efiXplorer v5.1 releases: IDA plugin for UEFI firmware analysis and reverse engineering automation

efiXplorer – IDA plugin for UEFI firmware analysis and reverse engineering automation

Supported versions of Hex-Rays products: every time we focus on the last versions of IDA and Decompiler because trying to use the most recent features from new SDK releases. That means we tested only on recent versions of Hex-Rays products and do not guarantee stable work on previous generations.

Why not IDApython: all code developed in C++ because it’s a more stable and performant way to support a complex plugin and get the full power of the most recent SDK’s features.

Supported Platforms: Win, Linux, and OSX (x86/x64).

Key features

Identify available Boot Services automatically

Annotate assembly code automatically with available Boot Services

Identify available Runtime Services automatically

Annotate assembly code automatically with available Runtime Services

Identify available EFI Protocols automatically

• Build the list of available EFI Protocols

Identify known EFI GUID’s

• Build the list of available EFI GUID’s (including protocol name identification)

efiXplorer Architecture

From the beginning of the project, we focus on building extensible architecture to make our life easier to support the current version and adding new features 🚀

Changelog v5.1

• [bug fix] Fixed MacOS universal binaries building (#68)
• [new feature] AArch64 module analysis improved
• [new feature] Added support for AArch64-based firmware in efiXloader
• [bug fix] Improved module extraction in efiXloader
• [new feature] Added report generation for AArch64-based files (with native loader and efiXloader)
• Moving to support of IDA SDK v8.1

Download

Copyright (C) 2020 Binarly