Verification

1) Checksum (SHA‑256)

After downloading the ISO, compute its SHA‑256 and compare with the published .sha256 file.

# Windows (PowerShell)
Get-FileHash .\wardrum-secur escan.iso -Algorithm SHA256

# macOS / Linux
shasum -a 256 wardrum-securescan.iso

2) Signature (GPG)

Import the War Drum release public key, then verify the .sig file.

# Import public key (to be published here)
gpg --import wardrum-release-public.asc

# Verify
gpg --verify wardrum-securescan.iso.sig wardrum-securescan.iso

We’ll publish the fingerprint and key block here once the release key is finalized.