System Security Stuff
PS> Get-WmiObject -Class 'Win32_TPM' -Namespace 'root/cimv2/Security/MicrosoftTPM'
$ cat /sys/class/tpm/tpm0/device/caps
Detect CVE 2017 15361 TPM
UEFI
CSI UEFI lockdown
Microsoft UEFI benefits
Links
NSA Hardware and Firmware Security Guidance