Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/binarly-io/efiXplorer

IDA plugin for UEFI firmware analysis and reverse engineering automation
https://github.com/binarly-io/efiXplorer

efi-guid efi-protocols firmware ida-plugin ida-pro reverse-engineering uefi uefi-firmware-analysis

Last synced: 25 days ago
JSON representation

IDA plugin for UEFI firmware analysis and reverse engineering automation

Host: GitHub
URL: https://github.com/binarly-io/efiXplorer
Owner: binarly-io
License: gpl-3.0
Created: 2020-06-30T07:02:30.000Z (over 4 years ago)
Default Branch: master
Last Pushed: 2024-11-06T00:02:42.000Z (about 1 month ago)
Last Synced: 2024-11-06T00:28:38.749Z (about 1 month ago)
Topics: efi-guid, efi-protocols, firmware, ida-plugin, ida-pro, reverse-engineering, uefi, uefi-firmware-analysis
Language: C++
Homepage:
Size: 55.3 MB
Stars: 897
Watchers: 42
Forks: 106
Open Issues: 0
Metadata Files:
- Readme: README.md
- License: LICENSE

Awesome Lists containing this project

awesome-uefi-security - efiXplorer
awesome-hacking-lists - binarly-io/efiXplorer - IDA plugin for UEFI firmware analysis and reverse engineering automation (C++)

README

[![License: GPL v3](https://img.shields.io/badge/License-GPL%20v3-blue.svg)](http://www.gnu.org/licenses/gpl-3.0)
[![efiXplorer CI](https://github.com/binarly-io/efiXplorer/actions/workflows/ci-build.yml/badge.svg)](https://github.com/binarly-io/efiXplorer/actions)

efiXlorer Logo

**efiXplorer** - IDA plugin for UEFI firmware analysis and reverse engineering automation

**Supported versions of Hex-Rays products:** everytime we focus on last versions of IDA and Decompiler because we try to use most recent features from new SDK releases. That means we tested only on recent versions of Hex-Rays products and do not guarantee stable work on previous generations.

**Why not IDApython:** all code developed in C++ because it's a more stable and performant way to support a complex plugin and get full power of most recent SDK's features.

**Supported Platforms:** Windows, Linux and OSX.

## [efiXplorer core features](https://github.com/binarly-io/efiXplorer/wiki/efiXplorer-features)

## [efiXloader description](https://github.com/binarly-io/efiXplorer/wiki/efiXloader)

## [Build instructions and Installation](https://github.com/binarly-io/efiXplorer/wiki/Build-instruction-and-installation)

## Publications

- [efiXplorer: Hunting for UEFI Firmware Vulnerabilities at Scale with Automated Static Analysis](https://i.blackhat.com/eu-20/Wednesday/eu-20-Labunets-efiXplorer-Hunting-For-UEFI-Firmware-Vulnerabilities-At-Scale-With-Automated-Static-Analysis.pdf)
- [Static analysis-based recovery of service function calls in UEFI firmware](https://github.com/binarly-io/Research_Publications/blob/main/EKO_2020/EKO_2020_efiXplorer.pdf)
- [How efiXplorer helping to solve challenges in reverse engineering of UEFI firmware](https://www.youtube.com/watch?v=FFGQJBmRkLw)

## References

- https://github.com/LongSoft/UEFITool
- https://github.com/yeggor/uefi_retool
- https://github.com/gdbinit/EFISwissKnife
- https://github.com/snare/ida-efiutils
- https://github.com/al3xtjames/ghidra-firmware-utils
- https://github.com/DSecurity/efiSeek
- https://github.com/p-state/ida-efitools2
- https://github.com/zznop/bn-uefi-helper