search

corna / me_cleaner

Tool for partial deblobbing of Intel ME/TXE firmware images
GNU General Public License v3.0
4.42k stars 275 forks source link

how to shrink 11mb (from 16mb chip) hp8300 into smaller ME but keep it active because need for hd4000 osx acceleration? thx #392

Open kocoman1 opened 1 year ago

kocoman1 commented 1 year ago

how to shrink 11mb (from 16mb chip) hp8300 into smaller ME but keep it active because need for hd4000 osx acceleration? thx

ValoWaking commented 1 year ago

don't break your device. The ME operating system resides in non-rewritable memory in u chipset or CPU. Editing the BIOS firmware does not affect the operation of the backdoor in any way.

if u want short answer what is doing me_cleaner with backdoor - this is it - nothing. but u can try broke SPI firmware on old platform like 945gc - nouthbridge have'nt ME, but ich7 - is a ready AMT southbridge

and u all guys is doing nothing here many years.... how long will this continue?

d-wid commented 1 year ago

The ME operating system resides in non-rewritable memory in u chipset or CPU. Editing the BIOS firmware does not affect the operation of the backdoor in any way.

If so why is there an ME partition in the BIOS firmware, and why do various vendors provide updates to the ME software via BIOS updates?

d-wid commented 1 year ago

@kocoman1 If I understand correctly I think me_cleaner.py -S -r -t -d -O $OUTPUTFILE $INPUTFILE (the input file being a HP8300 BIOS image) is what you're looking for.

ValoWaking commented 1 year ago

The ME operating system resides in non-rewritable memory in u chipset or CPU. Editing the BIOS firmware does not affect the operation of the backdoor in any way.

If so why is there an ME partition in the BIOS firmware, and why do various vendors provide updates to the ME software via BIOS updates?

This is like operation system and installed some programs. ME Region contain programs and chipset or proseccor contain OS, like ThreadX or newest. But u need to understand that ME Region is not all repository and inbuild soprocessor memory contain hes one programs and can open some ethernet ports.

And real danger is in mind that ME and etc is only handy tool for guys from NSA and etc. So u need to read about ASF, DASH, SMM etc.

I think at this time most powerfull PC can build only on ga-945gcm-s2c and ga-945gcm-s2L with libreboot which can eliminate SMM and blob vulnerabilities. 945gc chipset not contained ARC soprocessor.