CHIPSEC
CHIPSEC is a framework for analyzing the security of PC platforms including hardware, system firmware (BIOS/UEFI), and platform components. It includes a security test suite, tools for accessing various low level interfaces, and forensic capabilities. It can be run on Windows, Linux, Mac OS X and UEFI shell. Instructions for installing and using CHIPSEC can be found in the manual. NOTE: This software is for security testing purposes. Use at your own risk. Read WARNING.txt before using. First version of CHIPSEC was released in March 2014: Announcement at CanSecWest 2014 Recent presentation on how to use CHIPSEC to find vulnerabilities in firmware, hypervisors and hardware configuration, explore low level system assets and even detect firmware implants: Exploring Your System Deeper Release Convention CHIPSEC uses a major.minor.patch release version number Changes to the arguments or calling conventions will be held for a minor version update Projects That Include CHIPSEC ArchStrike BlackArch Linux Linux UEFI Validation (LUV) (Archived) Contact Us For any questions or suggestions please contact us at: chipsec@intel.com Discord: CHIPSEC
FEATURES
ALTERNATIVES
iOS Reverse Engineering Toolkit for automating common tasks in iOS penetration testing.
Aggregates known Android security vulnerabilities with detailed examples and analysis.
A security checklist app for your Mac that helps you with basic security hygiene and prevents 80% of problems.
A novel genetic algorithm for automating censorship evasion strategies.
A free and open platform for detecting and preventing email attacks like BEC, malware, and credential phishing, utilizing Message Query Language (MQL) for behavior description.
Tools and documentation for validating hardware security requirements on x86 platforms, including bootable USB key creation and platform configuration verification.
A Python tool for patching Dalvik bytecode in DEX files and assisting in Android application analysis
Hashcat is a fast and advanced password recovery utility that supports various attack modes and hashing algorithms, and is open-source and community-driven.
PINNED
InfoSecHired
An AI-powered career platform that automates the creation of cybersecurity job application materials and provides company-specific insights for job seekers.
Mandos Brief Newsletter
A weekly newsletter providing cybersecurity leadership insights, industry updates, and strategic guidance for security professionals advancing to management positions.
Kriptos
An AI-driven data classification and governance platform that automatically discovers, analyzes, and labels sensitive information while providing risk management and compliance capabilities.
System Two Security
An AI-powered platform that automates threat hunting and analysis by processing cyber threat intelligence and generating customized hunt packages for SOC teams.
Aikido Security
Aikido is an all-in-one security platform that combines multiple security scanning and management functions for cloud-native applications and infrastructure.
Permiso
Permiso is an Identity Threat Detection and Response platform that provides comprehensive visibility and protection for identities across multiple cloud environments.
Wiz
Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.
Adversa AI
Adversa AI is a cybersecurity company that provides solutions for securing and hardening machine learning, artificial intelligence, and large language models against adversarial attacks, privacy issues, and safety incidents across various industries.