tee

Apache Teaclave (incubating) is an open source universal secure computing platform, making computation on privacy-sensitive data safe and simple.

Zero-copy I/O primitives and pipelines for Go. Linux-specific.

A novel container runtime, aka confidential container, for cloud-native confidential computing and enclave runtime ecosystem.

A curated list of public TEE resources for learning how to reverse-engineer and achieve trusted code execution on ARM devices

Nailgun attack on ARM devices.

Teaclave TrustZone SDK enables safe, functional, and ergonomic development of trustlets.

Enigma Core library. The domain: Trusted and Untrusted App in Rust.

Tools and runtime for launching unmodified container images in Trusted Execution Environments

Penglai Enclave is an open-sourced, secure and scalable TEE system for RISC-V.

MultiZone® Security TEE is the quick and safe way to add security and separation to any RISC-V processors. The RISC-V standard ISA doesn't define TrustZone-like primitives to provide hardware separation. To shield critical functionality from untrusted third-party components, MultiZone provides hardware-enforced, software-defined separation of multiple equally secure worlds. Unlike antiquated hypervisor-like solutions, MultiZone is self-contained, presents an extremely small attack surface, and it is policy driven, meaning that no coding is required – and in fact even allowed. MultiZone works with any 32-bit or 64-bit RISC-V processors with standard Physical Memory Protection unit (PMP) and “U” mode.

🏵 Gee is tool of stdin to each files and stdout. It is similar to the tee command, but there are more functions for convenience. In addition, it was written as go

This is the main repo for Penglai.

🚰 Tee for Kotlin

Portable Unix shell command 'tee', with some extras - read from standard input and write to standard output and files

A subprocess.run drop-in replacement that supports a tee mode, being able to display output in real time while still capturing it. No dependencies needed

MultiZone® Security Enclave for Linux

An End-to-End Privacy Computing Protocol on Layer 2

SANA, Storage Area Network Anywhere, a point-to-point encrypted storage area node network based on Swarm, is established by the Github geeks.

MultiZone free and open API definition

The main repo of Penglai Enclave based on RISC-V Trapped Virtual Memory (TVM).

Secure SQLite Database entirely inside a secure Intel SGX enclave (Linux).

Development of secure drone system by using PX4 Autopilot 🚁🔐

[deprecated] Tokio Linux zero-copy IO

Content based network multiplexer or redirector made with love and Go

MultiZone® Security Trusted Firmware is the quick and safe way to build secure IoT applications with any RISC-V processor. It provides secure access to commercial and private IoT clouds, real-time monitoring, secure boot, and remote firmware updates. The built-in Trusted Execution Environment provides hardware-enforced separation to shield the execution of trusted applications from untrusted 3rd party libraries.

Trusted execution experiments with Intel SGX

Solution to harden TLS security by storing private keys and delegating operations to the Trused Execution Environment