Alternatives and similar repositories for minijail

Users that are interested in minijail are comparing it to the libraries listed below

• cloudflare / sandbox
  Simple Linux seccomp rules without writing any code
  ☆513Updated 5 months ago
• google / kafel
  A language and library for specifying syscall filtering policies.
  ☆340Updated 3 weeks ago
• landlock-lsm / linux
  Linux kernel - See Landlock issues
  ☆43Updated 7 months ago
• hrw / syscalls-table
  Information about Linux system calls on different architectures
  ☆168Updated last month
• struct / isoalloc
  A general purpose memory allocator that implements an isolation security strategy to mitigate memory safety issues while maintaining good…
  ☆384Updated last year
• SELinuxProject / setools
  SELinux Policy Analysis Tools
  ☆191Updated 2 months ago
• mebeim / linux-syscalls
  🌐🐧 Browsable Linux kernel syscall tables built with Systrack (https://github.com/mebeim/systrack)
  ☆206Updated 2 months ago
• containers / libkrunfw
  A dynamic library bundling the guest payload consumed by libkrun
  ☆107Updated this week
• mebeim / systrack
  📡🐧 Linux kernel syscall implementation tracker
  ☆238Updated 2 months ago
• rpetrich / callander
  Simple syscall sandboxing for Linux
  ☆144Updated last month
• SELinuxProject / selint
  Static code analysis of refpolicy style SELinux policy
  ☆46Updated 8 months ago
• google / kmsan
  KernelMemorySanitizer, a detector of uses of uninitialized memory in the Linux kernel
  ☆417Updated 8 months ago
• google / mount-zip
  FUSE file system for ZIP archives
  ☆225Updated this week
• bolinfest / opensnoop-native
  opensnoop in pure C using eBPF
  ☆102Updated 7 months ago
• gaul / awesome-ld-preload
  List of resources related to LD_PRELOAD, a mechanism for changing application behavior at run-time
  ☆906Updated last year
• alfonsosanchezbeato / ptrace-redirect
  Example code for changing syscall arguments using ptrace
  ☆47Updated 5 years ago
• shuveb / sparkler
  A virtual machine monitor and a tiny "operating system" to go with it. When you start Sparkler, it creates a virtual machine using Linux'…
  ☆120Updated 4 years ago
• wkz / ply
  Light-weight Dynamic Tracer for Linux
  ☆425Updated last week
• pmem / vltrace
  Tool tracing syscalls in a fast way using eBPF linux kernel feature
  ☆100Updated 2 years ago
• google / gwpsan
  GWPSan: Sampling-Based Sanitizer Framework
  ☆327Updated 3 weeks ago
• emptymonkey / ptrace_do
  A ptrace library for easy syscall injection in Linux.
  ☆183Updated last year
• dburgener / cascade
  A high level language for SELinux policy
  ☆59Updated 4 months ago
• facebookexperimental / reverie
  An ergonomic and safe syscall interception framework for Linux.
  ☆796Updated this week
• google / kernel-sanitizers
  Linux Kernel Sanitizers, fast bug-detectors for the Linux kernel
  ☆468Updated 7 months ago
• yomaytk / elfconv
  AOT binary translator of Linux/ELF → WebAssembly
  ☆306Updated this week
• gentoo / pax-utils
  [MIRROR] ELF related utils for ELF 32/64 binaries that can check files for security relevant properties
  ☆105Updated 2 weeks ago
• a13xp0p0v / kernel-build-containers
  Containers for building the Linux kernel or other software with many different compilers
  ☆254Updated last week
• sandfs / sandfs.github.io
  Sandboxing File System
  ☆46Updated 6 years ago
• MarginResearch / cannoli
  High-performance QEMU memory and instruction tracing
  ☆550Updated last year
• meme / limbo
  XNU in Linux userspace
  ☆182Updated 4 years ago