Skills
.Work. You
Rest

analyzing-uefi-bootkit-persistence

Community

Detect UEFI bootkit persistence threats.

Education & Research#firmware#chipsec#secure-boot#esp#uefi#bootkit
AuthorYukiIto1999
Version1.0.0
Installs0

System Documentation

What problem does it solve?

Analyzes UEFI bootkit persistence mechanisms including firmware implants in SPI flash, ESP modifications, Secure Boot bypass techniques, and UEFI variable manipulation.

Core Features & Use Cases

  • ESP and SPI flash analysis to detect firmware implants and unauthorized modifications.
  • UEFI variable inspection and ESP contents inventory to uncover persistence mechanisms.
  • Forensic workflow support with CHIPSEC-based validation and Measured Boot/PKI indicators, enabling enterprise incident response.

Quick Start

Run the agent on a firmware dump or mounted ESP to detect bootkit indicators and generate a report.

Dependency Matrix

Required Modules

None required

Components

scriptsreferences

💻 Claude Code Installation

Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.

Please help me install this Skill:
Name: analyzing-uefi-bootkit-persistence
Download link: https://github.com/YukiIto1999/ctf-sleuth/archive/main.zip#analyzing-uefi-bootkit-persistence

Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
View Source Repository

Agent Skills Search Helper

Install a tiny helper to your Agent, search and equip skill from 471,000+ vetted skills library on demand.