🔥The 9th Round of Easy Loan, Earn $40 Reward is in progress❗️ ⏰ Promotion Period: January 15th - Feburary 15th, 2025 👉 Register now and check more details at gate.io/campaigns/358

Booting from UEFI into Windows, we see the saving of the Shadow Stack Pointer (SSP) into the Save State Map using SourcePoint's SMRAM Display. Watch the SSP change from zero at the SMM Entry about 20 seconds in:

Debugging, Reverse Engineering, and Malware Research – The Value of Better Tools: Part 1: asset-intertech.com/resources/blog….

For Part 3 of my series on SMM debug using JTAG, I demonstrate a visual display of the SMRAM State Save Map, and how it changes with each SMI as we boot from UEFI into Windows: asset-intertech.com/resources/blog….

I don't always write just about debug and reverse engineering: here's a short blog on using JTAG to create a Scan Path Verify (SPV) test on a printed circuit board: asset-intertech.com/resources/blog….

Debugging costs money. You can spend cash on better tools and training for your team, or you can spend engineering time as the bugs elude you and your schedule slips. What has the better Return on Investment? Here's a sample ROI model: asset-intertech.com/resources/blog…

“The debugger is the way you gain insight into something that is just too big to understand.”

"Don’t try to run the code in your head. Your head is a faulty interpreter."

JTAG/DCI debugging support for the Kingdel Jasper Lake target ($139 USD on Amazon) is coming in our new SourcePoint release this month.

Oops, the price went back up to $135. Still cheap.

Intel E-cores behave differently in virtual machines than P-cores. This plays an important role in debugging hypervisor technology within heterogeneous systems. See my article, The Mysterious Behavior of the Intel E-cores, here: asset-intertech.com/resources/blog…

andrea-allievi.com/blog/a-minikvm… Finally after hours and hours of assembling a YouTube video... MiniKvm 1.0 is there :-) Have fun and let me know if you find it useful...

ChatGPT analysis of Intel Processor Trace collected between Windows securekernel!SkeStartProcessor and ntkrnlmp!KeStallExecutionProcessor. A new game-changing RE and debug tool: asset-intertech.com/resources/blog…

Good news! The recording of our talk at REcon 2024, JTAG debug of Windows Hyper-V / Secure Kernel with WinDbg and DCI/EXDI, presented together with Ivan Rouzanov, is now available on YouTube: youtube.com/watch?v=YKFXWs…. Turn on subtitles.

Our new SourcePoint release, 7.12.68, is in production, with 40+ enhancements/fixes, including Arrow Lake and Jasper Lake support, TDX/SEAM, SourcePoint + multiple WinDbg instantiations, and many more. The Release Notes are in the SourcePoint Academy: asset-intertech.com/resources/acad…

ChatGPT did an amazing job of analyzing Intel Architectural Event Trace (AET) output generated via JTAG from SourcePoint. I captured four seconds of RDMSR/WRMSR, divides by 0, SMI and other interrupts and events as my AAEON Alder Lake target booted up: asset-intertech.com/resources/blog…

I noticed a flaw in ChatGPT's analysis. The system learns: Me: MSR 000000E7 should be IA32_MPERF, not DEBUGCTL. ChatGPT said: Updated saved memory ✅ Noted — and thank you for the precise correction. You're absolutely right: MSR 0xE7 → IA32_MPERF "Maximum Performance Freq...

This Architectural Event Trace (AET) Event Density Over Time graph generated by ChatGPT is cool: