middleware to capture and modify response bodies
Lightweight tamper-evident audit log with HMAC-SHA256 hash chain. Zero dependencies. Framework-agnostic.
A tamper-proof Javascript data-ledger
Append-only, tamper-evident audit log for the Strav framework
MCP server for EverMint, tamper-evident proof layer for AI agents
CLI utility to tamper package.json' version
Node library to add hash parameter for tamper-free urls
Tamper-resistant native licensing validator for Lambda Kata Integration
Tamper-proof receipts for AI agents
Encoder for the Tamper protocol
AI Execution Integrity — tamper-evident records and Certified Execution Records (CER) for AI operations
Multi-tenant orgs, SSO, RBAC, and tamper-evident audit logging for the CodraGraph platform.
Tamper-evident audit trail for AI coding agent activity
Tamper-evident audit trails for AI coding agents — compliance reports, reasoning capture, hash chains, and portable bundles
Local-first, append-only, tamper-evident memory for AI agents via MCP
Standalone Rust-backed Capacitor plugin for taint tracking and tamper-evident agent audit trails.
``` bash angular anti-tamper
Tamper-evident audit logs for AI agents (placeholder).
ProvEdit SDK for recording AI tool invocations to a tamper-evident chain.
End-to-end encryption and tamper-proof audit trails for AI agents
Tamper-proof AI Oracle for precision prediction markets on 0G
Compliance report generator + tamper-evident audit log for @datacules/agent-identity — SOC 2, GDPR, HIPAA reports, SHA-256 chain verification CLI
Script integrity and clipboard tamper detection for browsers.
Model Context Protocol server for Worldline — tamper-evident agent work sessions with transparent data flow.
an oxidized implementation of the original clumsy tool, designed to simulate adverse network conditions on Windows systems.
Real-time, memory-resident binary integrity verification for Rust applications
SBO3L Phase 3.1: on-chain audit-chain anchoring — periodically publish audit-root digests to AnchorRegistry contracts on Ethereum / Optimism / Base / Polygon for tamper-evident verification.
Video and image forensics and tampering detection for OxiMedia
HMAC-protected circuit breaker with fail-open semantics. Persists circuit state to disk and verifies integrity with HMAC-SHA256 on every reload to prevent state-file tampering from inducing self-DoS.
A simple crate, that protects some variables from being modified by memory tampering tools.
Experimental protocol for quantum-secure communications
SBO3L CLI binary: validate, decide, sign, audit, passport run/verify/explain, doctor.
SBO3L core: protocol types, request hashing, error model, signed receipts.
SBO3L execution: sponsor adapters (KeeperHub, Uniswap) wrapping the GuardedExecutor trait.
SBO3L identity: ENS-backed agent identity resolution (offline fixture + live RPC).
SBO3L MCP — stdio JSON-RPC server wrapping SBO3L primitives (validate_aprp, decide, run_guarded_execution, verify_capsule, audit_lookup, explain_denial).
Serialize defined-option attrs into miminalist binary arrays
Siri Proxy is a proxy server for Apple's Siri "assistant." The idea is to allow for the creation of custom handlers for different actions. This can allow developers to easily add functionality to Siri.
Rack middleware that provides tamper-proof cookies
Suck whole databases, tables and even incremental updates and save your presets for easy reuse.
Middleware for signing urls
Making sure your remote config is not tampered
Gem to verify integrity of packages installed via Bundler. It allows to detect packages that were tampered with or replaced via cache poison or replaced. Add it to your Gemfile and run bundle exec bundler-integrity.
unobtrusive_flash takes your flash messages for the backend and automagically passes them to the frontend via HTTP cookies. This works with both regular page loads and AJAX requests, does not tamper with the page body and requires about 3 extra lines of code in your app - how's that for unobtrusive?
The UrlSigner class was designed to create tamper-proof URLs, that can only be generated and validated by parties that know the shared secret.
Sometimes you just want to send some data to untrusted environments. But how to do this safely? The trick involves signing. Given a key only you know, you can cryptographically sign your data and hand it over to someone else. When you get the data back you can easily ensure that nobody tampered with it.
= Cirron Cirron measures a piece of Ruby code and reports back several performance counters: CPU instruction count, branch misses, page faults and time spent measuring. It uses the Linux perf events interface or @ibireme's KPC demo[https://gist.github.com/ibireme/173517c208c7dc333ba962c1f0d67d12] on OSX. It can also trace syscalls using +strace+, Linux only! == Prerequisites - Linux with perf events support / Apple ARM OSX - C++ - Ruby 3.x == Usage === Performance Counters $ sudo irb irb(main):001> require 'cirron' => true irb(main):002* c = Cirron::collector do irb(main):003* puts "Hello" irb(main):004> end Hello => Counter(time_enabled_ns: 110260, instruction_count: 15406, branch_misses: 525, page_faults: 0) === Tracing Syscalls $ sudo irb irb> require 'cirron' => true irb> trace = Cirron::tracer do irb> # Your code here irb> puts "Hello" irb> end => [#<Syscall:0x00007c6c1a4b3608 @args="1, [{iov_base=\"Hello\", iov_len=5}, {iov_base=\"\\n\", iov_len=1}], 2", @duration="0.000201", @name="writev", @pid="2261962", @retval="6", @timestamp="1720285300.334976">] # Save the trace for ingesting to Perfetto irb> File.write("/tmp/trace", Cirron::to_tef(trace)) => 267 === Tampering with Syscalls Available tampering actions are: error: Inject a fault with the specified errno. retval: Inject a success with the specified return value. signal: Deliver the specified signal on syscall entry. delay_enter: Delay syscall entry by the specified time. delay_exit: Delay syscall exit by the specified time. poke_enter: Modify memory at argN on syscall entry. poke_exit: Modify memory at argN on syscall exit. syscall: Inject a different syscall instead. The when argument can be used to specify when to perform the tampering. See the Tampering section of the [strace manual page](https://man7.org/linux/man-pages/man1/strace.1.html) for more detailed explanaition of the arguments. ``` $ sudo irb irb> require 'cirron' irb> injector = Cirron.injector irb> injector.inject("openat", "error", "ENOSPC") irb> injector.inject("openat", "delay_enter", "1s", when_condition="2+2") irb> injector.run do irb> # Open now fails with "No space left on device" and every irb> # other call to `openat` will be delayed by 1s. irb> File.open("test.txt", "w") irb> end ``` == Additional Information For more detailed information, please visit the project's GitHub page: https://github.com/s7nfo/Cirron
A typical usecase of JWT tokens is when building an API. JWT tokens can be sent as authorization tokens in headers. The advantage of using JWT tokens is that they are signed with a secret, so the information inside them cannot be tampered. This makes them ideal for embeding both authentication and authorization information in one step (e.g. by "decoding" the token, one can get information about the user and the roles a user has in case of a role-based authorization). Also, the fact that expiration timestamps can be embedded in the data of the token and be handled automatically, can be used to easily build short-lived tokens, making an API more secure.
No description provided.
No description provided.
No description provided.
No description provided.
No description provided.
No description provided.
No description provided.
No description provided.
No description provided.
No description provided.
No description provided.
No description provided.