CIACTech08-002: Understanding Windows Hash Dumpers and Crackers

7 More Discussions You Might Find Interesting

1. Shell Programming and Scripting

Need to print hash of hash in table format

Hi, I have a hash of hash where it has name, activities and count i have data like this - $result->{$name}->{$activities} = $value; content of that are - name - robert tom cat peter activities - running, eating, sleeping , drinking, work i need to print output as below ...

2. Shell Programming and Scripting

Dynamically parse BibTeX and create hash of hash

Hello gurus, Iam trying to parse following BibTex file (bibliography.bib): @book{Lee2000a, abstract = {Abstract goes here}, author = {Lee, Wenke and Stolfo, Salvatore J}, title = {{Data mining approaches for intrusion detection}}, year = {2000} } @article{Forrest1996, abstract =...

3. Shell Programming and Scripting

Compare values of hashes of hash for n number of hash in perl without sorting.

Hi, I have an hashes of hash, where hash is dynamic, it can be n number of hash. i need to compare data_count values of all . my %result ( $abc => { 'data_count' => '10', 'ID' => 'ABC122', } $def => { 'data_count' => '20', 'ID' => 'defASe', ...

4. Shell Programming and Scripting

perl hash - using a range as a hash key.

Hi, In Perl, is it possible to use a range of numbers with '..' as a key in a hash? Something in like: %hash = ( '768..1536' => '1G', '1537..2560' => '2G' ); That is, the range operation is evaluated, and all members of the range are...

5. Shell Programming and Scripting

Perl Hash:Can not keep hash data in the same order that it was inserted

Can Someone explain me why even using Tie::IxHash I can not get the output data in the same order that it was inserted? See code below. #!/usr/bin/perl use warnings; use Tie::IxHash; use strict; tie (my %programs, "Tie::IxHash"); while (my $line = <DATA>) { chomp $line; my(...

6. Shell Programming and Scripting

Assigning a hash to another hash key

Hello, I have a hash in hsh. I need to assign it to another hash globalHsh. I think the below statement does not work $globalHsh{$id} = %hsh; What is the right way to assign it? Thanks

7. Shell Programming and Scripting

Print Entire hash list (hash of hashes)

I have a script with dynamic hash of hashes , and I want to print the entire hash (with all other hashes). Itried to do it recursively by checking if the current key is a hash and if yes call the current function again with refference to the sub hash. Most of the printing seems to be OK but in...

LEARN ABOUT MOJAVE

eficheck

EFICHECK(8)						    BSD System Manager's Manual 					       EFICHECK(8)

NAME

     eficheck -- check the integrity of the x86 flash chip firmware.

SYNOPSIS

     eficheck --integrity-check [-h EFI-hash-input-file] [-b EFI-binary-input-file]
     eficheck --show-hashes [-h EFI-hash-input-file] [-b EFI-binary-input-file]
     eficheck --generate-hashes [-h EFI-hash-output-file] [-p output-path]
     eficheck --save [-b EFI-binary-output-file]
     eficheck --cleanup [-b EFI-binary-input-and-output-file>]
     eficheck --version
     eficheck --help

DESCRIPTION

     eficheck is a tool to check the x86 flash chip firmware.

     The following commands can be used with eficheck:

     --integrity-check hashes portion of the firmware and compares against known-good hashes

     --generate-hashes outputs hashes for a given firmware to be used as known-good hashes

     --show-hashes shows the hashes for the sub-sections of the firmware which are measured

     --save saves the full flash chip contents to a binary file. Requires root privileges.

     --cleanup zeros any privacy-sensitive data (such as nvram), enabling the file to be shared for analysis.

     --version print out eficheck version number.

     --help display a short help.

EXAMPLES

	    'eficheck --save -b firmware.bin'

		Save this system's EFI firmware as firmware.bin

	    'eficheck --cleanup -b firmware.bin'

		Overwrite the EFI variables portion of the firmware.bin, in place

	    'eficheck --generate-hashes'

		Analyze the current system's installed EFI firmware, and store the hashes into hash file(s) in current folder

		File name(s) will be selected according to image's EFI version(s)

	    'eficheck --generate-hashes -b firmware.bin'

		Analyze the firmware.bin, and store the hashes into hash file(s) in current folder. Filename will be based on the detected
     firmware version.

	    'eficheck --generate-hashes -p /usr/local/allowlists'

		Analyze the current system's installed EFI firmware, and store the hashes into hash file(s) in /usr/local/allowlists folder

	    'eficheck --integrity-check'

		Attempt to automatically determine which firmware you are running, and integrity check against the appropriate file, and report
     any differences

	    'eficheck --integrity-check -h /usr/libexec/firmwarecheckers/eficheck/EFIAllowListShipping.bun-
     dle/allowlists/IM171.88Z.0105.B08.1604111319.0.ealf'

		Compare the current system's EFI firmware against the Apple-provided expected measurements for an "iMac17,1" at firmware revision
     B08, and report any differences

	    'eficheck --integrity-check -h hash.ealf -b firmware.bin'

		Compare the given hash file against against the given firmware image and report any differences

	    'eficheck --show-hashes'

		Print the hashes for the current system's installed EFI firmware to stdout

	    'eficheck --show-hashes -b firmware.bin'

		Print the hashes for the given firmware.bin to stdout

	    'eficheck --show-hashes -h IM171.88Z.0105.B08.1604111319.0.ealf'

		Print the hashes for the given allowlist to stdout

								   May 25, 2017

Security Advisories (RSS)