depthcharge
depthcharge copied to clipboard
nccgroup
A U-Boot hacking toolkit for security researchers and tinkerers
If I remember correctly, there are some power management commands in U-Boot that result in SPI transactions that could be leveraged by the Depthcharge Companion firmware. Opening this issue to...
Currently, the host-side Python code drives global data structure inspection, provided a means to read the `gd` pointer (e.g. `bdinfo`, `RegisterReader`) and a `MemoryReader` implementation to read the `gd` structure...
Add MIPS support to /python/depthcharge/arch.py and perform validation on any garden-variety MIPS-based SOHO router.
Add PPC support to /python/depthcharge/arch.py and perform validation on a [QorIQ](https://www.nxp.com/products/processors-and-microcontrollers/power-architecture/qoriq-communication-processors/p-series:QORIQ-POWER-ARCHITECTURE-P-SERIES) target or [PowerQUICC](https://www.nxp.com/products/processors-and-microcontrollers/legacy-mcu-mpus/powerquicc-processors:POWERQUICC_HOME) target.
In arm.py we currently use r9, as modern U-Boot versions do. This was not always the case, so we need some means to switch between r8/r9 based upon version info,...
Refer to #3 for more information: https://github.com/nccgroup/depthcharge/issues/3#issuecomment-866885873 Users can use `--arch arm` for such devices, but will not be able to perform operations that necessitate triggering data aborts; attempts to...
The `next` branch shouldn't be grossly broken in a manner reported in #72. I need to set up a CI pipeline to, at a minimum, perform test of package installation:...
I'd like to be able to quickly identify "interesting" functions in a memory dump (e.g. `hab_authenticate_image()` ). A lot can be achieved just through identification of unique strings in upstream...
Add a `depthcharge.console.Console` subclass that operates on a remote `Console` instance over TCP. It may make more sense to re-define `depthcharge.console.Console` as an abstract base class, with `SerialConsole` and `RemoteSerialConsole`...
### Overview It quickly came to my attention that in my attempt to be clever with the whole "[Sinking U-Boots with Depthcharge](https://research.nccgroup.com/2020/07/22/depthcharge/)" pun, I've inadvertently selected a project name that...