Application Kernel for Containers

Runtime Security Enforcement System. Workload hardening/sandboxing and implementing least-permissive policies made easy leveraging LSMs (BPF-LSM, AppArmor).

Interactive code examples for documentation, education and fun

ops - build and run nanos unikernels

The One CD for All {applications, platforms, operations}

☁️ Collaborative Malware Analysis Platform at Scale

DBdeployer is a tool that deploys MySQL database servers easily.

eBPF (extended Berkeley Packet Filter) Guide. Learn all about the eBPF Tools and Libraries for Security, Monitoring , and Networking.

Sandbox Server in REST / gRPC API. Based on Linux container technologies.

The WebAssembly Time Machine

vArmor is a cloud native container sandbox system based on AppArmor/BPF/Seccomp. It also includes multiple built-in protection rules that are ready to use out of the box.

Infrastructure for AI code interpreting that's powering E2B.

A nomad task driver plugin for sandboxing workloads in podman containers

Sandbox implemented in GO with container / ptrace / seccomp

An nsjail Docker image for CTF pwnables. Easily create secure, isolated xinetd/inetd-style services.

A fully-featured AWS Athena database driver (+ athenareader https://github.com/uber/athenadriver/tree/master/athenareader)

Run commands on your host from inside your toolbox or flatpak sandbox

Source code for progapanda.org

A simple program executor —— 简单到用命令行就能跑起来的代码评测工具

GO sandbox to run untrusted code