First in-the-wild UEFI bootkit bypassing UEFI Secure Boot

This page summarizes the projects mentioned and recommended in the original post on news.ycombinator.com
tor-relay Poc docker-image secure-boot Arm

InfluxDB
Our great sponsors
  • InfluxDB - Power Real-Time Data Analytics at Scale
  • WorkOS - The modern identity platform for B2B SaaS
  • SaaSHub - Software Alternatives and Reviews
Our great sponsors

  • tor-relay-docker

    Tor relay Docker images for x86-64, armhf & arm64 (from source)

  • CVE-2022-21894

    baton drop (CVE-2022-21894): Secure Boot Security Feature Bypass Vulnerability

    • The write-up I saw suggests that revoking the Windows bootloader would cause existing install and restore images to fail to boot even with Secure Boot disabled because it checks its own signature, which would be pretty amazing if true: https://github.com/Wack0/CVE-2022-21894

  • InfluxDB

    Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.

    InfluxDB logo

  • shim

    UEFI shim loader

    • A new mechanism called SBAT (https://github.com/rhboot/shim/blob/main/SBAT.md) is now used to allow revocation of groups of bootloaders rather than individual hashes in order to mitigate the resource consumption

  • bootkit-samples

    Bootkit sample for firmware attack

    • https://github.com/hardenedvault/bootkit-samples

    The short-term solution for workaround is to protect the OS runtime. Otherwise you'd have to build the defense-in-depth at very infrastructure level from scratch with hardware, firmware and OS with attestation service not only based on the "confidential computing" but typically TCG's trusted computing.

NOTE: The number of mentions on this list indicates mentions on common posts plus user suggested alternatives. Hence, a higher number means a more popular project.

Suggest a related project

Related posts