A lightweight process isolation tool that utilizes Linux namespaces, cgroups, rlimits and seccomp-bpf syscall filters, leveraging the Kafel BPF language for enhanced security. It utilizes Linux namespace subsystem, resource limits, and the seccomp-bpf syscall filters of the Linux kernel.

Features

  • Isolate networking services (e.g. web, time, DNS), by isolating them from the rest of the OS
  • Host computer security challenges (so-called CTFs)
  • Contains invasive syscall-level OS fuzzers
  • Offers three distinct operational modes
  • Utilizes kafel seccomp-bpf configuration language for flexible syscall policy definitions
  • Uses expressive, ProtoBuf-based configuration file

Project Samples

Project Activity

See All Activity >

Categories

Security

License

Apache License V2.0

Follow nsjail

nsjail Web Site

Other Useful Business Software
99.99% Uptime for MySQL and PostgreSQL Databases Icon
99.99% Uptime for MySQL and PostgreSQL Databases

Sub-second maintenance. 2x read/write performance. Built-in vector search for AI apps.

Cloud SQL Enterprise Plus delivers near-zero downtime with 35 days of point-in-time recovery. Supports MySQL, PostgreSQL, and SQL Server.
Try Free
Rate This Project
Login To Rate This Project

User Reviews

Be the first to post a review of nsjail!

Additional Project Details

Operating Systems

Linux, Mac, Windows

Programming Language

C++

Related Categories

C++ Security Software

Registered

2024-06-20