seccomp-bpf-policies · GitHub Topics

A lightweight process isolation tool that utilizes Linux namespaces, cgroups, rlimits and seccomp-bpf syscall filters, leveraging the Kafel BPF language for enhanced security.

安全 linux-namespaces Linux process-isolation seccomp-bpf-policies chroot

C++ 3.34 k

1 个月前

elastic / go-seccomp-bpf

Go library for installing a seccomp BPF system call filter.

Go seccomp seccomp-bpf-policies

Go 84

19 天前

equk / torjail

🔒 download, verify & run torbrowser in a sandbox

Linux tor sandbox seccomp seccomp-bpf-policies dwm

Shell 18

1 年前

avilum / syscalls

Merged to firejail; Find syscalls of executables for seccomp-bpf sandbox policies.

seccomp seccomp-bpf-policies seccomp-profile jail syscalls security-hardening sandbox

Shell 8

5 年前