Skip to content

Bug-Assassins/TAJ-Defender

Repository files navigation

TAJ-Defender

A sand-boxing mechanism to run malicious/untrusted C and C++ codes. This project was done as a part of the 4th Sem Operating System Course at the Dept. of Information Technology, National Institute of Technology Karnataka Surathkal. The main objective was to run a C/C++ code whose origin or content is not known.

How to Run

The TAJdefender is very easy to run. The source code of the user program should be placed in the sandbox folder and the shell script test.sh should be run with arguments being the filename of source code and the filename of input file. The shell script will say whether the compilation was unsuccessful, if not it will run the program and save the output file in the same folder. It will terminate with runtime error in-case there is a malicious code snippet.

Features

  1. SECCOMP was used to prevent malicious system calls
  2. Custom implementation of memory allocating functions in C/C++
  3. Provides simple interface to load and excute a program in sandboxed environment via a script
  4. Preprocessing the program for commanly known malicious signature

Future Work

  1. Implement other restrictions on execution time and other resource allocation.
  2. Add support for Docker

Documentation

Please refer to project report in the repository for more details.

Project Contributors

  1. Adarsh Mohata ([email protected])
  2. Ajith P S ([email protected])
  3. Ashish Kedia ([email protected])

a.k.a Team BugAssassins

Note : We would like acknowledge several open source sandbox implementations on git-hub. We have used codes not written by others.

About

A sand-boxing mechanism to run malicious/untrusted C and C++ codes

Resources

License

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published