Alternatives and similar repositories for minijail

Users that are interested in minijail are comparing it to the libraries listed below

• cloudflare / sandbox
  Simple Linux seccomp rules without writing any code
  ☆516Updated 7 months ago
• google / kafel
  A language and library for specifying syscall filtering policies.
  ☆344Updated 2 months ago
• struct / isoalloc
  A general purpose memory allocator that implements an isolation security strategy to mitigate memory safety issues while maintaining good…
  ☆385Updated last month
• landlock-lsm / linux
  Linux kernel - See Landlock issues
  ☆44Updated 2 months ago
• hrw / syscalls-table
  Information about Linux system calls on different architectures
  ☆174Updated last month
• mebeim / systrack
  📡🐧 Linux kernel syscall implementation tracker
  ☆268Updated 4 months ago
• google / mount-zip
  FUSE file system for ZIP archives
  ☆227Updated 3 weeks ago
• containers / libkrunfw
  A dynamic library bundling the guest payload consumed by libkrun
  ☆117Updated last month
• SELinuxProject / setools
  SELinux Policy Analysis Tools
  ☆192Updated 4 months ago
• mebeim / linux-syscalls
  🌐🐧 Browsable Linux kernel syscall tables built with Systrack (https://github.com/mebeim/systrack)
  ☆218Updated 4 months ago
• alfonsosanchezbeato / ptrace-redirect
  Example code for changing syscall arguments using ptrace
  ☆48Updated 5 years ago
• google / crosvm
  The Chrome OS Virtual Machine Monitor - Mirror of https://chromium.googlesource.com/crosvm/crosvm/
  ☆1,142Updated this week
• pmem / vltrace
  Tool tracing syscalls in a fast way using eBPF linux kernel feature
  ☆100Updated 2 years ago
• gaul / awesome-ld-preload
  List of resources related to LD_PRELOAD, a mechanism for changing application behavior at run-time
  ☆909Updated last year
• rpetrich / callander
  Simple syscall sandboxing for Linux
  ☆144Updated 3 months ago
• gentoo / pax-utils
  [MIRROR] ELF related utils for ELF 32/64 binaries that can check files for security relevant properties
  ☆107Updated 2 months ago
• sandfs / sandfs.github.io
  Sandboxing File System
  ☆46Updated 6 years ago
• seccomp / libseccomp
  The main libseccomp repository
  ☆897Updated last month
• google / gwpsan
  GWPSan: Sampling-Based Sanitizer Framework
  ☆332Updated 2 weeks ago
• emptymonkey / ptrace_do
  A ptrace library for easy syscall injection in Linux.
  ☆184Updated last year
• google / kmsan
  KernelMemorySanitizer, a detector of uses of uninitialized memory in the Linux kernel
  ☆421Updated 10 months ago
• amluto / virtme
  An easy way to virtualize the running system
  ☆351Updated 2 years ago
• google / fuse-archive
  FUSE file system for archives and compressed files (ZIP, RAR, 7Z, ISO, TGZ, XZ...)
  ☆234Updated this week
• acmel / dwarves
  Pahole and the dwarves
  ☆256Updated 2 months ago
• jart / pledge
  OpenBSD APIs ported to Linux userspace using SECCOMP BPF and Landlock LSM
  ☆128Updated 2 years ago
• SELinuxProject / selint
  Static code analysis of refpolicy style SELinux policy
  ☆49Updated 10 months ago
• bolinfest / opensnoop-native
  opensnoop in pure C using eBPF
  ☆103Updated 9 months ago
• yomaytk / elfconv
  AOT binary translator of Linux/ELF → WebAssembly
  ☆345Updated last week
• bootlin / toolchains-builder
  ☆120Updated 3 months ago
• giuseppe / become-root
  minimal tool for creating a new user namespace with multiple UIDs/GIDs mapped inside
  ☆55Updated 4 years ago