GitPlanet

Cheap and reliable Node.js hosting starts at $3/month, and $1/month static HTML hosting

Created with love in Canada, visit hostnodejs.com today

Feel like to post an Ad? Learn Details
All Projects → LumIT-Labs → open-securekos

LumIT-Labs / open-securekos

Licence: GPL-3.0 license
Open Secure-K OS is an operating system booting from a USB key in which you can safely create and store your personal and private data. It is a next generation live operating system following liveng patterns. Please refer to Resilient Linux, a fork of Open Secure-K OS which is actively developed.

Programming Languages

shell
77523 projects

Labels

debianlivestretchlukskernel-update

Projects that are alternatives of or similar to open-securekos

u2f-luks
No description or website provided.
Stars: ✭ 29 (+26.09%)
Mutual labels:  debian, luks
scripts
Collection of useful scripts for Linux (git, docker, LUKS, Archlinux...)
Stars: ✭ 36 (+56.52%)
Mutual labels:  debian, luks
LiveHiddenCamera
Live Hidden Camera is a library which record live video and audio from Android device without displaying a preview.
Stars: ✭ 69 (+200%)
Mutual labels:  live
flutter-p2p-engine
Let your viewers become your unlimitedly scalable CDN.
Stars: ✭ 93 (+304.35%)
Mutual labels:  live
yosild
Yosild is a single shell script that builds a full, minimal Linux distribution based on BusyBox.
Stars: ✭ 97 (+321.74%)
Mutual labels:  debian
8821au
Linux Driver for USB WiFi Adapters that are based on the RTL8811AU and RTL8821AU Chipsets
Stars: ✭ 67 (+191.3%)
Mutual labels:  debian
vagrant-templates
Vagrantfiles for self-contained development/test environments.
Stars: ✭ 28 (+21.74%)
Mutual labels:  debian
tiktok-download-userscript
Browser userscripts to download TikTok videos without watermark and get livestream URLs (to play in VLC).
Stars: ✭ 42 (+82.61%)
Mutual labels:  live
debian-packaging-for-the-modern-developer
Debian packaging tutorials for the modern developer
Stars: ✭ 347 (+1408.7%)
Mutual labels:  debian
muun
🐦 Live Twitter Dashboard
Stars: ✭ 43 (+86.96%)
Mutual labels:  live
grsecurity-reproducible-build
Some scripts to create a reproducible build for grsecurity
Stars: ✭ 28 (+21.74%)
Mutual labels:  debian
github-actions
Repository for CDS specific GitHub actions
Stars: ✭ 63 (+173.91%)
Mutual labels:  live
udiskie-dmenu
Manage removable devices in couple of keystrokes!
Stars: ✭ 30 (+30.43%)
Mutual labels:  luks
ansible-tinc
Role to install tinc in a star/ring topology (w/ leaf/spine) (based on your variables)
Stars: ✭ 15 (-34.78%)
Mutual labels:  debian
tvbus.android
tvbus.android is a live streaming android SDK based on P2P technology.
Stars: ✭ 72 (+213.04%)
Mutual labels:  live
kali-whoami
Whoami provides enhanced privacy, anonymity for Debian and Arch based linux distributions
Stars: ✭ 1,424 (+6091.3%)
Mutual labels:  debian
apt-update-indicator
Apt Update Indicator
Stars: ✭ 38 (+65.22%)
Mutual labels:  debian
react-runner
Run your React code on the go
Stars: ✭ 308 (+1239.13%)
Mutual labels:  live
Nginx-builder
A tool to build deb or rpm package of required Nginx version from the source code, with the ability to connect third-party modules. Nginx parameters are set in the yaml configuration file.
Stars: ✭ 143 (+521.74%)
Mutual labels:  debian
AwsTerm
A collection of awesome terminal utilities
Stars: ✭ 37 (+60.87%)
Mutual labels:  debian
View All Similar Projects ➔

Open Secure-K OS

What is

Open Secure-K OS is an operating system booting from a USB key in which you can safely create and store your personal and private data. It is an advanced Debian Stretch Linux-based live USB operating system built for security: user and system data are saved encrypted within the USB key (AES 512bit), so the system can be used as a clean and safe environment for your on-line security-critical activities. Moreover Open Secure-K OS does not rely on the PC hard drive and, being a Linux derivative, it’s immune to most viruses and it’s spyware / adware / backdoor free.

Open Secure-K OS features a unique partitioning scheme - it is liveng-compliant (https://github.com/LumIT-Labs/liveng, https://liveng.readthedocs.io) -, which allows complete system and kernel update with a readonly system partition. GRUB is the bootloader for both BIOS and UEFI; the Linux Foundation’s preloader assures the Secure Boot compliance.

Unique system features are:

  • native encrypted persistence;
  • kernel update (on a ISO9660 filesystem, which is the best option for a live operating system because of its strength against data corruption and tampering);
  • UEFI, with UEFI Secure Boot compatibility, with a real efi partition;
  • user creation wizard upon the first boot. Live operating systems use to have the “live” user already created, while Open Secure-K OS pops up the Initial Setup interface in order to create one, together with language, keyboard and time zone.
None of the existing ISO9660-based live operating systems except Open Secure-K OS provides a kernel update feature.

At the end of the day, Open Secure-K OS is thought as a the most solid and secure base for your own live operating system - you can customize it at your will (only the very basic programs are installed by default).

Resilient Linux is a hard-drive installable operating system built upon Open Secure-K OS. Open Secure-K OS served as a proof of concept for the liveng technology and wont' be developed any more. Please refer to Resilient Linux, which is actively developed and can also be used as a live system.

Screenshots

screenshots/open-securek-os.1.png

screenshots/open-securek-os.2.png

How to build the initial ISO image

A Debian Stretch host is required for the build (64 bit preferred); other Debian-derived systems may work.

The Open Secure-K OS ISO image is built using the standard Debian live-build framework, so you first need to install it:

apt-get install -y live-build

Git clone this project as root.

In order to build a Secure-K OS image, open the terminal emulator as root:

cd /path/to/open-securekos/live-build
bash lb

A .iso image will be built according to your host architecture (if building on an amd64, a 64bit iso will be produced; an i386 iso will be built on i386 hosts).

Download a ready-to-use image

An already-built ISO image is also available, see this repository's Releases (https://github.com/LumIT-Labs/open-securekos/releases).

How to deploy

Open Secure-K OS Deployer (https://github.com/LumIT-Labs/open-securekos-deployer) is the deployment system for writing the initial Open Secure-K OS ISO image onto a USB key - it will create the liveng partitioning scheme: run the Deployer, select the image you have built (or downloaded) and type in a passphrase of your choice for LUKS-encrypting the data persistence partition (remember: Open Secure-K OS features native encrypted persistence), then click on Write. Deployer will write the Open Secure-K OS ISO image onto all the plugged-in (and listed) USB devices, thus creating the complete Open Secure-K OS operating system.

Some Open Secure-K OS notes:

  • use sudo for super-cow powers;
  • during the boot, you will be asked for the decryption password of the data persistence partition - the secret you enter while deploying;
  • system user will be created upon the first boot;
  • [only for 32 bit builds] a GNOME Initial Setup bug triggers a crash if setting the network in the Initial Setup interface. In this case, just reboot the system.
Note that the project description data, including the texts, logos, images, and/or trademarks, for each open source project belongs to its rightful owner. If you wish to add or remove any projects, please contact us at [email protected].