CHIPSEC
CHIPSEC is a framework for analyzing the security of PC platforms including hardware, system firmware (BIOS/UEFI), and platform components. It includes a security test suite, tools for accessing various low level interfaces, and forensic capabilities. It can be run on Windows, Linux, Mac OS X and UEFI shell. Instructions for installing and using CHIPSEC can be found in the manual. NOTE: This software is for security testing purposes. Use at your own risk. Read WARNING.txt before using. First version of CHIPSEC was released in March 2014: Announcement at CanSecWest 2014 Recent presentation on how to use CHIPSEC to find vulnerabilities in firmware, hypervisors and hardware configuration, explore low level system assets and even detect firmware implants: Exploring Your System Deeper Release Convention CHIPSEC uses a major.minor.patch release version number Changes to the arguments or calling conventions will be held for a minor version update Projects That Include CHIPSEC ArchStrike BlackArch Linux Linux UEFI Validation (LUV) (Archived) Contact Us For any questions or suggestions please contact us at: chipsec@intel.com Discord: CHIPSEC
FEATURES
EXPLORE BY TAGS
SIMILAR TOOLS
A Graphical Realism Framework for Industrial Control Simulation organized as 5 VirtualBox VMs for realistic ICS network simulation.
An Active Defense framework for detecting and responding to phishing attacks in Office 365 Message Trace logs.
An open source framework for security assessments of iOS apps, now decommissioned in favor of Objection.
A security testing framework for Android with tools to search for vulnerabilities and interact with the Android Runtime.
A distributed systems simulator that creates vulnerable Kubernetes clusters in AWS for security training and vulnerability mitigation practice.
An open-source project for dynamic analysis of Android applications using the Android Substrate framework.
Scans SPF and DMARC records for issues that could allow email spoofing.
Repository for apps to be used in Shuffle with compatibility instructions.
Industrial control system automation and testing tool for SCADA security testing.
PINNED
Mandos
Fractional CISO service that helps B2B companies implement security leadership to win enterprise deals, achieve compliance, and develop strategic security programs.
Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.
Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.
DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.