SECURITY

Verify Download

← Back to Documentation

Always verify your SpecterOS download before installation to ensure the ISO is authentic and hasn't been tampered with.

⚠️ Important: Never skip verification! Installing from a corrupted or tampered ISO can compromise your security.

SHA256 Checksum Verification

Download the Checksum File

Download SHA256SUMS from the download page or run:

wget https://github.com/Sskibls/Specteros-OS/releases/download/v0.1.0/SHA256SUMS

Verify on Linux/macOS

sha256sum -c SHA256SUMS

Expected output: specteros-debian-20240305.iso: OK

Verify on Windows

certutil -hashfile specteros-debian-20240305.iso SHA256

Compare the output with the value in SHA256SUMS file.

Manual Verification

Generate checksum:

# Linux
sha256sum specteros-debian-20240305.iso

# macOS
shasum -a 256 specteros-debian-20240305.iso

# Windows (PowerShell)
Get-FileHash specteros-debian-20240305.iso -Algorithm SHA256

Compare with the official checksum from the download page.

GPG Signature Verification (Advanced)

🔐 For Maximum Security: GPG verification provides cryptographic proof that the ISO was signed by the SpecterOS team.

Import the SpecterOS Signing Key

gpg --keyserver keyserver.ubuntu.com --recv-keys 0xSPECTEROSKEY

Key fingerprint: XXXX XXXX XXXX XXXX SPECTEROS

Download the Signature File

wget https://github.com/Sskibls/Specteros-OS/releases/download/v0.1.0/specteros-debian-20240305.iso.sig

Verify the Signature

gpg --verify specteros-debian-20240305.iso.sig specteros-debian-20240305.iso

Expected output: Good signature from "SpecterOS Release Team"

What If Verification Fails?

⚠️ If verification fails:

Possible causes of verification failure:

Official Checksums

Current release (v0.1.0):

specteros-debian-20240305.iso
SHA256: abc123def456789... (see download page for full checksum)
📌 Note: Always get checksums from the official download page or the SpecterOS GitHub repository.

Next Steps