google / minijail
sandboxing and containment tool used in ChromeOS and Android
☆267Updated this week
Related projects: ⓘ
- A language and library for specifying syscall filtering policies.☆297Updated last month
- Simple Linux seccomp rules without writing any code☆449Updated last year
- RLBox sandboxing framework☆284Updated last month
- Linux kernel - See Landlock issues☆35Updated last week
- Tool tracing syscalls in a fast way using eBPF linux kernel feature☆98Updated last year
- UAPI Group Specifications☆77Updated 2 months ago
- A high level language for SELinux policy☆54Updated 3 weeks ago
- SELinux Policy Analysis Tools☆159Updated 4 months ago
- KernelMemorySanitizer, a detector of uses of uninitialized memory in the Linux kernel☆402Updated 4 months ago
- ☆93Updated last month
- A ptrace library for easy syscall injection in Linux.☆165Updated 2 months ago
- opensnoop in pure C using eBPF☆97Updated last year
- Information about Linux system calls on different architectures☆136Updated last week
- Sandboxing File System☆44Updated 4 years ago
- A general purpose memory allocator that implements an isolation security strategy to mitigate memory safety issues while maintaining good…☆362Updated 2 months ago
- The Chrome OS Virtual Machine Monitor - Mirror of https://chromium.googlesource.com/crosvm/crosvm/☆783Updated this week
- [MIRROR] ELF related utils for ELF 32/64 binaries that can check files for security relevant properties☆91Updated last month
- Small library allowing to use dlopen() from statically-linked applications (where statically-linked executable vs loaded shared library m…☆153Updated last year
- Linux Kernel Sanitizers, fast bug-detectors for the Linux kernel☆436Updated 2 months ago
- a file system for mounting container images☆424Updated this week
- The main libseccomp repository☆794Updated 2 weeks ago
- OpenBSD APIs ported to Linux userspace using SECCOMP BPF and Landlock LSM☆93Updated 10 months ago
- Turn dynamically linked ELF binaries and libraries into self-contained closures.☆170Updated 3 months ago
- a lightweight library to parse Linux's /proc/[pid]/maps file, which contains the memory map of a process☆119Updated 3 weeks ago
- Extended crypt library for descrypt, md5crypt, bcrypt, and others☆189Updated 2 months ago
- Small C tool for Linux filesystem encryption☆117Updated 5 months ago
- FUSE file system for archives and compressed files (ZIP, RAR, 7Z, ISO, TGZ, XZ...)☆149Updated this week
- Network Security Services (NSS)☆140Updated this week
- ☆144Updated 3 weeks ago
- Light-weight Dynamic Tracer for Linux☆394Updated 2 weeks ago