cloudflare / sandboxLinks
Simple Linux seccomp rules without writing any code
☆496Updated last month
Alternatives and similar repositories for sandbox
Users that are interested in sandbox are comparing it to the libraries listed below
Sorting:
- A language and library for specifying syscall filtering policies.☆332Updated last year
- sandboxing and containment tool used in ChromeOS and Android☆323Updated this week
- List of resources related to LD_PRELOAD, a mechanism for changing application behavior at run-time☆903Updated last year
- Linux Application Level Firewall based on eBPF and NFQUEUE.☆703Updated last year
- A general purpose memory allocator that implements an isolation security strategy to mitigate memory safety issues while maintaining good…☆378Updated last year
- An easy way to virtualize the running system☆347Updated last year
- The main libseccomp repository☆864Updated 2 months ago
- Dump unix domain socket traffic with bpf☆400Updated last year
- User-mode networking for unprivileged network namespaces☆837Updated 2 months ago
- Snuffy is a simple command line tool to inspect SSL/TLS data.☆291Updated 4 years ago
- libeatmydata - because fsync() should be a no-op☆448Updated last year
- Light-weight Dynamic Tracer for Linux☆420Updated 5 months ago
- Dynamic Tracing in Linux☆1,009Updated 5 months ago
- BSD socket API on steroids☆315Updated 10 months ago
- RLBox sandboxing framework☆304Updated this week
- eBPF - extended Berkeley Packet Filter tooling☆124Updated 3 years ago
- ☆258Updated last year
- A kernelspace syscall interceptor and randomized faulter☆354Updated 8 months ago
- The reliability of disk images, the flexibility of files☆548Updated 2 months ago
- A lightweight sandbox tool for non-root users☆663Updated 7 years ago
- Sandboxing File System☆46Updated 5 years ago
- Linux kernel - See Landlock issues☆41Updated 3 months ago
- ☆393Updated last month
- Linux Kernel Runtime Guard☆470Updated last month
- KernelMemorySanitizer, a detector of uses of uninitialized memory in the Linux kernel☆415Updated 3 months ago
- Generic eBPF runtime☆151Updated 4 years ago
- Turn IP sockets into Unix domain sockets☆369Updated last year
- A simple LD_PRELOAD library to disable SSL certificate verification. Inspired by libeatmydata.☆180Updated 6 years ago
- High-performance QEMU memory and instruction tracing☆542Updated last year
- opensnoop in pure C using eBPF☆100Updated 3 months ago