Spoof locked bootloader on local attestations
-
Updated
Aug 13, 2024 - Java
#
attestation
Here are 125 public repositories matching this topic...
Hardware-based attestation / intrusion detection app for Android devices. It provides both local verification with another Android device via QR codes and optional scheduled server-based verification with support for alert emails. It uses hardware-backed keys and attestation support as the foundation and chains trust to the app for software checks.
android
security
cryptography
monitoring
integrity
hsm
secure-boot
authenticity
attestation
verifiedboot
remote-attestation
secureboot
strongbox
grapheneos
-
Updated
Oct 31, 2024 - Java
A CNCF Project to Bootstrap & Maintain Trust on the Edge / Cloud and IoT
-
Updated
Nov 7, 2024 - Python
Witness is a pluggable framework for software supply chain risk management. It automates, normalizes, and verifies software artifact provenance.
-
Updated
Nov 11, 2024 - Go
Chainloop is an Open Source evidence store for your Software Supply Chain attestations, SBOMs, VEX, SARIF, CSAF files, QA reports, and more.
security
open-source-licensing
compliance
license
spdx
attestation
devsecops
ospo
oss-compliance
sbom
in-toto
cyclonedx
slsa
supply-chain-security
sbom-distribution
slsa-provenance
metadata-platform
sbom-discovery
regulated-industry
-
Updated
Nov 14, 2024 - Go
Confidential Computing Zoo provides confidential computing solutions based on Intel SGX, TDX, HEXL, etc. technologies.
-
Updated
Oct 23, 2024 - CMake
A compilation of resources in the software supply chain security domain, with emphasis on open source
static-analysis
awesome-list
security-vulnerability
dependencies
vulnerability-management
software-supply-chain
cve-scanning
attestation
package-management
reproducible-builds
devsecops
software-composition-analysis
vulnerability-scanning
dependency-management
oss-compliance
sbom
supply-chain-security
supply-chain-attacks
software-supply-chain-security
-
Updated
Apr 24, 2023
inVtero.net: A high speed (Gbps) Forensics, Memory integrity & assurance. Includes offensive & defensive memory capabilities. Find/Extract processes, hypervisors (including nested) in memory dumps using microarchitechture independent Virtual Machiene Introspection techniques
virtual-machine
reverse-engineering
hypervisor
forensics
memory-hacking
cloud-computing
memory-analysis
attestation
patch-management
microarchitecture
secure-hash
memory-dump
integrity-monitoring
-
Updated
Sep 30, 2023 - C#
Verax is a shared registry for storing attestations of public interest on EVM chains, designed to enhance data discoverability and consumption for dApps across the network.
-
Updated
Nov 14, 2024 - TypeScript
attestation.app remote attestation server. Server code for use with the Auditor app: https://github.com/GrapheneOS/Auditor. It provides two services: submission of attestation data samples and a remote attestation implementation with email alerts to go along with the local implementation based on QR code scanning in the app.
android
security
cryptography
monitoring
integrity
hsm
secure-boot
authenticity
attestation
verifiedboot
remote-attestation
secureboot
strongbox
grapheneos
-
Updated
Nov 6, 2024 - Java
Template Go app repo with local test/lint/build/vulnerability check workflow, and on tag image test/build/release pipelines, with ko generative SBOM, cosign attestation, and SLSA build provenance
-
Updated
Apr 23, 2024 - Go
📜 "Coinbase Verifications" is a set of Coinbase-verified onchain attestations that enable access to apps and other onchain benefits.
ethereum
attestation
did
optimism
decentralized-identity
verifiable-credentials
onchain
account-verification
op-stack
ethereum-attestation-service
-
Updated
Aug 14, 2024 - Solidity
MultiZone® Security TEE is the quick and safe way to add security and separation to any RISC-V processors. The RISC-V standard ISA doesn't define TrustZone-like primitives to provide hardware separation. To shield critical functionality from untrusted third-party components, MultiZone provides hardware-enforced, software-defined separation of multi
security
fpga
firmware
hypervisor
container
freertos
xilinx
microkernel
secure-boot
risc-v
attestation
trustzone
tee
trusted-computing
sifive
multizone
trusted-execution-environment
secure-element
root-of-trust
digilent-arty-board
-
Updated
Jan 24, 2024 - C
Kotlin Multiplatform Crypto/PKI Library and ASN1 Parser + Encoder
-
Updated
Nov 14, 2024 - Kotlin
Python implementation of OWASP CycloneDX
python
library
owasp
bom
vex
spdx
hacktoberfest
attestation
bill-of-materials
software-bill-of-materials
purl
package-url
sbom
software-library
cyclonedx
obom
mbom
saasbom
cbom
-
Updated
Nov 9, 2024 - Python
Attestation and Secret Delivery Components
-
Updated
Nov 13, 2024 - Rust
Server-side library to validate the authenticity of Apple App Attest artifacts, written in Kotlin.
-
Updated
Jul 3, 2023 - Kotlin
Documentation source and development of the PSA Certified API
-
Updated
Nov 4, 2024 - C
A highly configurable build executor and observer designed to generate signed SLSA provenance attestations about build runs.
-
Updated
Nov 12, 2024 - Go
Improve this page
Add a description, image, and links to the attestation topic page so that developers can more easily learn about it.
Add this topic to your repo
To associate your repository with the attestation topic, visit your repo's landing page and select "manage topics."