Announcement

Collapse
No announcement yet.

AMITSESetup Decryptor

Collapse
X
 
  • Filter
  • Time
  • Show
Clear All
new posts

    AMITSESetup Decryptor

    As a lot of older firmware images use the well known, incredibly secure AMI XOR key to encode the supervisor password in the firmware image, I wrote a small Python tool to automate the process of searching through the image and decrypting the key. It is far from perfect but works well enough for me to share.

    The tool uses UEFIExtract to dump the entire image, naively search for a folder ending in "AMITSEDecrypt", iterate through the body.bin to find all possible hashes stored in there, decrypt them with the XOR key, remove every second byte, then convert to ASCII.

    Usage: python3 AMITSEDecrypt <Path/to/image.bin>

    Hope it'll be of use to someone and excuse my horrible Python skills.
    Attached Files

    #2
    Re: AMITSESetup Decryptor

    good jobe

    Comment


      #3
      Re: AMITSESetup Decryptor

      good job, untested for the moment, thanks

      Comment


        #4
        Re: AMITSESetup Decryptor

        great job thank you

        Comment


          #5
          Re: AMITSESetup Decryptor

          Originally posted by EineWildeStehlampe View Post
          The tool uses UEFIExtract to dump the entire image, naively search for a folder ending in "AMITSEDecrypt", iterate through the body.bin to find all possible hashes stored in there, decrypt them with the XOR key, remove every second byte, then convert to ASCII.
          I meant "AMITSESetup" obviously.

          Comment


            #6
            Re: AMITSESetup Decryptor

            Originally posted by EineWildeStehlampe View Post
            I meant "AMITSESetup" obviously.
            I tested work perfect

            thank you so much

            Comment


              #7
              Re: AMITSESetup Decryptor

              Glad it's of use to someone. I'd love to keep a list of devices using the AMITSESetup variable if only I could find out how to edit my posts

              Comment


                #8
                Re: AMITSESetup Decryptor

                Originally posted by EineWildeStehlampe View Post
                Glad it's of use to someone. I'd love to keep a list of devices using the AMITSESetup variable if only I could find out how to edit my posts
                see with a moderator to modify your first post.

                Comment


                  #9
                  Re: AMITSESetup Decryptor

                  this works with some of the Panasonic laptops.. not all tho.

                  Comment


                    #10
                    Re: AMITSESetup Decryptor

                    Confirmed to work with at least those devices, will add more when I have some in:
                    - Microsoft Surface (Pro) 3
                    - Advantech MIO-5251
                    - Medion Lifetab P8912
                    - ASUS Vivobook Flip 14 TP412

                    I've noticed there's also a few AMI implementations storing the password in cleartext instead of scancodes, I'll probably add something to parse those aswell. And then there's some that look like SHA1 hashes, so I might at least add some functionality to detect those.

                    Comment


                      #11
                      Re: AMITSESetup Decryptor

                      Originally posted by EineWildeStehlampe View Post
                      Confirmed to work with at least those devices, will add more when I have some in:
                      - Microsoft Surface (Pro) 3
                      - Advantech MIO-5251
                      - Medion Lifetab P8912
                      - ASUS Vivobook Flip 14 TP412

                      I've noticed there's also a few AMI implementations storing the password in cleartext instead of scancodes, I'll probably add something to parse those aswell. And then there's some that look like SHA1 hashes, so I might at least add some functionality to detect those.
                      @EineWildeStehlampe
                      Similar to this here?
                      I'm finishing the script in C++ to make it faster, I'll post it in Badcaps next week.
                      Last edited by SMDFlea; 01-22-2022, 03:13 AM.

                      Comment


                        #12
                        Re: AMITSESetup Decryptor

                        Originally posted by onizzbox View Post
                        @EineWildeStehlampe
                        Similar to this here?
                        I'm finishing the script in C++ to make it faster, I'll post it in Badcaps next week.
                        nice job as usual onizzbox

                        Comment


                          #13
                          Re: AMITSESetup Decryptor

                          Originally posted by Maxpower3 View Post
                          nice job as usual onizzbox
                          Thanks! Maxpower3
                          Would you like to anticipate the release?

                          Comment


                            #14
                            Re: AMITSESetup Decryptor

                            Originally posted by onizzbox View Post
                            Thanks! Maxpower3
                            Would you like to anticipate the release?
                            no need, I already know your work and you have already shared a lot of knowledge and tools with me

                            Comment


                              #15
                              Re: AMITSESetup Decryptor

                              Originally posted by onizzbox View Post
                              @EineWildeStehlampe
                              Similar to this here?
                              I'm finishing the script in C++ to make it faster, I'll post it in Badcaps next week.
                              @SMDFlea
                              I forgot to remove my credentials in the attached video, I can't edit the post anymore. Could you please remove it?

                              Comment


                                #16
                                Re: AMITSESetup Decryptor

                                Originally posted by Maxpower3 View Post
                                no need, I already know your work and you have already shared a lot of knowledge and tools with me
                                Thank you Max!
                                Helping users on the forums or outside of them has always been a hobby, I don't depend on it for a living. I've always liked to share my knowledge, that's the only way we can evolve.

                                Comment


                                  #17
                                  Re: AMITSESetup Decryptor

                                  Originally posted by onizzbox View Post
                                  @SMDFlea
                                  I forgot to remove my credentials in the attached video, I can't edit the post anymore. Could you please remove it?
                                  removed.
                                  All donations to badcaps are welcome, click on this link to donate. Thanks to all supporters

                                  Comment


                                    #18
                                    Re: AMITSESetup Decryptor

                                    I wrote small software for decrypt AMI BIOS Password. Software can read Admin and Boot password, just open file or drag and drop a file.
                                    Enjoy.
                                    Attached Files

                                    Comment


                                      #19
                                      Re: AMITSESetup Decryptor

                                      Originally posted by BootLoader1 View Post
                                      I wrote small software for decrypt AMI BIOS Password. Software can read Admin and Boot password, just open file or drag and drop a file.
                                      Enjoy.
                                      @BootLoader1
                                      Very cool, but it doesn't work!!
                                      Needs repairs...
                                      Last edited by SMDFlea; 11-04-2022, 01:46 PM.

                                      Comment


                                        #20
                                        Re: AMITSESetup Decryptor

                                        Working, working, but I forgot about this case. Now fixed and working well.
                                        Attached Files

                                        Comment

                                        Working...
                                        X