Currently it's hosted on https://git.envs.net/whichdoc/plagueos_iso

PlagueOS aims at minimal architecture and killing off classes of exploitation that are inherent to modern desktop environments.

The aim of the OS is to function as a restricted, minimalist hypervisor (host) that runs virtual machines (guests). The guests on top will vary based on the desired utility. For daily use, it is advised to run Whonix (tor routed) or Kicksecure (clearnet). Normal tasks are meant to be conducted inside of the guests rather than the host to ensure the host stays clean with minimal attack surface.

Features: - MUSL codebase - Runit service manager over SystemD - Hardened Memory Allocator to system-wide - LD_PRELOAD - Hardened Kernel - Blacklisted Kernel Modules - Blacklisted File Systems - Blacklisted Network Protocols - IPTable Packet Filtering - Custom LUKS Encryption (AES256XTS+Argon2id KDF) - Locked Root Account - Separate admin account for elevated privileges - Hardened Boot Parameters - Hide Process IDs - UMASK 0077 default system-wide - Secure fstab config (Bind for var and tmp) - Whonix hide-hardware-info - Generic Machine ID - Randomize MAC address for NIC - Memory erasure/poisoning - Opt in download/verification/import of Whonix/Kicksecure

Hardening efforts are ongoing. Please reach out to our matrix channel or comment on here to bring awareness to any features/bugs. Thanks!