Alternatives and similar repositories for sandbox:

Users that are interested in sandbox are comparing it to the libraries listed below

• google / kafel
  A language and library for specifying syscall filtering policies.
  ☆309Updated 6 months ago
• gaul / awesome-ld-preload
  List of resources related to LD_PRELOAD, a mechanism for changing application behavior at run-time
  ☆888Updated 9 months ago
• seccomp / libseccomp
  The main libseccomp repository
  ☆824Updated 3 weeks ago
• amluto / virtme
  An easy way to virtualize the running system
  ☆336Updated last year
• google / minijail
  sandboxing and containment tool used in ChromeOS and Android
  ☆296Updated this week
• containers / composefs
  The reliability of disk images, the flexibility of files
  ☆485Updated last week
• google / kmsan
  KernelMemorySanitizer, a detector of uses of uninitialized memory in the Linux kernel
  ☆411Updated 9 months ago
• rootless-containers / slirp4netns
  User-mode networking for unprivileged network namespaces
  ☆781Updated last week
• osresearch / safeboot
  Scripts to slightly improve the security of the Linux boot process with UEFI Secure Boot and TPM support
  ☆277Updated 2 years ago
• harporoeder / ebpfsnitch
  Linux Application Level Firewall based on eBPF and NFQUEUE.
  ☆695Updated last year
• wkz / ply
  Light-weight Dynamic Tracer for Linux
  ☆406Updated this week
• struct / isoalloc
  A general purpose memory allocator that implements an isolation security strategy to mitigate memory safety issues while maintaining good…
  ☆370Updated 7 months ago
• linuxboot / book
  LinuxBoot book which contains the documentation in markdown format
  ☆277Updated last week
• nccgroup / ebpf
  eBPF - extended Berkeley Packet Filter tooling
  ☆122Updated 2 years ago
• trailofbits / krf
  A kernelspace syscall interceptor and randomized faulter
  ☆351Updated 3 months ago
• google / kernel-sanitizers
  Linux Kernel Sanitizers, fast bug-detectors for the Linux kernel
  ☆453Updated last week
• iovisor / ply
  Dynamic Tracing in Linux
  ☆990Updated this week
• nixcloud / ip2unix
  Turn IP sockets into Unix domain sockets
  ☆362Updated 7 months ago
• google / ktsan
  Kernel Thread Sanitizer, a fast data race detector for the Linux kernel
  ☆573Updated 3 years ago
• cloudflare / linux
  Cloudflare Linux Kernel Patches
  ☆133Updated 4 months ago
• stewartsmith / libeatmydata
  libeatmydata - because fsync() should be a no-op
  ☆428Updated 9 months ago
• hckuo2 / Lupine-Linux
  Linux in Unikernel Clothing
  ☆70Updated 3 years ago
• google / fscrypt
  Go tool for managing Linux filesystem encryption
  ☆910Updated this week
• ssrg-vt / hermitux
  A binary-compatible unikernel
  ☆392Updated 6 months ago
• google / go-attestation
  ☆373Updated last week
• landlock-lsm / linux
  Linux kernel - See Landlock issues
  ☆36Updated 2 months ago
• lkrg-org / lkrg
  Linux Kernel Runtime Guard
  ☆428Updated 2 weeks ago
• unikernelLinux / ukl
  Unikernel Linux
  ☆186Updated 2 months ago
• linux-application-whitelisting / fapolicyd
  File Access Policy Daemon
  ☆207Updated last week
• hrw / syscalls-table
  Information about Linux system calls on different architectures
  ☆148Updated last week