Ecosyste.ms sponsors
An open API service aggregating public data about GitHub Sponsors.
An open API service aggregating public data about GitHub Sponsors.
Security researcher/engineer working on mobile privacy/security. Founder of @GrapheneOS.
Funding Links: https://github.com/sponsors/thestinger
I'm a security researcher / software developer working on improving mobile privacy and security. I created the hardened mobile OS project now known as GrapheneOS in 2014 and I've been working on it full time ever since. As part of this work, I've helped to improve privacy and security in upstream projects including the Android Open Source Project, Linux kernel, LLVM, OpenBSD and various others. The contributions upstream include a bunch of successfully landed patches, security bug reports and proposals / design discussions that led to changes being implemented or adjusted.
I focus on systemic privacy and security improvements rather than fixing individual bugs on a case-by-case basis. There are many independent security researchers focusing on finding bugs but very few developing broader privacy and security enhancements, particularly robust implementations suitable for production use. Privacy and security features included in GrapheneOS are expected to have a clear threat model / goals rather than simply providing an obstacle forcing attackers to adapt. The changes go through careful review / testing and they need to be maintained indefinitely including porting them to each new release of the upstream software, rather than making a half baked proof of concept for a specific version and abandoning it like most academic work. Maintenance and porting work is a massive time sink and landing changes upstream to avoid this ranges from difficult to impossible.
I'm currently relying entirely on donations to continue this work. Your sponsorship will support my development of GrapheneOS itself along with the standalone sub-projects including hardened_malloc, Vanadium, Auditor, AttestationServer, PdfViewer and more. There are also ongoing costs for hosting services, purchasing test devices and upgrading build hardware. Some of existing donation money has been set aside as an emergency fund, primarily for covering ongoing legal fees and other unpredictable expenses such as hardware failures, etc.
Hardened allocator designed for modern systems. It has integration into Android's Bionic libc and can be used externally with musl and glibc as a dynamic library for use on other Linux-based platfo…
Language: C - Stars: 1304Hardware-based attestation / intrusion detection app for Android devices. It provides both local verification with another Android device via QR codes and optional scheduled server-based verificati…
Language: Java - Stars: 492attestation.app remote attestation server. Server code for use with the Auditor app: https://github.com/GrapheneOS/Auditor. It provides two services: submission of attestation data samples and a re…
Language: Java - Stars: 106Repo manifest for the GrapheneOS mobile privacy and security hardening project.
Language: - Stars: 313Empowering everyone to build reliable and efficient software.
Language: Rust - Stars: 98952Privacy and security enhanced releases of Chromium for GrapheneOS. Vanadium provides the WebView and standard user-facing browser on GrapheneOS. It depends on hardening in other GrapheneOS reposito…
Language: Shell - Stars: 908