NixOS · Hyprland · Security-first · Reproducible
Sigilos is a security and privacy-focused Linux distribution built on NixOS with Hyprland. No bloat. No desktop environment overhead. A curated professional environment — declared once, reproduced anywhere, deployed in minutes.
Core design
Every decision in Sigilos exists for a reason. No defaults kept for legacy reasons. No packages included for convenience.
Fully declarative configuration. Every package, every service, every setting defined in code. Reproduce your exact environment on any machine, any time.
A tiling Wayland compositor replaces GNOME, KDE, and XFCE entirely. Faster, lighter, and fully keyboard-driven. Your screen space belongs to your work.
A curated set of security and penetration testing tools pre-configured and ready to use. Enumeration, exploitation, forensics, and analysis — all available out of the box.
Run a full Sigilos environment from a USB drive. No installation required. Persistent storage optional. Leave no trace.
No NixOS knowledge required to get started. A single command deploys a fully configured system. Profiles for security, development, or both.
No telemetry. MAC address randomization. DNS-over-TLS out of the box. Default-deny firewall. Full disk encryption on install. AppArmor profiles for sensitive tools.
Comparison
Both are excellent tools. Sigilos is built for professionals who want reproducibility, minimalism, and a modern Wayland workflow alongside security tooling.
| Feature | Sigilos | Parrot | Kali |
|---|---|---|---|
| Declarative config | ✓ | ✗ | ✗ |
| Reproducible builds | ✓ | ✗ | ✗ |
| Wayland-native | ✓ | ✗ | ✗ |
| Tiling WM | ✓ | ✓ | ✓ |
| Security toolset | ✓ | ✓ | ✓ |
| USB live mode | ✓ | ✓ | ✓ |
| Rolling updates | ✓ | ✓ | ✓ |
Technical stack
Early access
Sigilos is in active development. Join the waitlist to get notified when v0.1 drops and be among the first to test it.