Since several years ago, Intel has started putting a dedicated microcontroller ("Management Engine" aka ME) into their motherboard chipsets. Originally intended for chipset management tasks, with each generation the ME gets a more and more active role. It works independently from the main CPU, can be active even when the rest of the system is powered off, and has a dedicated connection to the network interface for out-of-band networking which bypasses the main CPU and the installed OS. In recent models, the ME is responsible for features like: Intel Active Management Technology: remote management of PCs even when they\'re powered off, remote KVM, IDE redirection for remote boot and more. Intel Identity Protection Technology: hardware-based two-factor authentication which can\'t be affected by the host software Intel Anti-Theft Technology: remotely disable a stolen or lost PC (over network or over cellular connection if the PC has one) and more The talk will describe the internals of the ME. Where and how the ME firmware is stored The layout of the firmware area How to extract components and analyze them The modules of the ME and their tasks Interactions between OS, BIOS and ME firmware