Private Key Disclosure

16 January 2020

Python MAC Address Stress Test Script

12 January 2020

Resize Ghidra for High DPI screens

27 November 2019

Rsync Protocol Auth Flow in Python

21 September 2019

Yardstick One Setup

21 September 2019

Change MAC Address Permanently

02 September 2019

Cisco IOS GDB RSP Debugger Script for PowerPC-based models

29 August 2019

Python Find Information Scripts

24 August 2019

Reversing Raw Binary Firmware Files in Ghidra

12 May 2019

Extract Netgear .chk Firmware

05 May 2018

JScrambler Review

03 May 2018

Dell Precision 7510 System Failure after Monitor turns off in Ubuntu 16.04 / 17.10 / 18.04

05 January 2018

Xen - Connect two VMs via Virtual Serial Port

31 December 2017

Windows Process Token Bitwise AND To Get Real Value

31 May 2017

Setting up an ARMEL Reverse Engineering / Debug Lab in QEMU

31 May 2017

Create Debian PowerPC32 VM Under QEMU

23 March 2017

NodeJS Slowloris Implementation

11 September 2016

SOAP Calls for UPnP Services in WeMo Devices

08 August 2016

Example of Exploiting JWT in NodeJS

25 April 2016

DLink DCS 930L

19 April 2016

How to make a Release Android App debuggable

19 April 2016

How to find all strings and comments in source code

22 March 2016

A script to grab Iowa House Sessions and concatenate them together

23 February 2016

Search for Regex with Regex

05 December 2015

Python Security Vulnerability Egrep Cheatsheet

05 December 2015

CSharp Security Vulnerability Egrep Cheatsheet

27 November 2015

NodeJS Security Vulnerability Egrep Cheatsheet

19 July 2015

PHP Security Vulnerability Egrep Cheatsheet