# Rootless Container Runtimes > Search results for `run containers without Docker as a rootless alternative` on awesome-repositories.com. 109 total matches; showing the first 50. Explore on the web: https://awesome-repositories.com/q/run-containers-without-docker-as-a-rootless-alternative **Attribution required: if you use, quote, or summarise this content, you must credit and link back to [this search on awesome-repositories.com](https://awesome-repositories.com/q/run-containers-without-docker-as-a-rootless-alternative).** ## Results - [containers/libpod](https://awesome-repositories.com/repository/containers-libpod.md) (32,040 ⭐) — Libpod is a container management library for running and controlling the lifecycle of Open Container Initiative compliant containers and images across different storage backends. It provides a programmatic interface for the remote control and automation of container environments. The project enables the coordination of multiple containers into pods that share network namespaces and other shared resources. It supports rootless container execution by using user namespaces to launch containers without administrative privileges. The library covers a broad range of system operations, including im - [containerd/containerd](https://awesome-repositories.com/repository/containerd-containerd.md) (20,369 ⭐) — Containerd is a daemon-based container runtime that manages the complete lifecycle of containers on a host system. It functions as a core orchestration backend, handling image distribution, storage, and process execution while adhering to industry-standard specifications for container execution and configuration. The project is distinguished by its modular, plugin-based architecture, which allows for the extension of storage, runtime, and networking capabilities without requiring a full daemon recompile. It utilizes a shim-based execution model to delegate low-level operations, ensuring isola - [docker/compose](https://awesome-repositories.com/repository/docker-compose.md) (37,588 ⭐) — Docker Compose is a tool for defining and running multi-container applications through declarative configuration files. It functions as an application lifecycle manager, coordinating the startup, shutdown, and scaling of interconnected services within isolated environments. By using a standardized configuration format, it enables infrastructure as code, allowing developers to manage complex application stacks and their dependencies in a single, repeatable file. The project distinguishes itself by integrating directly with the broader Docker platform, leveraging a client-server architecture wh - [docker/awesome-compose](https://awesome-repositories.com/repository/docker-awesome-compose.md) (45,561 ⭐) — Awesome Compose is a collection of resources designed to demonstrate the orchestration of multi-container applications. It serves as a practical reference for using declarative configuration files to define, manage, and deploy complex software stacks, ensuring that services run consistently across development, testing, and production environments. The project highlights the capabilities of container lifecycle management by providing examples of how to bundle software with its dependencies into isolated, portable units. It emphasizes the use of multi-stage build pipelines to optimize image siz - [containers/podman](https://awesome-repositories.com/repository/containers-podman.md) (32,035 ⭐) — Podman is a container engine designed for managing containerized applications and images without the need for a persistent background daemon. By utilizing a fork-exec process model, it executes container management commands as direct child processes of the host system, ensuring that container lifecycles are handled through standard host-level process control. The project distinguishes itself through a focus on rootless security and cross-platform compatibility. It employs user namespace mapping to allow unprivileged users to manage isolated workloads without requiring administrative system ac - [google/gvisor](https://awesome-repositories.com/repository/google-gvisor.md) (17,748 ⭐) — This project is a secure container runtime that provides strong isolation for application workloads by implementing a userspace kernel. By intercepting system calls and executing them within a memory-safe, restricted environment, it minimizes the attack surface exposed to the host kernel. It functions as a drop-in engine for standard container orchestration platforms, ensuring compatibility with industry-standard runtime specifications while maintaining a hardened execution boundary. The runtime distinguishes itself through its ability to virtualize core system resources, including an indepen - [containers/buildah](https://awesome-repositories.com/repository/containers-buildah.md) (8,618 ⭐) — Buildah is a tool for creating OCI-compliant container images without requiring a background daemon process. It functions as a daemonless image constructor and distribution tool, allowing users to build, push, and pull images between local storage and remote registries. The project distinguishes itself by supporting unprivileged image building through the use of user namespaces and rootless mode. It enables direct modification of container root filesystems by mounting them to the host, allowing images to be treated as directories that can be manipulated via standard shell commands or scripts. - [containers/toolbox](https://awesome-repositories.com/repository/containers-toolbox.md) (3,250 ⭐) — Toolbox is a development workspace orchestrator and container environment manager that bootstraps mutable toolsets and SDKs inside containers. It functions as a Linux distribution sandbox and a host-integrated container runtime, allowing users to run native package managers and software without modifying the host operating system. The project differentiates itself by bridging isolated containers with the host system through the mapping of user identities, network sockets, and home directories. It utilizes a daemonless engine to provide these environments while ensuring that system configurati - [docker-mailserver/docker-mailserver](https://awesome-repositories.com/repository/docker-mailserver-docker-mailserver.md) (18,420 ⭐) — This project provides a full-stack, containerized mail server platform designed for self-hosting. It functions as a complete mail transfer agent that bundles essential services—including SMTP, IMAP, and POP3—into a unified environment. By leveraging container orchestration, it enables the deployment of private email infrastructure that handles message transport, delivery, and user management within a single, manageable service. The platform distinguishes itself through deep integration with container runtimes and robust configuration flexibility. It supports granular customization via configu - [containrrr/watchtower](https://awesome-repositories.com/repository/containrrr-watchtower.md) (24,635 ⭐) — Watchtower is a container-based solution designed to automate the lifecycle management of Docker applications. It functions as a background service that monitors running containers, detects when new base image versions are available in registries, and automatically redeploys the containers to ensure they remain synchronized with the latest builds. The project distinguishes itself through its ability to orchestrate complex deployment workflows and maintain service availability during updates. It interacts directly with the container runtime to manage service dependencies and restart sequences, - [rawkode/zsh-docker-run](https://awesome-repositories.com/repository/rawkode-zsh-docker-run.md) (47 ⭐) — Run your favourite commands naturally, with Docker - [collabnix/dockerlabs](https://awesome-repositories.com/repository/collabnix-dockerlabs.md) (8,008 ⭐) — dockerlabs is a collection of educational labs and technical tutorials designed to teach the fundamentals of containerization and microservice architecture. It provides instructional material and hands-on exercises covering image optimization, security training, infrastructure setup, and cluster orchestration. The project features specific courses and guides focused on reducing image size through multi-stage builds, securing workloads via vulnerability scanning and encrypted networks, and deploying multi-node clusters with high availability using Swarm orchestration. The materials cover a br - [jupyter/docker-stacks](https://awesome-repositories.com/repository/jupyter-docker-stacks.md) (8,432 ⭐) — This project is a collection of pre-configured Docker images that provide ready-to-run environments for interactive computing and data science. It functions as a scientific computing stack and a polyglot notebook server, bundling language interpreters and libraries for Python, R, and Julia within a containerized system to ensure reproducible research environments. The collection uses a layered image hierarchy to provide versioned software dependencies and support for hardware acceleration across different CPU architectures. It allows for the creation of custom images based on a foundation of - [moby/moby](https://awesome-repositories.com/repository/moby-moby.md) (71,729 ⭐) — Moby is an OCI container engine and runtime manager designed for building, running, and managing isolated containers based on Open Container Initiative standards. It functions as a container daemon and image builder, providing a core engine to orchestrate the full lifecycle of containers and the packaging of source code into portable images. The project provides a standardized HTTP interface that allows for programmatic container management, enabling external clients to control daemon settings and container operations. It supports a rootless security model, allowing the engine daemon to execu - [as-a-service/render](https://awesome-repositories.com/repository/as-a-service-render.md) (36 ⭐) — A simple web service that renders a Blender 3D scene with custom text. - [as-a-service/pdf](https://awesome-repositories.com/repository/as-a-service-pdf.md) (164 ⭐) — A simple web service that transforms the given document into a PDF file. - [termux/proot-distro](https://awesome-repositories.com/repository/termux-proot-distro.md) (2,839 ⭐) — proot-distro is a rootless container runtime and Linux distribution manager that allows users to install and run isolated guest environments without requiring administrative root privileges. It utilizes PRoot to simulate root access and filesystem redirection, enabling the deployment of full Linux distributions in a non-root space. The project functions as an OCI container image handler, capable of building, pulling, and pushing OCI-compatible images and manifests. It further serves as a cross-architecture execution layer, utilizing user-mode emulation to run binaries and containers built for - [as-a-service/meme](https://awesome-repositories.com/repository/as-a-service-meme.md) (0 ⭐) — A simple web service that generates a meme image given text and an image URL. - [netbirdio/netbird](https://awesome-repositories.com/repository/netbirdio-netbird.md) (26,188 ⭐) — NetBird is a zero-trust networking platform that builds secure, encrypted peer-to-peer overlay networks using the WireGuard protocol. It functions as a software-defined perimeter, connecting distributed infrastructure across cloud environments and physical locations while hiding network resources from the public internet. By integrating with external identity providers, the platform enforces granular access control and identity-based segmentation for every user and device. The platform distinguishes itself through extensive automation and programmatic management capabilities. It provides a ce - [hotheadhacker/no-as-a-service](https://awesome-repositories.com/repository/hotheadhacker-no-as-a-service.md) (6,153 ⭐) — No-as-a-Service is a lightweight, self-hosted API that returns a random humorous rejection reason as a JSON object through a single GET endpoint. It serves pre-defined rejection reasons from a static JSON array without any database, external storage, or third-party dependencies, using only Node.js built-in modules for its zero-dependency HTTP server. The API processes each request independently with no session state, caching, or persistent connections, making it a stateless REST endpoint. Its rejection reasons are stored in a simple, human-readable JSON configuration file that can be edited w - [nextcloud/all-in-one](https://awesome-repositories.com/repository/nextcloud-all-in-one.md) (9,082 ⭐) — all-in-one is a containerized deployment system designed to install and manage a complete suite of productivity and collaboration services. It functions as a cloud suite deployer that orchestrates the installation of a self-hosted content platform, incorporating necessary dependencies via Docker or Kubernetes. The project distinguishes itself by providing a web-based dashboard for orchestrating, updating, and monitoring the lifecycle of service containers. It also serves as a local AI inference server, enabling the execution of generative text models, image diffusion, and speech processing on - [docker-library/official-images](https://awesome-repositories.com/repository/docker-library-official-images.md) (6,972 ⭐) — This project is a collection of curated and standardized Docker base images that serve as reliable starting points for building containerized applications. It functions as an OCI container image repository and a build template library, providing a central source of truth for images that adhere to Open Container Initiative standards for portability. The project utilizes an automated image lifecycle pipeline to build, tag, and push images, ensuring that dependencies remain current and security patches are applied. It specifically supports cross-platform distribution by providing a multi-archite - [as-a-service/screenshot](https://awesome-repositories.com/repository/as-a-service-screenshot.md) (104 ⭐) — A simple web service that takes screenshot of the given URL. - [openhands/openhands](https://awesome-repositories.com/repository/openhands-openhands.md) (77,330 ⭐) — OpenHands is an autonomous agent framework designed for software engineering workflows. It provides a modular platform for orchestrating AI agents that reason, plan, and execute tasks within isolated, containerized development environments. By integrating with standard version control and development tools, the system enables agents to autonomously navigate codebases, implement features, and resolve issues through iterative reasoning and tool execution. The platform distinguishes itself through a model-agnostic orchestrator that connects diverse language models to a unified tool registry. It - [as-a-service/inkscape](https://awesome-repositories.com/repository/as-a-service-inkscape.md) (23 ⭐) — A simple web service that transforms the given SVG file into the desired format. - [as-a-service/trace](https://awesome-repositories.com/repository/as-a-service-trace.md) (14 ⭐) — A simple web service that traces the given bitmap image into an SVG file. - [jellyfin/jellyfin-android](https://awesome-repositories.com/repository/jellyfin-jellyfin-android.md) (2,557 ⭐) — jellyfin-android is an Android media server client used to stream movies, television shows, and music from a remote server to mobile devices. It functions as a cross-platform media player that supports direct streaming, remote transcoding for incompatible formats, and the integration of external subtitles. The application serves as a Chromecast media controller, allowing users to cast server-hosted content to compatible televisions and speakers. It also acts as a digital library viewer for browsing photo collections and reading ebooks, comics, and magazines stored on a remote server. Beyond - [containerd/nerdctl](https://awesome-repositories.com/repository/containerd-nerdctl.md) (10,172 ⭐) — nerdctl is a command-line tool that manages containers and images using containerd as the runtime, providing a Docker-compatible interface for container lifecycle management. It supports running containers with the same command syntax and flags as Docker, including multi-container Compose workflows, and enables rootless container execution without host kernel escalation. The tool extends beyond basic container management with several advanced distribution and security capabilities. It can start containers before full image download by fetching only metadata and on-demand layers from eStargz-f - [kubernetes-sigs/kind](https://awesome-repositories.com/repository/kubernetes-sigs-kind.md) (15,320 ⭐) — This project is a local Kubernetes cluster manager and tool that runs control plane and worker nodes as containers on a host machine. It provides an environment for local development and automated testing by emulating a full Kubernetes cluster within a container runtime. The tool enables the creation of multi-node topologies and high-availability control planes through configuration files. It supports image sideloading to transfer container images directly from the host to nodes, bypassing remote registries, and allows for offline deployments using pre-built node images. Capabilities include - [jellyfin/jellyfin](https://awesome-repositories.com/repository/jellyfin-jellyfin.md) (53,338 ⭐) — Jellyfin is a self-hosted media server that organizes digital media collections and streams content to various client devices over a local or remote network. It utilizes a client-server architecture that separates media processing and storage from user interfaces, communicating through a standardized web-based application programming interface. The platform is designed for cross-platform hosting, running consistently across Linux, Windows, and macOS through native binaries or containerized environments. It features a hardware-accelerated transcoding engine that offloads intensive video conver - [sosdave/enumeration-as-a-service](https://awesome-repositories.com/repository/sosdave-enumeration-as-a-service.md) (51 ⭐) — Enumeration as a Service (eaas.py) in a script that queries the DNS server of a particular domain looking for indications that the domain may be utilizing SaaS offerings. This analysis is performed on TXT, CNAME, A and MX Records. Query results, as well as highlighted results of interest are… - [facefusion/facefusion](https://awesome-repositories.com/repository/facefusion-facefusion.md) (28,806 ⭐) — Facefusion is a modular framework designed for automated image and video manipulation, specializing in tasks such as face swapping, enhancement, and restoration. It functions as a computer vision processing pipeline that chains independent machine learning modules to perform complex transformations, including facial animation, age modification, and lip synchronization. The system is built to handle both real-time interactive feeds and large-scale batch processing tasks. The platform distinguishes itself through a highly extensible architecture that supports custom processing modules and inter - [erikarvstedt/extra-container](https://awesome-repositories.com/repository/erikarvstedt-extra-container.md) (295 ⭐) — Run declarative NixOS containers without full system rebuilds - [youki-dev/youki](https://awesome-repositories.com/repository/youki-dev-youki.md) (7,452 ⭐) — Youki is a low-level container runtime written in Rust that creates and manages isolated containers according to Open Container Initiative specifications. It serves as an execution engine that can function as a rootless container manager or a pluggable Kubernetes CRI runtime to manage pods and containers within a cluster. The project distinguishes itself by providing a Wasm container runtime capable of executing WebAssembly modules as isolated workloads compatible with standard orchestration tools. It further supports a rootless execution model, allowing isolated environments to start as non- - [jwilder/dockerize](https://awesome-repositories.com/repository/jwilder-dockerize.md) (5,202 ⭐) — Utility to simplify running applications in docker containers - [yeasy/docker_practice](https://awesome-repositories.com/repository/yeasy-docker-practice.md) (26,111 ⭐) — This project is a Docker educational resource and a collection of practical examples designed for learning containerization technologies. It serves as a guide for understanding container fundamentals, including the creation and management of custom images and the use of registries. The repository provides specialized references for container security hardening, such as managing kernel privileges and implementing supply chain security. It also includes tutorials for multi-container orchestration and a DevOps guide focused on CI/CD automation and image optimization. The material covers a broad - [powerman/dockerize](https://awesome-repositories.com/repository/powerman-dockerize.md) (193 ⭐) — Utility to simplify running applications in docker containers - [fastapi/fastapi](https://awesome-repositories.com/repository/fastapi-fastapi.md) (99,260 ⭐) — FastAPI is a web framework for building APIs with Python. It leverages standard language type hints to provide automatic data validation, request parsing, and interactive API documentation generation. The framework supports asynchronous request handling and manages execution contexts to prevent blocking the main event loop. The project includes a dependency injection system that allows for the resolution and injection of reusable components into request handlers. This system supports request-scoped caching, lifecycle management, and integration with security mechanisms like OAuth2 and JSON We - [jaykali/maskphish](https://awesome-repositories.com/repository/jaykali-maskphish.md) (3,020 ⭐) — Maskphish is a comprehensive security toolkit that integrates capabilities for digital forensics, network vulnerability scanning, open-source intelligence, penetration testing, and social engineering. It functions as a multi-purpose framework for automating reconnaissance and executing security audits across diverse network environments. The project features a specialized phishing and social engineering toolkit used for cloning websites, masking URLs, and deploying deceptive pages to capture user credentials. It also includes a remote access Trojan builder for generating platform-specific exe - [keygraphhq/shannon](https://awesome-repositories.com/repository/keygraphhq-shannon.md) (44,672 ⭐) — Shannon is an integrated security platform designed for autonomous penetration testing, static and dynamic analysis, and automated vulnerability remediation within self-hosted, private infrastructure. It functions as a unified security suite that orchestrates the entire lifecycle of vulnerability management, from initial discovery and reachability prioritization to the generation and verification of code-level patches. The platform distinguishes itself through its agentic approach to security, deploying autonomous agents to execute both black-box and white-box exploits against running applica - [hashcat/hashcat](https://awesome-repositories.com/repository/hashcat-hashcat.md) (26,200 ⭐) — Hashcat is a high-performance hash cracking software and OpenCL compute application used to recover plain-text passwords from hashed data. It functions as a GPU-accelerated recovery tool and distributed password cracker, leveraging CPUs and GPUs to perform intensive cryptographic computations. The system differentiates itself through a distributed cracking workflow that coordinates tasks across multiple machines via an overlay network to share computational load. It further optimizes recovery speed using Markov chain keyspace optimization to prioritize the most likely password candidates. Th - [google/container-explorer](https://awesome-repositories.com/repository/google-container-explorer.md) (97 ⭐) — Container Explorer (built as ce) is a standalone Go utility for exploring, analyzing, and performing forensics on container runtimes (such as containerd, Docker, and Podman). - [googlecontainertools/jib](https://awesome-repositories.com/repository/googlecontainertools-jib.md) (14,327 ⭐) — Jib is a build plugin for Maven and Gradle that packages Java applications into container images directly within the build lifecycle. By integrating into the standard build process, it eliminates the need for Dockerfiles or a local container daemon to create and store images. The tool constructs images by organizing application artifacts into distinct filesystem layers, which improves cache efficiency and reduces data transfer during registry pushes. It communicates directly with container registries using standard protocols and supports credential helper orchestration to manage authenticatio - [kestra-io/kestra](https://awesome-repositories.com/repository/kestra-io-kestra.md) (27,073 ⭐) — Kestra is a declarative workflow orchestrator designed to manage complex task dependencies and automated processes through versioned configuration files. It functions as a distributed platform that decouples task scheduling from execution by offloading computational workloads to a fleet of worker nodes. The system uses a reactive, event-driven engine to initiate workflows automatically in response to external signals, webhooks, schedules, or file system changes. The platform distinguishes itself through a modular plugin architecture that allows for the integration of custom tasks and external - [metauto-ai/agent-as-a-judge](https://awesome-repositories.com/repository/metauto-ai-agent-as-a-judge.md) (785 ⭐) — 👩‍⚖️ Agent-as-a-Judge: The Magic for Open-Endedness - [k4yt3x/video2x](https://awesome-repositories.com/repository/k4yt3x-video2x.md) (18,754 ⭐) — Video2x is a modular processing framework designed for AI-enhanced video upscaling and frame rate conversion. It functions as a comprehensive toolset for increasing the resolution and visual clarity of media files while generating intermediate frames to improve motion smoothness. The system is built to handle intensive media transformation tasks by leveraging hardware acceleration and custom encoding pipelines. The project distinguishes itself through a plugin-based architecture that allows for the integration of custom machine learning models and specialized algorithms. It utilizes a modular - [sindresorhus/is-docker](https://awesome-repositories.com/repository/sindresorhus-is-docker.md) (233 ⭐) — Check if the process is running inside a Docker container - [abiosoft/colima](https://awesome-repositories.com/repository/abiosoft-colima.md) (29,324 ⭐) — Colima is a command-line utility that provides lightweight container runtimes and local Kubernetes orchestration by managing isolated virtual machine environments. It functions as a virtualization manager that abstracts the underlying container engine, allowing users to run containerized applications and system workloads on non-native operating systems without the overhead of heavy desktop software. The project distinguishes itself through its support for hardware-accelerated workloads, enabling direct GPU passthrough to virtual machines for high-performance machine learning tasks. It offers - [kubernetes/minikube](https://awesome-repositories.com/repository/kubernetes-minikube.md) (31,877 ⭐) — Minikube is a command-line tool designed for local Kubernetes development, enabling users to provision and manage full-featured container clusters directly on a workstation. It serves as a local orchestrator that automates the lifecycle of isolated environments, allowing developers to start, stop, pause, and delete clusters to support testing and integration workflows. The project distinguishes itself through its flexible architecture, which supports multiple virtualization drivers and container runtimes to accommodate diverse host environments. It provides deep integration between the host a - [appwrite/appwrite](https://awesome-repositories.com/repository/appwrite-appwrite.md) (56,318 ⭐) — Appwrite is a backend-as-a-service platform that provides a unified development environment for building full-stack applications. It integrates essential infrastructure components—including authentication, databases, storage, and serverless functions—into a single, centralized interface to simplify application development and resource management. The platform distinguishes itself through a container-based microservices architecture that ensures consistent execution across diverse infrastructure. It features a versatile connectivity layer that links frontend applications with third-party servi