Alternatives and similar repositories for sandbox:

Users that are interested in sandbox are comparing it to the libraries listed below

• google / kafel
  A language and library for specifying syscall filtering policies.
  ☆312Updated 8 months ago
• rootless-containers / slirp4netns
  User-mode networking for unprivileged network namespaces
  ☆802Updated 2 months ago
• harporoeder / ebpfsnitch
  Linux Application Level Firewall based on eBPF and NFQUEUE.
  ☆696Updated last year
• google / minijail
  sandboxing and containment tool used in ChromeOS and Android
  ☆305Updated this week
• containers / libkrun
  A dynamic library providing Virtualization-based process isolation capabilities
  ☆1,060Updated last week
• seccomp / libseccomp
  The main libseccomp repository
  ☆837Updated last month
• struct / isoalloc
  A general purpose memory allocator that implements an isolation security strategy to mitigate memory safety issues while maintaining good…
  ☆373Updated 9 months ago
• PLSysSec / rlbox
  RLBox sandboxing framework
  ☆296Updated last month
• composefs / composefs
  The reliability of disk images, the flexibility of files
  ☆504Updated last week
• amluto / virtme
  An easy way to virtualize the running system
  ☆339Updated last year
• gaul / awesome-ld-preload
  List of resources related to LD_PRELOAD, a mechanism for changing application behavior at run-time
  ☆891Updated 11 months ago
• mechpen / sockdump
  Dump unix domain socket traffic with bpf
  ☆387Updated last year
• kpcyrd / rebuilderd
  Independent verification of binary packages - Reproducible Builds
  ☆379Updated last month
• wkz / ply
  Light-weight Dynamic Tracer for Linux
  ☆409Updated 2 months ago
• iovisor / ply
  Dynamic Tracing in Linux
  ☆998Updated 2 months ago
• google / kmsan
  KernelMemorySanitizer, a detector of uses of uninitialized memory in the Linux kernel
  ☆410Updated 2 weeks ago
• keylime / keylime
  A CNCF Project to Bootstrap & Maintain Trust on the Edge / Cloud and IoT
  ☆461Updated last week
• google / fscrypt
  Go tool for managing Linux filesystem encryption
  ☆924Updated last month
• nabla-containers / runnc
  OCI-interfacing Container runtime for Nabla Containers
  ☆258Updated 3 years ago
• osresearch / safeboot
  Scripts to slightly improve the security of the Linux boot process with UEFI Secure Boot and TPM support
  ☆275Updated 2 years ago
• containers / udica
  This repository contains a tool for generating SELinux security profiles for containers
  ☆517Updated 3 weeks ago
• stewartsmith / libeatmydata
  libeatmydata - because fsync() should be a no-op
  ☆434Updated 11 months ago
• nccgroup / ebpf
  eBPF - extended Berkeley Packet Filter tooling
  ☆123Updated 2 years ago
• containers / oci-seccomp-bpf-hook
  OCI hook to trace syscalls and generate a seccomp profile
  ☆319Updated 2 weeks ago
• genuinetools / bpfd
  Framework for running BPF programs with rules on Linux as a daemon. Container aware.
  ☆478Updated 3 years ago
• landlock-lsm / linux
  Linux kernel - See Landlock issues
  ☆40Updated 2 weeks ago
• cloudflare / tubular
  BSD socket API on steroids
  ☆297Updated 6 months ago
• nixcloud / ip2unix
  Turn IP sockets into Unix domain sockets
  ☆365Updated 9 months ago
• kinvolk / traceloop
  Now moved into `github.com/inspektor-gadget/inspektor-gadget/pkg/gadget-collection/gadgets/traceloop`. Tracing system calls in cgroups u…
  ☆198Updated 2 years ago
• vbpf / prevail
  eBPF verifier based on abstract interpretation
  ☆411Updated this week