KitPloit - PenTest Tools!
By:
Zion3R
โ May 27
th 2023 at 12:30
![](https://blogger.googleusercontent.com/img/a/AVvXsEjaeq12wA1A2STgsZa9YjNOl5d-sYPUTS3cH309LeH_cj35uQ1QW222qrEKUwUEDRKCfCZpG_b639IwLVCm551i-9cFikN2w_EFuOAOk5XtlpQiLQuBBM9GnNxdEQTuEwOm5l3sDyI5Ase7-EnBAaNr0lBo0tJMujHu30VXSZ3XfXHu1Usn7DLPL61gYw=w640-h614)
UEFI and SMM Assessment Tool
Features
Platbox is a tool that helps assessing the security of the platform:
- Dumps the platform registers that are interesting security-wise
- Flash Locks
- MMIO and Remapping Locks
- SMM Base and Locks
- MSRs
- RW access to the PCI configuration space of devices.
- RW to physical memory and virtual memory.
- Allows allocating physical memory and map memory to usermode.
- Read and Write MSRs.
- Dump SPI Flash content (BIOS) into a file.
- Basic dumb SMI Fuzzer.
- Dump S3 Bootscript (from SMM-Lockbox) into a file.
- Dump EFI Memory Map (Linux only for now).
- List UEFI variables.
- Supports Linux and Windows.
- Supports Intel and AMD.
Example of 'chipset' command output for an AMD platform
![](https://blogger.googleusercontent.com/img/a/AVvXsEjaeq12wA1A2STgsZa9YjNOl5d-sYPUTS3cH309LeH_cj35uQ1QW222qrEKUwUEDRKCfCZpG_b639IwLVCm551i-9cFikN2w_EFuOAOk5XtlpQiLQuBBM9GnNxdEQTuEwOm5l3sDyI5Ase7-EnBAaNr0lBo0tJMujHu30VXSZ3XfXHu1Usn7DLPL61gYw=w640-h614)
![](https://blogger.googleusercontent.com/img/a/AVvXsEh2k-HptDlnJCwTYpVDdIBZaX4714UBaNyBEFThETVLDeQ1Ler2uWb9ehtAbiW3V4X4sbysitMpvQWM8AxpVdWRvKl4kslL4UBL7Kixage2JpqjMDCOEEAcR13Dd4J5l07HZu0SNd-fSjOJfl99veeqOlzk6_sFwx-Yi-pqbnX3pwyff6yLRMq9ED-arA=w640-h490)
Project Structure
The project is divided as follows:
- PlatboxDrv: kernel drivers used for Linux and Windows.
- PlatboxLib: the usermode component that loads the kernel driver and provides access to all the previously listed features.
- PlatboxCli: a console client that uses the library.
- Pocs: an example of a program using features from the libary.
Compilation Steps
Windows
Release Build
cmake -G "Visual Studio 17 2022" -A x64 -S .. -B "build64"
cmake --build build64/ --target platbox_cli --config Release