A lightweight process isolation tool that utilizes Linux namespaces, cgroups, rlimits and seccomp-bpf syscall filters, leveraging the Kafel BPF language for enhanced security.
☆3,734Updated this week
Alternatives and similar repositories for nsjail
Users that are interested in nsjail are comparing it to the libraries listed below
Sorting:
- A language and library for specifying syscall filtering policies.☆345Nov 22, 2025Updated 3 months ago
- Low-level unprivileged sandboxing tool used by Flatpak and similar projects☆5,905Feb 4, 2026Updated 3 weeks ago
- Application Kernel for Containers☆17,777Updated this week
- Linux namespaces and seccomp-bpf sandbox☆7,100Updated this week
- syzkaller is an unsupervised coverage-guided kernel fuzzer☆6,074Updated this week
- BCC - Tools for BPF-based Linux IO analysis, networking, monitoring, and more☆22,250Updated this week
- Secure and fast microVMs for serverless computing.☆32,675Updated this week
- Security oriented software fuzzer. Supports evolutionary, feedback-driven fuzzing based on code coverage (SW and HW based)☆3,310Jan 6, 2026Updated last month
- Wrangling Untrusted File Formats Safely☆4,708Feb 9, 2026Updated 3 weeks ago
- CLI tool for spawning and running containers according to the OCI specification☆13,076Feb 13, 2026Updated 2 weeks ago
- Record and Replay Framework☆10,393Feb 22, 2026Updated last week
- OSS-Fuzz - continuous fuzzing for open source software.☆11,916Updated this week
- sandboxing and containment tool used in ChromeOS and Android☆361Updated this week
- Fully static, unprivileged, self-contained, containers as executable binaries.☆2,520May 25, 2019Updated 6 years ago
- Ignite a Firecracker microVM☆3,528Dec 7, 2023Updated 2 years ago
- A Virtual Machine Monitor for modern Cloud workloads. Features include CPU, memory and device hotplug, support for running Windows and Li…☆5,323Updated this week
- Generate sandboxes for C/C++ libraries automatically☆1,726Updated this week
- A toolkit for building secure, portable and lean operating systems for containers☆8,588Jan 18, 2026Updated last month
- Simple Linux seccomp rules without writing any code☆518Jul 2, 2025Updated 7 months ago
- High-level tracing language for Linux☆9,967Updated this week
- Userspace WireGuard® Implementation in Rust☆6,915Jan 22, 2026Updated last month
- A powerful and user-friendly binary analysis platform!☆8,517Updated this week
- A simple, modern and secure encryption tool (and Go library) with small explicit keys, no config options, and UNIX-style composability.☆21,436Feb 2, 2026Updated 3 weeks ago
- SQL powered operating system instrumentation, monitoring, and analytics.☆23,116Feb 23, 2026Updated last week
- A dynamic library providing Virtualization-based process isolation capabilities☆1,695Updated this week
- An implementation of the TLS/SSL protocols☆4,691Updated this week
- The lightweight, fault-tolerant database built on SQLite. Designed to keep your data highly available with minimal effort.☆17,328Updated this week
- The main libseccomp repository☆899Jan 8, 2026Updated last month
- The easiest, and most secure way to access and protect all of your infrastructure.☆19,914Updated this week
- jq for binary formats - tool, language and decoders for working with binary and text formats☆10,425Updated this week
- GEF (GDB Enhanced Features) - a modern experience for GDB with advanced debugging capabilities for exploit devs & reverse engineers on Li…☆8,023Feb 15, 2026Updated 2 weeks ago
- build-once run-anywhere c library☆20,577Jan 25, 2026Updated last month
- eBPF-based Networking, Security, and Observability☆23,880Updated this week
- A repository for learning various heap exploitation techniques.☆8,455Jan 15, 2026Updated last month
- Dynamic Instrumentation Tool Platform☆3,022Updated this week
- Streaming replication for SQLite.☆13,268Updated this week
- Some helpful preload libraries for pwning stuff.☆1,646May 22, 2025Updated 9 months ago
- An operating system designed for hosting containers☆9,533Feb 20, 2026Updated last week
- firecracker-containerd enables containerd to manage containers as Firecracker microVMs☆2,690Updated this week