A lightweight process isolation tool that utilizes Linux namespaces, cgroups, rlimits and seccomp-bpf syscall filters, leveraging the Kafel BPF language for enhanced security.
-
Updated
Nov 26, 2025 - C++
#
process-isolation
Here are 25 public repositories matching this topic...
Sample application that shows how to create a Plugin Framework for a WPF application
-
Updated
Dec 4, 2017 - C#
A .NET tool that uses AppDomain's to enable dynamic execution and escape detection.
-
Updated
Nov 25, 2019 - C#
Joblet is a micro-container runtime for running Linux jobs with: Process and filesystem isolation (PID namespace, chroot) Fine-grained CPU, memory, and IO throttling (cgroups v2) Secure job execution with mTLS and RBAC Built-in scheduler, SSE log streaming, and multi-core pinning Ideal for: Agentic AI Workloads (Untrusted code)
linux golang system process-isolation cgroups namespaces resource-management linux-namespaces containerization system-call-isolation
-
Updated
Dec 15, 2025 - Go
A lightweight process isolation tool, requiring absolutely no privileges to run
-
Updated
Dec 27, 2019 - C
A library for .NET framework applications to discover, install, and manage plugins from NuGet feeds, running each plugin in an isolated process for maximum stability.
plugin plugin-manager csharp dotnet nuget ipc wpf winforms extensibility process-isolation dotnet-framework plugin-architecture
-
Updated
Jun 12, 2025 - C#
Isolated OTP application management system for Elixir/Erlang
testing elixir otp functional-programming beam testing-tools erlang-vm process-isolation otp-applications isolation application-management sandbox-environment application-isolation nshkr-testing
-
Updated
Jul 20, 2025 - Elixir
It's a fancy process isolation tool that creates an isolated environment for your binary in under 10 minutes and lets you reset the execution state in under seconds. All this, with a couple of one-liner commands from your trusty terminal.
-
Updated
Jun 19, 2022 - C
Sandbox untrusted Rust code with isolated processes
-
Updated
Nov 27, 2025 - Rust
A light process isolation sandbox used for Competitive Programming contest
-
Updated
Oct 6, 2023 - Rust
A Toy linux Container With Alpine Linux Mini Root File System
-
Updated
Feb 27, 2025 - C++
Projet INSA 5e année : Implémenter en C et assembleur ARMv7 les mécanismes fondamentaux d'un OS : gestion de la stack, context-switch, paging...
-
Updated
Oct 22, 2021 - C
Modern C++23 sandboxing and process isolation library. Provides a clean API for launching processes with resource limits, timeouts, and controlled execution. Currently Windows-only (Job Objects), with Linux/macOS planned.
-
Updated
Sep 7, 2025 - C++
Minimal docker-like Linux process isolation (aka containers)
-
Updated
Jul 24, 2025 - C
The GenCyber 10 Security First Principles are a set of fundamental best practices and guidelines for cybersecurity
fault-tolerance minimization process-isolation modularity simplicity information-hiding layering least-privilege security-first-principles domain-separation-networks resource-encapsulation
-
Updated
Sep 4, 2024 - Jupyter Notebook
Judgement and contest platform with processes isolation
-
Updated
Dec 8, 2021 - Java
Implementation of a secure, low-level application designed on CertiKOS formally verified operating system kernel. Simulation of an autonomous satellite critical susystems - environmental monitoring, task scheduling and watchdog diagnostics - within a trusted computing environment. Developed as part of my diploma thesis at the University of Patras.
process-isolation diagnostics task-scheduler watchdog environmental-monitoring trusted-computing coq-proof-assistant embedded-security real-time-operating-systems mcertikos certikos formally-verified-systems autonomous-satellite-software high-assurance-systems secure-application-design critical-infrastructure-software verified-microkernel
-
Updated
Jun 23, 2025 - C
This project demonstrates policy enforcement for user applications at kernel level without need of recompiling/patching existing kernel.
demo sandbox linux-kernel poc process-isolation ebpf ebpf-programs application-sandbox policy-enforcement lsm-hooks
-
Updated
Nov 15, 2025 - C
A low-level OCI compliant container runtime for modern Linux.
-
Updated
Sep 2, 2025 - Go
Improve this page
Add a description, image, and links to the process-isolation topic page so that developers can more easily learn about it.
Add this topic to your repo
To associate your repository with the process-isolation topic, visit your repo's landing page and select "manage topics."