Downloads

Tools

Voltron - A debugger UI for LLDB & GDB.

Calculon - A terminal-based programmer’s calculator.

ida-efiutils - IDA Pro scripts to assist in reverse engineering EFI binaries.

efitools - some scripts for manipulating EFI binaries, capsules, etc.

KernelResolver - sample Mac OS X kernel extension to demonstrate resolving symbols within the running kernel.

Presentations

Ruxcon 2012 - presentation on EFI-based rootkits on Macs.

Black Hat USA 2012 Slides / Paper - presentation on EFI-based rootkits on Macs.

SyScan Singapore 2012 - presentation on EFI-based rootkits on Macs.

Ruxcon 2011 - presentation on Mac OS X rootkits from Ruxcon 2011.

Kiwicon 2011 - presentation on Mac OS X rootkits from Kiwicon 2011.

PAGES

• Home
• About
• Downloads

TAGS

voltron debugging gdb lldb calculon efi ida pro idapython reversing rootkits refind black hat firmware bus pirate flashrom pci syscan mac os x x86-64 clang kernel kexts mach-o python vmware

POSTS

• Building Voltron Command Plugins
• Building Voltron Views
• Calculon - a calculator for nerds
• Voltron - a hacky UI for GDB
• TE loader for IDA Pro
• Ruxcon 2012
• IDA Pro scripts for EFI reversing
• Building rEFInd with EDKII on Mac OS X
• Black Hat USA 2012
• Un-bricking a MacBook
• Send me your `lspci -vv`
• SyScan 2012 is Over
• RIP-Relative Addressing and Kernel Payloads
• Resolving kernel symbols
• Carving up EFI fat binaries
• VMware debugging II: "Hardware" debugging
• Debugging the Mac OS X kernel with VMware and GDB

SEARCH