Scripts to slightly improve the security of the Linux boot process with UEFI Secure Boot and TPM support
☆283Dec 19, 2022Updated 3 years ago
Alternatives and similar repositories for safeboot
Users that are interested in safeboot are comparing it to the libraries listed below
Sorting:
- Scripts to build the Linux kernel from a config file and initrd from a list of programs☆26Sep 10, 2025Updated 5 months ago
- A minimal Linux that runs as a coreboot or LinuxBoot ROM payload to provide a secure, flexible boot environment for laptops, workstations…☆1,534Feb 27, 2026Updated last week
- Attest the trustworthiness of a device against a human using time-based one-time passwords☆193Jun 26, 2024Updated last year
- Linux kernel module to use UEFI Block IO Protocol devices. Probably not a good idea.☆86Mar 24, 2022Updated 3 years ago
- Linux UEFI library written in pure Go.☆164Oct 10, 2025Updated 4 months ago
- Converged Security Suite for Intel & AMD platform security features☆71Feb 27, 2026Updated last week
- A FIDO Device Onboard library with minimal dependencies☆30Feb 9, 2026Updated 3 weeks ago
- ☆14Aug 19, 2025Updated 6 months ago
- Go packages built on go-tpm providing a high-level API for using TPMs☆284Feb 28, 2026Updated last week
- ☆17Jun 1, 2023Updated 2 years ago
- LinuxBoot book which contains the documentation in markdown format☆294Oct 2, 2025Updated 5 months ago
- Libraries to abstract aspects of working with TPMs for the purposes of attestation☆415Feb 15, 2026Updated 2 weeks ago
- Secure Boot key manager☆2,039Nov 30, 2025Updated 3 months ago
- Documentation for the Heads firmware project☆94Feb 5, 2026Updated last month
- Framework to join Linux's physical security bricks.☆272Updated this week
- A Linux only tool for TPM interaction☆36Mar 25, 2022Updated 3 years ago
- One-Time-Programmable (OTP) fusing tool☆69Jan 5, 2026Updated 2 months ago
- Script to generate an OVMF vars file with default secure boot key enrolled.☆95Jul 28, 2022Updated 3 years ago
- Mirror only. Official repository at https://git.glasklar.is/system-transparency/core/system-transparency☆91Jun 30, 2025Updated 8 months ago
- Liteqube - put Qubes OS on a diet☆21Feb 4, 2026Updated last month
- ☆14Mar 28, 2022Updated 3 years ago
- Automated Encryption Framework☆1,154Feb 5, 2026Updated last month
- The LinuxBoot project is working to enable Linux to replace your firmware on all platforms.☆943Dec 4, 2024Updated last year
- A CNCF Project to Bootstrap & Maintain Trust on the Edge / Cloud and IoT☆518Updated this week
- Display, extract, and manipulate PSP firmware inside UEFI images☆676Feb 23, 2026Updated last week
- The utility to manipulate machine owner keys☆76Jul 3, 2025Updated 8 months ago
- ☆24Oct 6, 2021Updated 4 years ago
- Simplified version of flashrom for installing new system firmware☆23Mar 10, 2023Updated 2 years ago
- A fully Go userland with Linux bootloaders! u-root can create a one-binary root file system (initramfs) containing a busybox-like set of …☆2,982Updated this week
- PDF files of my articles on NSA BIOS backdoor☆24Nov 29, 2017Updated 8 years ago
- Kexecboot is a nice Linux-As-a-Bootloader implementation based on kexec☆128Apr 28, 2025Updated 10 months ago
- Mostly AVR compatible FPGA soft-core☆30Sep 30, 2021Updated 4 years ago
- A tool to help you understand TPM commands and responses.☆48Dec 3, 2024Updated last year
- Linux i386 tool to load and execute ME modules.☆135Feb 21, 2021Updated 5 years ago
- Fend off malware at Qubes VM startup☆81May 1, 2023Updated 2 years ago
- A tool for parsing common ACPI tables☆15Aug 6, 2020Updated 5 years ago
- User-friendly Lightweight TPM Remote Attestation over Bluetooth☆172Mar 6, 2023Updated 3 years ago
- Tutorials from TPM.dev members☆121Sep 9, 2025Updated 5 months ago
- VPN configuration in Qubes OS☆133Dec 16, 2023Updated 2 years ago