This repo is a collection of documentation notes and code pertaining to analyzing vulnerabilities in UEFI firmware built from the EDK2 project.
The docs folder contains notes and documentation regarding setting up an analysis environment and reproducing various vulnerabilities in firmware built with EDK2.
The SimplePkg package is a barebones EDK2 package with an UEFI Application, an UEFI Driver and an UEFI Protocol (used by the driver).
The FirmwarePerformanceVulReproPkg package contains the necessary build files to produce an OVMF firmware which contains CVE-2021-28216.
This vulnerability was disclosed at BlackHat 2021 in the presentation Safeguarding UEFI Ecosystem: Firmware Supply Chain is Hard(coded)
All the necessary source code is included in the EDK2 repository. These build files specify the correct additional modules and settings to enable the possibility to the vulnerable code.