chipsec v1.5.3 releases: Platform Security Assessment Framework
CHIPSEC is a framework for analyzing the security of PC platforms including hardware, system firmware (BIOS/UEFI), and platform components. It includes a security test suite, tools for accessing various low-level interfaces, and forensic capabilities. It can be run on Windows, Linux, Mac OS X and UEFI shell. Instructions for installing and using CHIPSEC can be found in the manual.
NOTE: This software is for security testing purposes. Use at your own risk. Read WARNING.txt before using.
The first version of CHIPSEC was released in March 2014: Announcement at CanSecWest 2014
The recent presentation on how to use CHIPSEC to find vulnerabilities in firmware, hypervisors and hardware configuration, explore low-level system assets and even detect firmware implants: Exploring Your System Deeper
What is Platform Security?
Hardware Implementation and Configuration
• Available Security Features
• Correct Configuration of HW Components
• Testing/Demonstration of HW Security Mechanisms
Firmware Implementation and Configuration
• Access Controls on Firmware Interfaces
• Correct Settings of Lock Bits
• Testing/Demonstration of FW Security Mechanisms
+ System Management Mode
* CPU SMM Cache Poisoning / SMM Range Registers (SMRR)
* SMM memory (SMRAM) Lock
+ BIOS Write Protection
+ Direct HW Access for Manual Testing
* Live system firmware analysis
* Offline system firmware analysis
New or Updated Modules/UtilCmds:
New or Updated Configurations:
8086/icl– Added detection value to ICL.
8086/pch_c620– Updated C620 BIOS Control fields.
AUTHORS– Updated authors.
__install__.UEFI.chipsec_uefi_x64.zip– Updated 64bit python.efi binary.
chipsec_main– Fix module loading output with -m option
chipsec_tools.edk2.PythonEFI.edk2module.c– Fixed 64-bit Physical Address issue in UEFI Shell
chipset– Added MMIO register type to is_register_device_enabled()
chipset– Updated get_control to call print_register when running in DEBUG mode
docs.sphinx.uefiinstall.rst– Updated uefi shell link within docs.
drivers.win7.driver.c– Updated the Windows driver to enable multi-processor.
hal.mmio– Updated MMIO BAR enabled
hal.uefi– Updated EFIVARS GUID filenames to be lowercase.
helper.efi.efihelper– Fixed 64-bit Physical Address issue in UEFI Shell
helper.linux.linuxhelper– Fixed python3 issue that required explicitly opening file as binary. Fixed additional native mode issues.
helper.rwe.rwehelper– Fixed broken RWEverything helper.
scripts.build_exe_win7-amd64– Fixed packing of XML config files
scripts.build_exe_win7-x86– Fixed packing of XML config files
- Cleaned up white formatting issues across many files using autopep8.
- For Windows users, please rebuild your windows driver as updates have been made.
- For Windows, Linux and MacOS, Python2 support has been deprecated as of June 2020. Please use Python3.
- Any modules under the
modules.toolsdirectory have not yet been fully validated to work with python3.
Copyright (C) 2018 chipsecintel