This brief tutorial will show you how to go about analyzing a raw binary firmware image in Ghidra.
I was recently interested in reversing some older Cisco IOS images. Those images come in the form of a single binary blob, without any sort of ELF, Mach-o, or PE header to describe the binary.
While I am using Cisco IOS Images in this example, the same process should apply to other Raw Binary Firmware Images.
This guide provides instructions for an Arch Linux installation featuring full-disk encryption via LVM on LUKS and an encrypted boot partition (GRUB) for UEFI systems.
Following the main installation are further instructions to harden against Evil Maid attacks via UEFI Secure Boot custom key enrollment and self-signed kernel and bootloader.
You will find most of this information pulled from the Arch Wiki and other resources linked thereof.
Note: The system was installed on an NVMe SSD, substitute /dev/nvme0nX with /dev/sdX or your device as needed.
| # Elasticsearch Cheatsheet - an overview of commonly used Elasticsearch API commands | |
| # cat paths | |
| /_cat/allocation | |
| /_cat/shards | |
| /_cat/shards/{index} | |
| /_cat/master | |
| /_cat/nodes | |
| /_cat/indices | |
| /_cat/indices/{index} |
| #!/bin/bash | |
| # Define physical ethernet interface to be bridged | |
| # with TAP interface(s) above. | |
| eth="eth0" | |
| eth_ip="192.168.42.2" | |
| eth_netmask="255.255.255.0" | |
| eth_broadcast="192.168.42.255" | |
| eth_gateway="192.168.42.1" | |
| eth_mac="XX:XX:XX:XX:XX:XX" |
| # with dig (fastest way) | |
| dig +short myip.opendns.com @resolver1.opendns.com; | |
| # alternative | |
| dig TXT +short o-o.myaddr.l.google.com @ns1.google.com | awk -F'"' '{ print $2}'; | |
| ###################################################################################################### | |
| ## Other method with curl / get and 3rd party, this choice is less judicious | |
| ###################################################################################################### | |
| # with curl |