CERT UEFI Parser: Open-source tool exposes UEFI architecture to uncover vulnerabilities

CERT UEFI Parser, a new open-source security analysis tool from the CERT Coordination Center has been released to help researchers and defenders examine the structure of Unified Extensible Firmware Interface (UEFI) software and identify classes of vulnerabilities that are often difficult to study. UEFI software The tool is published by the Software Engineering Institute (SEI) at Carnegie Mellon University and applies program analysis techniques to UEFI firmware code to extract architectural details that are typically …