attestation

There are 3 repositories under attestation topic.

chiteroman / BootloaderSpoofer
Spoof locked bootloader on local attestations
android attestation avb bootloader certificate certificates hacking hardware
Language:Java 490
GrapheneOS / Auditor
Hardware-based attestation / intrusion detection app for Android devices. It provides both local verification with another Android device via QR codes and optional scheduled server-based verification with support for alert emails. It uses hardware-backed keys and attestation support as the foundation and chains trust to the app for software checks.
security attestation cryptography verifiedboot remote-attestation hsm android grapheneos strongbox monitoring integrity authenticity secure-boot secureboot
Language:Java 435
keylime
keylime / keylime
A CNCF Project to Bootstrap & Maintain Trust on the Edge / Cloud and IoT
attestation cloud edge ima iot opensource security tpm virtualization
Language:Python 375
in-toto / witness
Witness is a pluggable framework for software supply chain risk management. It automates, normalizes, and verifies software artifact provenance.
security-tools security attestation verification supply-chain
Language:Go 358
chainloop-dev / chainloop
Chainloop is an Open Source Metadata Vault for your Software Supply Chain metadata, SBOMs, VEX, SARIF files, QA reports, and more.
compliance cyclonedx devsecops sbom sbom-distribution security spdx supply-chain-security metadata-platform sbom-discovery license open-source-licensing ospo oss-compliance regulated-industry attestation in-toto slsa slsa-provenance
Language:Go 305
intel / confidential-computing-zoo
Confidential Computing Zoo provides confidential computing solutions based on Intel SGX, TDX, HEXL, etc. technologies.
confidential-computing sgx tdx cloud enclave attestation key-management containers
Language:CMake 284
ShaneK2 / inVtero.net
inVtero.net: A high speed (Gbps) Forensics, Memory integrity & assurance. Includes offensive & defensive memory capabilities. Find/Extract processes, hypervisors (including nested) in memory dumps using microarchitechture independent Virtual Machiene Introspection techniques
forensics hypervisor memory-dump reverse-engineering memory-hacking memory-analysis integrity-monitoring secure-hash virtual-machine attestation cloud-computing patch-management microarchitecture
Language:C# 276
bureado / awesome-software-supply-chain-security
A compilation of resources in the software supply chain security domain, with emphasis on open source
reproducible-builds supply-chain-security devsecops vulnerability-scanning security-vulnerability vulnerability-management supply-chain-attacks sbom package-management dependency-management static-analysis software-composition-analysis oss-compliance software-supply-chain software-supply-chain-security dependencies cve-scanning attestation awesome-list
253
in-toto / attestation
in-toto Attestation Framework
attestation software-supply-chain-security
Language:Go 187
GrapheneOS / AttestationServer
attestation.app remote attestation server. Server code for use with the Auditor app: https://github.com/GrapheneOS/Auditor. It provides two services: submission of attestation data samples and a remote attestation implementation with email alerts to go along with the local implementation based on QR code scanning in the app.
security attestation cryptography verifiedboot remote-attestation hsm android monitoring grapheneos strongbox integrity authenticity secure-boot secureboot
Language:Java 96
Consensys / linea-attestation-registry
Verax is a shared registry for storing attestations of public interest on EVM chains, designed to enhance data discoverability and consumption for dApps across the network.
attestation evm smart-contracts thegraph web3 sdk solidity typescript
Language:TypeScript 80
hex-five / multizone-sdk
MultiZone® Security TEE is the quick and safe way to add security and separation to any RISC-V processors. The RISC-V standard ISA doesn't define TrustZone-like primitives to provide hardware separation. To shield critical functionality from untrusted third-party components, MultiZone provides hardware-enforced, software-defined separation of multi
risc-v security tee multizone trusted-computing trusted-execution-environment secure-element firmware secure-boot root-of-trust container microkernel trustzone freertos fpga hypervisor xilinx sifive attestation digilent-arty-board
Language:C 75
veehaitch / devicecheck-appattest
Server-side library to validate the authenticity of Apple App Attest artifacts, written in Kotlin.
security attestation webauthn ios apple-appattest devicecheck kotlin java
Language:Kotlin 60
kubernetes-sigs / tejolote
A highly configurable build executor and observer designed to generate signed SLSA provenance attestations about build runs.
attestation provenance sbom sigstore slsa
Language:Go 55
Azure / blockchain-supply-chain-solution
Umbrella repository for blockchain based supply-chain services and clients
blockchain outlook-addin ethereum azure supply-chain attestation
Language:Shell 53
Catherine22 / SecuritySample
(Android) Hide encrypted secret API keys in C/C++ code, retrieve and decrypt them via JNI. Google SafetyNet APIs example.
jws json-web-signature secret-keys safetynet-api attestation ndk rsa-cryptography certificates android
Language:Java 53
coinbase / verifications
📜 "Coinbase Verifications" is a set of Coinbase-verified onchain attestations that enable access to apps and other onchain benefits.
attestation decentralized-identity did ethereum ethereum-attestation-service op-stack optimism verifiable-credentials onchain account-verification
Language:Solidity 53
virtee / sev-snp-measure
Calculate AMD SEV/SEV-ES/SEV-SNP measurement for confidential computing
attestation confidential-computing security
Language:Python 51
ARM-software / psa-api
Documentation source and development of the PSA Certified API
api attestation cryptography firmware-update iot security
Language:C 48
mchmarny / s3cme
Template Go app repo with local test/lint/build/vulnerability check workflow, and on tag image test/build/release pipelines, with ko generative SBOM, cosign attestation, and SLSA build provenance
attestation oidc provenance sbom slsa supply-chain-security vulnerability cosine
Language:Go 46
chainguard-dev / vex
vexctl is a tool to attest VEX impact statements
attestation container csaf sarif sbom scanner vex vulnerability vulnerability-detection
Language:Go 44
confidential-containers / trustee
Attestation and Secret Delivery Components
attestation confidential-computing key-management
Language:Rust 41
GrapheneOS-Archive / AttestationSamples
A small subset of the submitted sample data from https://github.com/GrapheneOS/Auditor. It has a sample attestation certificate chain per device model (ro.product.model) along with a subset of the system properties from the sample as supplementary information.
security attestation cryptography secure-boot verifiedboot remote-attestation hsm android strongbox integrity authenticity secureboot
Language:Shell 32
pkic / remote-key-attestation
Remote Key Attestation
pki crypto hsm token private-key attestation smart-card tpm secure-enclave
24
zntrio / solid
An OIDC authorization server building blocks with security and privacy by design philosophy.
oidc oidc-server oidc-client golang framework jwt cwt privacy oauth pkce paseto attestation
Language:Go 24
adrianlshaw / LightVerifier
Simple and scalable Linux tools for verifying TPM-based remote attestations 🔬⚖️🔐⛓📏📜
ima tpm-quote tpm tcg security security-audit attestation hacktoberfest
Language:Shell 21
nokia / AttestationEngine
An experimental (but fully functional) Remote Attestation Engine and Applications for TPM2.0 based systems (cloud, edge, IoT etc)
iot cloud edge-computing tpm tpm2 txt attestation trust security integrity-checker uefi coreboot rats ietf
Language:Go 21
hex-five / multizone-iot-sdk
MultiZone® Trusted Firmware is the quick and safe way to build secure IoT applications with any RISC-V processor. It provides secure access to commercial and private IoT clouds, real-time monitoring, secure boot, and remote firmware updates. The built-in Trusted Execution Environment provides hardware-enforced separation ...
iot firmware mqtt tls tcp-ip tee trusted-execution-environment trustzone multizone lwip mbedtls freertos risc-v secure-boot embedded-systems ota-firmware-updates xilinx-fpga root-of-trust attestation digilent-arty-board
Language:C 19
hex-five / multizone-linux
MultiZone® Security Enclave for Linux
risc-v security tee mutizone trusted-computing trusted-execution-environment hex-five secure-element linux firmware secure-boot root-of-trust microkernel microservices attestation hypervisor
Language:C 18
joemiller / yk-attest-verify
Verify and assert policy on YubiKey attestation certificates
attestation policy ssh ssh-key verification x509 yubikey
Language:Go 14
rustymagnet3000 / ios_devicecheck_app_attest
Understand iOS 14's DeviceCheck and DCDevice classes.
devicecheck attest attestation ios-security ios-jailbreak
Language:Swift 14
hex-five / multizone-sdk-arm
MultiZone® Security TEE for Arm® Cortex®-M is the quick and safe way to add security and separation to any Cortex-M based device. MultiZone® software can retrofit existing designs. If you don’t have TrustZone®, or if you require finer granularity than one secure world, you can take advantage of high security separation without the need for hardware and software redesign, eliminating the complexity associated with managing a hybrid hardware/software security scheme.
armv7 cortex-m trustzone trustzone-kernel multizone multizone-security trusted-execution-environment trusted-computing secure-boot secure-bootloader secure-element root-of-trust tpm-firmware separation-kernel hex-five security secure-operating-system psa firmware attestation
Language:C 12
xarenard / webauthn_fido_java_react
Webauthn demo with react.js and Spring boot
webauthn webauthn-demo reactjs spring-boot fido fido2 authentication attestation assertion yubikey touchid touchid-authentication
Language:Java 11
kgoldman / acs
TPM attestation client and server for TPM 20. and TPM 1.2, including enrollment, attestation, and a web UI.
tcg tpm attestation security ibm
Language:C 10
buildooor / github-attestation-action
Github EAS Attestation Action
actions arbitrum attestation ci eas ethereum github github-actions mainnet merge optimism pull-request sepolia signature testnet transaction ethereum-attestation-service retropgf
Language:TypeScript 9
jedda / step-posture-connector
A middleware tool to assist step-ca with posture info during an ACME device-attest-01 challenge.
acme apple attestation go jamf-pro security tls x509
Language:Go 8

attestation

chiteroman / BootloaderSpoofer

GrapheneOS / Auditor

keylime / keylime

in-toto / witness

chainloop-dev / chainloop

intel / confidential-computing-zoo

ShaneK2 / inVtero.net

bureado / awesome-software-supply-chain-security

in-toto / attestation

GrapheneOS / AttestationServer

Consensys / linea-attestation-registry

hex-five / multizone-sdk

veehaitch / devicecheck-appattest

kubernetes-sigs / tejolote

Azure / blockchain-supply-chain-solution

Catherine22 / SecuritySample

coinbase / verifications

virtee / sev-snp-measure

ARM-software / psa-api

mchmarny / s3cme

chainguard-dev / vex

confidential-containers / trustee

GrapheneOS-Archive / AttestationSamples

pkic / remote-key-attestation

zntrio / solid

adrianlshaw / LightVerifier

nokia / AttestationEngine

hex-five / multizone-iot-sdk

hex-five / multizone-linux

joemiller / yk-attest-verify

rustymagnet3000 / ios_devicecheck_app_attest

hex-five / multizone-sdk-arm

xarenard / webauthn_fido_java_react

kgoldman / acs

buildooor / github-attestation-action

jedda / step-posture-connector