Alternatives and similar repositories for systemd-sandboxing

Users that are interested in systemd-sandboxing are comparing it to the libraries listed below

• Kicksecure / apparmor-profile-everything
  deprecated - maybe replaced by: `apparmor.d`
  ☆86Updated last year
• tpm2-software / tpm2-totp
  Attest the trustworthiness of a device against a human using time-based one-time passwords
  ☆180Updated last year
• system-transparency / stboot
  Paused mirror. Official repository at https://git.glasklar.is/system-transparency/core/stboot
  ☆116Updated 2 years ago
• osresearch / safeboot
  Scripts to slightly improve the security of the Linux boot process with UEFI Secure Boot and TPM support
  ☆282Updated 2 years ago
• edera-dev / linux-openpax
  Linux kernel source tree with OpenPaX patch
  ☆100Updated 8 months ago
• rhboot / shim-review
  Reviews of shim
  ☆81Updated 3 weeks ago
• noahbliss / mortar
  Framework to join Linux's physical security bricks.
  ☆268Updated 8 months ago
• Kicksecure / sandbox-app-launcher
  An app launcher to start apps in a restrictive sandbox https://www.kicksecure.com/wiki/sandbox-app-launcher
  ☆44Updated 2 months ago
• synacktiv / shh
  Systemd Hardening Helper - Mirror of https://github.com/desbma/shh
  ☆142Updated 3 weeks ago
• Kicksecure / hardened-kernel
  Hardened kernel configuration optimized for virtual machines. - https://www.kicksecure.com/wiki/Hardened-kernel
  ☆53Updated 2 months ago
• Dasharo / docs
  Scalable, modular, and easy to combine BIOS firmware technology without boundaries on processor architecture.
  ☆50Updated this week
• system-transparency / system-transparency
  Mirror only. Official repository at https://git.glasklar.is/system-transparency/core/system-transparency
  ☆89Updated 5 months ago
• grawity / tpm_futurepcr
  Calculate future (next boot) TPM PCRs after a kernel upgrade
  ☆41Updated 6 months ago
• DemiMarie / qubes-wayland
  ☆25Updated last year
• agross / dnf-automatic-restart
  Restart machine or services after dnf-automatic installed updates
  ☆41Updated 4 years ago
• latchset / luksmeta
  ☆26Updated last month
• osresearch / linux-builder
  Scripts to build the Linux kernel from a config file and initrd from a list of programs
  ☆26Updated 2 months ago
• rhuefi / qemu-ovmf-secureboot
  Script to generate an OVMF vars file with default secure boot key enrolled.
  ☆94Updated 3 years ago
• mk-fg / apparmor-profiles
  My local AppArmor profiles for apps that can use those
  ☆72Updated this week
• jirutka / apk-autoupdate
  Automatic updates for Alpine Linux and other systems using apk-tools
  ☆72Updated last year
• julian-klode / sicherboot
  Unmaintained systemd-boot integration with secure boot support; consider https://github.com/Foxboron/sbctl instead.
  ☆32Updated 4 years ago
• systemd / mkosi-initrd
  Build initrd images using mkosi and distro packages
  ☆38Updated last year
• shimunn / fido2luks
  Decrypt your LUKS partition using a FIDO2 compatible authenticator
  ☆138Updated last year
• saravanan30erd / solokey-full-disk-encryption
  Use SoloKey to unlock a LUKS encrypted partition
  ☆32Updated 2 years ago
• dburgener / cascade
  A high level language for SELinux policy
  ☆59Updated 4 months ago
• cblichmann / btrfscue
  Recover files from damaged BTRFS filesystems
  ☆84Updated 2 years ago
• stb-tester / apt2ostree
  Build ostree images based on Debian/Ubuntu
  ☆117Updated 6 months ago
• hughsie / passim
  A local caching server
  ☆109Updated this week
• mjec / khefin
  A simple way to generate password-proteceted secrets from a FIDO2 authenticator with the hmac-secret extension
  ☆53Updated 3 years ago
• sargon / ddhcpd
  A distributed DHCP Daemon
  ☆32Updated 2 years ago