AttestationSamplesA small subset of the submitted sample data from https://github.com/GrapheneOS/Auditor. It has a sample attestation certificate chain per device model (ro.product.model) along with a subset of the system properties from the sample as supplementary information.
Stars: ✭ 25 (-60.94%)
libkeccak[Basically feature complete] Keccak-family hashing library
Stars: ✭ 53 (-17.19%)
meta-secure-coreOpenEmbedded layer for the use cases on secure boot, integrity and encryption
Stars: ✭ 80 (+25%)
SELoaderSecure EFI Loader designed to authenticate the non-PE files
Stars: ✭ 38 (-40.62%)
platform buildMake Build System (being phased out upstream)
Stars: ✭ 53 (-17.19%)
go-uefiLinux UEFI library written in pure Go.
Stars: ✭ 78 (+21.88%)
tsmA Hierarchical State Machine Framework in C++
Stars: ✭ 30 (-53.12%)
SecuritySample(Android) Hide encrypted secret API keys in C/C++ code, retrieve and decrypt them via JNI. Google SafetyNet APIs example.
Stars: ✭ 49 (-23.44%)
lemurLustre HSM tools
Stars: ✭ 20 (-68.75%)
strongboxa World of Warcraft Addon Manager aimed at Linux players
Stars: ✭ 131 (+104.69%)
hsmwizHSMWiz is a frontend for OpenSC, pkcs11tool and pkcs15tool to ease handling of HSM smartcards
Stars: ✭ 27 (-57.81%)
yubihsm-rsPure Rust client for YubiHSM2 devices
Stars: ✭ 70 (+9.38%)
checksum-commandVerifies file integrity by comparing to published checksums.
Stars: ✭ 29 (-54.69%)
exynos-usbdlUnsigned code loader for Exynos BootROM
Stars: ✭ 57 (-10.94%)
VanadiumPrivacy and security enhanced releases of Chromium for GrapheneOS. Vanadium provides the WebView and standard user-facing browser on GrapheneOS. It depends on hardening in other GrapheneOS repositories and doesn't include patches not relevant to the build targets used on GrapheneOS.
Stars: ✭ 365 (+470.31%)
opencryptokiPKCS#11 library and tools for Linux. Includes tokens supporting TPM and IBM crypto hardware as well as a software token.
Stars: ✭ 100 (+56.25%)
confidential-computing-zooConfidential Computing Zoo provides confidential computing solutions based on Intel SGX, TDX, HEXL, etc. technologies.
Stars: ✭ 177 (+176.56%)
arch-secure-bootUEFI Secure Boot for Arch Linux + btrfs snapshot recovery
Stars: ✭ 60 (-6.25%)
platform bionicHardened Android standard C library. Some of the past hardening has not yet been ported from Marshmallow, Nougat and Oreo to this Android Pie repository. Most is available via archived tags in https://github.com/AndroidHardeningArchive/platform_bionic (check both the most recent Oreo and Nougat tags).
Stars: ✭ 66 (+3.13%)
hsmC++ framework library to simplify state-driven code
Stars: ✭ 88 (+37.5%)
devicecheck-appattestServer-side library to validate the authenticity of Apple App Attest artifacts, written in Kotlin.
Stars: ✭ 45 (-29.69%)
optiga-trust-mOPTIGA™ Trust M Software Framework
Stars: ✭ 86 (+34.38%)
sicherbootUnmaintained systemd-boot integration with secure boot support; consider https://github.com/Foxboron/sbctl instead.
Stars: ✭ 31 (-51.56%)
gosureFile integrity implemented in Go
Stars: ✭ 16 (-75%)
atlas-checksOSM data integrity checks with Atlas
Stars: ✭ 43 (-32.81%)
signatorySignatory - A Tezos Remote Signer for signing block-chain operations with private keys using YubiHSM and Azure Key Vault
Stars: ✭ 35 (-45.31%)
napkinXCExtremely simple and fast extreme multi-class and multi-label classifiers.
Stars: ✭ 38 (-40.62%)
keyfenderSecure HSM implementation based on MirageOS
Stars: ✭ 33 (-48.44%)
kstatemachineKStateMachine is a Kotlin DSL library for creating finite state machines (FSM) and hierarchical state machines (HSM).
Stars: ✭ 63 (-1.56%)
VentoyA new bootable USB solution.
Stars: ✭ 29,413 (+45857.81%)
tpm futurepcrCalculate future (next boot) TPM PCRs after a kernel upgrade
Stars: ✭ 19 (-70.31%)
LightVerifierSimple and scalable Linux tools for verifying TPM-based remote attestations 🔬⚖️🔐⛓📏📜
Stars: ✭ 18 (-71.87%)