The year of "re-hosting your favorite firmware target on QEMU and fuzzing it".
Just to make it clear, I& #39;m glad it is happening.
For reference:

Broadcom Bluetooth fuzzing based on rehosting:
https://github.com/seemoo-lab/frankenstein
https://github.com/seemoo-la... href="https://twitter.com/bolek42">@bolek42 @jiska___

HALUcinator:
https://github.com/embedded-sec/halucinator
https://github.com/embedded-... href="https://twitter.com/gannimo">@gannimo et al

Emulating && Fuzzing UEFI with unicorn and QiLing:
https://github.com/assafcarlsbad/efi_dxe_emulator
https://github.com/assafcarl... href="https://twitter.com/assaf_carlsbad">@assaf_carlsbad @liba2k
assafcarlsbad/efi_dxe_emulator

EFI DXE Emulator and Interactive Debugger. Contribute to assafcarlsbad/efi_dxe_emulator development by creating an account on GitHub.

https://github.com/seemoo-lab/frankenstein
Rehosting MediaTek Baseband and plug AFL to it:
https://github.com/fgsect/BaseSAFE 
https://github.com/fgsect/Ba... href="https://twitter.com/domenuk">@domenuk @ad_ili_rai_en et al

Fuzzing MediaTek Remote Stacks by Emulating them:
https://www.youtube.com/watch?v=OSJdAGtn8Qw
https://www.youtube.com/watch... href="https://twitter.com/marcograssi">@marcograssi and Kira et al
Fuzzing Mediatek Stacks by statically linking them with proper ABI and HALs:
https://comsecuris.com/blog/posts/path_of_least_resistance/
https://comsecuris.com/blog/post... href="https://twitter.com/esizkur">@esizkur et al

Emulating and Fuzzing Samsung& #39;s Real-Time Kernel Protection:
http://phrack.org/papers/emulating_hypervisors_samsung_rkp.html
https://phrack.org/papers/em... href="https://twitter.com/_athallas">@_athallas et al
Emulating and Fuzzing Samsung Exynos TEEGRIS:
http://allsoftwaresucks.blogspot.com/2020/05/on-samsung-and-exynos-hacking-again.html
https://allsoftwaresucks.blogspot.com/2020/05/o... href="https://twitter.com/astarasikov">@astarasikov

Rehosting Qualcomm& #39;s Trustlets by emulating Trustzone over qemu:
https://cfp.recon.cx/reconmtl2019/talk/DYGNJQ/
Slava">https://cfp.recon.cx/reconmtl2... Makkaveev
The road to Qualcomm TrustZone apps fuzzing Recon Montreal 2019

In this talk we will discuss Trusted Execution Environment (TEE) which protects the most important data on mobile device. We will demonstrate how we automatically discovered many vulnerabilities in...

http://allsoftwaresucks.blogspot.com/2020/05/on-samsung-and-exynos-hacking-again.html
In case I made any mistake, please let me know!
You can follow @Shiftreduce.
Tip: mention @twtextapp on a Twitter thread with the keyword “unroll” to get a link to it.

Latest Threads Unrolled:
There are a lot of misconceptions about the Turkish diaspora in Germany. Since i just finished writing an essay about this topic I thought it's time to give other people
Read more
Las mejores calculadoras online en 2020A thread http://totumat.com/2020/11/26/las-mejores-calculadoras-online-en-2020/ Cuando se estudian asignaturas que requieren de cálculos complicados, nada mejor que contar con una buena calculadora.
Read more
Mitigating #ClimateChange is as much about taking up new techs as about leaving others behindMost studies focus on #coal's global downfall but another #energy tech decline is loomingRead my new
Read more