All articles tagged with #raspberry pi pico
A developer has created a library that enables the Raspberry Pi Pico to transmit data at 100 MBit/s Ethernet using bit-banging, making it possibly the first such implementation, though it is transmit-only and more complex than previous 10BASE-T setups.
A tiny, functional Macintosh replica called pico-mac-nano, built with a Raspberry Pi Pico and 3D-printed case, is available for purchase or DIY, running an emulated Mac OS and supporting USB peripherals, gaining attention on tech blogs.
Security researcher Thomas Roth has developed a tool using a $4 Raspberry Pi Pico to capture keys for Microsoft BitLocker-encrypted volumes from selected laptops in under a minute by sniffing traffic on the Low Pin Count (LPC) bus, potentially allowing unauthorized access to the data. While this method has limitations, including compatibility with specific Lenovo laptops and TPM connectivity, it highlights potential vulnerabilities in BitLocker security. Roth has released the source code and hardware design files for the tool on GitHub under the GNU General Public License 3.
Security researcher Stacksmashing demonstrated in a YouTube video that BitLocker encryption in Windows OS can be cracked in just 43 seconds using a $4 Raspberry Pi Pico, due to a design flaw in devices with dedicated TPMs. By directly accessing the hardware and extracting the encryption keys stored in the computer's Trusted Platform Module (TPM) via the LPC bus, threat actors can bypass BitLocker's encryption. This raises concerns about existing encryption methodologies and the need for cybersecurity researchers to identify and fix potential security loopholes.
YouTuber stacksmashing demonstrated how he used a $5 Raspberry Pi Pico to intercept BitLocker encryption keys via the Trusted Platform Module's unencrypted communication lanes, allowing him to decrypt data in 43 seconds. This method requires physical access to the device and an external TPM module, highlighting potential vulnerabilities in BitLocker's security. Microsoft acknowledges these attacks are possible but suggests they require sophisticated tools and long physical access, while newer devices with fTPM and BitLocker PIN configurations may offer more secure alternatives.
YouTuber stacksmashing demonstrated a major security flaw in Bitlocker encryption, using a sub-$10 Raspberry Pi Pico to bypass Windows Bitlocker in 43 seconds and steal the encryption keys. The flaw lies in the unencrypted communication lanes between the CPU and external TPM, allowing an attacker to sniff critical data and access the encryption keys. This flaw affects systems with external TPMs, while CPUs with built-in TPMs are not vulnerable.
The pico-WSPR-tx, developed by RPiks, is a low-cost radio transmitter that utilizes a Raspberry Pi Pico and a GPS receiver to encode and transmit data to the Weak Signal Propagation Reporter Network (WSPR). By using the Pico's GPIO pins for transmission, the beacon design eliminates the need for additional hardware, making it an affordable option for testing radio propagation conditions.
Kaluma, a lightweight JavaScript runtime, can now be installed on the Raspberry Pi Pico, which uses the RP2040 microcontroller. This allows developers to use familiar JavaScript tools and modules for file systems, graphics, networking, and more. The Kaluma command-line interface enables easy development and flashing of code to the Pico. This expansion of high-level languages on microcontrollers opens up embedded programming to a wider range of coders.
USBValve is an open-source tool created by Cesare Pizzi to detect suspicious USB activity. Using a Raspberry Pi Pico and an OLED screen, USBValve pretends to be a storage device and displays information about any unknown USB device plugged into it. This allows users to identify potential malicious behavior, such as unauthorized file access or immediate attempts to write to the filesystem. The low-cost and easy-to-use USBValve provides critical information for addressing real-world USB security threats.