A lightweight process isolation tool that utilizes Linux namespaces, cgroups, rlimits and seccomp-bpf syscall filters, leveraging the Kafel BPF language for enhanced security.
☆3,766Mar 15, 2026Updated this week
Alternatives and similar repositories for nsjail
Users that are interested in nsjail are comparing it to the libraries listed below
Sorting:
- A language and library for specifying syscall filtering policies.☆349Mar 15, 2026Updated last week
- Low-level unprivileged sandboxing tool used by Flatpak and similar projects☆6,138Feb 4, 2026Updated last month
- Application Kernel for Containers☆17,901Updated this week
- Linux namespaces and seccomp-bpf sandbox☆7,189Updated this week
- syzkaller is an unsupervised coverage-guided kernel fuzzer☆6,103Updated this week
- Security oriented software fuzzer. Supports evolutionary, feedback-driven fuzzing based on code coverage (SW and HW based)☆3,313Jan 6, 2026Updated 2 months ago
- Secure and fast microVMs for serverless computing.☆33,042Updated this week
- BCC - Tools for BPF-based Linux IO analysis, networking, monitoring, and more☆22,286Mar 4, 2026Updated 2 weeks ago
- Generate sandboxes for C/C++ libraries automatically☆1,734Mar 12, 2026Updated last week
- sandboxing and containment tool used in ChromeOS and Android☆363Updated this week
- Wrangling Untrusted File Formats Safely☆4,716Mar 2, 2026Updated 2 weeks ago
- Simple Linux seccomp rules without writing any code☆522Jul 2, 2025Updated 8 months ago
- Record and Replay Framework☆10,419Feb 22, 2026Updated 3 weeks ago
- Fully static, unprivileged, self-contained, containers as executable binaries.☆2,520May 25, 2019Updated 6 years ago
- OSS-Fuzz - continuous fuzzing for open source software.☆11,967Mar 14, 2026Updated last week
- CLI tool for spawning and running containers according to the OCI specification☆13,122Updated this week
- A Virtual Machine Monitor for modern Cloud workloads. Features include CPU, memory and device hotplug, support for running Windows and Li…☆5,388Updated this week
- Ignite a Firecracker microVM☆3,527Dec 7, 2023Updated 2 years ago
- High-level tracing language for Linux☆9,992Updated this week
- A powerful and user-friendly binary analysis platform!☆8,556Updated this week
- A toolkit for building secure, portable and lean operating systems for containers☆8,597Updated this week
- Some helpful preload libraries for pwning stuff.☆1,649Mar 6, 2026Updated 2 weeks ago
- Userspace WireGuard® Implementation in Rust☆6,943Jan 22, 2026Updated 2 months ago
- The main libseccomp repository☆900Jan 8, 2026Updated 2 months ago
- A repository for learning various heap exploitation techniques.☆8,475Jan 15, 2026Updated 2 months ago
- SQL powered operating system instrumentation, monitoring, and analytics.☆23,165Mar 12, 2026Updated last week
- GEF (GDB Enhanced Features) - a modern experience for GDB with advanced debugging capabilities for exploit devs & reverse engineers on Li…☆8,051Mar 11, 2026Updated last week
- A simple, modern and secure encryption tool (and Go library) with small explicit keys, no config options, and UNIX-style composability.☆21,674Feb 2, 2026Updated last month
- A dynamic library providing Virtualization-based process isolation capabilities☆1,752Updated this week
- The lightweight, fault-tolerant database built on SQLite. Designed to keep your data highly available with minimal effort.☆17,360Updated this week
- The easiest, and most secure way to access and protect all of your infrastructure.☆20,033Updated this week
- An implementation of the TLS/SSL protocols☆4,696Updated this week
- Linux Kernel Defence Map shows the relationships between vulnerability classes, exploitation techniques, bug detection mechanisms, and de…☆2,260Dec 27, 2025Updated 2 months ago
- Dynamic Instrumentation Tool Platform☆3,034Updated this week
- firecracker-containerd enables containerd to manage containers as Firecracker microVMs☆2,723Updated this week
- Run any Linux process in a secure, unprivileged sandbox using Landlock. Think firejail, but lightweight, user-friendly, and baked into th…☆2,154Oct 1, 2025Updated 5 months ago
- jq for binary formats - tool, language and decoders for working with binary and text formats☆10,443Updated this week
- A collection of links related to Linux kernel security and exploitation☆6,386Mar 7, 2026Updated 2 weeks ago
- UNIX-like reverse engineering framework and command-line toolset☆23,269Updated this week