google / nsjailLinks
A lightweight process isolation tool that utilizes Linux namespaces, cgroups, rlimits and seccomp-bpf syscall filters, leveraging the Kafel BPF language for enhanced security.
☆3,440Updated 3 months ago
Alternatives and similar repositories for nsjail
Users that are interested in nsjail are comparing it to the libraries listed below
Sorting:
- Low-level unprivileged sandboxing tool used by Flatpak and similar projects☆4,512Updated 3 weeks ago
- syzkaller is an unsupervised coverage-guided kernel fuzzer☆5,783Updated last week
- The main libseccomp repository☆868Updated 3 months ago
- Ignite a Firecracker microVM☆3,511Updated last year
- Embeddable, replicated and fault-tolerant SQL engine.☆4,113Updated this week
- Fully static, unprivileged, self-contained, containers as executable binaries.☆2,516Updated 6 years ago
- Linux system exploration and troubleshooting tool with first class support for containers☆8,084Updated 5 months ago
- Content-Addressable Data Synchronization Tool☆1,527Updated last year
- Security oriented software fuzzer. Supports evolutionary, feedback-driven fuzzing based on code coverage (SW and HW based)☆3,231Updated 3 months ago
- A fast and lightweight fully featured OCI runtime and C library for running containers