RSS Parrot

Manually tampering with UEFI settings

https://en4rab.github.io/posts/UEFI-settings/

Published: March 3, 2026 02:02

Tampering with UEFI settings This is a post on poking at UEFI settings manually and how to find the hidden settings that was inspired by a post on twitter. The user had bought a Lenovo M920q and found it had Computrace activated and wanted to turn it off.…

Extracting custom actions from a WiX msi installer

https://en4rab.github.io/posts/WiX-custom-actions/

Published: January 20, 2026 17:33

Introduction This was originally written at the end of 2024. Many changes have been made to Paxton10 so this may nolonger be accurate. However the focus is more on extracting WiX installers and using orca to inspect custom actions in msi files rather than…

Sniffiing the TPM to recover bitlocker VMK and FVEK keys

https://en4rab.github.io/posts/Sniffing-Bitlocker-Keys/

Published: January 20, 2026 17:19

SPITkey A tool to assist in recovery of bitlocker VMK and FVEK keys While investigating the security of the various bitlocker configurations I wrote some scripts to assist in the analysis of logic analyser traces of SPI TPM traffic. This was also a project…

Building a Sigrok Plugin to Decode Paxton RFID Readers

https://en4rab.github.io/posts/Paxton-Sigrok/

Published: August 15, 2024 18:11

Introduction As part of an ongoing investigation into the Paxton Net2 access control system I wrote a sigrok protocol decoder to help me understand how the reader encoded the card data in the clock and data output. You can download the decoder plugin on…

Flashing an ENER-J SHA5264 wifi smart plug to Tasmota

https://en4rab.github.io/posts/ENER-J-SHA5264-Tasmota/

Published: August 12, 2024 15:35

This was originally a gist posted here 4 years ago. I have removed references to tuya convert as it hasn’t worked for a long time now. You should be able to flash it with a serial adapter connected to the test points though. If you plan to do this it would…