osresearch / safebootLinks
Scripts to slightly improve the security of the Linux boot process with UEFI Secure Boot and TPM support
☆279Updated 2 years ago
Alternatives and similar repositories for safeboot
Users that are interested in safeboot are comparing it to the libraries listed below
Sorting:
- Attest the trustworthiness of a device against a human using time-based one-time passwords☆174Updated 11 months ago
- Paused mirror. Official repository at https://git.glasklar.is/system-transparency/core/stboot☆113Updated last year
- deprecated - maybe replaced by: `apparmor.d`☆85Updated last year
- Mirror only. Official repository at https://git.glasklar.is/system-transparency/core/system-transparency☆87Updated 3 months ago
- LinuxBoot book which contains the documentation in markdown format☆287Updated this week
- A PKCS#11 interface for TPM2 hardware☆304Updated 2 months ago
- Script to generate an OVMF vars file with default secure boot key enrolled.☆91Updated 2 years ago
- The libtpms library provides software emulation of a Trusted Platform Module (TPM 1.2 and TPM 2.0)☆237Updated last week
- ☆40Updated 6 months ago
- Go-based tools for modifying UEFI firmware☆327Updated 5 months ago
- Tools to let a u-root instance boot signed live distro images over the web☆109Updated 2 years ago
- Converged Security Suite for Intel & AMD platform security features☆61Updated this week
- DEPRECATED TPM enabled GRUB2 Bootloader☆194Updated 3 years ago
- A guide for setting up LUKS boot with a key from TPM in Linux☆184Updated 6 years ago
- A high level language for SELinux policy☆59Updated 3 months ago
- Utility to manage LUKS keys sealed by a TPM 2.0☆52Updated last year
- Kernel Hardening; Protect Linux User Accounts against Brute Force Attacks; Improve Entropy Collection; Strong Linux User Account Separati…☆540Updated last week
- Display, extract, and manipulate PSP firmware inside UEFI images☆637Updated last month
- SSH Agent for TKey, the flexible open hardware/software USB security key 🔑☆139Updated 5 months ago
- Documentation for the Heads firmware project☆89Updated 2 weeks ago
- The utility to manipulate machine owner keys☆71Updated last month
- Tang binding daemon☆576Updated 3 months ago
- Framework to join Linux's physical security bricks.☆259Updated 2 months ago
- Tutorials from TPM.dev members☆106Updated 11 months ago
- Tools for using PIV tokens (like Yubikeys) as an SSH agent, for encrypting data at rest, and more☆205Updated last month
- Calculate future (next boot) TPM PCRs after a kernel upgrade☆39Updated 3 weeks ago
- Ghidra analyzer for UEFI firmware.☆350Updated last year
- Repository is intended to provide patches and rpm specs with experimental features to run under the Qubes OS.☆25Updated 4 years ago
- Linux UEFI library written in pure Go.☆150Updated last week
- ☆168Updated last year