google / minijail

Related projects: ⓘ

• google / kafel
  A language and library for specifying syscall filtering policies.
  ☆297Updated last month
• cloudflare / sandbox
  Simple Linux seccomp rules without writing any code
  ☆449Updated last year
• PLSysSec / rlbox
  RLBox sandboxing framework
  ☆284Updated last month
• landlock-lsm / linux
  Linux kernel - See Landlock issues
  ☆35Updated last week
• pmem / vltrace
  Tool tracing syscalls in a fast way using eBPF linux kernel feature
  ☆98Updated last year
• uapi-group / specifications
  UAPI Group Specifications
  ☆77Updated 2 months ago
• dburgener / cascade
  A high level language for SELinux policy
  ☆54Updated 3 weeks ago
• SELinuxProject / setools
  SELinux Policy Analysis Tools
  ☆159Updated 4 months ago
• google / kmsan
  KernelMemorySanitizer, a detector of uses of uninitialized memory in the Linux kernel
  ☆402Updated 4 months ago
• bootlin / toolchains-builder
  ☆93Updated last month
• emptymonkey / ptrace_do
  A ptrace library for easy syscall injection in Linux.
  ☆165Updated 2 months ago
• bolinfest / opensnoop-native
  opensnoop in pure C using eBPF
  ☆97Updated last year
• hrw / syscalls-table
  Information about Linux system calls on different architectures
  ☆136Updated last week
• sandfs / sandfs.github.io
  Sandboxing File System
  ☆44Updated 4 years ago
• struct / isoalloc
  A general purpose memory allocator that implements an isolation security strategy to mitigate memory safety issues while maintaining good…
  ☆362Updated 2 months ago
• google / crosvm
  The Chrome OS Virtual Machine Monitor - Mirror of https://chromium.googlesource.com/crosvm/crosvm/
  ☆783Updated this week
• gentoo / pax-utils
  [MIRROR] ELF related utils for ELF 32/64 binaries that can check files for security relevant properties
  ☆91Updated last month
• pfalcon / foreign-dlopen
  Small library allowing to use dlopen() from statically-linked applications (where statically-linked executable vs loaded shared library m…
  ☆153Updated last year
• google / kernel-sanitizers
  Linux Kernel Sanitizers, fast bug-detectors for the Linux kernel
  ☆436Updated 2 months ago
• containers / composefs
  a file system for mounting container images
  ☆424Updated this week
• seccomp / libseccomp
  The main libseccomp repository
  ☆794Updated 2 weeks ago
• jart / pledge
  OpenBSD APIs ported to Linux userspace using SECCOMP BPF and Landlock LSM
  ☆93Updated 10 months ago
• tweag / clodl
  Turn dynamically linked ELF binaries and libraries into self-contained closures.
  ☆170Updated 3 months ago
• ouadev / proc_maps_parser
  a lightweight library to parse Linux's /proc/[pid]/maps file, which contains the memory map of a process
  ☆119Updated 3 weeks ago
• besser82 / libxcrypt
  Extended crypt library for descrypt, md5crypt, bcrypt, and others
  ☆189Updated 2 months ago
• google / fscryptctl
  Small C tool for Linux filesystem encryption
  ☆117Updated 5 months ago
• google / fuse-archive
  FUSE file system for archives and compressed files (ZIP, RAR, 7Z, ISO, TGZ, XZ...)
  ☆149Updated this week
• nss-dev / nss
  Network Security Services (NSS)
  ☆140Updated this week
• libcgroup / libcgroup
  ☆144Updated 3 weeks ago
• wkz / ply
  Light-weight Dynamic Tracer for Linux
  ☆394Updated 2 weeks ago