cloudflare/sandbox external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

cloudflare/sandbox

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/cloudflare/sandbox)

Close

cloudflare / sandboxView on GitHubMore

• External links
• Readme badge

Simple Linux seccomp rules without writing any code

☆527Apr 23, 2026Updated last month

Alternatives and similar repositories for sandbox

Users that are interested in sandbox are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• google / minijail

  View on GitHub
  sandboxing and containment tool used in ChromeOS and Android
  ☆371Jun 2, 2026Updated last week
• seccomp / libseccomp

  View on GitHub
  The main libseccomp repository
  ☆919May 28, 2026Updated last week
• google / nsjail

  View on GitHub
  A lightweight process isolation tool that utilizes Linux namespaces, cgroups, rlimits and seccomp-bpf syscall filters, leveraging the Kaf…
  ☆3,948May 28, 2026Updated last week
• containers / bubblewrap

  View on GitHub
  Low-level unprivileged sandboxing tool used by Flatpak and similar projects
  ☆7,475Jun 2, 2026Updated last week
• cloudflare / wirefilter

  View on GitHub
  An execution engine for Wireshark-like filters
  ☆1,131May 19, 2026Updated 3 weeks ago
• Virtual machines for every use case on DigitalOcean • Ad
  Get dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
• cloudflare / rakelimit

  View on GitHub
  A fair-share ratelimiter implemented in BPF
  ☆206Apr 23, 2026Updated last month
• kisom / crpk-depot

  View on GitHub
  Certified Refurbished Private Key Depot
  ☆12Oct 17, 2019Updated 6 years ago
• google / kafel

  View on GitHub
  A language and library for specifying syscall filtering policies.
  ☆361Apr 4, 2026Updated 2 months ago
• netblue30 / firejail

  View on GitHub
  Linux namespaces and seccomp-bpf sandbox
  ☆7,442Jun 2, 2026Updated last week
• osandov / drgn

  View on GitHub
  Programmable debugger
  ☆2,069Updated this week
• keith-packard / kgames

  View on GitHub
  Rustic X11 games
  ☆16Jan 15, 2026Updated 4 months ago
• cloud-hypervisor / cloud-hypervisor

  View on GitHub
  A Virtual Machine Monitor for modern Cloud workloads. Features include CPU, memory and device hotplug, support for running Windows and Li…
  ☆5,734Updated this week
• cloudflare / certinel

  View on GitHub
  A sentry for zero-hit TLS certificate changes in Go
  ☆56Apr 24, 2026Updated last month
• cloudflare / boringtun

  View on GitHub
  Userspace WireGuard® Implementation in Rust
  ☆7,074May 4, 2026Updated last month
• Deploy open-source AI quickly and easily - Special Bonus Offer • Ad
  Runpod Hub is built for open source. One-click deployment and autoscaling endpoints without provisioning your own infrastructure.
• cloudflare / cfnts

  View on GitHub
  Cloudflare's implementation of the NTS protocol written in Rust
  ☆177Apr 9, 2024Updated 2 years ago
• cloudflare / luajit-mm

  View on GitHub
  Luajit take full advantage of lower 2G memory on AMD64 platform.
  ☆36Oct 16, 2024Updated last year
• cloudflare / lockbox

  View on GitHub
  Offline encryption of Kubernetes Secrets
  ☆183Apr 23, 2026Updated last month
• superfly / init-snapshot

  View on GitHub
  Fly
  ☆301Apr 11, 2024Updated 2 years ago
• google / wuffs

  View on GitHub
  Wrangling Untrusted File Formats Safely
  ☆4,763May 17, 2026Updated 3 weeks ago
• containers / libkrun

  View on GitHub
  A dynamic library providing Virtualization-based process isolation capabilities
  ☆2,280Updated this week
• cisco / systemf

  View on GitHub
  Prepared statement support for the system command
  ☆29Jul 25, 2020Updated 5 years ago
• cloudflare / circl

  View on GitHub
  CIRCL: Cloudflare Interoperable Reusable Cryptographic Library
  ☆1,674Updated this week
• google / gvisor

  View on GitHub
  Application Kernel for Containers
  ☆18,483Updated this week
• Serverless GPU API endpoints on Runpod - Get Bonus Credits • Ad
  Skip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
• cloudflare / tubular

  View on GitHub
  BSD socket API on steroids
  ☆324Apr 23, 2026Updated last month
• ulexec / ElfLocker

  View on GitHub
  PoC multi-layer protector for ELF32 x86 binaries
  ☆12Feb 26, 2022Updated 4 years ago
• harporoeder / ebpfsnitch

  View on GitHub
  Linux Application Level Firewall based on eBPF and NFQUEUE.
  ☆704Nov 5, 2023Updated 2 years ago
• rr-debugger / rr

  View on GitHub
  Record and Replay Framework
  ☆10,534Jun 3, 2026Updated last week
• cloudflare / lazyhtml

  View on GitHub
  HTML5-compliant parser and serializer than enables building transformation pipeline in a pluggable manner
  ☆146Apr 23, 2026Updated last month
• ChrisTheCoolHut / Linux_kernel_exploitation

  View on GitHub
  https://breaking-bits.gitbook.io/breaking-bits/exploit-development/linux-kernel-exploit-development
  ☆44Jan 15, 2022Updated 4 years ago
• cloudflare / privacy-gateway-client-library

  View on GitHub
  ☆23Apr 23, 2026Updated last month
• cloudflare / ebpf_exporter

  View on GitHub
  Prometheus exporter for custom eBPF metrics
  ☆2,588Jun 2, 2026Updated last week
• containers / oci-seccomp-bpf-hook

  View on GitHub
  OCI hook to trace syscalls and generate a seccomp profile
  ☆348May 24, 2026Updated 2 weeks ago
• End-to-end encrypted cloud storage - Proton Drive • Ad
  Special offer: 40% Off Yearly / 80% Off First Month. Protect your most important files, photos, and documents from prying eyes.
• ChrisTheCoolHut / angry_gadget

  View on GitHub
  A tool for finding the one gadget RCE in libc
  ☆77May 30, 2020Updated 6 years ago
• cloudflare / matched-data-cli

  View on GitHub
  Tool to interact with the firewall matched data feature.
  ☆22Apr 23, 2026Updated last month
• eiginn / nftrace

  View on GitHub
  Easier tracing of packets through iptables
  ☆35Jun 24, 2025Updated 11 months ago
• trailofbits / krf

  View on GitHub
  A kernelspace syscall interceptor and randomized faulter
  ☆357Nov 18, 2024Updated last year
• weaveworks / ignite

  View on GitHub
  Ignite a Firecracker microVM
  ☆3,531Dec 7, 2023Updated 2 years ago
• a13xp0p0v / kernel-hardening-checker

  View on GitHub
  A tool for checking the security hardening options of the Linux kernel
  ☆2,088May 30, 2026Updated last week
• solo-io / bumblebee

  View on GitHub
  Get eBPF programs running from the cloud to the kernel in 1 line of bash
  ☆1,301Apr 17, 2025Updated last year