Alternatives and similar repositories for systemd-sandboxing

Users that are interested in systemd-sandboxing are comparing it to the libraries listed below

• edera-dev / linux-openpax
  Linux kernel source tree with OpenPaX patch
  ☆92Updated 2 months ago
• synacktiv / shh
  Systemd Hardening Helper - Mirror of https://github.com/desbma/shh
  ☆126Updated last week
• Kicksecure / apparmor-profile-everything
  deprecated - maybe replaced by: `apparmor.d`
  ☆85Updated last year
• Kicksecure / sandbox-app-launcher
  An app launcher to start apps in a restrictive sandbox https://www.kicksecure.com/wiki/sandbox-app-launcher
  ☆41Updated 4 months ago
• kpcyrd / arch-audit-gtk
  Arch Linux Security Update Notifications
  ☆58Updated 10 months ago
• StarLabsLtd / coreboot-configurator
  A simple GUI to change settings in coreboot's CBFS, via the nvramtool utility.
  ☆89Updated 2 years ago
• electrickite / luks-tpm2
  Utility to manage LUKS keys sealed by a TPM 2.0
  ☆52Updated last year
• tpm2-software / tpm2-totp
  Attest the trustworthiness of a device against a human using time-based one-time passwords
  ☆174Updated 11 months ago
• saravanan30erd / solokey-full-disk-encryption
  Use SoloKey to unlock a LUKS encrypted partition
  ☆31Updated 2 years ago
• system-transparency / stboot
  Paused mirror. Official repository at https://git.glasklar.is/system-transparency/core/stboot
  ☆112Updated last year
• latchset / luksmeta
  ☆25Updated 3 years ago
• mjec / khefin
  A simple way to generate password-proteceted secrets from a FIDO2 authenticator with the hmac-secret extension
  ☆54Updated 2 years ago
• apalrd / bpfnat
  Stateless NAT64 (CLAT) implemented in eBPF
  ☆27Updated last year
• electrickite / mkinitcpio-tpm2-encrypt
  mkinitcpio hook that decrypts a TPM2-sealed LUKS keyfile
  ☆12Updated 4 years ago
• krathalan / apparmor-profiles
  Krathalan's AppArmor profiles for Arch Linux
  ☆40Updated 7 months ago
• GrapheneOS / infrastructure
  Shared server infrastructure
  ☆60Updated this week
• Cropi / usbguard-notifier
  A tool for detecting usbguard policy and device presence changes
  ☆49Updated last month
• mk-fg / systemd-cgroup-nftables-policy-manager
  Tool to add/update nftables cgroupv2 rules for systemd-managed unit cgroups (slices, services, scopes)
  ☆14Updated last month
• anthraxx / usbctl
  Linux-hardened deny_new_usb control
  ☆21Updated 4 years ago
• Dasharo / docs
  Scalable, modular, and easy to combine BIOS firmware technology without boundaries on processor architecture.
  ☆44Updated this week
• meithecatte / cursedfs
  Make a disk image formatted with both ext2 and FAT at once
  ☆384Updated 2 years ago
• grawity / tpm_futurepcr
  Calculate future (next boot) TPM PCRs after a kernel upgrade
  ☆39Updated last week
• osresearch / linux-builder
  Scripts to build the Linux kernel from a config file and initrd from a list of programs
  ☆24Updated 2 years ago
• uapi-group / specifications
  UAPI Group Specifications
  ☆106Updated 5 months ago
• Foxboron / ssh-tpm-ca-authority
  SSH Certificate Authority with device attestation
  ☆54Updated 9 months ago
• mjg59 / thermal_daemon
  Thermal daemon for IA
  ☆46Updated 3 years ago
• openSUSE / orthos2
  Orthos is a machine administration tool.
  ☆16Updated 2 weeks ago
• ximion / btrfsd
  Tiny Btrfs maintenance daemon
  ☆23Updated 11 months ago
• rhboot / shim-review
  Reviews of shim
  ☆73Updated last week
• lenovo / thinklmi
  Utility for easy access to BIOS WMI settings
  ☆42Updated 9 months ago