| Layer | Components |
|---|---|
| BIOS / Firmware | • Coreboot (custom build, ME disabled with me_cleaner) • Hidden BIOS menus unlocked • Overclock/undervolt controls • TPM patched or disabled |
| Boot Manager | • rEFInd (custom theme) • Optional GRUB chainloading for kernel params • Hidden boot profiles (only via hotkey) • Full disk encryption with LUKS2 detached key |
| Primary OS | • Arch Linux (KDE Plasma) • BlackArch repo integrated • Btrfs with snapshots/rollback • Hardened kernel (linux-hardened / grsecurity) • AppArmor + firejail confinement • Encrypted swap and tmpfs |
| Secondary OS | • Windows 11 Pro (stripped/minimal) • Used only for GPU-heavy tasks (gaming, CAD, CUDA) • BitLocker encryption • Hardened via registry lockdown / O&O ShutUp |
| Shadow OS Layer | • Qubes OS (VM-based compartmentalization) • Disposable VMs for isolated tasks • Whonix template for anonymity • Split GPG/SSH key handling |
| Live / Stealth OS | • Tails (volatile, Tor routing, MAC spoofing) • Kodachi Linux (privacy-focused) |
| Virtualization / Containers | • QEMU/KVM with GPU passthrough (via Thunderbolt eGPU) • Docker / Podman for labs • LXC jails for isolation • Firecracker microVMs for ephemeral workloads |
| Extras | • AppImageLauncher for portable apps • Desktop integration (rEFInd + .desktop entries) • Encrypted hidden partitions with VeraCrypt (plausible deniability) • Secure wipe tools (shred, srm) • Decoy user accounts for low-privilege mode |
Created
September 18, 2025 10:49
-
-
Save icedmoca/f5f51cb0d53701fa58c44304bcffdeca to your computer and use it in GitHub Desktop.
dell 5430 system
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment