Sharing experimental approach for assessing UEFI firmware integrity on a laptop - extracting the dumped firmware PE and submitting them to MCRIT. Then proceeding on min-hashing comparison with editor's published firmware images to hunt for malicious executables.
WARNING: work in progress and artisanal - not a industrialized pipeline : we used ducktape :)