Date: Tue, 3 Aug 2021 18:34:29 +0200 From: Tomasz CEDRO <tomek@cedro.info> To: freebsd-ports <freebsd-ports@freebsd.org>, FreeBSD Questions Mailing List <freebsd-questions@freebsd.org>, freebsd-security@freebsd.org Subject: tpm / dislocker-fuse / bitleaker Message-ID: <CAM8r67Cw0ifd8=Xp1pLC9386WkqWPq4ysWSTG3cEccKyaaUJjw@mail.gmail.com>
next in thread | raw e-mail | index | archive | help
Hello world :-) I just read interesting article on how to sniff SPI based TPM in order to extract BitLocker keys. If someone uses GlobalProtect VPN this gives access to the corporate network using on-disk certificates with no login. This trick seems to be more and more popular, so its worth checking if your company is vulnerable. https://pulsesecurity.co.nz/articles/TPM-sniffing https://translate.google.com/translate?sl=pl&tl=en&u=https://sekurak.pl/od-skradzionego-laptopa-do-firmowej-sieci/ There are two nice BitLocker utilities that would be nice to have on FreeBSD. Please consider adding if anyone has a free moment :-) dislocker-fuse: https://github.com/Aorimn/dislocker bitleaker: https://github.com/kkamagui/bitleaker Best regards :-) Tomek -- CeDeROM, SQ7MHZ, http://www.tomek.cedro.info
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?CAM8r67Cw0ifd8=Xp1pLC9386WkqWPq4ysWSTG3cEccKyaaUJjw>