Link to this headingSecurity

https://jcjc-dev.com/2016/04/08/reversing-huawei-router-1-find-uart/

10pcs/set micro IC clamp SOP/SOIC/TSSOP/TSOP/SSOP/MSOP/PLCC QFP SMD IC Chip pin CLIP DIP mini chip set High Quality

Link to this headingLooking up Chips

FCC Search:
FCC Chip Lookup
Searchable FCC ID Database

Data sheets:
Electronic Components Datasheet Search
The World’s Most Comprehensive Source of Electronic Component Datasheets and Distributor Pricing

Source

Link to this headingExploits/Attacks

Link to this headingCold Boot

When quickly restarting the computer most of the memory is retained.

Memory Scrambling:

• The Integrated Memory Controller Uses a Key to scramble the data that is written to the physical memory.
  • During a reboot the key is changed and any memory that is read would be garbage.
• Lest We Forget: Cold-Boot Attacks on Scrambled DDR3 Memory

Simple demo illustrating remanence of data in RAM (see Cold boot attack) using a Raspberry Pi. Loads many images of the Mona Lisa into RAM and recovers after powering off/on again.

Link to this headingDMA Attacks

Use FireWire, Thunderbolt, ExpressCard, PC Card and any other PCI/PCIe interfaces for DMA attacks
Direct Memory Access (DMA) Attack Software
Use pcileech with MemProcFS to modify files in physical memory

Link to this headingBoot Attacks

1. Check BIOS Settings are not password protected
2. Check BIOS Order Change
3. Check Secure Boot
4. Check If password is bypassable
   • BIOS Password Recovery for Laptops

Link to this headingKon-Boot

Bypass Mac and Windows login

Link to this headingLAN Responder Attacks

Link to this headingTPM Attacks

Extracting BitLocker keys from a TPM
https://web.archive.org/web/20220223110529/https://labs.f-secure.com/blog/sniff-there-leaks-my-bitlocker-key/
TPM GPIO fail: How bad OEM firmware ruins TPM security
TPM Genie is an I2C bus interposer for discrete Trusted Platform Modules

1. Check the TPM datasheet
2. If you have SPI, listen to the SPI data
   • If getting on the SPI bus is hard use another chip on the SPI bus. It might all be connected to each other
3. Try using the bitlocker-spi-toolkit to extract the captured SPI
4. The Volume Master Key (VMK)

Link to this headingHardware Crypto Wallets

Cracking Hardware Crypto Wallets

Link to this headingTools

Soldering Iron:
FNIRSI HS-02
PINECIL – Smart Mini Portable Soldering Iron
Weller WE1010NA
Hakko® FX-951
Hakko® FX-888D

Solder:
Kester24-6337-8806 245

Flux:
AMTECH NC-559-V2-TF

Hot Air Station:

• Quick 957DW+ Hot Air Station (580 Watt)
• 858d rework station

Desoldering Hand Pump:

• Engineer® SS-02
• DSLogic U3Pro16
• ZD-915

Logic Analyzer:

• Saleae Logic Pro 8

JTAG/SWD Debugger:

• Flyswatter2
• JTAG/SWD debug probe with USB interface
• JTAGulator
• The Shikra
• Adafruit FT232H Breakout

Flash Programmer:

• XGecu TL866II Plus USB High Performance Programmer
• FlashcatUSB Classic Memory Programmer
• BGA Programmer

Power Supply:

• KORAD KA3005P - 30V, 5A DC Linear Power Supply

Bluetooth:

• Bluefruit LE Sniffer nRF51822

Extras:

• Fume Extractor
  • Hakko FA400-04
• Isopropyl Alcohol
• Anti-static Brushes
• Tip Tinner
  Thermaltronics FBA_TMT-TC-2 Lead Free Tip Tinner
• Wire Cutters
  Wire Cutter and Stripper-Small DA76070
• Wire-type Tip Cleaner
• Board Holders and Third Hand Tools
  • Ultimate Helping Hands
  • The low profile PCB vise
• Kapton tape

Link to this headingNew All in one tools

Glasgow Interface Explorer

Link to this headingSoftware

Saleae Logic Analyzer
Open On-Chip Debugging, In-System Programming and Boundary-Scan Testing