mattifestation / TCGLogToolsLinks
A set of tools to retrieve and parse TCG measured boot logs. Microsoft refers to these as Windows Boot Confirguration Logs (WBCL). In order to retrieve these logs, you must be running at least Windows 8 with the TPM enabled.
☆58Updated 6 years ago
Alternatives and similar repositories for TCGLogTools
Users that are interested in TCGLogTools are comparing it to the libraries listed below
Sorting:
- The TpmTool utility is a simple cross-platform tool for accessing TPM2.0 Non-Volatile (NV) Spaces (Index Values) on compliant systems, wi…☆144Updated 3 years ago
- Analysis and manipulation of extended attribute ($EA) on NTFS☆38Updated 9 years ago
- A PowerShell module to assist in parsing and managing catalog files.☆21Updated 8 years ago
- Parse Microsoft shim databases☆30Updated 4 months ago
- Blocks drivers from loading by using a name collision technique. #nsacyber☆49Updated 7 years ago
- BCD is a module to interact with boot configuration data (BCD) either locally or remotely using the ROOT/WMI:Bcd* WMI classes. The functi…☆61Updated 4 years ago
- Named pipe I/O ETW provider for Windows☆70Updated 4 years ago
- The content of this repository aims to assist efforts on analysing inner working principles, functionalities, and properties of the Micro…☆151Updated 5 years ago
- (unofficial) Hyper-V® Development Kit☆218Updated last year
- Faster version of `symchk /om` for generating PDB manifests of offline machines☆19Updated 4 years ago
- All TMF files that I extracted from Microsoft PDBs.☆12Updated 5 years ago
- WNF Utilities 4 Newbies (WNFUN)☆95Updated 6 years ago
- SentinelOne's KeRnel Exploits Advanced Mitigations☆54Updated 6 years ago
- A collection of free miscellaneous Windows tools☆135Updated 9 months ago
- Enhanced version of the GFlags tool☆84Updated 5 years ago
- Event metadata collected across all manifest-based ETW providers on Window 10 1903☆31Updated 5 years ago
- PowerShell Module for the Antimalware Scan Interface (AMSI)☆25Updated 8 years ago
- Hyper-V Research is trendy now☆163Updated last month
- ☆18Updated 4 months ago
- BITS Transfers Manager☆42Updated 2 weeks ago
- The history of Windows Internals via symbols.☆178Updated 3 years ago
- Expand compressed files from WinSxS folder☆158Updated 11 months ago
- Hyper-V scripts☆122Updated last year
- ☆68Updated 3 years ago
- Hyper-V Research is trendy now☆180Updated last year
- Library and tools to access the Windows Prefetch File (SCCA) format.☆74Updated 5 months ago
- Windows Drivers☆98Updated 6 years ago
- Toy scripts for playing with WinDbg JS API☆228Updated 10 months ago
- ☆12Updated 4 years ago
- Information about a signed UEFI Shell that can be used when Secure Boot is enabled.☆78Updated 4 years ago