Disable Intel’s Backdoor On Modern Hardware

June 16, 2020 by Bryan Cockfield 42 Comments

While the Intel Management Engine (and, to a similar extent, the AMD Platform Security Processor) continues to plague modern computer processors with security risks, some small progress continues to be made for users who value security of the hardware and software they own. The latest venture in disabling the ME is an ASRock motherboard for 8th and 9th generation Intel chips. (There is also a link to a related Reddit post about this project).

First, a brief refresher: The ME is completely removable on some computers built before 2008, and can be partially disabled or deactivated on some computers built before around 2013. This doesn’t allow for many options for those of us who want modern hardware, but thanks to a small “exploit” of sorts, some modern chipsets are capable of turning the ME off. This is due to the US Government’s requirement that the ME be disabled for computers in sensitive applications, so Intel allows a certain undocumented bit, called the HAP bit, to be set which disables the ME. Researchers have been able to locate and manipulate this bit on this specific motherboard to disable the ME.

While this doesn’t completely remove the firmware, it does halt all execution of code in a way that is acceptable for a large governmental organization, so if you require both security and modern hardware this is one of the few ways to achieve that goal. There are other very limited options as well, but if you want to completely remove the ME even on old hardware the process itself is not as straightforward as you might imagine.

Header image: Fritzchens Fritz from Berlin / CC0

Hacking 16GB Into An Old PC That Doesn’t Want That Much

April 6, 2019 by Al Williams 23 Comments

From the title, you might think this post is going to be some lame story about someone plugging in some RAM and maybe updating a BIOS. That’s where you’d be wrong. [Downtown Doug Brown] has a much more interesting and instructive story.

[Doug] found his motherboard was rated for 8 GB maximum and decided he’d make 16 GB of RAM work despite the limitation. He updated the BIOS and it worked — in Linux. He was able to see all the memory and it tested good. If that was it, you wouldn’t be reading about it here. The story gets interesting when he tried to boot Windows 10 and it refused, showing its kinder and gentler blue screen of death. For many people, that would be the end of the story, especially since Windows 10 doesn’t give you much information about why it crashed.

Like so many problems, this one had to be peeled back like an onion. The first thing to do was to change the Windows registry to allow the blue screen to output some technical information that was present in older versions of Windows. The error code indicated that the issue had to do with the BIOS reporting overlapping memory regions.

With some investigating in Linux, whose log files get a lot more BIOS information, [Doug] realized the E820 interface was returning a memory region that conflicted with ACPI’s information. It seems as though the motherboard was reserving space at the top of the 8 GB range for PCI operations which was punching a hole in the system’s (now larger) memory. Turning off a setting in the BIOS fixed the problem, but only because it makes Linux and Windows both see only 4GB of memory. That also wouldn’t be a very interesting story. [Doug] theorized that if he could move the mapping area to the top of the 16 GB range, things would work.

What follows is a great exposition of the Linux tools for reading and changing system information. Did he get it to work? Read the post and find out. But we will tell you that he did manage to have grub patch his system information.

Most of the motherboard hacks we’ve seen relate to hardware, not software. Of course, you could just buy a new motherboard. If you need ideas for what to do with the old one, here you go.

It Might Be Possible To Build A Stingray With A Raspberry Pi

November 19, 2018 by Brian Benchoff 32 Comments

If there’s one thing that’s making you insecure, it’s your smartphone. Your smartphone is constantly pinging the cell towers, giving out your location and potentially leaking your private information to anyone with a radio. This is the idea behind an IMSI catcher, or Stingray in common parlance, and now you too can build one with parts you can buy off of Amazon.

The key to this hack is a software defined radio dongle, or RTL-SDR, that has been repurposed to listen in on a GSM network. Literally the only hardware required is an RTL-SDR that can be bought online for less than fifteen dollars, and you can identify the IMSI, or unique ID linked to every SIM card, in smartphones around you. The only bit of software required is a small Python script from [Oros42], freely available on GitHub.

Of course, building an IMSI catcher with a desktop is of limited utility, and using a laptop is still a bit too bulky to surreptitiously conceal in a public location. No, to really get the bang for your buck out of this, you need to do this with a small single-board computer running off a battery pack. Luckily, [Joseph Cox] over at Motherboard reports, “It is likely possible” to run this on a Raspberry-Pi. We’re guessing it’s even more than “likely” possible.

Hackaday Links: June 3, 2018

June 3, 2018 by Brian Benchoff 26 Comments

All the Radio Shacks are dead. adioS, or something. But wait, what’s this? There are new Radio Shacks opening. Here’s one in Idaho, and here’s another in Claremore, Oklahoma. This isn’t like the ‘Blockbuster Video in Nome, Alaska’ that clings on by virtue of being so remote; Claremore isn’t that far from Tulsa, and the one in Idaho is in a town with a population of 50,000. Are these corporate stores, or are they the (cool) independent Radio Shacks? Are there component drawers? Anyone want to take a field trip and report?

A few years ago, [cnxsoft] bought a Sonoff WiFi switch to control a well pump. Despite this being a way to control the flow of massive amounts of water with an Internet of Things thing, we’re still rocking it antediluvian style, and for the most part this WiFi-connected relay worked well. Until it didn’t. For the past few days, the switch wouldn’t connect to the network, so [cnxsoft] cracked it open to figure out why. There was one burnt component, and more than one electrocuted insect. Apparently, an ant bridged two pins, was shortly electrocuted, and toasted a resistor. It’s a bug, a real bug, in an Internet of Things thing.

eInk is coming to license plates? Apparently. Since an eInk license plate already includes some electronics, it wouldn’t be much to add some tracking hardware for a surveillance state.

Hold up, it’s a press release about crypto hardware. No, not that crypto, the other crypto. Asus has announced a new motherboard that is capable of supporting twenty graphics cards. This isn’t a six-foot-wide motherboard; it’s designed especially for coin mining, and for that, the graphics cards really only need a PCIe x1 connection. The real trick here is not using PCIe headers, and instead piping everything over vertical-mount USB ports. Yes, this is a slight cabling nightmare. So, you still think the early 80s with fluorinert waterfalls and Blinkenlights that played Game of Life was the pinnacle of style in computer hardware? No, this is it right here.

Here’s a book you should read. Ignition!: An Informal History of Liquid Rocket Propellants by John Drury Clark is a fantastic book about how modern liquid rocket fuel came to be. Want to know why 60s cartoons and spy movies always referenced a ‘secret rocket fuel formula’ when kerosene and liquid oxygen work just fine? This is that. Back when we covered it, the book, used, on Amazon, cost $500. It’s now in print again and priced reasonably. It’s on the Inc. 9 Powerful Books Elon Musk Recommends list, so you know it’s good. Thanks, [Ben] for sending this one in on the tip line.

Hackaday Links: Some Sort Of Fool’s Day, 2018

April 1, 2018 by Brian Benchoff 20 Comments

A few years ago, writing for a blog called Motherboard of all things, [Emanuel Maiberg] wrote PC Gaming Is Still Way Too Hard. The premise is that custom building a gaming PC is too hard, because you have to source components and comparison shop. Again, this was written for Motherboard. Personally, I would have shopped that story around a bit more. Now, the same author is back again, telling us PC Building Simulator is way more fun than building a real computer. It’s my early nomination for worst tech article of the year.

Speaking of motherboards, This is a GoFundMe project to re-create the Amiga 4000 mainboard, with schematics. Building PCs is too hard, but the Amiga architecture is elegant. Some of these boards are dying due to electrolytic capacitor and battery leakage. This project is aiming to deconstruct an original A4000 board and turn it into Gerbers and schematics, allowing new boards to be manufactured. Building a PC is way too hard, but with this GoFundMe, you won’t have to design an entire system from scratch. Don’t worry, I already tipped off the Motherboard editors to this one.

Alright, story time. In 6th grade science class, the teacher was awesome. On the days when there was really no chance of any learning happening (the day before Christmas break, the last day of school), the teacher broke out the Electric Chicken. What’s an Electric Chicken? It’s a test tube rack, two wires, and a Wimshurst generator. “Here, grab ahold of this for as long as you can.” It got even cooler when you get a bunch of kids to hold hands and tell them pride is better than pain. Here’s a Kickstarter for a mini Wimshurst generator. It’s made out of PCBs! Hat tip to [WestfW] for finding this one.

It’s no secret that I get a lot of dumb press releases. Most of these are relegated to the circular file folder. It’s also no secret I get a lot of ICO announcements hitting my email. These, also, are trashed. I recently received a press release for an ICO that goes beyond anything else. ONSTELLAR is a blockchain-powered social media network for paranormal and metaphysical enthusiasts. It’s the crypto for Coast to Coast AM listeners, UFO enthusiasts, and people who think PKE meters are real. This is it, we’ve reached peak crypto.

If you want to decapsulate an IC — and why wouldn’t you? — the usual way of doing things involves dropping acid, ego death, toxic chemicals, and a fume hood. There is another way. Here’s [A Menadue] decapping a quartz watch IC with just fire. The process is about as ‘hold my beer’ as you would expect. Just take a small butane torch, heat up a chip, and recover the die. A bit of ultrasonic cleaning later and you get a pretty clean chip. Microscope not included.

Remote PC Power Control Thwarts Button Pushers

December 19, 2015 by Dan Maloney 21 Comments

Pervasive connectivity is a mixed blessing at best, especially when it creates the expectation that we’ll always have access to everything we need. When what you need is on your work or home PC, there are plenty of options for remotely accessing files using your phone. But if your roomie or the cleaning crew powers the machine down, you’ve got a problem – unless you’ve got a way to remotely power the machine back up.

[Ahmad Khattab]’s hack required getting up close and personal with his PC’s motherboard. A Particle Photon steals power from the always-on 3.3 volt line of the vacant Trusted Platform Module connector on his machine. Outputs from the Photon are connected to the motherboard’s power switch connection and a smartphone app drives the outputs and turns the machine on and off. As [Ahmad] admits, there are plenty of ways to attack this problem, including Wake-on-LAN. But there’s something to be said for the hardware approach, especially when a Photon can be had for $20.

Astute readers will note that we recently covered a very similar project using a Particle Core. Be sure to check that one out for a little more detail on using Particle’s cloud, and for some ideas on powering the module if your motherboard lacks a TPM port. In the meantime, enjoy [Ahmad]’s video.

Continue reading “Remote PC Power Control Thwarts Button Pushers” →

Quadcopter Built From Recycled Motherboards

May 9, 2014 by Adam Fabio 18 Comments

A quadcopter built from a motherboard

[Eric] has figured out a great way to build quadcopters out of recycled computer motherboards. Multicopters come in all shapes and sizes these days. As we mentioned in the last issue of Droning On, they can be bought or built-in a multitude of materials as well. Drones have been built using materials as varied as wood, PVC pipe, carbon fiber, and aluminum.

One of the more common commercial materials is G10 fiberglass sheet. It’s stiff, strong, and relatively light. Printed circuit boards are generally made of FR-4 fiberglass, G10’s flame resistant cousin. It’s no wonder [Eric] had quadcopters in his eyes when he saw a pile of motherboards being thrown out at his university.

[Eric] used a heat gun and a lot of patience to get all the components off the motherboard. With a bit of care, most of the components can be saved for future hardware hacks. This is one step that’s best performed outside. Hot melting plastics, metals, and resin fumes aren’t the greatest things to inhale.

Computer motherboards being cut on a shopbot Clean PCBs in hand, [Eric] headed to his local TechShop. He drew his dead cat style frame in SolidWorks and cut it out on a ShopBot. While a high-end CNC cutter is nice, it’s not absolutely necessary. The fiberglass sheets could be cut with a rotary tool or a jigsaw. No matter how you cut it, be sure to wear a mask rated for fiberglass resins and some protective clothing. Fiberglass plate is nasty stuff to cut.

Once the upper and lower frame plates were cut, [Eric] completed his quad frame with some square wooden stock for arms. The final quad is a great flier, and spare parts are easy to source. Nice work on the recycling, [Eric]!

Continue reading “Quadcopter Built From Recycled Motherboards” →