tpm / dislocker-fuse / bitleaker
Tomasz CEDRO
tomek at cedro.info
Tue Aug 3 16:34:49 UTC 2021
Hello world :-)
I just read interesting article on how to sniff SPI based TPM in order
to extract BitLocker keys. If someone uses GlobalProtect VPN this
gives access to the corporate network using on-disk certificates with
no login. This trick seems to be more and more popular, so its worth
checking if your company is vulnerable.
https://pulsesecurity.co.nz/articles/TPM-sniffing
https://translate.google.com/translate?sl=pl&tl=en&u=https://sekurak.pl/od-skradzionego-laptopa-do-firmowej-sieci/
There are two nice BitLocker utilities that would be nice to have on
FreeBSD. Please consider adding if anyone has a free moment :-)
dislocker-fuse: https://github.com/Aorimn/dislocker
bitleaker: https://github.com/kkamagui/bitleaker
Best regards :-)
Tomek
--
CeDeROM, SQ7MHZ, http://www.tomek.cedro.info
More information about the freebsd-security
mailing list