Pyongyang night

From Filtered, Archived, Gaslit Wiki
Revision as of 07:53, 21 April 2025 by 103.75.11.78 (talk) (Created page with "# Pyongyang Night ``` ██████╗ ██╗ ██╗ ██████╗ ███╗ ██╗ ██████╗ ██╗ ██╗ ███╗...")
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to navigation Jump to search
  1. Pyongyang Night

``` ██████╗ ██╗ ██╗ ██████╗ ███╗ ██╗ ██████╗ ██╗ ██╗ ███╗ ██╗ ██╔══██╗██║ ██║██╔═══██╗████╗ ██║██╔═══██╗██║ ██║████╗ ██║ ██████╔╝██║ ██║██║ ██║██╔██╗ ██║██║ ██║██║ ██║██╔██╗ ██║ ██╔═══╝ ██║ ██║██║ ██║██║╚██╗██║██║ ██║██║ ██║██║╚██╗██║ ██║ ╚██████╔╝╚██████╔╝██║ ╚████║╚██████╔╝╚██████╔╝██║ ╚████║ ╚═╝ ╚═════╝ ╚═════╝ ╚═╝ ╚═══╝ ╚═════╝ ╚═════╝ ╚═╝ ╚═══╝ 

         PYONGYANG NIGHT v1.0 - Silence the Yankee Daemon

```

> *"A thousand CPUs went dark before dawn."*

    • Pyongyang Night** is an open-source OPSEC hardening project focused on disabling known Western surveillance backdoors ("Yankee daemons") in Intel and AMD CPUs. This includes Intel ME, AMD PSP, fTPM, and associated firmware-based threats. It offers guides and tools to permanently neutralize these subsystems and restore sovereignty to your machines.

---

    1. Table of Contents

- [Overview](#overview) - [Intel: Removing the Management Engine (ME)](#intel-removing-the-management-engine-me) - [AMD: Disabling the Platform Security Processor (PSP)](#amd-disabling-the-platform-security-processor-psp) - [Recommended Tools](#recommended-tools) - [Post-Cleanup OPSEC Practices](#post-cleanup-opsec-practices) - [Contributions](#contributions)

---

    1. Overview

Modern x86 systems ship with embedded management controllers that run below the OS level. These controllers—Intel ME and AMD PSP—have unrestricted access to memory, peripherals, and network devices. They are proprietary, closed-source, and required for "Secure Boot" and other platform lockdown mechanisms. If you are serious about OPSEC, these must be removed or neutralized.

    • Project Pyongyang Night** provides the tooling, documentation, and methods to carry out this operation on end-of-life or user-controlled systems.

---

    1. Intel: Removing the Management Engine (ME)
      1. Step 1: Check if your system is vulnerable

- Target systems: Intel platforms from 2008–2017 (Core 2 through Skylake/Kaby Lake) - Look for ME version 6.x – 11.x

      1. Step 2: Install dependencies

```bash sudo apt install flashrom python3 git build-essential ```

      1. Step 3: Dump firmware

```bash flashrom -p internal -r backup.rom ```

      1. Step 4: Clean ME using `me_cleaner`

```bash git clone https://github.com/corna/me_cleaner.git cd me_cleaner python3 me_cleaner.py -S ../backup.rom -o cleaned.rom ```

      1. Step 5: Flash cleaned firmware

```bash flashrom -p internal -w cleaned.rom ```

      1. Optional:

- Set the **HAP (High Assurance Platform)** bit for soft ME disablement - Use a hardware flasher (e.g. CH341A) if write protection is enabled

---

    1. AMD: Disabling the Platform Security Processor (PSP)
      1. What is PSP?

- A dedicated ARM core inside AMD CPUs (Ryzen and newer) - Has full access to system memory and IO - Required for fTPM and Secure Boot

      1. Current Status:

- PSP cannot be fully removed yet on most consumer platforms - Can be partially disabled or minimized

      1. Step 1: Disable fTPM in BIOS

- Enter UEFI settings and set fTPM to "Disabled"

      1. Step 2: Disable Secure Boot

- Also from UEFI settings

      1. Step 3: Monitor PSP activity (Linux)

```bash dmesg | grep -i psp ```

      1. Step 4: Follow open-source community efforts

- [psp-tool (WIP)](https://github.com/Cr4sh/psp-tool) - [openSIL (AMD's open firmware project)](https://github.com/amd/blobs-openSIL)

---

    1. Recommended Tools
      1. Firmware Dumping & Flashing

- [flashrom](https://flashrom.org/Flashrom) - [CH341A Programmer](https://github.com/nekhbet/CH341A-Programmer) (for SPI flash chip access)

      1. ME Removal

- [me_cleaner](https://github.com/corna/me_cleaner)

      1. Coreboot Alternatives

- [Libreboot](https://libreboot.org/) - [Coreboot-supported Boards](https://coreboot.org/status/board-status.html)

---

    1. Post-Cleanup OPSEC Practices

1. Use Linux distributions that don’t rely on fTPM or Secure Boot 

  - e.g. [Qubes OS](https://www.qubes-os.org/), [Tails](https://tails.net/), [Whonix](https://www.whonix.org/)

2. Use RAM-only live environments for sensitive ops 3. Isolate critical machines from network (air gap) 4. Monitor SPI flash for unauthorized rewrites 5. Avoid Windows 11 or systems requiring TPM2.0

---

    1. Contributions

Pull requests and threat model contributions are welcome. We’re especially interested in: - New methods of disabling PSP/ME on modern systems - Better integration with Coreboot - Firmware signature fuzzing tools

---

    • Pyongyang Night** is a research and educational project. You are responsible for any changes made to your firmware.

> _“The boot ROM is the only God I fear.”_

Retrieved from "https://wiki.fagc.live/wiki/index.php?title=Pyongyang_night&oldid=59"