CyReVolt @CyReVolt@mastodon.social

Aaaaaand... #systemrescuecd can also #webboot \o/

This time I've sped up the video instead of cutting out the lengthy bits. It's still horribly slow in QEMU, so just wait the one minute for it. :)

I am slowly getting behind mkinitcpio's hooks. So #Manjaro, you're next! :)

Here is the recording of my talk on the #IntelME:
https://media.ccc.de/v/36c3-149-look-at-me-intel-me-investigation
Slides:
https://metaspora.org/look-at-me.pdf
Sources:
https://github.com/orangecms/look-at-me
Please file issues/send PRs if you have any ideas.

Amd sorry, my timing was bad, so this was mostly focusing on platform basics to get into the field. I will do better again at @fosdem in the Open Source #Firmware devroom, I promise!
https://fosdem.org/2020/schedule/track/open_source_firmware_bmc_and_bootloader/

Big thanks to @west for the great stage! \o/

The recordings of this year's #Open Source #Firmware Conference are now online, finally. :) Playlists are available. \o/

#OSFC #OSFC2019

https://www.youtube.com/channel/UCUVk2lv2h2VbP3Dx4k2axyA

My #preferences in a nutshell.

#RUNBSD #installgentoo #systemd

Finally, here is the #demo I had hacked into #coreboot + #SeaBIOS and released at Revision 2019. \o/

https://youtu.be/E33LvpmH5JQ

#Idea: #GitTube

#Idea: #GitTub

Noooo you must #reboot after a system #upgrade!!!

#kexec go brrr..

I have to correct myself: AR9331 is MIPS. The other two are still Arm though.

Anyway, here is the challenge: The SPI flash chips on both the NVR and the IP cam are not behind a circuit that allows accessing them in-system through a programmer. Since my soldering skills are rather low, I will use exploits to gain root shell access and overwrite some partitions directly with dd. ;)

What if you could do something like #chroot across network boundaries and have all your data and applications mounted for you already?

I want u-root in all of them, it's all Arm SoCs. The NVR has one from HiSilicon, something that came from Huawei afaik, and the camera has an Anyka chip, kinda same thing I think. The Omega is the original version, based on AR9331.

For some first steps, I could already analyze some firmware binaries, hack on network traffic, and gain code execution thanks to previous work by others. :)

Am I doing this #IoT stuff right?

- NVR (network video recorder)
- IPC (IP camera; this one has Wi-Fi and an SD card)
- Onion Omega board to proxy between ethernet and Wi-Fi

The Omega is taking power from the NVR and forwarding some to the IPC, because it looks funny and because I can and it requires no extra power supplies. Coincidentally, the IP cam looks like a blowtorch because of the fancy USB wire. And that's only here because the ports are too dense for the cam to fit otherwise.

How do you like the #popsicle #emoji? 🚀