Services Open Source
Threat Model Blog Public Repos
About
Open Source

Security tools,
open to you.


Build on tools designed to reduce trust. Open source infrastructure for reproducible software, offline custody, and verifiable systems.

Build on tools designed to reduce trust. Open source infrastructure for reproducible software, offline custody, and verifiable systems.

Tools we built

Security tools, open to you.

The same tools we rely on to secure high-stakes systems, open-sourced and free for any team that needs them.

StageX

View website

Hermetic, deterministic, reproducible, multi-signed OCI-based build toolchain.

AirgapOS

View repo

Minimal, immutable, offline-first swiss-army knife for secret management.

Keyfork

View repo

Derive keys from a single entropy source to simplify their management.

Icepick

View repo

Framework for offline cryptographic signing operations.

Trove

View docs

Documentation for managing secrets you can't afford to lose.

EnclaveOS

Coming soon
View repo

Immutable OS for powering verifiable confidential compute on untrusted hosts.

ReprOS

Coming soon
View repo

Create ephemeral build environments to eliminate persistent risks.

SourceId

Coming soon
View repo

Verify source code integrity with hash-based fingerprints.

SigRev

Coming soon
View repo

Crowdsource and discover signed manual code reviews.

Explore all public repos

Building blocks for provable security

Modern software systems still rely on trust: maintainers, IT admins, third-party providers. But what happens when they are compromised? How do you verify that your systems haven't been tampered with?

We’ve identified critical gaps and built tools to remove single points of failure across all levels of the software lifecycle, from toolchains and dependencies to how code is built, signed, verified and deployed.

By combining multi-party trust, remote attestation, and bit-for-bit reproducibility, we are eliminating trust assumptions and ensuring security isn't just a claim, it's provable. And as with everything we do, all our software is open source.

We want to use our knowledge to improve security, privacy, and freedom for as many people as possible. We believe that verifiable foundations for building technology are essential to human wellbeing and solving the coordination problem.
Distrust team
Get in touch

Bring us your hardest
security problem.

Book a 30-minute call with a security engineer, or send a note about what you're working on. The first conversation is on us.