PCIe leech USB3380 : How to write memory in efi shell page and how to confirm the written memory ?

ufrisk / pcileech

Direct Memory Access (DMA) Attack Software

GNU Affero General Public License v3.0

4.87k stars 718 forks source link

PCIe leech USB3380 : How to write memory in efi shell page and how to confirm the written memory ? #196

Closed sridhaleech closed 4 months ago

sridhaleech commented 2 years ago

Hi, How to write memory in efi shell page and how to confirm whether the data written to memory , is there verify command ?

Our goal is --> Need to do write some data into the direct DRAM. what is the procedure ? when we write some data what is the system behavior ?

Kindly advise this .

Device : PCIe leech USB3380 EV and Test need to do "efi" mode (edk shell page )

Thanks advance.

ufrisk commented 2 years ago

I'm not quite sure what you're trying to achieve here, but since UEFI memory space is usually mapped 1:1 with the physical memory space I supposed you can use the pcileech write command to write the memory and then the pcileech display command to read (verify the memory) if you use the pcileech binary.

The same would be possible using the LeechCore API.

If you already got code execution via one of my pre-built kmdload implants for UEFI you'd have to compile a custom pcileech module/implant for it that you can then ask the already implanted code to load. Example how to do such an implant is in the code. A good example would be the textout plugin.

sridhaleech commented 2 years ago

Hi ,

i'm able to write the command ,but i can't display the written range of physical memory .

Getting some "Failed reading memory address" attached screenshot.

if don't mind, can you pls help me below .

How to find the KMD address in windows and linux ? and how to load the -kmd address to WIndows /Linux OS ?

ufrisk commented 2 years ago

I'm really sorry, but please understand that this is an open source project. I spend a lot of free time on this already as things are. I try to provide reasonable support to all kinds of questions. I do this completely for free.

Please understand that I'm not interested in providing unlimited support for all kinds of questions spending a lot of time all for free. Generally you'd be better off getting an FPGA device (such as the screamer) which is more stable and more versatile than the usb3380. Also please try to look through some conference presentations and check some blog posts from me and others before asking for a lot of free support.

If you're still stuck and wish to get a lot of support I can offer paid support as well.

ufrisk commented 4 months ago

I'm closing this issue due to old age.