Mcaster1KeySmith — Hardware Security Key Management & Code Signing

A cross-platform FIDO2/PIV hardware-key management and code-signing toolkit. Manage YubiKey 5, Hirsch uTrust FIDO2, and any CTAP2 device; sign, verify, and track certificates. Built with C++17, Qt 6, libfido2, and OpenSSL.

In Development Cross-Platform macOS Linux Windows
In Development Full Details

In Development

A desktop application in active development. The capabilities below are implemented against real hardware keys — all operations are live to the device, with no credential storage.

  • FIDO2 device management — CTAP version, AAGUID, firmware, PIN status, credential slots, transport
  • PIN management — set, change, and verify FIDO2 PINs via a secure dialog
  • Resident credential management — list by relying party and delete (FIDO 2.1)
  • Factory reset with a 10-second safety window
  • Code signing via Apple codesign, productsign, and notarytool with Keychain identity discovery
  • Signature verification with signing-chain details
  • Certificate lifecycle — import/export, CSR generation, expiry tracking, renewal
  • Multi-key support with 3-second polling
  • Dual theme (CasterClub Dark / Enterprise Lite), runtime switchable