DIY: Disabling Intel ME 'Backdoor' on your Computer
HTML-код
- Опубликовано: 7 окт 2024
- A complete guide to disabling Intel's 'computer within a computer', the Intel Management Engine. Easier than most people think, all you need is a Raspberry Pi and a breadboard. If you are using a motherboard with a non-removable BIOS, pick up an adapter:
Search "soic clip" on alibaba, and grab an 8 pin variety (or whatever your bios chip is).
Link to github repository for me_cleaner :
github.com/cor...
If your computer doesn't start, restore the original firmware by running:
./flashrom -p linux_spi:dev=/dev/spidev0.0,spispeed=10000 -c CHIP MODEL -w original_dump.bin
![Tee Grizzley - Robbery 8 [Official Video]](http://i.ytimg.com/vi/34_vkNV6wrU/mqdefault.jpg)
Now I know why a Japanese engineering firm in my country has all their computers offline and would move their data by plane.
Better tell them that Intel ME has embedded cellular communications
And it was know 20 years ago how everybody spied so that company is late
Before with winX you got hacked when you did windows update - without it you always got hacked , without installing a demofirewall you always got hacked and this with the risk the free cd from a magazine might be infected - without antivirus meant infection , go to ponsite and watch pics -infected since they let you watch the unedited orginal pics , You think your safe because you formatted you harddrive ..nope boootsector virus uploaded to your new windows 98... windows xp sp1 wasnt much better.
i heard about a Linux program that even after a re-format and then even an upgraded version of windows install... that this Linux app could recover lost DATA.... images videos etc... now, there was a process as to how to do this and it was lengthy... this tool/app is used in forensic science on stolen or found HDD's, and i feel like this has song validity as to this intel me shit
the military does it too. they have their own intranet on every major base abroad. not sure about stateside
> *Goes through all that trouble to disable IME*
> *Boots into Windows 10*
I'M DYING
There's a very clear difference between what IME does and what Win10 does.
@@nicki419 Both are malware by definition - give access to others and other programs, can install/edit/log directly contrary to permissions, and the list goes on. The end result is the same except W10 regularly does all of that whereas IME may never be used for any particular individual.
Exactly :D
@@hahahano2796 the patriot act is malware to our current timeline.
@@hahahano2796 Linux, by that definition, is malware as well then... Everything is logged and leaves a footprint in Linux unless you disable (which is the same for Windows) so you're point doesn't make much sense. In fact, almost every operating system that has a filesystem and some type of port to another piece of hardware would fit that definition...
"Fun" fact: this trick to disable the IME was intended by Intel to be available ONLY to government agencies, such as the NSA, for their own devices.
Now it’s available for everyone.
It's a shame that big laptop manufacturers decided to not include Intel ME disabling (especially the HAP disabling variant) feature in their firmware. Now therefore we did for our laptops 😇.
>Wonder about ME
>Uses Windows and Mac
Your privacy: Am I joke to you?
Windows is the problem. Mac, less so.
@@90210xyz Mac is even bigger problem beceause of iCloud and all of this mess which makes your data going to Apple servers. If you really want to protect your privacy, you shouldn't use any Apple, Google, Microsoft or Facebook services. You should use only free software on your PC, which is much easier to say than to do. But using Linux with even with some non-free parts and non-free BIOS is already much safer.
The worst privacy nightmare are smartphones. The most efficient way to protect yourself is just not using them. But if you must, you should use Android device with AOSP/LineageOS loaded on without Google apps including Google Play. You can use alternative as F-Droid
nawo266 OK, how many scandals has Apple been for privacy concerns? Because I recall none. And iCloud is like any cloud storage solution, if you can trust cloud storage, you can trust iCloud. And if you don’t, you don’t have to enable it! At least something is clear: out of the big three companies, Apple is the best when it comes to privacy.
Oh, and if you’re really concerned about privacy, why are you using RUclips?
@@GRBtutorials Apple is better than Windows for privacy, but it still collects far more data than it needs to. If you do care about your privacy, you know where to go. Install Arch. Or hell, go for Gentoo or even a Linux For Scratch install if you're a masochist since you're manually compiling everything, but at least you know what's going on under the hood.
Apple protects terrorists, that isn't the problem. Windows on the other hand...
This is like jail breaking on a whole other level
Quote from the Github repository:
"Before Nehalem (ME version 6, 2008/2009) the ME firmware could be removed completely from the flash chip by setting a couple of bits inside the flash descriptor, effectively disabling it.
Starting from Nehalem the Intel ME firmware *_can't be removed anymore_* : without a valid firmware the PC shuts off forcefully after 30 minutes, probably as an attempt to enforce the Intel Anti-Theft policies.
However, while Intel ME *_can't be turned off completely_* , it is still possible to modify its firmware up to a point where Intel ME is active only during the boot process, effectively disabling it during the normal operation, which is what me_cleaner tries to accomplish."
So it still can’t be turned off completely? Yikes
@@garyvte Exactly
@@garyvte Not being able to disable it completely is better than not being able to disable it at all
Basically the IME goes to sleep after the Bootloader takes over.
@@zyan983 if that is true, then the Intel ME has no purpose at all. Unless it can somehow read uninitialized filesystem data, it literally is causing no harm to you. Before the boot sector in the bios runs, there is no chance of internet communication, initializing file systems or even entering 32/x64 bit protected/long modes.
i busted out laughing when the windows logo appeared
Wow, I guess they took, "Intel, the computer inside" to a whole new level, huh?
Intel: backdoor inside 😏🤣
It was never 'the computer inside', just 'intel inside'
@@matturner6890 On the old ads it said "The Computer Inside"
ruclips.net/video/M85zh9honZ4/видео.html
@@matturner6890 yeah, intelligence agency inside my CPU
Intel is Israel owned company, not surprising. They should call it MOSSAD inside. :-) Research Unit 8200.
Intel ME cannot be disabled. It is embedded in the CPU and if you successfully killed off the Intel ME in your CPU, your CPU wouldn't start at all. What you are doing is disabling the BIOS code that talks to and enumerates Intel ME stuff and makes the hardware interfaces available to the OS. The ME is still running on your CPU and still has complete control over it.
Thanks for that explanation, as I was just going to ask how he knows the ME is actually disabled. It didn't make sense to me that one could modify bios when this ME is built into the CPU itself. Cheers!
@@TecraTube Supposedly, there's a flag that's undocumented which can be used to turn off the ME, inserted at the request of a three-letter agency for their computers. Even if it works as advertised, it can't fully disable the ME. It's still required for processor initialization and enabled during BIOS startup. A UEFI rootkit can easily get around this, for example.
@@LuggageStardate No, it can't. The ME is in the processor. It's not a BIOS thing.
@@LuggageStardate it only cleans the useless stuff. The 84k one keeps all the spy abilities
@@JodyBruchon Imagine you have a little guy living in your house, you can't get rid of him, and he reports everything you are doing and saying to his masters using a walkie talkie. You don't like this, so you smash his walkie talkie. He's still there, spying on you all the time, but he can no longer report anything back to his masters.
Bios modding will not stop IME
It certainly is not gonna stop IME, but it remove the backdoor.
@@GregorianMG the ime sits at the permission level -3....it controls and bios and everything on the system
Well IME may be wherever, but if it lacks code, then it does not work.
This code is stored in BIOS, same as SMM, which may be backdoor as well
@@GregorianMG Hahahahaha remove backdoor? Never hahahaha 🤣
How do I stop the psp of amd cuz like who has intel these days
And this is why I was always grateful for my computer nerd friends. I would experiment with my computer and they would come and fix it. I got a "how the hell did you do this?" or "seriously dude, wtf were you trying to do?" a few times, but then they would figure out how to fix it. I just couldn't keep up with them. So I just stuck to being an art nerd. But THIS is why they have a house and I don't.
You have a good memory to be able to explain the procedure seamlessly.
Thanks! But there are definitely a few cuts in the video that are done "seamlessly".
@@yoonsikp lol
Question: It's pretty self-evident that AMD would be doing something similar, however it has been a lot quieter and better hidden. What do you need to worry about for AMD, and can you disable it as well?
No, but this is a pretty dumb microcontroller with some extra hardware crypto peripherals. It doesn't know how your OS works. It could theoretically monitor inputs and outputs, like keyboard/mouse or take screenshots.
1. Setup a VPN server on a Raspberry Pi
2. Connect your computer directly to that
3. Setup firewall rules on the Pi that discards any packets from your PC except to the VPN server. Don't setup the firewall on the backdoored machine, as ME/PSP bypass the OS.
4. The AMD PSP/Intel ME doesn't know how to talk to the VPN server, so it can't exfiltrate anything
@@marc-andreservant201 what if the raspberry pi has a hidden management engine
AMD PSP , ruclips.net/video/HNwWQ9zGT-8/видео.html&ab_channel=MentalOutlaw
@@minecraftminertime connect the raspberry pi to a pico microcontroller
Amd it's called PSP
Basically serves nearly same purposes
this is amazing! great research, great info, superb delivery!
@Skela Tonne , did you try it without success?
ok I've hacked into their mainframes and disabled their algorithms
Now wait a minute I saw you just 3 videos ago
Could it be, that Intel is externally "Integrated electronics", but internally "Intelligence" (as in, information gathering)?
Kitten
@@xx_mrbean_xx9918 miau?
@@JFDSmit-rm6tw You have a powerful Brain
Many people say so, but my report cards showed the opposite. So I don't believe everything I read or hear.
@@JFDSmit-rm6tw report cards and school grades only measure what you can memorize in a given time, it doesn't necessarily always measure your learning or even knowledge for that matter.
For whom saying intel ME cannot be disabled in bios...
Please note that even 4KB microcode cost half of the chip. And for more the new generation coming out, intel forbid you to modify bios on your own. If me_cleaner not work than that makes no sense anymore.
bear in mind that me_cleaner can protect one single backdoor from intel only. Thousands of backdoors from your cell phone firmware ... no one blame it.
What do you mean by thay last sentence?
@@AJ-gm7vf almost everything is compromised unless its hardware and software source code is freely available and is inspected thoroughly by both independent individuals aswell as corporations and cyber security groups.
even then this is just a theoretical as day by day people still find ways to bend software to their will and potentially use it for malice
> disable intel ME
> uses windows
Windows is not associated with a third party like Intel is. at least, not as far as most people know.
Also, are you one of those people that think you are safe as long as you are running mac OS? If so you will surely be disappointed.
@@lm6036 Linux iz da wae
but the really cool bois use FreeBSD, I heard
@surfer300ZX then stop buying there stuff if there are evil and want do dominate us
Todo list:
Dont Buy any electronics
Dont Consume any Media
Relax on your grass floor because the wooden floor is also made by someone who may want to controll you
@@hahahano2796 insulting someone is never a good idea
also i mean that if you dont trust them why are you using their products?
@@JustPlayerDE Oh noes, the internet police will get me for calling a limp dicked soyboi a limp dicked soyboi and telling them to learn! Also, can you specify who "them" is and why they have to be "trusted" to use their product? You seem to be using vague not-quite-related questions and assertions to ignore the good advice of increasing ones knowledge and destroy evil where possible.
Instructions unclear, my computer and i are now married..
@GoodISnipr ... I don't know if I can fill the void I feel... It told me it's going through a crisis... 😔
Dat muzak....dude you killing us
I did this to a laptop two years ago because somebody was coming in on the IME. It took the intruders two years to figure out a way to get back in again somehow. So now I have done a port forwarding on all of the IME ports that route everything to port 80 and a raspberry pi 3+ running a web server.
you are a person of interest to them. man, what do you do? Since Intel is Israel owned company They should call it "MOSSAD inside". :-) Research Unit 8200.
@@zeeman2594 I seriously doubt that. I'm nobody of interest to anyone. I don't do anything interesting. Someone in the house just happened to own a Dell laptop that was known to have a quite vulnerable IME. Quite a few computers back then had the same vulnerability. Intel just simply screwed up very badly. I had that laptop retired immediately after they got back in. The last thing they did was take the password file and run it through a password cracker. Then they posted the results on the laptop's hard drive for me to find. How they got back in with the IME nuetered, I don't know. Since that laptop has been retired, there has been no further problems.
@@emuhill how do i do that port forwarding?
do you have a link to a tutorial?
@@egyptcountryball2288 I was doing the port forwarding stuff through the wifi router.
@@emuhill do we need a raspberry pi 3+ running a web server? what is this for sir?
I decided to go a step further and type make -j4000000000 and time started moving backwards and had to wait 10 years until you uploaded the video to warn others not to do what I did.
Can someone explain how it works
Hi, it works by disabling a single bit in the firmware: "a mechanism that can disable Intel ME after hardware is initialized and the main processor starts.. we describe how we discovered this undocumented mode and how it is connected with the U.S. government's High Assurance Platform (HAP) program. ... the name belongs to a trusted platform program linked to the U.S. National Security Agency (NSA)"
@@yoonsikp Can you please explain what everything is going in the video?
@@johnnyblack4261 Watch with cc on
A small sized donald trump gives the intel backdoor a headbutt
@@yowut8075 They're going to build a wall and make the southbridge pay for it!
> goes through the trouble of disabling intel ME
> uses windows
> bruh
But seriously thanks for the vid man
If disabling intel me is a matter of making changes to the bios I wonder why they didn't build a "disable spyware" into the bios setup menu. I guess it was against the companys contract with intel or something.
it's not such matter, mate. Intel ME still running, but unable to communicate.
Instructions were unclear... My pc is now a supercomputer.
Backup the whole Internet and transfer to Internet 3.0
@@edstar83 *Backs up the Internet.* Wait a second...
I only backed up 4chan...
@@swagitachiuchiha5012 Your supercomputer is now supertoxic. I hope you're proud of yourself, you madman...
For those Intel Core i5 or i7 with VPRO. You can disable Intel Management Engine BIOS.
Noel John G. Quezon what about i9?
>Disables Intel ME
>Runs Windows ME
One day chinese version of intel & amd will give them a hard competition.
yes, and they will have two chips.
WoW and the Chinese govt simply gets the backdoor access now. Great solution.🙄
it's called Huawei
Better, cheaper hardware... filed with 3x more backdoors and spyware. Oh, and the Bfirmware will require a code to flash. A code they won't provide.
Yes, and then your government will raise taxes so it could buy the data from a shinji agency in addition to mining it itself. And get a pre-compiled social credit score with it.
7:52 "If your output looks anything like this, your dump was successfull." Ew, gross
I read this comment as he was saying it. I was thinking "Thank you I eat fiberous foods."
😂🤣😂 don’t forget to flush!
It maybe easier to just make your own processor at this stage...
openSPARC is a good place to start
Ah man, you have gud taste in music.
Thanks for the guide! I wonder how this actually works though if ME is built into the hardware
Benjamin Brady it doesn't, technically
Barker Tech Guys has been able to monitor the AMT calls. This thing sends encrypted data to what is presumed to be a remote location. Though it's impossible to see WHAT is being sent, it appears to become active when you start typing, it will periodically send in bursts (assumed to be screenshots, it's only speculation) as well as a constant update of what may be metadata. The flavor of Minix running on the CPU is based on a kind of BSD, closed source and a proprietary iteration, however, running FreeBSD as your main OS seems to "not play nice" with ME or any AMT protocol for that matter (AMD's TeeOS). Windows, Mac, and every Linux distro has a layer that relays AMT calls to the ME. FreeBSD showed very limited activity.
Israel inside
so Intel is even worse than Huawei
@Вероника Заглотова How is it called ?
@Вероника Заглотова AMD has same level, but can be disabled on bios.
@Вероника Заглотова forum.level1techs.com/t/unverified-amd-to-allow-disabling-psp-in-next-agesa-update/122202/ from this source. I have Lenovo Z40-75 and A10 7300 with update bios and i can disable AMD PSP settings. Depending on motherboard or laptop manufacturer may vary.
@@mylipho60 The disable option is useless since we can't tell if its actually been disabled. AMD firmware is open source except for the PSP which is closed source.
@@zyan983 I can feel when AMD PSP is actually disabled, performance also increased, and system more responsive, just like when Spectre & Meltdown disabled on intel side.
>removes ME
>proceed to boot Windows
Remember, Intel Inside is Mossad Inside. Same thing with AMD. AMD uses Intel's CPU instruction sets. If you don't want the deep state to be able to spy on you, do what is done in this video, get a Linux distro which isn't Ubuntu, because they sell your data to Amazon and possibly to the deep state as well, and avoid using anything Google related. The only Google thing I use is RUclips. Use DuckDuckGo as your search engine and an open source web browser. I'm currently using Firefox, but make sure to change the settings so Firefox won't collect any data on you. For an email service, I recommend Yandex mail (a Russian provider) or ProtonMail (encrypts everything so only you have the key). You could also look into Qubes OS, which is what Edward Snowden uses.
If any of this was true, you would not be allowed to know it.
@@itstheweirdguy Information leaks out sometimes. That's why censorship is a thing. People put facts together to come to logical conclusions without having absolute proof or the approval of authoritarian media.
What is the point of disabling Intel ME backdoor if you are running Windows?
If you do this and you still run Windows 10 you're still running an OS that is a literal backdoor on your pc. So it wont stop the spy agencies from being able to access you. You must run a non compromised OS as well. lol..
If you think tampering with regedit can make W10 secure, you're a naive cretin, probably a child. @@astral2048
You cant disable it, Intel made it a critical component of the CPU that if missing or not working will simply result in the cpu failing to start at all. Changing stuff in the bios and running some random linux commands isn't going to do jack shit. I'm certain its a physical component inside the CPU somewhere that works completely independent from the rest of the CPU or anything else on your system
Is that National Park from Pokémon Gold? Very nice.
Fuckin knew I recognised it. Thanks for the confirmation I was going mad for s second. I think it's a midi remix theres like parts in it I dont remember at all
Does all of this to still run windows
What prevents Intel from "encouraging" MS from flashing the BIOS back in Windows update? It seems it would be easy for them to do this.
The best way would be to bend the write enable pin, so the BIOS can no longer be flashed. I'll have to take a look and see if this is possible.
@@yoonsikp That seems like it could work. I hope you you don't destroy your board in the process 😬
@@yoonsikp Or don't use Windows 10, which basically invalidates all the work done here for the sake of privacy.
What is the point?
Raspberry pi repository have flashrom and it may be more recent, not to mention it is built for raspberry pi os
"Haha lphabet boys... I disabled ME. You can't stop me now!!!" -proceeds to boot windows *facepalm*
I thought the IME is on a seperate stand-alone microcontroller on the cpu die, I can't see how messing around with the bios chip would have any effect...🤔
The ME is not activated by the BIOS on boot. That is the effect.
I dont have a Raspberry Pi so i used a CH341A and it really worked.
7:02 Running cd with no arguments also brings you home. You don't need the tilde.
Thanks!
>Disables ME
>Uses Computer
Ok 1st off! Biggest pain in the ass ever for flashing a ROM BIOS Chip I have ever seen.
.. then show us a better way?
@@argon1611 If I find one' I will let you know. The best way I can think of until then is not to use intel or amd!
@@workinalday4351 I am wondering what your pc is runnuing on
@@fernabianer1898 potato
sudo rm intel*
sudo apt-get install ryzen
Rômulo Costa AMD has its own IME (i forgot its name).
Nothing would change.
@@morioh9948 PSP I think
Ryzen aint better for all we know
@@kris10an64 the only market answer is really arm a53
AMD Platform Security Processor.
I never understand why the people who are smart enough to make these instructions and programs don't make a script that automates the process. Ask for your chip model, ask for file output/input directory, automate all steps. If missing dependencies automate install them. Why have people go through all this if it can be made easier?
I think they just have different priorities. Also people who like making low level software seem to hate making UIs, at least from experience.
But doesn't raspberry pi just have a hardware-installed backdoor because, of course it does?
Honestly it wont matter, they check to see who disabled it and then investigate further. Within 48 hours, they will black bag job your house and turn it back on.
I couldnt watchwith that screeching loud chiptune. It was as loud as your voice while you spoke and louder than my will to live everywhere else
I do not believe you can disable it through bios completely though. Why would Intel enable it to be done so easily.
Because this isn't "easy" for 99% of people. So even if some people disable it, most won't.
Try doing that on a modern board.
SM96 I’m pretty sure it still works on them too... When you say new how new?
*Intel would like to know your location*
I'm pretty sure IME is in the CPU chip, I don't see how messing with the BIOS is going to shut it down.
The CPU has no permanent storage(excluding conspiracy theories) so on bootup(before the CPU is powered) it must be setup/configured with data and instructions from the processor in the controlling chipset(BIOS).
Which gets its data and instructions by having its address space overlap the flat binary stored on the eeprom(this chip).... computers starting computers
Fun fact. The RaspberryPi's controlling chipset is actually onboard the GPU, in that case the GPU is powered first and bootstraps the CPU. Though how that GPU bootstraps I'm not sure.
@@MrTurboTash nah the reason is 100x more simpler: the NSA made Intel insert a flag into the BIOS to disable it on their computers, since the government doesn't want their own computers having giant holes in their systems.
@@NateROCKS112 you're right, forgot about that
@@NateROCKS112 dude did you miss the whole supermicro server boards drama from October 2018??
apparently the backdoor has a backdoor 🤔😵
>Has trouble disabling IME
>Calls Indian tech scam hotline
Thank you for this very informative video. Would like to know if there is a site where you can get the BIOS chip model number for different motherboards. I have a HP ZBook 17 G4. I know its a Winbond SOIC-8 but I can't quite read the lettering on the chip. Also, that blue BIOS adapter you had on the video for soldered-on chips, where'd you get that ? I'd like to get one. Thanks !
Alternatively if you don't want to take any risks, you can put your computers behind pfSense router and configure pfSense to deny all incoming traffic by default, like how Gufw firewall in Linux denies all incoming traffic by default. This way, anything trying to remote into your computer will be denied access right off the bat.
As far as I know me works independent from the os network stack. With wireshark you can not see packets sent by ime. If the firewall runs on any Intel chip after 2008 you got a hole in your fw itself..... this is very concerning .....
To think and believe big money governments and organizations would use known and documented protocols for eventual secret communication is shooting oneself in the foot I believe as regards dissecting the eventual process in question.
The music sucks :( It gets too loud brother
Thank God I use my old Gateway XT for everything.
I couldn't finish watching it he kept mispronouncing bios and sudo. And the music sounded like someone was playing a video game the whole time
'sudo' is actually pronounced (soo - doo) like he pronounced it. Most people pronounce it wrong.
@@effsixteenblock50 thank you for correcting me.
@@effsixteenblock50 it makes sense why it’s pronounced “soodoo”, because it’s super user do, but I don’t pronounce the last syllable of cupboard like how I say the word board. Soo-doh will stay.
@@effsixteenblock50 it drives me nuts that so many people pronounce it as pseudo.
I don't know anything you said bro but the music is pretty good!
The music is created by the channel Mewmore. It's a remix of Pokémon HG/SS national park.
And how about ARM architecture? Will this cost Intel and AMD produced X86, X64 architecture an ARM and a leg :-) ?
@Tony Lewis Risc V is literally open sourced, you could download their schematics and manufacture it yourself if you wanted. I don't think they'd really risk it
@Tony Lewis Yes but that also ruins that manufacturer's brand and reputation, and with all these new FPGA manufacturers popping up in China and Southern Asia I don't think companiesw would risk losing to competition.
>Disables IME
>Uses Windows 10
Just use Ubuntu (A popular GNU/Linux distro). It will respect your privacy and will not contain the PRISM program backdoors.
Or maybe Tails (:
Ubuntu is like just a joke in Linux in privacy point of view. Embedded an amazon apps inside.
Now what about the AMD equivalent?
can intel me and amd, access or be accessed by internet, without wifi card ?
is there any performance difference between a chip with disabled me and a chip with me enabled? because intel claims that the primary reason for having me is to offer greater performance.
What else can Intel claim? Of course they won't say that the ME's purpose is to spy on you.
beautiful background music
Might be wrong but if I've uderstood right, intel me is run in the processor, not the BIOS chip, please correct me if im wrong
Ur wrong
Other dude is on drugs, it IS on the CPU die but the BIOS is responsible for turning it on. I think what me_cleaner does is prevent it from running outside of boot time. If the chip doesn't start at boot it forces shutdowns after some time.
Great video man, getting up the courage to try this.
Hey Buddy, I made a companion video for this and promoted your video in it. ruclips.net/video/8R4QXUWB274/видео.html
@@DragonflyComputers , is this the video where you got the courage?
"CMOS battery every computer.. laptop... has them"
Well actually no! There are laptops around which don't have a CMOS battery. Instead it used the main laptop battery.
The most ridiculous thing ever. Remove battery? BIOS defaults. Don't use the laptop often? BIOS defaults.
"it may take a while for your system to boot"
*system boots immediately*
Editing
Wouldn’t a bios update undo what you just did?
It could. Or the update will just fail.
Then don't update your BIOS lol. Only update it if you have compatibility issues with upgraded hardware.
t4ils exactly!
For the impatient, the Intel ME can be destroyed by tossing your computer into a spewing volcano, along with a few vestal virgins.
What is the use of doing all this if you're using MacOS or Windows, which are backdoor in itself?
thats why i use linux. MacOS and windows is a mess
Tails is the best
It is hardware flaw. There is no way to fix unless physical tampering.
one less backdoor, then board up the other backdoors when found.
It doesn't have to be Windows; if the hardware itself is compromised for example by the Intel Management Engine (Intel ME) or the AMD Platform Security Processor (AMD PSP), you even have dataleaks, including maybe keylogging and maybe even encryption keys.. you never know..
Damn... Getting nostalgic over an IME video
I love the MIDI music, where did you get it?
Pretty sure this is not midi music, more like chiptune
First song is the park theme from Pokemon gold/silver. Not watching the whole video idk if there's another song later. Enjoy
@@christopherknauss1697 Found it. Thank you :)
@@christopherknauss1697 at 3:50 the music changes, but its probably from pokemon gold aswell
The exact music is a remix of National Park Theme by Mewmore
Well done chief!!
disable it by using a PowerPC Mac or Pentium 3 plebs
Bonus points for a Socket 7 Cyrix 6x86
This is way more complicated than what I had in mind, but if it works, damn skippy.
This doesn't fix anything, the ME has higher privileges than the kernel so it does not matter.
It remove the backdoor instead lol.
@@GregorianMG It does not remove a thing, you think if you "disable" it through the bios it will care if it's ranked higher than the bios privilege wise?
@@no_mnom but thats not just the bios thats the eprom one of the primary controllers of the board
@@no_mnom well yeah I'd think Intel would reeeeaaaally kinda like to obey the NSA, who specifically asked them to put this flag in the BIOS, for use on their own government computers
EDIT: also, me_cleaner removes all of the junk code in the chipset. The CPU still needs to get its instructions from the BIOS; while Intel normally has checks on the code, luckily for us (or unluckily, depending on your view) the checks are kind of bad
@@NateROCKS112 Oh my fucking god no they didn't. 😤 that's a rumor.
Love that bgm matches the vid
annoying BG Music
Hello am 48 year man from somalia. Sorry for my bed england. I selled my wife for internet connection for play "conter stirk" and i want to become the goodest player like you I play with 400 ping on brazil server and i am Global elite 2. pls no copy pasterino my story."
Great video. Nevermind the haters, love the national Park theme remix. Keep it up!
is this backdoor used by the NSA? does this mean that every computer that has a cpu in it is being tracked by the NSA?
Every computer after the core 2 duo. The core 2 duo was the last not to have this security flaw.
oh.... and AMD has the same kind of system.
every computer made from 2008 until today
No, AMD PSP was introduced in CPUs >=2013. @@1kalicid
I am not sure but Intel's Research & Development Factory is in Israel
IME is like a kernal. You cannot remove or disable it without brick.
No you didn't. Read top comment threads.@@astral2048
back.ground.music.drives.me.crazy
Music makes you lose control
the ME is in the processor but u can disable it in the bios or third party softrware is the best choice
Please remove ALL MUSIC
yes please
The deep state hacked into his computer using IME and added this annoying background music to prevent people from being able to follow his instructions.
Is it really 8 minutes on "how to use an expensive raspberry pi instead of a cheap CH341a to dump the epprom" ?
USA, EU: Don't Use Huawei, Backdoors!!!1111
The music you play on the video is more annoying than the intel me 😏
Hey, my knowledge surrounding this area is very limited, but I have a question regardless nevertheless:
Is there any negative effects that comes from doing this? Also, is there no other sort of "backdoor" or security issues that I need to consider when it comes to standard hardware on a pc? :p
1) If you are running windows as your main operating system, forget about IME, if you were that paranoid from the beginning, Windows wouldn't even be an option for you.
2)I believe that IME cannot be disabled, and as said in another comment, if it was your computer probably wouldn't work, watch a video on the functions that we know IME does and you will understand that it also has its upsides.
@IT Developer Or you can be smart and go with Ryzen...
@IT Developer As far as I know, Ryzen is only affected if you have physical access to the hardware (at that point you've lost anyway). Please correct me if I'm wrong.
@IT Developer It's funny, I'm building my own 8bit breadboard CPU, which can't be hijacked except through hardware, as software barely exists on it.
Thanks for the tips y'all. I appreciate it. Scary times we live in :' )
I there is just a way to do this for a living re flashing all the bios chips out there that need it.
If you want to get assassinated or arrested, go for it, try making a business out of it. I'll invest 1 GBP for 49%
The situation when government has gone mad.
*makes video*
*youtube:* this video is no longer availeble due a copyright claim by Intel