Skip to content
/ titanm Public

This repository contains the tools we used in our research on the Google Titan M chip

License

Apache-2.0 license
180 stars 14 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

quarkslab/titanm

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

9 Commits
BHEU_2021
BHEU_2021
 
 
BHUSA_2022
BHUSA_2022
 
 
ROOTS
ROOTS
 
 
bin2rec
bin2rec
 
 
citadelimgloader
citadelimgloader
 
 
nugget_toolkit
nugget_toolkit
 
 
.gitignore
.gitignore
 
 
.gitmodules
.gitmodules
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 

Repository files navigation

Titan M tools

In this repository, we publish the tools we used in our research on the Google Titan M chip.

We presented our results at Black Hat EU 21 and at the ROOTS workshop within DeepSec.

  • citadelimgloader: the Ghidra loader for Titan M firmware files
  • nugget_toolkit: the set of tools to trace messages and communicate with the chip (including an exploit for a known vulnerability and a fuzzer)
  • bin2rec: a set of scripts used to convert firmware files into rec files that can be used with the SPI rescue feature
  • BHEU_2021: the materials of our presentation at BlackHat Europe 2021 (the slides and the white paper)
  • BHUSA_2022: the materials of our presentation at BlackHat USA 2022

NOTE

This project uses submodules. So after cloning the repository, do not forget to run:

$ git submodule update --init --recursive

About

This repository contains the tools we used in our research on the Google Titan M chip

Topics

android security reverse-engineering fuzzing exploitation titan-m

Resources

Readme

License

Apache-2.0 license
Activity
Custom properties

Stars

180 stars

Watchers

11 watching

Forks

14 forks
Report repository

Contributors 2

  •  
  •  

Languages