secureboot

There are 6 repositories under secureboot topic.

WinDiskWriter
TechUnRestricted / WinDiskWriter
🖥 Windows Bootable USB creator for macOS. 🛠 Patches Windows 11 to bypass TPM and Secure Boot requirements. 👾 UEFI & Legacy Support
appkit bootable-usb cocoa exfat fat32 grub4dos legacy-bios macos macos-app objective-c secureboot tpm uefi wimlib windows windows11
Language:C 2111
Foxboron / sbctl
:computer: :lock: :key: Secure Boot key manager
efi efi-stub go golang linux secure-boot secureboot signatures uefi uefi-secureboot
Language:Go 1590
ValdikSS / Super-UEFIinSecureBoot-Disk
Super UEFIinSecureBoot Disk: Boot any OS or .efi file without disabling UEFI Secure Boot
bootable-usb gpt grub2 iso liveusb mbr multiboot secureboot uefi uefi-boot uefi-secureboot
752
GrapheneOS / Auditor
Hardware-based attestation / intrusion detection app for Android devices. It provides both local verification with another Android device via QR codes and optional scheduled server-based verification with support for alert emails. It uses hardware-backed keys and attestation support as the foundation and chains trust to the app for software checks.
security attestation cryptography verifiedboot remote-attestation hsm android grapheneos strongbox monitoring integrity authenticity secure-boot secureboot
Language:Java 518
kaku
linuxmobile / kaku
革 | kaku - Elegant NixOS rice centered around the Niri tiling window manager. A minimalist, functional environment built with the philosophy of constant refinement and transformation. This dotfiles collection emphasizes aesthetic harmony and technical excellence through the declarative power of Nix flakes.
amdgpu dotfiles nixos nvchad ricing secureboot starship unixporn wayland flakes ghostty niri nixos-configuration nushell
Language:Nix 420
noahbliss / mortar
Framework to join Linux's physical security bricks.
luks tpm tpm2 secureboot uefi clevis boot mortar debian arch bitlocker
Language:Shell 248
EETagent / T480-OpenCore-Hackintosh
OpenCore 0.6.9 configuration for T480. Optimized for Catalina and Big Sur.
hackintosh t480 thinkpad macos opencore catalina mojave efi bigsur secureboot
Language:ASL 143
GrapheneOS / AttestationServer
attestation.app remote attestation server. Server code for use with the Auditor app: https://github.com/GrapheneOS/Auditor. It provides two services: submission of attestation data samples and a remote attestation implementation with email alerts to go along with the local implementation based on QR code scanning in the app.
security attestation cryptography verifiedboot remote-attestation hsm android monitoring grapheneos strongbox integrity authenticity secure-boot secureboot
Language:Java 113
3intermute / ramiel
uefi diskless persistence technique + OVMF secureboot bypass
diskless malware ovmf persistence secureboot uefi
Language:C 56
pbatard / Mosby
Mosby – More Secure Secure Boot
arm64 edk2 ia32 secure-boot secureboot uefi uefi-secureboot uefi-shell x64
Language:C 38
GrapheneOS-Archive / AttestationSamples
A small subset of the submitted sample data from https://github.com/GrapheneOS/Auditor. It has a sample attestation certificate chain per device model (ro.product.model) along with a subset of the system properties from the sample as supplementary information.
security attestation cryptography secure-boot verifiedboot remote-attestation hsm android strongbox integrity authenticity secureboot
Language:Shell 34
dm0- / installer
Secure immutable GNU/Linux distro installer
distro fedora gentoo arch opensuse ubuntu centos gpt uefi verity selinux secureboot appliance-images
Language:Shell 33
theo546 / my-arch-setup
A repo that explain how to install Arch Linux featuring encryption, Secure Boot, btrfs and AppArmor.
archlinux arch-linux btrfs firejail apparmor flatpak tpm secureboot kde
Language:Shell 33
SecureBootForSteamDeck
ryanrudolfoba / SecureBootForSteamDeck
This repository contains the instructions on how to generate and install the Platform Key (PK), Key Exchange Key (KEK) and Signature Database (DB) to enable the Secure Boot functionality in Steam Deck.
boot deck sbctl secure secureboot steam steamdeck
29
DimanNe / secure-boot
Really Secure Boot on Linux
secureboot linux linux-kernel gpg ssl
Language:Python 22
abdullah-erturk / SecureBoot-Grub2FM-Suite
SecureBoot Grub2FM Suite
grub2 grub2file mbr efi uefi legacy multiboot usb secureboot secureboot-grub2fm-suite vhd uefi-mode disk flash-disks grubfm
Language:Batchfile 18
abdullah-erturk / Ventoy-Grub2FM-Multiboot-With-Original-Files
Ventoy & Grub2FM Multiboot With Original Files
boot disk efi gpt grub2 legacy mbr multiboot secureboot uefi usb ventoy grub2fm grubfm
16
symlink-secure-boot-vm
anvilsecure / symlink-secure-boot-vm
VM demonstration various symlink and hard link attacks against secure boot. See the whitepaper at: https://www.anvilventures.com/blog/defeating-secure-boot-with-symlink-attacks.html
symlinks attacks security vms secure boot secureboot hacking whitepaper
Language:HTML 14
puzzleos / stubby
UEFI bootloader stub
bootloader uefi secureboot
Language:C 14
puzzleos / uefi-dev
QEMU/OVMF/SWTPM UEFI Secure Boot development environment
qemu uefi ovmf secureboot tpm
Language:C 13
Zile995 / booster-um
Booster UKI Manager - A simple bash script to manage UKI files generated by booster and systemd-ukify
arch-linux booster efistub initramfs linux sbctl secureboot uki systemd-ukify archlinux unified-kernel-image ukify efi systemd-boot uefi xbootldr
Language:Shell 13
herzhenr / Project-Hackintosh
Intel 10th-gen Hackintosh powered by OpenCore
macos hackintosh mac oc opencore secureboot windows11 ubuntu
10
GrapheneOS / platform_external_Auditor
Auditor app prebuilt using the latest official release of the Auditor app.
security attestation cryptography verifiedboot remote-attestation hsm android grapheneos strongbox monitoring integrity authenticity secure-boot secureboot
Language:Makefile 9
matthewpi / nixos-config
My personal NixOS configs
flake-parts nix nix-darwin nix-flakes nixos nixos-config nixos-configuration agenix home-manager secureboot treefmt treefmt-nix ags hyprland neovim
Language:Nix 8
jonasblixt / bpak
Bitpacker
embedded firmware secureboot dmverity ota
Language:C 6
abdullah-erturk / iPXE-iso-efi-mbr-secureboot-support-
ipxe secureboot pxe pxe-boot pxe-server ipxe-iso tftp tftp-server tftp-client netboot dhcp-server dhcp pxeboot
5
9001 / asm
scriptable runtime-writable livecd / hardware wrangler
alpine livecd liveusb secureboot uki
Language:Shell 4
abdullah-erturk / Ventoy-Command-Line-Installer
Ventoy Command Line Installer
disk efi grub2 legacy multiboot secureboot uefi usb ventoy efi-driver mbr vhd
Language:Batchfile 4
ericonr / generate-sb-efi
Automate generation of Secure Boot signed single file kernel images
secure-boot secureboot efi uefi linux
Language:Python 4
HarryR / cummiboot
Encrypted PCR locked EFI Linux bootloader with Microsoft Pluton
efi linux-security secureboot tpm2
Language:C 4
KareemMoneeam / FOTA
This repository hosts the Firmware Over-The-Air (FOTA) system developed as part of a graduation project at Cairo University. The FOTA system enables secure, efficient, remote updates for embedded systems in smart vehicles, enhancing functionality, safety, and user experience, with strong automotive cybersecurity measures.
aes-encryption bootloader cryptography django embedded embedded-c embedded-systems esp32 firmware firmware-over-the-air graduation-project hc05-module mobileapp secureboot stm32
Language:C 2
mkulke / mkosi-playground
Building azure images with mkosi
azure confidential-computing mkosi secureboot
Language:Go 2
5Noxi / Security-Detector
Detects installed/activated security features.
antivirus automation av bitlocker detection detector firewall powershell secureboot uac
Language:PowerShell 1
Tutorials-and-Tips
Data-Spirit / Tutorials-and-Tips
All the tips for GNU/Linux systems <3
documentation secureboot tutorial virtualbox
1
dattasaurabh82 / esp32_secure_boot
Secure boot ensures that our ESP32 only runs firmware that we have authorized. This repository is a tutorial on how to do just that
esp32 secure-coding secureboot
Language:Shell 1
jellyterra / fedora-secureboot
Build trusted boot on Fedora. With SecureBoot and Unified Kernel Image and encrypted disk.
dracut fedora secureboot systemd-boot unified-kernel-image
Language:Shell 1

secureboot

TechUnRestricted / WinDiskWriter

Foxboron / sbctl

ValdikSS / Super-UEFIinSecureBoot-Disk

GrapheneOS / Auditor

linuxmobile / kaku

noahbliss / mortar

EETagent / T480-OpenCore-Hackintosh

GrapheneOS / AttestationServer

3intermute / ramiel

pbatard / Mosby

GrapheneOS-Archive / AttestationSamples

dm0- / installer

theo546 / my-arch-setup

ryanrudolfoba / SecureBootForSteamDeck

DimanNe / secure-boot

abdullah-erturk / SecureBoot-Grub2FM-Suite

abdullah-erturk / Ventoy-Grub2FM-Multiboot-With-Original-Files

anvilsecure / symlink-secure-boot-vm

puzzleos / stubby

puzzleos / uefi-dev

Zile995 / booster-um

herzhenr / Project-Hackintosh

GrapheneOS / platform_external_Auditor

matthewpi / nixos-config

jonasblixt / bpak

abdullah-erturk / iPXE-iso-efi-mbr-secureboot-support-

9001 / asm

abdullah-erturk / Ventoy-Command-Line-Installer

ericonr / generate-sb-efi

HarryR / cummiboot

KareemMoneeam / FOTA

mkulke / mkosi-playground

5Noxi / Security-Detector

Data-Spirit / Tutorials-and-Tips

dattasaurabh82 / esp32_secure_boot

jellyterra / fedora-secureboot