A set of tools to retrieve and parse TCG measured boot logs. Microsoft refers to these as Windows Boot Confirguration Logs (WBCL). In order to retrieve these logs, you must be running at least Windows 8 with the TPM enabled.
☆69Jun 17, 2018Updated 7 years ago
Alternatives and similar repositories for TCGLogTools
Users that are interested in TCGLogTools are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- A PowerShell module to assist in parsing and managing catalog files.☆22Jan 12, 2017Updated 9 years ago
- BCD is a module to interact with boot configuration data (BCD) either locally or remotely using the ROOT/WMI:Bcd* WMI classes. The functi…☆63Aug 16, 2020Updated 5 years ago
- All TMF files that I extracted from Microsoft PDBs.☆14Jun 29, 2019Updated 6 years ago
- Fix acquired .evt - Windows Event Log files (Forensics)☆18Mar 29, 2016Updated 10 years ago
- Sysmon configuration☆64Jul 12, 2018Updated 7 years ago
- End-to-end encrypted email - Proton Mail • AdSpecial offer: 40% Off Yearly / 80% Off First Month. All Proton services are open source and independently audited for security.
- Defender for Endpoint☆28Mar 28, 2026Updated last month
- Windows SSPI wrapper in prue python☆15Nov 29, 2023Updated 2 years ago
- Sysmon Tools for PowerShell☆233Aug 17, 2018Updated 7 years ago
- A reference Device Guard code integrity policy consisting of FilePublisher deny rules for published Device Guard configuration bypasses☆114May 27, 2017Updated 8 years ago
- A PowerShell binding for the Unicorn Engine☆17Dec 27, 2015Updated 10 years ago
- Autotuner Windows 10 for awesome perfomance setting, privacy and security.☆12Dec 4, 2018Updated 7 years ago
- Invoke CyberArk PARClient.exe Utility with PowerShell☆12Feb 12, 2020Updated 6 years ago
- Cross platform PowerShell implementation of Authenticode signing and verification☆42May 1, 2026Updated 2 weeks ago
- A collection of Terraform and Ansible scripts that automatically (and quickly) deploys a small Velociraptor R&D lab.☆22Apr 16, 2021Updated 5 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- All materials from our Black Hat 2018 "Subverting Sysmon" talk☆135Aug 10, 2018Updated 7 years ago
- A library for fast parse & import of Windows Master File Table($MFT) into Elasticsearch.☆12May 11, 2026Updated last week
- SoulExtraction is a windows driver library for extracting cert information in windows drivers☆24Feb 12, 2023Updated 3 years ago
- Uses WMI Event Win32_ModuleLoadTrace to monitor module loading. Provides filters, and detailed data. Has an option to monitor for CLR Inj…☆42May 9, 2019Updated 7 years ago
- Placeholder for my detection repo and misc detection engineering content☆42Oct 20, 2023Updated 2 years ago
- A simple shellcode runner☆23Apr 20, 2014Updated 12 years ago
- MSIX App Attach repo☆25Sep 16, 2025Updated 8 months ago
- A library implementing a generic SQL like query language.☆21May 13, 2026Updated last week
- Containerized IDA Pro (Windows/Wine), DEPRECIATED, please use https://github.com/NyaMisty/docker-wine-ida☆26Nov 23, 2017Updated 8 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Using MMIO (Memory-Mapped I/O) to read TPM 2.0 public Endorsement Key.☆54May 29, 2024Updated last year
- Just Another broken Registry Parser (JARP)☆16May 23, 2024Updated last year
- PowerShell module to interact with api.spacexdata.com☆28Dec 10, 2019Updated 6 years ago
- ☆10Oct 30, 2016Updated 9 years ago
- OVF module to test the basic operation of an Active Directory domain controller using Pester tests☆23Aug 15, 2016Updated 9 years ago
- Adding trace to DesignStart for easier side-channel analysis on the CW305 target. Also supports PhyWhisperer.☆17Feb 19, 2025Updated last year
- Materials from my Circle City Con talk: Fantastic OSINT (and where to find it)☆23Jul 1, 2016Updated 9 years ago
- A ~$20.00 tool for logging data/testing devices with a Wiegand Interface. Can be used to create a portable RFID reader or installed direc…☆10Mar 25, 2018Updated 8 years ago
- ShellSweeping the evil.☆53Jun 18, 2024Updated last year
- Open source password manager - Proton Pass • AdSecurely store, share, and autofill your credentials with Proton Pass, the end-to-end encrypted password manager trusted by millions.
- A collection of my yara rules☆34Jul 11, 2023Updated 2 years ago
- Capstone disassembly framework: Core + Python + Ocaml + Java + C# bindings☆18Jan 25, 2014Updated 12 years ago
- ☆32Dec 20, 2025Updated 4 months ago
- Telegram-based PowerShell Runspace Host☆11Dec 8, 2022Updated 3 years ago
- Personal Storage Table implementation in Go/Golang☆37May 8, 2026Updated last week
- ☆21Aug 7, 2021Updated 4 years ago
- A Dockerized Ghidra Server☆15Jan 9, 2021Updated 5 years ago