A tool for detecting and sampling hardware attestation evidence from various Trusted Execution Environment (TEE) types.
tee-sampler automatically detects available attestable hardware devices and collects attestation evidence from them. It supports multiple TEE types and formats the evidence as structured claims in the same format as Trustee.
- Azure SNP vTPM (
AzSnpVtpm) - Azure Confidential Computing with SEV-SNP and vTPM - Azure TDX vTPM (
AzTdxVtpm) - Azure Confidential Computing with Intel TDX and vTPM (optional feature) - SEV-SNP (
Snp) - AMD SEV-SNP attestation - TPM - Trusted Platform Module devices
- Automatic detection of available TEE types
- Evidence collection from multiple attestable devices
- Parsing and formatting of attestation claims
just run sudo podman run --privileged ghcr.io/trusted-execution-clusters/tee-sampler
The tool outputs structured JSON claims for each detected TEE type.