Firejail is a sandbox utility designed to reduce the risk of system security breaches when running untrusted applications or potentially vulnerable programs.

• Runs applications in an isolated container, restricting their execution environment and preventing unauthorized access to important system resources and data.
• It's easy to use and has ready-made profiles for many popular applications (e.g., browsers, media players).
• Flexible tools are provided for setting file system access rules, restricting network access, and creating private (self-destructing) home directories for sessions. You can define which files and directories are allowed or denied access, mount temporary file systems (tmpfs) for data, restrict file or directory access to read-only, and combine directories using bind-mount and overlayfs.
• System call isolation profiles have been prepared for a wide range of popular applications, including Firefox, Chromium, VLC, and Transmission.

Firetools is a graphical user interface (GUI) for Firejail that makes its use simpler and more intuitive for the average user.

Install Firejail

Homesite firejail

Install Firetools - GUI

Homesite firetools