cloudflare / sandbox

Related projects ⓘ

Alternatives and complementary repositories for sandbox

• google / kafel
  A language and library for specifying syscall filtering policies.
  ☆302Updated 3 months ago
• gaul / awesome-ld-preload
  List of resources related to LD_PRELOAD, a mechanism for changing application behavior at run-time
  ☆882Updated 6 months ago
• amluto / virtme
  An easy way to virtualize the running system
  ☆332Updated last year
• seccomp / libseccomp
  The main libseccomp repository
  ☆808Updated last week
• google / minijail
  sandboxing and containment tool used in ChromeOS and Android
  ☆275Updated this week
• harporoeder / ebpfsnitch
  Linux Application Level Firewall based on eBPF and NFQUEUE.
  ☆695Updated last year
• containers / composefs
  The reliability of disk images, the flexibility of files
  ☆456Updated this week
• wkz / ply
  Light-weight Dynamic Tracer for Linux
  ☆403Updated 2 months ago
• rootless-containers / slirp4netns
  User-mode networking for unprivileged network namespaces
  ☆746Updated 6 months ago
• struct / isoalloc
  A general purpose memory allocator that implements an isolation security strategy to mitigate memory safety issues while maintaining good…
  ☆363Updated 4 months ago
• containers / libkrun
  A dynamic library providing Virtualization-based process isolation capabilities
  ☆916Updated this week
• mechpen / sockdump
  Dump unix domain socket traffic with bpf
  ☆364Updated 11 months ago
• cloudflare / tubular
  BSD socket API on steroids
  ☆275Updated last month
• gotoz / runq
  run regular Docker images in KVM/Qemu
  ☆804Updated 6 months ago
• iovisor / ubpf
  Userspace eBPF VM
  ☆833Updated this week
• firecracker-microvm / firectl
  firectl is a command-line tool to run Firecracker microVMs
  ☆483Updated last month
• iovisor / ply
  Dynamic Tracing in Linux
  ☆976Updated 2 months ago
• DavidBuchanan314 / libleakmydata
  A simple LD_PRELOAD library to disable SSL certificate verification. Inspired by libeatmydata.
  ☆173Updated 6 years ago
• PLSysSec / rlbox
  RLBox sandboxing framework
  ☆287Updated 3 months ago
• lkrg-org / lkrg
  Linux Kernel Runtime Guard
  ☆414Updated 3 weeks ago
• nixcloud / ip2unix
  Turn IP sockets into Unix domain sockets
  ☆361Updated 4 months ago
• stewartsmith / libeatmydata
  libeatmydata - because fsync() should be a no-op
  ☆414Updated 6 months ago
• tsgates / mbox
  A lightweight sandbox tool for non-root users
  ☆657Updated 6 years ago
• ajor / bpftrace
  High-level tracing language for Linux eBPF - development moved to https://github.com/iovisor/bpftrace
  ☆250Updated 5 years ago
• nccgroup / ebpf
  eBPF - extended Berkeley Packet Filter tooling
  ☆122Updated 2 years ago
• containers / fuse-overlayfs
  FUSE implementation for overlayfs
  ☆535Updated 3 months ago
• cloud-hypervisor / rust-hypervisor-firmware
  ☆594Updated last week
• trailofbits / krf
  A kernelspace syscall interceptor and randomized faulter
  ☆350Updated this week
• alessandrod / snuffy
  Snuffy is a simple command line tool to inspect SSL/TLS data.
  ☆290Updated 4 years ago