24 results found Sort:

chiteroman
BootloaderSpoofer chiteroman
84
805
gpl-3.0
21
Spoof locked bootloader on local attestations
avb android hacking hardware bootloader attestation certificate certificates
This repository has been archived (exclude archived)
Created 2023-09-18
15 commits to main branch, last one 11 months ago
GrapheneOS
Auditor GrapheneOS
85
497
mit
28
Hardware-based attestation / intrusion detection app for Android devices. It provides both local verification with another Android device via QR codes and optional scheduled server-based verification ...
hsm android security integrity strongbox grapheneos monitoring secureboot attestation secure-boot authenticity cryptography verifiedboot remote-attestation
Created 2018-01-30
930 commits to main branch, last one 18 days ago
keylime
keylime keylime
153
431
apache-2.0
23
A CNCF Project to Bootstrap & Maintain Trust on the Edge / Cloud and IoT
ima iot tpm edge cloud security opensource attestation virtualization
Created 2016-10-19
1,957 commits to master branch, last one a day ago
in-toto
witness in-toto
60
418
apache-2.0
26
Witness is a pluggable framework for software supply chain risk management. It automates, normalizes, and verifies software artifact provenance.
security attestation supply-chain verification security-tools
Created 2021-12-03
361 commits to main branch, last one 4 days ago
chainloop-dev
chainloop chainloop-dev
30
378
apache-2.0
11
Chainloop is an Open Source evidence store for your Software Supply Chain attestations, SBOMs, VEX, SARIF, CSAF files, QA reports, and more.
ospo sbom slsa spdx in-toto license security cyclonedx devsecops compliance attestation oss-compliance sbom-discovery slsa-provenance metadata-platform sbom-distribution regulated-industry open-source-licensing supply-chain-security
Created 2023-03-06
1,141 commits to main branch, last one a day ago
intel
confidential-computing-zoo intel
62
318
apache-2.0
14
Confidential Computing Zoo provides confidential computing solutions based on Intel SGX, TDX, HEXL, etc. technologies.
sgx tdx cloud enclave containers attestation key-management confidential-computing
Created 2021-11-25
541 commits to main branch, last one a day ago
bureado
awesome-software-supply-chain-security bureado
27
297
unknown
25
A compilation of resources in the software supply chain security domain, with emphasis on open source
sbom devsecops attestation awesome-list cve-scanning dependencies oss-compliance static-analysis package-management reproducible-builds supply-chain-attacks dependency-management software-supply-chain supply-chain-security security-vulnerability vulnerability-scanning vulnerability-management software-composition-analysis software-supply-chain-security
Created 2022-02-20
447 commits to main branch, last one about a year ago
ShaneK2
inVtero.net ShaneK2
57
281
agpl-3.0
30
inVtero.net: A high speed (Gbps) Forensics, Memory integrity & assurance. Includes offensive & defensive memory capabilities. Find/Extract processes, hypervisors (including nested) in memory dumps u...
forensics hypervisor attestation memory-dump secure-hash memory-hacking cloud-computing memory-analysis virtual-machine patch-management microarchitecture reverse-engineering integrity-monitoring
Created 2011-04-29
183 commits to master branch, last one about a year ago
in-toto
attestation in-toto
69
252
other
23
in-toto Attestation Framework
attestation software-supply-chain-security
Created 2021-04-01
687 commits to main branch, last one 26 days ago
Consensys
linea-attestation-registry Consensys
77
147
mit
12
Verax is a shared registry for storing attestations of public interest on EVM chains, designed to enhance data discoverability and consumption for dApps across the network.
evm sdk web3 solidity thegraph typescript attestation smart-contracts
Created 2023-07-05
382 commits to dev branch, last one a day ago
GrapheneOS
AttestationServer GrapheneOS
45
108
mit
12
attestation.app remote attestation server. Server code for use with the Auditor app: https://github.com/GrapheneOS/Auditor. It provides two services: submission of attestation data samples and a remot...
hsm android security integrity strongbox grapheneos monitoring secureboot attestation secure-boot authenticity cryptography verifiedboot remote-attestation
Created 2018-03-17
1,778 commits to main branch, last one 3 days ago
mchmarny
s3cme mchmarny
10
98
apache-2.0
6
Template Go app repo with local test/lint/build/vulnerability check workflow, and on tag image test/build/release pipelines, with ko generative SBOM, cosign attestation, and SLSA build provenance
oidc sbom slsa cosine provenance attestation vulnerability supply-chain-security
Created 2023-01-12
330 commits to main branch, last one 10 months ago
coinbase
verifications coinbase
13
87
mit
8
📜 "Coinbase Verifications" is a set of Coinbase-verified onchain attestations that enable access to apps and other onchain benefits.
did onchain ethereum op-stack optimism attestation account-verification decentralized-identity verifiable-credentials ethereum-attestation-service
Created 2023-11-07
13 commits to main branch, last one 4 months ago
hex-five
multizone-sdk hex-five
24
83
other
11
MultiZone® Security TEE is the quick and safe way to add security and separation to any RISC-V processors. The RISC-V standard ISA doesn't define TrustZone-like primitives to provide hardware separati...
tee fpga risc-v sifive xilinx firmware freertos security container multizone trustzone hypervisor attestation microkernel secure-boot root-of-trust secure-element trusted-computing digilent-arty-board trusted-execution-environment
Created 2018-12-21
250 commits to master branch, last one 11 months ago
a-sit-plus
signum a-sit-plus
6
81
apache-2.0
6
Kotlin Multiplatform Crypto/PKI Library and ASN1 Parser + Encoder
kmp pki rsa asn1 ecdsa crypto kotlin signature attestation cryptography kotlin-multiplatform
Created 2023-10-04
576 commits to main branch, last one 2 days ago
confidential-containers
trustee confidential-containers
90
73
apache-2.0
21
Attestation and Secret Delivery Components
attestation key-management confidential-computing
Created 2022-04-25
853 commits to main branch, last one a day ago
CycloneDX
cyclonedx-python-lib CycloneDX
43
71
apache-2.0
14
Python implementation of OWASP CycloneDX
bom vex cbom mbom obom purl sbom spdx owasp python library saasbom cyclonedx attestation package-url hacktoberfest software-library bill-of-materials software-bill-of-materials
Created 2021-08-27
722 commits to main branch, last one 6 days ago
veehaitch
devicecheck-appattest veehaitch
9
66
apache-2.0
8
Server-side library to validate the authenticity of Apple App Attest artifacts, written in Kotlin.
ios java kotlin security webauthn attestation devicecheck apple-appattest
Created 2020-08-15
198 commits to main branch, last one about a year ago
ARM-software
psa-api ARM-software
28
60
other
17
Documentation source and development of the PSA Certified API
api iot security attestation cryptography firmware-update
Created 2022-09-06
437 commits to main branch, last one a day ago
kubernetes-sigs
tejolote kubernetes-sigs
9
58
apache-2.0
6
A highly configurable build executor and observer designed to generate signed SLSA provenance attestations about build runs.
sbom slsa sigstore provenance attestation
Created 2022-07-09
840 commits to main branch, last one a day ago
virtee
sev-snp-measure virtee
15
56
apache-2.0
6
Calculate AMD SEV/SEV-ES/SEV-SNP measurement for confidential computing
security attestation confidential-computing
Created 2022-03-08
125 commits to main branch, last one 6 months ago
Catherine22
SecuritySample Catherine22
6
54
apache-2.0
4
(Android) Hide encrypted secret API keys in C/C++ code, retrieve and decrypt them via JNI. Google SafetyNet APIs example.
jws ndk android attestation secret-keys certificates safetynet-api rsa-cryptography json-web-signature
Created 2017-06-23
49 commits to master branch, last one 4 years ago
Foxboron
ssh-tpm-ca-authority Foxboron
2
51
mit
3
SSH Certificate Authority with device attestation
ssh tpm openssh security attestation
Created 2024-07-14
21 commits to master branch, last one 3 months ago
chainguard-dev
vex chainguard-dev
12
44
apache-2.0
3
vexctl is a tool to attest VEX impact statements
vex csaf sbom sarif scanner container attestation vulnerability vulnerability-detection
This repository has been archived (exclude archived)
Created 2022-08-27
166 commits to main branch, last one about a year ago