ProHoster > Blog > internet nhau > Iyo kodhi yeFwAnalyzer firmware security analyzer yakaburitswa

Iyo kodhi yeFwAnalyzer firmware security analyzer yakaburitswa

Cruise, kambani inoshanda mune otomatiki kutyaira matekinoroji, yakavhurwa project source codes FwAnalyzer, iyo inopa maturusi ekuongorora Linux-yakavakirwa firmware mifananidzo uye kuona zvingangoita kusagadzikana uye kuburitswa kwedata mazviri. Iyo kodhi yakanyorwa mumutauro weGo uye inoparadzirwa ne ine rezinesi pasi peApache 2.0.

Inotsigira kuongororwa kwemifananidzo uchishandisa ext2/3/4, FAT/VFat, SquashFS uye UBIFS faira masisitimu. Kuti uvhure mufananidzo, zvinoshandiswa zvakajairwa, senge e2tools, mtools, squashfs-zvishandiso uye ubi_reader. FwAnalyzer inobvisa iyo dhairekitori muti kubva pamufananidzo uye inoongorora zvirimo zvichibva pane seti yemitemo. Mitemo inogona kusungirirwa kune faira system metadata, mhando yefaira, uye zvirimo. Iyo yakabuda ishumo muJSON fomati, muchidimbu ruzivo rwakatorwa kubva ku firmware uye kuratidza yambiro uye runyoro rwemafaira asingaenderane neyakagadziriswa mitemo.

Inotsigira kutarisa kodzero dzekuwana mafaera uye madhairekitori (semuenzaniso, inoona kunyora kwemunhu wese uye inoseta isiriyo UID / GID), inosarudza kuvepo kwemafaira anogona kuurayiwa neiyo suid mureza uye kushandiswa kweSELinux tags, inozivisa akakanganwa encryption makiyi uye zvingangoita. mafaira ane ngozi. Izvo zvirimo zvinoratidzira akasiiwa einjiniya mapassword uye debugging data, inosimbisa vhezheni ruzivo, inozivisa / inosimbisa Hardware uchishandisa SHA-256 hashes, uye kutsvaga uchishandisa static masks uye nguva dzose kutaura. Zvinokwanisika kubatanidza zvinyorwa zvekuongorora zvekunze kune mamwe marudzi emafaira. Kune Android-based firmware, kuvaka parameters inotsanangurwa (somuenzaniso, kushandisa ro.secure=1 mode, ro.build.type state uye SELinux activation).

FwAnalyzer inogona kushandiswa kurerutsa kuongororwa kwenyaya dzekuchengetedza mune yechitatu-party firmware, asi chinangwa chayo chikuru ndechekutarisa kunaka kweiyo firmware ndeyayo kana kupihwa nevechitatu-bato rekondirakiti vatengesi. Mitemo yeFwAnalyzer inokutendera kuti ugadzire iyo chaiyo yakatarwa mamiriro eiyo firmware uye kuona kutsauka kusingagamuchirwe, sekupa zvisizvo kodzero yekuwana kana kusiya makiyi ega uye debugging kodhi (semuenzaniso, kutarisa kunobvumidza iwe kudzivirira mamiriro akadai se. kusiiwa inoshandiswa padanho rekuyedza re ssh server, predefined engineering password, zvinowanikwa kuverenga /etc/config/shadow or kukanganwa makiyi kuumbwa kwedhijitari siginecha).

Iyo kodhi yeFwAnalyzer firmware security analyzer yakaburitswa

Source: opennet.ru

Voeg