A lightweight process isolation tool that utilizes Linux namespaces, cgroups, rlimits and seccomp-bpf syscall filters, leveraging the Kafel BPF language for enhanced security.
Sample application that shows how to create a Plugin Framework for a WPF application
⭕ zero ➡️ to 📦 container in ⌛ in 🐹 Golang
A .NET tool that uses AppDomain's to enable dynamic execution and escape detection.
A lightweight process isolation tool, requiring absolutely no privileges to run
It's a fancy process isolation tool that creates an isolated environment for your binary in under 10 minutes and lets you reset the execution state in under seconds. All this, with a couple of one-lin...
A library for .NET framework applications to discover, install, and manage plugins from NuGet feeds, running each plugin in an isolated process for maximum stability.
A light process isolation sandbox used for Competitive Programming contest
Projet INSA 5e année : Implémenter en C et assembleur ARMv7 les mécanismes fondamentaux d'un OS : gestion de la stack, context-switch, paging...
Secure job execution platform that isolates system calls from clients using Linux namespaces and cgroups
A Toy linux Container With Alpine Linux Mini Root File System
Low-level Lightweight Process Sandbox for Linux [WIP]
Implementation of a secure, low-level application designed on CertiKOS formally verified operating system kernel. Simulation of an autonomous satellite critical susystems - environmental monitoring, t...
A low-level OCI compliant container runtime for modern Linux.
Minimal docker-like Linux container isolation
⚠️ OLD EXPERIMENT I used to learn Rust and linux namespaces ⚠️ A port of the excellent process isolation library NsJail to rust with experimental features to decrease the startup latency...
EFFICIENT DOMAIN-LEVEL PROCESS ISOLATION ON AARCH64, Customized Linux Kernel
The GenCyber 10 Security First Principles are a set of fundamental best practices and guidelines for cybersecurity