Skip to content

Commit

Permalink
deploy: 892860f
Browse files Browse the repository at this point in the history
  • Loading branch information
m-1-k-3 committed Jul 19, 2024
1 parent 1fd88f3 commit 2c36801
Show file tree
Hide file tree
Showing 14 changed files with 142 additions and 13 deletions.
1 change: 0 additions & 1 deletion CNAME

This file was deleted.

4 changes: 2 additions & 2 deletions index.html
Original file line number Diff line number Diff line change
@@ -1,9 +1,9 @@
<!doctype html><html><head><meta name=generator content="Hugo 0.129.0"><meta charset=utf-8><meta http-equiv=X-UA-Compatible content="IE=edge"><title>EMBA BEYOND | Home </title><meta name=viewport content="width=device-width,initial-scale=1"><meta name=description content><meta property="og:image" content><link rel=alternate type=application/rss+xml href=https://www.securefirmware.de/index.xml title="EMBA BEYOND"><meta property="og:url" content="https://www.securefirmware.de/"><meta property="og:site_name" content="EMBA BEYOND"><meta property="og:title" content="EMBA BEYOND"><meta property="og:locale" content="en_us"><meta property="og:type" content="website"><meta name=twitter:card content="summary"><meta name=twitter:title content="EMBA BEYOND"><script src=https://www.securefirmware.de/js/feather.min.js></script><link href=https://www.securefirmware.de/css/fonts.b685ac6f654695232de7b82a9143a46f9e049c8e3af3a21d9737b01f4be211d1.css rel=stylesheet><link rel=stylesheet type=text/css media=screen href=https://www.securefirmware.de/css/main.2f9b5946627215dc1ae7fa5f82bfc9cfcab000329136befeea5733f21e77d68f.css><link id=darkModeStyle rel=stylesheet type=text/css href=https://www.securefirmware.de/css/dark.726cd11ca6eb7c4f7d48eb420354f814e5c1b94281aaf8fd0511c1319f7f78a4.css><link rel=stylesheet type=text/css href=https://www.securefirmware.de/css/style.1c3be5204c15a2f4fb08f17a477d16e170af1aed32d486b044dbf7b6109d930c.css></head><body><div class=content><header><a class=main href=https://www.securefirmware.de/></a><nav><a href=/posts/>Blog</a>
<script async src="https://www.googletagmanager.com/gtag/js?id=G-8PK23K2LEL"></script><script>var dnt,doNotTrack=!1;if(!1&&(dnt=navigator.doNotTrack||window.doNotTrack||navigator.msDoNotTrack,doNotTrack=dnt=="1"||dnt=="yes"),!doNotTrack){window.dataLayer=window.dataLayer||[];function gtag(){dataLayer.push(arguments)}gtag("js",new Date),gtag("config","G-8PK23K2LEL")}</script></nav></header><main class=list><div class=site-description><p>The firmware scanning environment with <a href=https://github.com/e-m-b-a/emba>EMBA</a> and <a href=https://github.com/e-m-b-a/embark>EMBArk</a></p></div><section class=list-item><h1 class=title><a href=/posts/version_140/>EMBA version 1.4.0 is out now</a></h1><time>Mar 5, 2024</time><br><div class=description>Version 1.4.0 - ICS testing Edt. of EMBA is out</div><a href=/posts/version_140/>Read more ⟶</a></section><section class=list-item><h1 class=title><a href=/posts/hello_embark/>Hello EMBArk</a></h1><time>Dec 12, 2023</time><br><div class=description>Everything started as an idea in the beginning of 2021. The idea was to build an enterprise ready open source firmware analysis environment on top of EMBA. This environment should allow every product security team as well as every penetration tester and security researcher to use professional firmware analysis to improve the security of IoT/OT/ICS &mldr; (you name it) devices as easy as possible. This idea was mixed up to an AMOS research project, where a team of students built a first PoC of EMBArk.&mldr;</div><a href=/posts/hello_embark/>Read more ⟶</a></section><section class=list-item><h1 class=title><a href=/posts/firmware_diffing/>Firmware diffing</a></h1><time>Nov 7, 2023</time><br><div class=description>The identification of the relevant changes between firmware releases is an essential step in bug hunting. For example, in exploit development you are sometimes interested in the changes between two firmware versions - The vulnerable version compared to the fixed version. As it is usually quite hard to extract enough useful information from the published advisories or the CVE details, the only possibility is to check the real differences between the relevant firmware releases.&mldr;</div><a href=/posts/firmware_diffing/>Read more ⟶</a></section><section class=list-item><h1 class=title><a href=/posts/version_131/>EMBA version 1.3.1 is out now</a></h1><time>Nov 7, 2023</time><br><div class=description>What happened since the last EMBA release?
<script async src="https://www.googletagmanager.com/gtag/js?id=G-8PK23K2LEL"></script><script>var dnt,doNotTrack=!1;if(!1&&(dnt=navigator.doNotTrack||window.doNotTrack||navigator.msDoNotTrack,doNotTrack=dnt=="1"||dnt=="yes"),!doNotTrack){window.dataLayer=window.dataLayer||[];function gtag(){dataLayer.push(arguments)}gtag("js",new Date),gtag("config","G-8PK23K2LEL")}</script></nav></header><main class=list><div class=site-description><p>The firmware scanning environment with <a href=https://github.com/e-m-b-a/emba>EMBA</a> and <a href=https://github.com/e-m-b-a/embark>EMBArk</a></p></div><section class=list-item><h1 class=title><a href=/posts/version_141/>EMBA version 1.4.1 is out now</a></h1><time>Jul 17, 2024</time><br><div class=description>Version 1.4.1 - Follow the white rabbit</div><a href=/posts/version_141/>Read more ⟶</a></section><section class=list-item><h1 class=title><a href=/posts/version_140/>EMBA version 1.4.0 is out now</a></h1><time>Mar 5, 2024</time><br><div class=description>Version 1.4.0 - ICS testing Edt. of EMBA is out</div><a href=/posts/version_140/>Read more ⟶</a></section><section class=list-item><h1 class=title><a href=/posts/hello_embark/>Hello EMBArk</a></h1><time>Dec 12, 2023</time><br><div class=description>Everything started as an idea in the beginning of 2021. The idea was to build an enterprise ready open source firmware analysis environment on top of EMBA. This environment should allow every product security team as well as every penetration tester and security researcher to use professional firmware analysis to improve the security of IoT/OT/ICS &mldr; (you name it) devices as easy as possible. This idea was mixed up to an AMOS research project, where a team of students built a first PoC of EMBArk.&mldr;</div><a href=/posts/hello_embark/>Read more ⟶</a></section><section class=list-item><h1 class=title><a href=/posts/firmware_diffing/>Firmware diffing</a></h1><time>Nov 7, 2023</time><br><div class=description>The identification of the relevant changes between firmware releases is an essential step in bug hunting. For example, in exploit development you are sometimes interested in the changes between two firmware versions - The vulnerable version compared to the fixed version. As it is usually quite hard to extract enough useful information from the published advisories or the CVE details, the only possibility is to check the real differences between the relevant firmware releases.&mldr;</div><a href=/posts/firmware_diffing/>Read more ⟶</a></section><section class=list-item><h1 class=title><a href=/posts/version_131/>EMBA version 1.3.1 is out now</a></h1><time>Nov 7, 2023</time><br><div class=description>What happened since the last EMBA release?
There was the absolute great #Hackersummercamp with our talks at BSidesLV, ICS Village (DEF CON) and Black Hat (Arsenal). The recording of the BSides talk is already available here. Beside this, Nate did a really great talk at BruCON – see here.
Beside a lot of code cleanup, bug fixing and some little improvements the new firmware diffing mode is one of the highlights in version 1.&mldr;</div><a href=/posts/version_131/>Read more ⟶</a></section><section class=list-item><h1 class=title><a href=/posts/ai_powered_firmware_analysis/>AI supported firmware analysis</a></h1><time>Nov 7, 2023</time><br><div class=description>EMBA - The AI powered firmware security analyzer Why not use AI for firmware analysis? This is the idea we had since the public release of OpenAI&rsquo;s GPT-3 and GPT-4 earlier this year.
We started testing OpenAI&rsquo;s ChatGPT for different possible usage scenarios like the integration of further CVE explanation:
Additionally, we thought about a quick lookup for potential exploit code or POC’s:
It can be seen that the available information is quite limited because of the limited dataset for these types of requests.&mldr;</div><a href=/posts/ai_powered_firmware_analysis/>Read more ⟶</a></section><section class=list-item><h1 class=title><a href=/posts/version_112_knightrider/>EMBA version 1.1.2 is out now</a></h1><time>Oct 6, 2022</time><br><div class=description>Version 1.1.2 - Knight Rider Edt. of EMBA is out</div><a href=/posts/version_112_knightrider/>Read more ⟶</a></section><section class=list-item><h1 class=title><a href=/posts/version_110/>EMBA version 1.1.0 is out now</a></h1><time>Aug 1, 2022</time><br><div class=description>Version 1.1.0 - Las Vegas Edt. of EMBA is out</div><a href=/posts/version_110/>Read more ⟶</a></section><section class=list-item><h1 class=title><a href=/posts/lasvegas_intro_2022/>EMBA goes to Vegas baby</a></h1><time>Jul 21, 2022</time><br><div class=description>It’s official, in August Pascal and myself will present the firmware security analyzer EMBA at Black Hat and DEF CON in Las Vegas. We are super excited and happy to have the possibility to show you the best firmware scanner on the best stage! As this is not enough, we are planning to release a huge update for EMBA &mldr; stay tuned
You can find further details at the Black Hat USA Arsenal page and the DEF CON 30 forum&mldr;</div><a href=/posts/lasvegas_intro_2022/>Read more ⟶</a></section><section class=list-item><h1 class=title><a href=/posts/version100/>EMBA Version 1.0.0 is out now</a></h1><time>May 18, 2022</time><br><div class=description>Version 1.0.0 - Singapore Edt. of EMBA is out</div><a href=/posts/version100/>Read more ⟶</a></section><section class=list-item><h1 class=title><a href=/posts/emba_black_hat_asia_arsenal_2022/>Join us at Black Hat Asia</a></h1><time>May 7, 2022</time><br><div class=description>You can attend the Black Hat Business Hall for free - check it out and join our talk on firmware analysis with EMBA here.&mldr;</div><a href=/posts/emba_black_hat_asia_arsenal_2022/>Read more ⟶</a></section><ul class=pagination><span class="page-item page-prev"></span><span class="page-item page-next"><a href=/page/2/ class=page-link aria-label=Next><span aria-hidden=true>Next →</span></a></span></ul></main><footer><hr><a class=soc href=https://github.com/e-m-b-a title=GitHub><i data-feather=github></i></a>&nbsp;<a class=soc href=https://twitter.com/securefirmware/ title=Twitter><i data-feather=twitter></i></a>&nbsp;<div class=tooltip><a class=soc><svg width="24" height="24" viewBox="0 0 24 24" fill="none" stroke="currentcolor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round" class="feather feather-info"><circle cx="12" cy="12" r="10"/><line x1="12" y1="16" x2="12" y2="12"/><line x1="12" y1="8" x2="12" y2="8"/></svg></a>
You can find further details at the Black Hat USA Arsenal page and the DEF CON 30 forum&mldr;</div><a href=/posts/lasvegas_intro_2022/>Read more ⟶</a></section><section class=list-item><h1 class=title><a href=/posts/version100/>EMBA Version 1.0.0 is out now</a></h1><time>May 18, 2022</time><br><div class=description>Version 1.0.0 - Singapore Edt. of EMBA is out</div><a href=/posts/version100/>Read more ⟶</a></section><ul class=pagination><span class="page-item page-prev"></span><span class="page-item page-next"><a href=/page/2/ class=page-link aria-label=Next><span aria-hidden=true>Next →</span></a></span></ul></main><footer><hr><a class=soc href=https://github.com/e-m-b-a title=GitHub><i data-feather=github></i></a>&nbsp;<a class=soc href=https://twitter.com/securefirmware/ title=Twitter><i data-feather=twitter></i></a>&nbsp;<div class=tooltip><a class=soc><svg width="24" height="24" viewBox="0 0 24 24" fill="none" stroke="currentcolor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round" class="feather feather-info"><circle cx="12" cy="12" r="10"/><line x1="12" y1="16" x2="12" y2="12"/><line x1="12" y1="8" x2="12" y2="8"/></svg></a>
<span class=tooltiptext>Build with Hugo & based on Archie Theme</span></div></footer><script data-name=BMC-Widget src=https://cdnjs.buymeacoffee.com/1.0.0/widget.prod.min.js data-id=securefirmware data-description="Support me on Buy me a coffee!" data-message="Thank you for visiting. You can now buy me a coffee!" data-color=#FF813F data-position=right data-x_margin=18 data-y_margin=18></script><script async src="https://www.googletagmanager.com/gtag/js?id=G-8PK23K2LEL"></script><script>var dnt,doNotTrack=!1;if(!1&&(dnt=navigator.doNotTrack||window.doNotTrack||navigator.msDoNotTrack,doNotTrack=dnt=="1"||dnt=="yes"),!doNotTrack){window.dataLayer=window.dataLayer||[];function gtag(){dataLayer.push(arguments)}gtag("js",new Date),gtag("config","G-8PK23K2LEL")}</script><script>feather.replace()</script></div></body></html>
5 changes: 4 additions & 1 deletion index.xml
Original file line number Diff line number Diff line change
@@ -1,4 +1,7 @@
<?xml version="1.0" encoding="utf-8" standalone="yes"?><rss version="2.0" xmlns:atom="http://www.w3.org/2005/Atom"><channel><title>EMBA BEYOND</title><link>https://www.securefirmware.de/</link><description>Recent content on EMBA BEYOND</description><generator>Hugo</generator><language>en-us</language><lastBuildDate>Tue, 05 Mar 2024 11:40:48 +0100</lastBuildDate><atom:link href="https://www.securefirmware.de/index.xml" rel="self" type="application/rss+xml"/><item><title>EMBA version 1.4.0 is out now</title><link>https://www.securefirmware.de/posts/version_140/</link><pubDate>Tue, 05 Mar 2024 11:40:48 +0100</pubDate><guid>https://www.securefirmware.de/posts/version_140/</guid><description>As we do a lot of ICS/OT testing in our daily business, we thought this release should reflect our usual EMBA usage scenario. Welcome to another huge EMBA release with a lot new features: EMBA v1.4.0 - ICS testing Editition
<?xml version="1.0" encoding="utf-8" standalone="yes"?><rss version="2.0" xmlns:atom="http://www.w3.org/2005/Atom"><channel><title>EMBA BEYOND</title><link>https://www.securefirmware.de/</link><description>Recent content on EMBA BEYOND</description><generator>Hugo</generator><language>en-us</language><lastBuildDate>Wed, 17 Jul 2024 11:40:48 +0100</lastBuildDate><atom:link href="https://www.securefirmware.de/index.xml" rel="self" type="application/rss+xml"/><item><title>EMBA version 1.4.1 is out now</title><link>https://www.securefirmware.de/posts/version_141/</link><pubDate>Wed, 17 Jul 2024 11:40:48 +0100</pubDate><guid>https://www.securefirmware.de/posts/version_141/</guid><description>Probably you all know that it is the 25th anniversary of the legendary Matrix movie! With the latest release EMBA got massive improvements in building the Matrix via emulation.
This release reflects the recent updates in our system emulation engine.
Short summary of the latest highlights:
We started rebuilding and upgrading the toolchain of the system emulation engine - With the current work in place we can further update the outdated FirmAE and firmadyne environment which our emulation engine is originally based on Linux kernel upgraded from version 4.</description></item><item><title>EMBA version 1.4.0 is out now</title><link>https://www.securefirmware.de/posts/version_140/</link><pubDate>Tue, 05 Mar 2024 11:40:48 +0100</pubDate><guid>https://www.securefirmware.de/posts/version_140/</guid><description>As we do a lot of ICS/OT testing in our daily business, we thought this release should reflect our usual EMBA usage scenario. Welcome to another huge EMBA release with a lot new features: EMBA v1.4.0 - ICS testing Editition
This time we have collected the following highlights for you:
less bugs -&amp;gt; more code -&amp;gt; more bugs? -&amp;gt; report all our bugs here Extended binary analysis via semgrep (see module s16) New static perl analysis via zarn (see module s27) Toolchain identification (see wiki) Improved update checking (see wiki) New scan interface (with integrated status bar) automatically enabled in most scan-profiles Improved multiple backend workflows Massive speedup of multiple EMBA modules (see https://github.</description></item><item><title>Hello EMBArk</title><link>https://www.securefirmware.de/posts/hello_embark/</link><pubDate>Tue, 12 Dec 2023 08:48:42 +0100</pubDate><guid>https://www.securefirmware.de/posts/hello_embark/</guid><description>Everything started as an idea in the beginning of 2021. The idea was to build an enterprise ready open source firmware analysis environment on top of EMBA. This environment should allow every product security team as well as every penetration tester and security researcher to use professional firmware analysis to improve the security of IoT/OT/ICS &amp;hellip; (you name it) devices as easy as possible. This idea was mixed up to an AMOS research project, where a team of students built a first PoC of EMBArk.</description></item><item><title>Firmware diffing</title><link>https://www.securefirmware.de/posts/firmware_diffing/</link><pubDate>Tue, 07 Nov 2023 10:01:50 +0100</pubDate><guid>https://www.securefirmware.de/posts/firmware_diffing/</guid><description>The identification of the relevant changes between firmware releases is an essential step in bug hunting. For example, in exploit development you are sometimes interested in the changes between two firmware versions - The vulnerable version compared to the fixed version. As it is usually quite hard to extract enough useful information from the published advisories or the CVE details, the only possibility is to check the real differences between the relevant firmware releases.</description></item><item><title>EMBA version 1.3.1 is out now</title><link>https://www.securefirmware.de/posts/version_131/</link><pubDate>Tue, 07 Nov 2023 09:53:24 +0100</pubDate><guid>https://www.securefirmware.de/posts/version_131/</guid><description>What happened since the last EMBA release?
There was the absolute great #Hackersummercamp with our talks at BSidesLV, ICS Village (DEF CON) and Black Hat (Arsenal). The recording of the BSides talk is already available here. Beside this, Nate did a really great talk at BruCON – see here.
Expand Down
Loading

0 comments on commit 2c36801

Please sign in to comment.