redknightlois/gist:fc692ca4952596ecd00152f45665a458

## gistfile1.txt
If you dont know what we are talking about read:

Intel Chip Flaws Leave Millions of Devices Exposed
https://www.wired.com/story/intel-management-engine-vulnerabilities-pcs-servers-iot/

[Step-by-Step]

1. Download the Intel security advisory detection tool:
https://downloadcenter.intel.com/downloads/eula/27150/Intel-SA-00086-Detection-Tool?httpDown=https%3A%2F%2Fdownloadmirror.intel.com%2F27150%2Feng%2FSA00086_Windows.zip

2. Execute from the DiscoveryTool.GUI directory the Intel-SA-00086-GUI.exe file.
If you are vulnerable you need to continue the step-by-step.

3. Figure out what is your motherboard to get the advisory patch (you dont need to open your computer to know that).
From the command line execute: ```wmic baseboard get product,Manufacturer,version,serialnumber```

You will get something like this:
```
Manufacturer           Product  SerialNumber     Version
ASUSTeK COMPUTER INC.  Z170-P   160367679103331  Rev X.0x
```

Now you know you need to look for ASUS Z170-P drivers/firmware.

4. Go to your motherboard provider and pray they have released for your firmware after the 1st of November of 2017.
For example, for ASUS support links look like: ```https://www.asus.com/us/Motherboards/{motherboard-product}/HelpDesk_BIOS/```

5. Install the firmare (if any).

6. Run the detection tool again to ensure that you have patched your system.

[Warning]
Firmware installer may go south because of many reasons.

Confirmed known to happen:

- Intel Management Engine Interface driver is not installed (confirmed to happen on ASUS).
  If that is the case download it from: https://downloadcenter.intel.com/download/26136/Intel-Management-Engine-Driver-5M-for-Windows-7-8-1-and-Windows-10-for-Intel-NUC-Kit-NUC5i5MYHE
  Install the ```MEI-Only Installer MSI``` and then goto step 5.

- It may also happen that you have an older BIOS and that the new firmware requires an newer BIOS.
	If you dont know what we are talking about read:

	Intel Chip Flaws Leave Millions of Devices Exposed
	https://www.wired.com/story/intel-management-engine-vulnerabilities-pcs-servers-iot/

	[Step-by-Step]

	1. Download the Intel security advisory detection tool:
	https://downloadcenter.intel.com/downloads/eula/27150/Intel-SA-00086-Detection-Tool?httpDown=https%3A%2F%2Fdownloadmirror.intel.com%2F27150%2Feng%2FSA00086_Windows.zip

	2. Execute from the DiscoveryTool.GUI directory the Intel-SA-00086-GUI.exe file.
	If you are vulnerable you need to continue the step-by-step.

	3. Figure out what is your motherboard to get the advisory patch (you dont need to open your computer to know that).
	From the command line execute: ```wmic baseboard get product,Manufacturer,version,serialnumber```

	You will get something like this:
	```
	Manufacturer Product SerialNumber Version
	ASUSTeK COMPUTER INC. Z170-P 160367679103331 Rev X.0x
	```

	Now you know you need to look for ASUS Z170-P drivers/firmware.

	4. Go to your motherboard provider and pray they have released for your firmware after the 1st of November of 2017.
	For example, for ASUS support links look like: ```https://www.asus.com/us/Motherboards/{motherboard-product}/HelpDesk_BIOS/```

	5. Install the firmare (if any).

	6. Run the detection tool again to ensure that you have patched your system.

	[Warning]
	Firmware installer may go south because of many reasons.

	Confirmed known to happen:

	- Intel Management Engine Interface driver is not installed (confirmed to happen on ASUS).
	If that is the case download it from: https://downloadcenter.intel.com/download/26136/Intel-Management-Engine-Driver-5M-for-Windows-7-8-1-and-Windows-10-for-Intel-NUC-Kit-NUC5i5MYHE
	Install the ```MEI-Only Installer MSI``` and then goto step 5.

	- It may also happen that you have an older BIOS and that the new firmware requires an newer BIOS.