osresearch / safebootLinks
Scripts to slightly improve the security of the Linux boot process with UEFI Secure Boot and TPM support
☆282Updated 2 years ago
Alternatives and similar repositories for safeboot
Users that are interested in safeboot are comparing it to the libraries listed below
Sorting:
- Attest the trustworthiness of a device against a human using time-based one-time passwords☆178Updated last year
- Mirror only. Official repository at https://git.glasklar.is/system-transparency/core/system-transparency☆89Updated 3 months ago
- Script to generate an OVMF vars file with default secure boot key enrolled.☆93Updated 3 years ago
- ☆40Updated 9 months ago
- A PKCS#11 interface for TPM2 hardware☆313Updated this week
- A guide for setting up LUKS boot with a key from TPM in Linux☆185Updated 7 years ago
- DEPRECATED TPM enabled GRUB2 Bootloader☆195Updated 4 years ago
- ☆175Updated last year
- Tools for using PIV tokens (like Yubikeys) as an SSH agent, for encrypting data at rest, and more☆208Updated 4 months ago
- A high level language for SELinux policy☆59Updated 2 months ago
- Paused mirror. Official repository at https://git.glasklar.is/system-transparency/core/stboot☆115Updated last year
- Calculate future (next boot) TPM PCRs after a kernel upgrade☆40Updated 4 months ago
- deprecated - maybe replaced by: `apparmor.d`☆85Updated last year
- LinuxBoot book which contains the documentation in markdown format☆291Updated 2 weeks ago
- The libtpms library provides software emulation of a Trusted Platform Module (TPM 1.2 and TPM 2.0)☆243Updated last week
- A WebAuthn/U2F token protected by a TPM (Go/Linux)☆354Updated last year
- Tutorials from TPM.dev members☆113Updated 3 weeks ago
- Go-based tools for modifying UEFI firmware☆341Updated last month
- Tools to let a u-root instance boot signed live distro images over the web☆109Updated 2 years ago
- Libtpms-based TPM emulator with socket, character device, and Linux CUSE interface.☆699Updated this week
- Kexecboot is a nice Linux-As-a-Bootloader implementation based on kexec☆126Updated 5 months ago
- Repository is intended to provide patches and rpm specs with experimental features to run under the Qubes OS.☆25Updated 4 years ago
- Framework to join Linux's physical security bricks.☆265Updated 6 months ago
- Encrypted boot partition manager with UEFI Secure Boot support☆204Updated last year
- Kernel Hardening; Protect Linux User Accounts against Brute Force Attacks; Improve Entropy Collection; Strong Linux User Account Separati…☆555Updated last week
- Decrypt your LUKS partition using a FIDO2 compatible authenticator☆137Updated last year
- a visual toolkit for exploring and editing firmware images, running on web platforms☆114Updated 10 months ago
- Simple PKCS11 provider for TPM chips☆255Updated last month
- Simple and scalable Linux tools for verifying TPM-based remote attestations 🔬⚖️🔐⛓📏📜☆22Updated 4 years ago
- A Linux only tool for TPM interaction☆36Updated 3 years ago