Skip to content
/ litebox Public

A security-focused library OS supporting kernel- and user-mode execution

License

MIT license
7 stars 4 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

microsoft/litebox

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

524 Commits
.config
.config
 
 
.figures
.figures
 
 
.github
.github
 
 
dev_bench
dev_bench
 
 
dev_tests
dev_tests
 
 
dev_tools/lock_viewer
dev_tools/lock_viewer
 
 
litebox
litebox
 
 
litebox_common_linux
litebox_common_linux
 
 
litebox_common_optee
litebox_common_optee
 
 
litebox_platform_linux_kernel
litebox_platform_linux_kernel
 
 
litebox_platform_linux_userland
litebox_platform_linux_userland
 
 
litebox_platform_lvbs
litebox_platform_lvbs
 
 
litebox_platform_multiplex
litebox_platform_multiplex
 
 
litebox_platform_windows_userland
litebox_platform_windows_userland
 
 
litebox_rtld_audit
litebox_rtld_audit
 
 
litebox_runner_linux_on_windows_userland
litebox_runner_linux_on_windows_userland
 
 
litebox_runner_linux_userland
litebox_runner_linux_userland
 
 
litebox_runner_lvbs
litebox_runner_lvbs
 
 
litebox_runner_optee_on_linux_userland
litebox_runner_optee_on_linux_userland
 
 
litebox_runner_snp
litebox_runner_snp
 
 
litebox_shim_linux
litebox_shim_linux
 
 
litebox_shim_optee
litebox_shim_optee
 
 
litebox_syscall_rewriter
litebox_syscall_rewriter
 
 
.gitignore
.gitignore
 
 
CODE_OF_CONDUCT.md
CODE_OF_CONDUCT.md
 
 
CONTRIBUTING.md
CONTRIBUTING.md
 
 
Cargo.lock
Cargo.lock
 
 
Cargo.toml
Cargo.toml
 
 
LICENSE
LICENSE
 
 
NOTICE.txt
NOTICE.txt
 
 
README.md
README.md
 
 
SECURITY.md
SECURITY.md
 
 
SUPPORT.md
SUPPORT.md
 
 
bacon.toml
bacon.toml
 
 
rust-toolchain.toml
rust-toolchain.toml
 
 

Repository files navigation

LiteBox

A security-focused library OS

Note

This project is currently actively evolving and improving. While we are working toward a stable release, some APIs and interfaces may change as the design continues to mature. You are welcome to explore and experiment, but if you need long-term stability, it may be best to wait for a stable release, or be prepared to adapt to updates along the way.

LiteBox is a sandboxing library OS that drastically cuts down the interface to the host, thereby reducing attack surface. It focuses on easy interop of various "North" shims and "South" platforms. LiteBox is designed for usage in both kernel and non-kernel scenarios.

LiteBox exposes a Rust-y nix/rustix-inspired "North" interface when it is provided a Platform interface at its "South". These interfaces allow for a wide variety of use-cases, easily allowing for connection between any of the North--South pairs.

Example use cases include:

  • Running unmodified Linux programs on Windows
  • Sandboxing Linux applications on Linux
  • Run programs on top of SEV SNP
  • Running OP-TEE programs on Linux
  • Running on LVBS

LiteBox and related projects

Contributing

See the following files for details:

License

MIT License. See ./LICENSE for details.

Trademarks

This project may contain trademarks or logos for projects, products, or services. Authorized use of Microsoft trademarks or logos is subject to and must follow Microsoft's Trademark & Brand Guidelines. Use of Microsoft trademarks or logos in modified versions of this project must not cause confusion or imply Microsoft sponsorship. Any use of third-party trademarks or logos are subject to those third-party's policies.

About

A security-focused library OS supporting kernel- and user-mode execution

Resources

Readme

License

MIT license

Code of conduct

Code of conduct

Contributing

Contributing

Security policy

Security policy
Activity
Custom properties

Stars

7 stars

Watchers

5 watching

Forks

4 forks
Report repository

Releases

No releases published

Packages

No packages published

Contributors 10

Languages