Build software better, together

ventoy / Ventoy

Star

A new bootable USB solution.

windows linux unix legacy usb vmware multiboot uefi iso-files secure-boot bootable-usb

Updated Aug 15, 2021
C

Hardware-based attestation / intrusion detection app for Android devices. It provides both local verification with another Android device via QR codes and optional scheduled server-based verification with support for alert emails. It uses hardware-backed keys and attestation support as the foundation and chains trust to the app for software checks.

android security cryptography monitoring integrity hsm secure-boot authenticity attestation verifiedboot remote-attestation secureboot strongbox grapheneos

Updated Jul 30, 2021
Java

andreyv / sbupdate

Star

Generate and sign kernel images for UEFI Secure Boot on Arch Linux

uefi secure-boot

Updated Jul 25, 2021
Shell

joembedded / JesFs

Star

Jo's Embedded Serial File System (for Standard Serial NOR-Flash)

arm flash filesystem bluetooth ble file-system bootloader embedded-devices ccs secure-boot spi-flash nrf52 simplelink ota-update ultra-low-power

Updated Jul 30, 2021
C

xairy / unlockdown

Star

Disabling kernel lockdown on Ubuntu without physical access

security exploit linux-kernel secure-boot lockdown

Updated Jul 12, 2020
C

sandrokeil / yubikey-full-disk-encryption-secure-boot-uefi

Star

Tutorial to create full disk encryption with YubiKey, encrypted boot partition and secure boot with UEFI

yubikey arch-linux uefi luks secure-boot 2fa full-disk-encryption lvm2

Updated Oct 24, 2019
Shell

mq1n / Win11SysCheck

Star

Windows 11 compability check with user friendly output

windows tpm secure-boot 11 windows-11 compability

Updated Jul 9, 2021
C++

Snawoot / linux-secureboot-kit

Star

Tool for complete hardening of Linux boot chain with UEFI Secure Boot

linux security-hardening secure-boot full-disk-encryption security-automation security-tools

Updated Aug 9, 2020
Shell

Foxboron / go-uefi

Sponsor Star

Linux UEFI library written in pure Go.

uefi secure-boot uefi-secureboot

Updated Aug 12, 2021
Go

jiazhang0 / meta-secure-core

Star

OpenEmbedded layer for the use cases on secure boot, integrity and encryption

security encryption uefi signing-keys integrity sgx tpm tpm2 ima efi secure-boot modsign

Updated Aug 16, 2021
BitBake

jonasblixt / punchboot

Star

Punchboot

embedded bootloader secure-boot armv8 imx6 imx8 armv7a

Updated May 19, 2021
C

GrapheneOS / AttestationServer

Star

Server code for use with the Auditor app: https://github.com/GrapheneOS/Auditor. It provides two services: submission of attestation data samples and a remote attestation implementation with email alerts to go along with the local implementation based on QR code scanning in the app.

android security cryptography monitoring integrity hsm secure-boot authenticity attestation verifiedboot remote-attestation secureboot strongbox grapheneos

Updated Aug 12, 2021
Java

frederic / qemu-exynos-bootrom

Star

Emulating Exynos 4210 BootROM in QEMU

samsung secure-boot exynos bootrom

Updated Feb 7, 2020
C

hex-five / multizone-sdk

Star

MultiZone® Security TEE for RISC-V

security firmware container freertos microkernel microchip secure-boot risc-v hifive trustzone tee trusted-computing sifive multizone trusted-execution-environment secure-element root-of-trust polarfire

Updated Aug 14, 2021
C

jiazhang0 / SELoader

Star

Secure EFI Loader designed to authenticate the non-PE files

security integrity shim bootloader efi secure-boot mok

Updated Jul 17, 2018
C++

frederic / exynos-usbdl

Star

Unsigned code loader for Exynos BootROM

arm usb exploit vulnerability samsung secure-boot exynos bootrom

Updated Aug 13, 2020
C

schierlm / usb-modboot

Star

Boot multiple systems from a single GRUB2-powered USB drive (just drop ISO or other modules to integrate into menu)

usb uefi grub2 secure-boot loopback-cfg

Updated Sep 27, 2018
Shell

julian-klode / sicherboot

Star

systemd-boot integration with secure boot support

debian systemd esp uefi signed bootloader efi secure-boot systemd-boot gummiboot

Updated Apr 12, 2021
Shell

Bandie / grub2-signing-extension

Star

The GRUB2 signing extension are some scripts which help you to verify, sign and unsign your GRUB2 bootloader files using GPG.

signing boot gpg secure bootloader grub grub2 secure-boot

Updated Jul 22, 2021
Shell

maximbaz / arch-secure-boot

Sponsor Star

UEFI Secure Boot for Arch Linux + btrfs snapshot recovery

archlinux uefi snapper btrfs secure-boot uefi-boot btrfs-snapshots

Updated Aug 1, 2021
Shell

wimbrts / USB_FORMAT

Star

USB Format Tool - Make Bootable USB Drive with MBR and 2 Partitions

Updated Apr 19, 2021
AutoIt

GrapheneOS / AttestationSamples

Star

A small subset of the submitted sample data from https://github.com/GrapheneOS/Auditor. It has a sample attestation certificate chain per device model (ro.product.model) along with a subset of the system properties from the sample as supplementary information.