open source tools for verifiable security
Most systems still rely on single individuals or computers, unverifiable software, and opaque processes. We’re redesigning security for transparency from the ground up.
live tools
Open source. Verifiable. Ready to use.
live tools
Open source. Verifiable. Ready to use.
StageX
Minimal, security-first Linux distribution for verifiable builds. Bootstrapped from Stage 0, it's hermetic, reproducible, and cryptographically multi-signed.
AirgapOS
Immutable Linux distribution for offline secret management. Diskless, reproducible, and hardened for air-gapped environments.
Keyfork
Deterministic key management toolchain—offline, air-gapped and smartcard-ready. Built for secure recovery, reproducibility, and cryptographic resilience.
Icepick
Framework for building offline-first cryptocurrency tools—supporting transfers, staking, and signing across Bitcoin, Ethereum, Solana, and more.
live tools
Open source. Verifiable. Ready to use.
Secured billions in digital assets by integrating StageX and AirgapOS into Turnkey's critical infrastructure, eliminating potential attack vectors.
Learn more →
Eliminated single points of failure for Mysten Labs, creators of the SUI cryptocurrency, by securely integrating StageX into their deterministic nodes—protecting billions in transaction value.
Learn more →
Strengthened kubernetes deployments at Sidero Labs by leveraging StageX to secure their Talos Linux distribution—ensuring robust protection for critical cloud infrastructure.
Learn more →our roadmap
We're actively building some tools—and raising support to build others. Here's what's in-progress and what's coming next.
backlog (fundraising)
Bootproof
Prove what software booted on a system via remote attestation technologies.
SourceId
Verify source code inegrity with hash-based fingerprints.
SigRev
Crowdsource and discover signed manual code reviews.
in-progress
Trove
Documentation for managing secrets that you can't afford to lose.
ReprOS
Create ephemeral build environments to eliminate persistent risks.
EnclaveOS
Immutable operating system for powering secure enclaves.
active
StageX
Hermetic, deterministic, reproducible, multi-signed OCI-based build toolchain.
AirgapOS
Minimal, immutable, offline-first swiss-army knife for secret management.
Keyfork
Derive keys from a single entropy source to simplify their management.
Icepick
Framework for offline cryptographic signing operations.
building the missing pieces for provable security
Modern software systems still rely on trust—maintainers, IT admins, third-party providers. But what happens when they are compromised? How do you verify that your systems haven't been tampered with?
We’ve identified critical gaps and built tools to remove single points of failure across all levels of the software lifecycle—from toolchains and dependencies to how code is built, signed, verified and deployed.
By combining multi-party trust, remote attestation, and bit-for-bit reproducibility, we are eliminating trust assumptions, ensuring security isn't just a claim—it's provable. And as everything we do, all our software is open source.
See what we're building →❝You can't build a better world on unverifiable systems. We eliminate single points of failure by rethinking security from first principles, and open sourcing everything we build.❝ — Distrust team
want to help with our vision?
Fund the work. Fork the code. Join the mission.