attestation

There are 4 repositories under attestation topic.

• chiteroman / BootloaderSpoofer

  Spoof locked bootloader on local attestations

  androidattestationavbbootloadercertificatecertificateshackinghardware
  Language:Java 859

• GrapheneOS / Auditor

  Hardware-based attestation / intrusion detection app for Android devices. It provides both local verification with another Android device via QR codes and optional scheduled server-based verification with support for alert emails. It uses hardware-backed keys and attestation support as the foundation and chains trust to the app for software checks.

  securityattestationcryptographyverifiedbootremote-attestationhsmandroidgrapheneosstrongboxmonitoringintegrityauthenticitysecure-bootsecureboot
  Language:Java 565

• chainloop-dev / chainloop

  Evidence store and policy engine for your Software Supply Chain attestations, SBOMs, VEX, SARIF, QA reports, and more

  compliancecyclonedxdevsecopssbomsbom-distributionsecurityspdxsupply-chain-securitymetadata-platformsbom-discoverylicenseopen-source-licensingospooss-complianceregulated-industryattestationin-totoslsaslsa-provenance
  Language:Go 487
• keylime

  keylime / keylime

  A CNCF Project to Bootstrap & Maintain Trust on the Edge / Cloud and IoT

  attestationcloudedgeimaiotopensourcesecuritytpmvirtualization
  Language:Python 460

• in-toto / witness

  Witness is a pluggable framework for software supply chain risk management. It automates, normalizes, and verifies software artifact provenance.

  attestationsecuritysecurity-toolssupply-chainverification
  Language:Go 435

• bureado / awesome-software-supply-chain-security

  A compilation of resources in the software supply chain security domain, with emphasis on open source

  reproducible-buildssupply-chain-securitydevsecopsvulnerability-scanningsecurity-vulnerabilityvulnerability-managementsupply-chain-attackssbompackage-managementdependency-managementstatic-analysissoftware-composition-analysisoss-compliancesoftware-supply-chainsoftware-supply-chain-securitydependenciescve-scanningattestationawesome-list
  330

• intel / confidential-computing-zoo

  Confidential Computing Zoo provides confidential computing solutions based on Intel SGX, TDX, HEXL, etc. technologies.

  attestationcloudconfidential-computingcontainersenclavekey-managementsgxtdx
  Language:C++ 321

• ShaneK2 / inVtero.net

  inVtero.net: A high speed (Gbps) Forensics, Memory integrity & assurance. Includes offensive & defensive memory capabilities. Find/Extract processes, hypervisors (including nested) in memory dumps using microarchitechture independent Virtual Machiene Introspection techniques

  attestationcloud-computingforensicshypervisorintegrity-monitoringmemory-analysismemory-dumpmemory-hackingmicroarchitecturepatch-managementreverse-engineeringsecure-hashvirtual-machine
  Language:C# 285

• in-toto / attestation

  in-toto Attestation Framework

  attestationsoftware-supply-chain-security
  Language:Go 266

• Consensys / linea-attestation-registry

  Verax is a shared registry for storing attestations of public interest on EVM chains, designed to enhance data discoverability and consumption for dApps across the network.

  attestationevmsdksmart-contractssoliditythegraphtypescriptweb3
  Language:TypeScript 155
• signum

  a-sit-plus / signum

  Kotlin Multiplatform Crypto/PKI/ASN.1 Library with Attestation and Hardware-Backed Crypto Support on Mobile

  asn1attestationcryptographyecdsakmpkotlinkotlin-multiplatformpkirsasignaturecryptoasn-1cosecwtjosejwtecdhkey-agreementaesencryption
  Language:Kotlin 141

• GrapheneOS / AttestationServer

  attestation.app remote attestation server. Server code for use with the Auditor app: https://github.com/GrapheneOS/Auditor. It provides two services: submission of attestation data samples and a remote attestation implementation with email alerts to go along with the local implementation based on QR code scanning in the app.

  securityattestationcryptographyverifiedbootremote-attestationhsmandroidmonitoringgrapheneosstrongboxintegrityauthenticitysecure-bootsecureboot
  Language:Java 129

• mchmarny / s3cme

  Template Go app repo with local test/lint/build/vulnerability check workflow, and on tag image test/build/release pipelines, with ko generative SBOM, cosign attestation, and SLSA build provenance

  attestationcosineoidcprovenancesbomslsasupply-chain-securityvulnerability
  Language:Go 104

• coinbase / verifications

  📜 "Coinbase Verifications" is a set of Coinbase-verified onchain attestations that enable access to apps and other onchain benefits.

  account-verificationattestationdecentralized-identitydidethereumethereum-attestation-serviceonchainop-stackoptimismverifiable-credentials
  Language:Solidity 103

• confidential-containers / trustee

  Attestation and Secret Delivery Components

  attestationconfidential-computingkey-management
  Language:Rust 90

• hex-five / multizone-sdk

  MultiZone® Security TEE is the quick and safe way to add security and separation to any RISC-V processors. The RISC-V standard ISA doesn't define TrustZone-like primitives to provide hardware separation. To shield critical functionality from untrusted third-party components, MultiZone provides hardware-enforced, software-defined separation of multi

  risc-vsecurityteemultizonetrusted-computingtrusted-execution-environmentsecure-elementfirmwaresecure-bootroot-of-trustcontainermicrokerneltrustzonefreertosfpgahypervisorxilinxsifiveattestationdigilent-arty-board
  Language:C 83
• cyclonedx-python-lib

  CycloneDX / cyclonedx-python-lib

  Python implementation of OWASP CycloneDX

  pythonowaspbomspdxbill-of-materialssoftware-bill-of-materialspurlpackage-urlsbomcyclonedxobommbomsaasbomvexsoftware-libraryattestationcbomlibraryhacktoberfest
  Language:Python 79

• veehaitch / devicecheck-appattest

  Server-side library to validate the authenticity of Apple App Attest artifacts, written in Kotlin.

  apple-appattestattestationdevicecheckiosjavakotlinsecuritywebauthn
  Language:Kotlin 69

• ARM-software / psa-api

  Documentation source and development of the PSA Certified API

  apiattestationcryptographyfirmware-updateiotsecurity
  Language:C 64

• kubernetes-sigs / tejolote

  A highly configurable build executor and observer designed to generate signed SLSA provenance attestations about build runs.

  attestationprovenancesbomsigstoreslsa
  Language:Go 62

• virtee / sev-snp-measure

  Calculate AMD SEV/SEV-ES/SEV-SNP measurement for confidential computing

  attestationconfidential-computingsecurity
  Language:Python 61

• Catherine22 / SecuritySample

  (Android) Hide encrypted secret API keys in C/C++ code, retrieve and decrypt them via JNI. Google SafetyNet APIs example.

  jwsjson-web-signaturesecret-keyssafetynet-apiattestationndkrsa-cryptographycertificatesandroid
  Language:Java 54

• Foxboron / ssh-tpm-ca-authority

  SSH Certificate Authority with device attestation

  attestationopensshsecuritysshtpm
  Language:Go 54

• Azure / blockchain-supply-chain-solution

  Umbrella repository for blockchain based supply-chain services and clients

  blockchainoutlook-addinethereumazuresupply-chainattestation
  Language:Shell 52

• chainguard-dev / vex

  vexctl is a tool to attest VEX impact statements

  attestationcontainercsafsarifsbomscannervexvulnerabilityvulnerability-detection
  Language:Go 44

• GrapheneOS-Archive / AttestationSamples

  A small subset of the submitted sample data from https://github.com/GrapheneOS/Auditor. It has a sample attestation certificate chain per device model (ro.product.model) along with a subset of the system properties from the sample as supplementary information.

  securityattestationcryptographysecure-bootverifiedbootremote-attestationhsmandroidstrongboxintegrityauthenticitysecureboot
  Language:Shell 35

• pkic / remote-key-attestation

  Remote Key Attestation

  attestationcryptohsmpkiprivate-keysecure-enclavesmart-cardtokentpm
  33

• zntrio / solid

  An OIDC authorization server building blocks with security and privacy by design philosophy.

  oidcoidc-serveroidc-clientgolangframeworkjwtcwtprivacyoauthpkcepasetoattestation
  Language:Go 27

• nokia / AttestationEngine

  An experimental (but fully functional) Remote Attestation Engine and Applications for TPM2.0 based systems (cloud, edge, IoT etc)

  iotcloudedge-computingtpmtpm2txtattestationtrustsecurityintegrity-checkerueficorebootratsietf
  Language:Go 24

• adrianlshaw / LightVerifier

  Simple and scalable Linux tools for verifying TPM-based remote attestations 🔬⚖️🔐⛓📏📜

  imatpm-quotetpmtcgsecuritysecurity-auditattestationhacktoberfest
  Language:Shell 22

• joemiller / yk-attest-verify

  Verify and assert policy on YubiKey attestation certificates

  yubikeyattestationx509sshssh-keypolicyverification
  Language:Go 20

• hex-five / multizone-iot-sdk

  MultiZone® Trusted Firmware is the quick and safe way to build secure IoT applications with any RISC-V processor. It provides secure access to commercial and private IoT clouds, real-time monitoring, secure boot, and remote firmware updates. The built-in Trusted Execution Environment provides hardware-enforced separation ...

  iotfirmwaremqtttlstcp-ipteetrusted-execution-environmenttrustzonemultizonelwipmbedtlsfreertosrisc-vsecure-bootembedded-systemsota-firmware-updatesxilinx-fpgaroot-of-trustattestationdigilent-arty-board
  Language:C 19

• hex-five / multizone-linux

  MultiZone® Security Enclave for Linux

  risc-vsecurityteemutizonetrusted-computingtrusted-execution-environmenthex-fivesecure-elementlinuxfirmwaresecure-bootroot-of-trustmicrokernelmicroservicesattestationhypervisor
  Language:C 18

• zero-savvy / zk-remote-attestation

  Implementation of zRA protocol, a non-interactive method for constructing a transparent remote attestation (RA) protocol based on zkSNARKs.

  circommerkle-proofremote-attestationtornado-cashzksnarksattestationtrustlessgroth16
  Language:Circom 17

• rustymagnet3000 / ios_devicecheck_app_attest

  Understand iOS 14's DeviceCheck and DCDevice classes.

  devicecheckattestattestationios-securityios-jailbreak
  Language:Swift 15

• brech1 / eas-rs

  Rust utilities for the ethereum attestation service.

  attestationethereumfoundryrustserviceeas
  Language:Rust 14