EMBA v1.3.2 - EMBArk is out
The last EMBA release is not too long ago but in the mean time there was so much going on ... The most important thing is ...
The first official EMBArk release is out now!
Everything started as an idea in the beginning of 2021. The idea was to build an enterprise ready open source firmware analysis environment on top of EMBA. This environment should allow every product security team as well as every penetration tester and security researcher to use professional firmware analysis to improve the security of IoT/OT/ICS ... (you name it) devices as easy as possible. This idea was mixed up to an AMOS research project, where a team of students built a first PoC of EMBArk. You can find the original project here. From there on continuous work, improvement and testing was running more or less under the radar. Until today ... EMBArk is stable and ready for more! Kudos to @BenediktMKuehne for pushing it to the next level.
Say hi to our centralized firmware security analysis environment EMBArk! Check it out here, use it, give us feedback or improve it and start being part of this open source environment.
On EMBA side we have some "bumpy" weeks in the neck:
- As the NIST API is currently changing and we had some serious issues with our cve-search integration we decided to rewrite it by ourself. This process took us some time to get the CVE identification feature fully working again. Thanks for all your testing and feedback during this process. With the new integration EMBA is faster, more stable and the installation is not that error prone anymore.
- UEFI analysis integration was massively improved - see here
- A lot of code cleanup was done by @HoxhaEndri
- A new update check functionality by @HoxhaEndri
- Improved firmware diffing environment - see here
- Updated and new reporting templates by @413x8
- Your great feedback is now collected in our wiki
- Further public online resources are available and collected here
- New support possibilities via patreon or buymeacoffee
Thank you for all your feedback and your testing since version 1.3.1!
It is always a pleasure to welcome new contributors to EMBA. This time we can welcome two of them:
Welcome to the EMBA environment and thank you for your valuable contribution.
We are looking for (release) sponsors here
What's Changed
- Version identifiers, Arch check in installer, diff updates by @m-1-k-3 in #860
- Snyk database update by @github-actions in #864
- CISA known exploited database update by @github-actions in #863
- Metasploit database update by @github-actions in #862
- check braces for modules scripts by @HoxhaEndri in #861
- braces checked for all script files by @HoxhaEndri in #865
- shellcheck braces check in check_project and in workflow by @HoxhaEndri in #866
- Improve diff mode by @m-1-k-3 in #867
- Fix grep -R by @m-1-k-3 in #869
- CPU check for SSSE3 by @m-1-k-3 in #870
- Diff threading + improved reporting by @m-1-k-3 in #871
- #873 fix by @m-1-k-3 in #874
- zlib string from dell bios firmware by @HoxhaEndri in #872
- Create first_interaction.yml by @m-1-k-3 in #877
- Metasploit database update by @github-actions in #878
- CISA known exploited database update by @github-actions in #879
- Snyk database update by @github-actions in #880
- UEFI analysis improvements by @m-1-k-3 in #876
- fwhunt check entire firmware first by @HoxhaEndri in #881
- new version strings and comment for fwhunt by @HoxhaEndri in #882
- integrate cveXplore settings by @BenediktMKuehne in #884
- Install CveXplore v0.3.16++ by @m-1-k-3 in #892
- Snyk database update by @github-actions in #894
- Packetstorm database update by @github-actions in #895
- CISA known exploited database update by @github-actions in #893
- Full system emulation dependency s24 by @m-1-k-3 in #896
- Cvexplore integration by @BenediktMKuehne in #887
- switch pip install for cvexplore to git repo by @BenediktMKuehne in #899
- Docker-compose cleanup by @m-1-k-3 in #891
- Issue 889 by @m-1-k-3 in #902
- Update FUNDING.yml by @m-1-k-3 in #905
- L10, S05 fixes by @m-1-k-3 in #903
- L23 VNC checker modules by @m-1-k-3 in #904
- update first interaction by @m-1-k-3 in #906
- Update FUNDING.yml by @m-1-k-3 in #907
- Update check again - #908 by @m-1-k-3 in #909
- Make Routersploit work again by @m-1-k-3 in #910
- Stick to version and check it from requests and urllib3 by @m-1-k-3 in #911
- Improve dep checker by @m-1-k-3 in #912
- CISA known exploited database update by @github-actions in #915
- Packetstorm database update by @github-actions in #917
- Snyk database update by @github-actions in #916
- Replacement of current cve query mechanism by @m-1-k-3 in #913
- Fix workflows, improve CVE identification by @m-1-k-3 in #919
- rootfs check in uefi extractor by @m-1-k-3 in #921
- fix install workflow by @m-1-k-3 in #922
- check for versions (emba, git and docker) by @HoxhaEndri in #918
- Update FUNDING.yml by @m-1-k-3 in #924
- Update FUNDING.yml by @m-1-k-3 in #925
- Update FUNDING.yml by @m-1-k-3 in #926
- Update FUNDING.yml by @m-1-k-3 in #927
- S26 module fix by @m-1-k-3 in #928
- remove update scripts by @m-1-k-3 in #923
- Packetstorm database update by @github-actions in #935
- CISA known exploited database update by @github-actions in #933
- Snyk database update by @github-actions in #934
- Metasploit database update by @github-actions in #932
- Pre templates by @413x8 in #931
- Multiple fixes by @m-1-k-3 in #930
- Contributors update by @m-1-k-3 in #937
- update default profile for EMBArk by @m-1-k-3 in #938
- Fix parsing of version number from binary version string by @mj138 in #939
- Update Contributors, version by @m-1-k-3 in #940
- Fix parsing of binary name from binary version string by @mj138 in #942
- little cleanup by @m-1-k-3 in #944
- Docker build updates for Kali 2023.4 by @m-1-k-3 in #945
- Metasploit database update by @github-actions in #948
- CISA known exploited database update by @github-actions in #949
- Snyk database update by @github-actions in #950
- Packetstorm database update by @github-actions in #951
- Include 0xdea semgrep rules and haruspex ghidra script, improve cwe-search integration by @m-1-k-3 in #946
- s14 r2 startup command update by @m-1-k-3 in #952
- r2 bin cache by @m-1-k-3 in #953
- fix for #954 by @m-1-k-3 in #955
- Enable workflow dispatch by @m-1-k-3 in #956
New Contributors
Full Changelog: 1.3.1-diff-all-the-firmwares...1.3.2-EMBArk_is_here
