nsjail

A lightweight process isolation tool that utilizes Linux namespaces, cgroups, rlimits and seccomp-bpf syscall filters, leveraging the Kafel BPF language for enhanced security.

APACHE-2.0 License

Downloads
163
Stars
2.9K
Committers
53
View Code on GitHub Visit Website View on X
Ecosystems: Linux

Commit Statistics

Past Year

All Time

Total Commits
46
1,125
Total Committers
4
55
Avg. Commits Per Committer
11.5
20.45
Bot Commits
0
0

Issue Statistics

Past Year

All Time

Total Pull Requests
4
41
Merged Pull Requests
3
35
Total Issues
10
81
Time to Close Issues
about 1 hour
about 2 months
Package Rankings
Top 6.54% on Alpine-edge
Top 35.04% on Pypi.org
Related Projects
jailtime

Create and manage chroot/jail environments

10 May 2015 48
UBento

Minimal, bento-box style Ubuntu-based WSL distro; ideal for targeting Linux-style NodeJs and CMak...

24 Dec 2022 9
ebpfkit

ebpfkit is a rootkit powered by eBPF

26 Mar 2021 749
syscall_limiter

Start Linux programs with only selected syscalls enabled (libseccomp-based)

04 Feb 2013 23
loftwahs-cheatsheet

My own personal tech cheatsheet. This covers the stuff I use quite regularly.

24 Jan 2022 38
img

Standalone, daemon-less, unprivileged Dockerfile and OCI compatible container image builder.

08 Dec 2017 3,864
procsd

Manage your application processes in production hassle-free like Heroku CLI with Procfile and Sys...

04 Nov 2018 189
dive

Start programs inside unshare/lxc namespaces easily using UNIX sockets + easy access to capabilit...

19 May 2012 56
systemd

The systemd System and Service Manager

25 Mar 2015 12,406