Hacking Tools

UEFITool / UEFIExtract / UEFIFind NE A70 : A Major Release

The latest version of UEFITool / UEFIExtract / UEFIFind, labeled as NE A70, marks a significant milestone in the evolution of these tools.

Released on March 13, 2025, this version transitions from hand-crafted parsers to those generated using the KaitaiStruct declarative DSL for all NVRAM parsers.

This shift enhances the tools’ efficiency and accuracy in handling complex binary data structures.

Key Features And Improvements

  1. KaitaiStruct Integration:
    • The use of KaitaiStruct allows for more robust and maintainable parsing of binary formats. This DSL simplifies the process of describing and parsing complex binary structures, making it easier to focus on data interpretation rather than the intricacies of binary parsing.
  2. macOS Compatibility:
    • The macOS applications are now ad-hoc signed, improving compatibility with modern macOS systems. This change reduces potential issues with macOS security policies, making the tools more user-friendly on Apple devices.
  3. Insyde H2O Support:
    • Added support for Insyde H2O FlashDeviceMap and new types of protected ranges stored in the flash area. This enhancement expands the tools’ capabilities in handling firmware components from Insyde, a leading UEFI firmware provider.
  4. GUID Database Updates:
    • The GUID database has been updated, ensuring that the tools can recognize and interpret a broader range of GUIDs used in UEFI firmware. This update is crucial for accurate parsing and analysis of UEFI components.
  5. FFS Volume Detection:
    • The tools now support detecting FFS (Firmware File System) volumes inside NVRAM volumes. This feature is particularly useful for analyzing and modifying firmware components stored in these volumes.

The UEFITool / UEFIExtract / UEFIFind NE A70 release represents a significant step forward in UEFI firmware analysis and modification.

By leveraging KaitaiStruct and incorporating new features and updates, these tools offer improved performance and functionality for users working with UEFI firmware.

Whether you’re a developer, researcher, or enthusiast, this release provides valuable enhancements for exploring and manipulating UEFI components.

Varshini

Varshini is a Cyber Security expert in Threat Analysis, Vulnerability Assessment, and Research. Passionate about staying ahead of emerging Threats and Technologies.

Leave a Comment
Share
Published by
Varshini
Tags: cybersecurityinformationsecuritykalilinuxkalilinuxtools
1 year ago

Recent Posts

How UDP Works and Why It Is So Fast

When people ask how UDP works, the simplest answer is this: UDP sends data quickly…

16 minutes ago

How EDR Killers Bypass Security Tools

Endpoint Detection and Response (EDR) solutions have become a cornerstone of modern cybersecurity, designed to…

4 days ago

AI-Generated Malware Campaign Scales Threats Through Vibe Coding Techniques

A large-scale malware campaign leveraging AI-assisted development techniques has been uncovered, revealing how attackers are…

4 days ago

How Does a Firewall Work Step by Step

How Does a Firewall Work Step by Step? What Is a Firewall and How Does…

4 days ago

Fake VPN Download Trap Can Steal Your Work Login in Minutes

People trying to securely connect to work are being tricked into doing the exact opposite.…

5 days ago

This Android Bug Can Crack Your Lock Screen in 60 Seconds

A newly disclosed Android vulnerability is making noise for a good reason. Researchers showed that…

1 week ago