Simple Linux seccomp rules without writing any code
☆522Jul 2, 2025Updated 8 months ago
Alternatives and similar repositories for sandbox
Users that are interested in sandbox are comparing it to the libraries listed below
Sorting:
- sandboxing and containment tool used in ChromeOS and Android☆363Updated this week
- The main libseccomp repository☆900Jan 8, 2026Updated 2 months ago
- A lightweight process isolation tool that utilizes Linux namespaces, cgroups, rlimits and seccomp-bpf syscall filters, leveraging the Kaf…☆3,766Updated this week
- Low-level unprivileged sandboxing tool used by Flatpak and similar projects☆6,138Feb 4, 2026Updated last month
- An execution engine for Wireshark-like filters☆1,096Feb 19, 2026Updated last month
- A fair-share ratelimiter implemented in BPF☆206Sep 26, 2024Updated last year
- Certified Refurbished Private Key Depot☆12Oct 17, 2019Updated 6 years ago
- A language and library for specifying syscall filtering policies.☆349Updated this week
- Linux namespaces and seccomp-bpf sandbox☆7,189Updated this week
- Programmable debugger☆2,040Feb 20, 2026Updated last month
- Rustic X11 games☆16Jan 15, 2026Updated 2 months ago
- Userspace WireGuard® Implementation in Rust☆6,943Jan 22, 2026Updated last month
- A sentry for zero-hit TLS certificate changes in Go☆56Jul 27, 2025Updated 7 months ago
- Cloudflare's implementation of the NTS protocol written in Rust☆177Apr 9, 2024Updated last year
- UtahFS is an encrypted storage system that provides a user-friendly FUSE drive backed by cloud storage.☆819Sep 26, 2024Updated last year
- Luajit take full advantage of lower 2G memory on AMD64 platform.☆36Oct 16, 2024Updated last year
- Offline encryption of Kubernetes Secrets☆182Oct 14, 2024Updated last year
- Fly☆299Apr 11, 2024Updated last year
- Wrangling Untrusted File Formats Safely☆4,716Mar 2, 2026Updated 2 weeks ago
- Application Kernel for Containers☆17,901Updated this week
- Prepared statement support for the system command☆29Jul 25, 2020Updated 5 years ago
- BSD socket API on steroids☆323Sep 27, 2024Updated last year
- PoC multi-layer protector for ELF32 x86 binaries☆12Feb 26, 2022Updated 4 years ago
- Linux Application Level Firewall based on eBPF and NFQUEUE.☆705Nov 5, 2023Updated 2 years ago
- Record and Replay Framework☆10,419Feb 22, 2026Updated 3 weeks ago
- CIRCL: Cloudflare Interoperable Reusable Cryptographic Library☆1,639Mar 1, 2026Updated 2 weeks ago
- serf + headless chromium && CDP☆15Jan 8, 2021Updated 5 years ago
- ☆24Feb 18, 2026Updated last month
- OCI hook to trace syscalls and generate a seccomp profile☆338Updated this week
- Prometheus exporter for custom eBPF metrics☆2,532Updated this week
- A dynamic library providing Virtualization-based process isolation capabilities☆1,732Mar 13, 2026Updated last week
- Linux Runtime Security and Forensics using eBPF☆4,427Updated this week
- A tool for finding the one gadget RCE in libc☆76May 30, 2020Updated 5 years ago
- Tool to interact with the firewall matched data feature.☆21Oct 21, 2024Updated last year
- A kernelspace syscall interceptor and randomized faulter☆358Nov 18, 2024Updated last year
- Ignite a Firecracker microVM☆3,528Dec 7, 2023Updated 2 years ago
- A tool for checking the security hardening options of the Linux kernel☆2,049Feb 28, 2026Updated 2 weeks ago
- Get eBPF programs running from the cloud to the kernel in 1 line of bash☆1,296Apr 17, 2025Updated 11 months ago
- Linux Kernel Defence Map shows the relationships between vulnerability classes, exploitation techniques, bug detection mechanisms, and de…☆2,259Dec 27, 2025Updated 2 months ago