Skip to content

Three ISOs

v111.0.0 · Last Light · the OS has a pulse

Three images.
One fire.

One Rust-for-Linux kernel, one Rust userspace, one GRIMOIRE engine — split into distinct images by a build-time Curtain and a runtime capability ceiling. Pick the way in that fits you.

arch x86-64kernel Linux 7.0 · Rust write to USB ≥ 8 GBboot UEFI
Choose your image

Choose your image

// same codebase — the Curtain. keeps each image in its lane; the free tiers can never escalate to the licensed one.

PublicFree · Beta
GRIMOIRE
Learn to hack. For real — a shared-world hacking MMO where the exploit is the objective.
  • 117 labs across 13 categories — pre-bundled, unlock by progression
  • Faction wars: Crimson Spire · Neon Collective · The Warden
  • Cert paths: eJPT · OSCP · OSEP · GIAC · CEH
  • ALFRED GameMode · sandboxed · optional AI-research unlock late-game
synos-grimoire-v111.iso · x86-64 · UEFI
Download image
SovereignFree personal · Beta
GoodLife
The full sovereign build — everything except operational offensive tooling. Your own AI, your own mesh, your own research lab.
  • Full ALFRED v6.0 · full AI cortex + dispatch
  • Full ARCANUM mesh · the complete 245-crate stack
  • Dedicated Research Division — Jupyter, local models, ML lab
  • No operational offensive tooling — simply not included
synos-goodlife-v111.iso · free personal · licensed commercial
Download image
Enterprise◆ Licensed
Enterprise Edition
The commercial build for teams and regulated environments — the full stack, multi-tenant, compliant, supported.
  • Everything in GoodLife, at organizational scale
  • Multi-tenant ARCANUM federation + fleet management
  • FedRAMP Moderate · CMMC L2 · SOC2 posture with evidence packs
  • Priority support & SLAs · by customer agreement
🔒 licensed · customer agreement
Talk to us
Church of Malware · Beta Access
Enter through the Church.

A community edition forged with the Church of Malware. Verified members boot green-on-black into the CoM faction — a baked-in loadout, an XP head-start, and member-exclusive labs the public build never sees. This is the soft-launch door for public beta.

// code is scripture · exploitation is sermon · members only
Request CoM Beta Access
membership is audited in the CoM Discord — access is device-bound and single-use
  1. 1Join the Church of Malware Discord via churchofmalware.org
  2. 2Get verified — your role is audited to confirm membership
  3. 3Run /claim in Discord → receive a single-use claim code
  4. 4Redeem with synos-claim <code> and boot your token-gated beta

Every image is signed.

Reproducible from source across independent build oracles, cosign-signed, and logged to a public transparency record. Trust the fire, verify the ash.

SHA-256 per image SLSA-3 reproducible cosign + Sigstore Rekor CycloneDX SBOM
verify.sh
# confirm the ISO is the one we built
$ cosign verify-blob \
    --certificate synos-grimoire-v111.iso.cert \
    --signature   synos-grimoire-v111.iso.sig \
    synos-grimoire-v111.iso
Verified OK  — logged in Sigstore Rekor
$ sha256sum -c synos-grimoire-v111.iso.sha256
synos-grimoire-v111.iso: OK
ComponentMinimumRecommended
CPUx86_64 (Haswell+), 2 cores4+ cores, AVX2
RAM4 GB8+ GB (16 GB for AI workloads)
Storage32 GB64 GB SSD
FirmwareUEFI w/ SecureBoot optionalUEFI + TPM 2.0 (for Curtain v4 attest)
GPUOptional (Vulkan for Bevy)Discrete GPU for local LLM inference
NetworkOptionalTailscale-capable (ARCANUM mesh)

All public ISOs are signed and reproducible:

  • Cosign + Sigstore Rekor transparency log entries (v48 Forge)
  • SLSA-3 provenance generated by slsa-github-generator in release-publish.yml
  • SOURCE_DATE_EPOCH propagation, deterministic squashfs, sorted tar/mksquashfs, pacman snapshot pin — bit-for-bit reproducible across oracle nodes
  • SHA-256 checksums + CycloneDX SBOM published alongside each ISO
  • GPG-signed release manifest

The cross-oracle verifier (synos-rebuild-verify.sh) lets you rebuild any release ISO on independent hardware and confirm the digest matches.

Star the GitHub repository to be notified when public ISOs cut. Join the Discord for build-day announcements.