CYRBER — Glass House

Videt omnia · Meminit omnia · Iudicat omnia

Our own platform, scanned by our own engine, every night.
Verify it. Don't trust it.

Every 24 hours CYRBER runs a full self-scan against the production VPS hosting this site. The delta vs. the previous scan is signed with our Ed25519 key and anchored to the Bitcoin blockchain via OpenTimestamps. The current and past snapshots are below — fetch them, verify the signatures against the public key, walk the OTS proofs. If the proof doesn't match the math, ignore the marketing.

Public signing key · Ed25519

Key identity

loading…

algorithm ed25519 encoding hex · 32 bytes

Latest trust snapshot

Most recent self-scan · signed · timestamped

loading…

How to verify

Offline verification — 30 seconds

# fetch the latest snapshot JSON
curl -s https://trust.cyrber.com/api/public/trust/status > snap.json

# verify the ed25519 signature using Python + PyNaCl
python3 - <<'PY'
import json, base64
from nacl.signing import VerifyKey
from nacl.exceptions import BadSignatureError

snap = json.load(open('snap.json'))
vk = VerifyKey(bytes.fromhex(snap['ed25519_public_key']))
payload = json.dumps(
    {k: snap[k] for k in [
        'snapshot_id', 'created_at', 'mission_id',
        'total_findings', 'findings_by_severity',
        'delta_total', 'delta_new_names', 'snapshot_hash'
    ]},
    sort_keys=True, separators=(',', ':')
).encode()
try:
    vk.verify(payload, bytes.fromhex(snap['ed25519_signature']))
    print('signature OK')
except BadSignatureError:
    print('signature INVALID — do not trust')
PY

History

Past snapshots

Snap Timestamp Findings Delta OTS

loading…