A set of tools to retrieve and parse TCG measured boot logs. Microsoft refers to these as Windows Boot Confirguration Logs (WBCL). In order to retrieve these logs, you must be running at least Windows 8 with the TPM enabled.
☆69Jun 17, 2018Updated 7 years ago
Alternatives and similar repositories for TCGLogTools
Users that are interested in TCGLogTools are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- A PowerShell module to assist in parsing and managing catalog files.☆22Jan 12, 2017Updated 9 years ago
- A proof-of-concept subject interface package (SIP) used to demonstrate digital signature subversion attacks.☆101Jan 7, 2018Updated 8 years ago
- All TMF files that I extracted from Microsoft PDBs.☆14Jun 29, 2019Updated 6 years ago
- Fix acquired .evt - Windows Event Log files (Forensics)☆18Mar 29, 2016Updated 10 years ago
- Sysmon configuration☆65Jul 12, 2018Updated 7 years ago
- DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- Defender for Endpoint☆28Mar 28, 2026Updated last week
- Windows SSPI wrapper in prue python☆15Nov 29, 2023Updated 2 years ago
- Sysmon Tools for PowerShell☆233Aug 17, 2018Updated 7 years ago
- A reference Device Guard code integrity policy consisting of FilePublisher deny rules for published Device Guard configuration bypasses☆115May 27, 2017Updated 8 years ago
- A PowerShell binding for the Unicorn Engine☆17Dec 27, 2015Updated 10 years ago
- Invoke CyberArk PARClient.exe Utility with PowerShell☆12Feb 12, 2020Updated 6 years ago
- A simple python script to check evil Visual Studio projects☆21Oct 13, 2023Updated 2 years ago
- Cross platform PowerShell implementation of Authenticode signing and verification☆41Sep 30, 2025Updated 6 months ago
- All materials from our Black Hat 2018 "Subverting Sysmon" talk☆135Aug 10, 2018Updated 7 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting with the flexibility to host WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Cloudways by DigitalOcean.
- Splunk app for Threat hunting☆15Nov 15, 2018Updated 7 years ago
- A library for fast parse & import of Windows Master File Table($MFT) into Elasticsearch.☆12Jun 23, 2025Updated 9 months ago
- SoulExtraction is a windows driver library for extracting cert information in windows drivers☆25Feb 12, 2023Updated 3 years ago
- Rewritten Clevis TPM2 PIN☆18Feb 20, 2026Updated last month
- Uses WMI Event Win32_ModuleLoadTrace to monitor module loading. Provides filters, and detailed data. Has an option to monitor for CLR Inj…☆42May 9, 2019Updated 6 years ago
- Placeholder for my detection repo and misc detection engineering content☆42Oct 20, 2023Updated 2 years ago
- A simple shellcode runner☆23Apr 20, 2014Updated 11 years ago
- MSIX App Attach repo☆25Sep 16, 2025Updated 6 months ago
- A library implementing a generic SQL like query language.☆21Mar 25, 2026Updated 2 weeks ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting with the flexibility to host WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Cloudways by DigitalOcean.
- Containerized IDA Pro (Windows/Wine), DEPRECIATED, please use https://github.com/NyaMisty/docker-wine-ida☆26Nov 23, 2017Updated 8 years ago
- Honeycomb☆13Dec 12, 2025Updated 3 months ago
- PowerShell Tools for CyberArk☆19Dec 13, 2019Updated 6 years ago
- OVF module to test the basic operation of an Active Directory domain controller using Pester tests☆23Aug 15, 2016Updated 9 years ago
- a screen snapshot application under UEFI☆10Jan 22, 2014Updated 12 years ago
- Materials from my Circle City Con talk: Fantastic OSINT (and where to find it)☆23Jul 1, 2016Updated 9 years ago
- A ~$20.00 tool for logging data/testing devices with a Wiegand Interface. Can be used to create a portable RFID reader or installed direc…☆10Mar 25, 2018Updated 8 years ago
- ShellSweeping the evil.☆53Jun 18, 2024Updated last year
- A collection of my yara rules☆34Jul 11, 2023Updated 2 years ago
- Open source password manager - Proton Pass • AdSecurely store, share, and autofill your credentials with Proton Pass, the end-to-end encrypted password manager trusted by millions.
- This is both a terrible and wonderful idea.☆12Oct 2, 2019Updated 6 years ago
- Capstone disassembly framework: Core + Python + Ocaml + Java + C# bindings☆18Jan 25, 2014Updated 12 years ago
- ☆29Nov 22, 2023Updated 2 years ago
- ☆24Aug 27, 2021Updated 4 years ago
- ☆30Dec 20, 2025Updated 3 months ago
- CMOS De-Animator v3☆19Apr 28, 2021Updated 4 years ago
- Twitter Bot to perform advanced search and automated response☆13Dec 22, 2017Updated 8 years ago