trustzone

A curated list of public TEE resources for learning how to reverse-engineer and achieve trusted code execution on ARM devices

Apache Teaclave (incubating) is an open source universal secure computing platform, making computation on privacy-sensitive data safe and simple.

Teaclave TrustZone SDK enables safe, functional, and ergonomic development of trustlets.

Main repository for the Veracruz privacy-preserving compute project, an adopted project of the Confidential Compute Consortium (CCC).

Nailgun attack on ARM devices.

Reverse-engineering tools and exploits for Samsung's implementation of TrustZone

Design and program Arm-based embedded systems and implement them in low-level hardware using standard C and assembly language.

Build and test embedded software using the IAR C/C++ Compiler alongside CMake

MultiZone® Security TEE is the quick and safe way to add security and separation to any RISC-V processors. The RISC-V standard ISA doesn't define TrustZone-like primitives to provide hardware separation. To shield critical functionality from untrusted third-party components, MultiZone provides hardware-enforced, software-defined separation of multi

LTZVisor: a Lightweight TrustZone-assisted Hypervisor

HITCON electric badge for HITCON CMT 2019.

Shadow-Box: Lightweight and Practical Kernel Protector for ARM (Presented at BlackHat Asia 2018)

mTower is Trusted Execution Environment specially designed to be used on MicroController Units (MCUs) supporting ARM TrustZone technology (e.g., Cortex-M23/33/35p). mTower operates well under restrictions typical for such environment – small RAM and ROM sizes, relatively low performance, absence of rich OSes providing variety of services available on PCs or in enterprise environments. mTower is intended for usage in IoT, embedded devices, Smart Home applications, distributed heterogeneous networks and other environments where secure processing of sensitive data is necessary.

dump Exynos 8890 bootROM from Samsung Galaxy S7

A textbook on understanding system on chip design

Ghidra loader module for the Mobicore trustlet and driver binaries

MultiZone® Trusted Firmware is the quick and safe way to build secure IoT applications with any RISC-V processor. It provides secure access to commercial and private IoT clouds, real-time monitoring, secure boot, and remote firmware updates. The built-in Trusted Execution Environment provides hardware-enforced separation ...

Trusted Gateway: hardened router architecture with ARM TrustZone protected firewall, routing, and NIC modules.

MultiZone® Security TEE for Arm® Cortex®-M is the quick and safe way to add security and separation to any Cortex-M based device. MultiZone® software can retrofit existing designs. If you don’t have TrustZone®, or if you require finer granularity than one secure world, you can take advantage of high security separation without the need for hardware and software redesign, eliminating the complexity associated with managing a hybrid hardware/software security scheme.

Minimal Zig-based app for Armv8-M + TrustZone