Lightweight • Secure • Purpose-Built
curiOS delivers ultra-slim, curated container images optimized for embedded and edge computing. Built on battle-tested Buildroot, each image is stripped of unnecessary components while maintaining full functionality.
✨ Ultra-minimal footprint - Images as small as 270KB
🔒 Security-first - No unnecessary packages or attack surface
⚡ Fast deployment - Lightning-quick startup times for edge applications
🎯 Purpose-built - Each container does one thing exceptionally well
🔧 Developer-friendly - Easy integration with existing workflows
- IoT Gateways - Lightweight network services and protocols
- Edge Computing - Minimal resource consumption at the edge
- Container Orchestration - Kubernetes, Docker Swarm, and more
- Development Staging - Debug and test before production deployment
- Embedded Firewalls - Advanced netfilter configurations in containers
Tip
The system container includes full BusyBox tooling, making it perfect for staging and development before deploying the ultra-slim application containers.
curiOS is brought to you by the same team that created and maintains the Infix operating system. If you like the idea of modeling an entire OS with YANG, check out Infix!
Get started instantly with our pre-built images available on the KernelKit Container Registry. Each image is continuously built and tested for ARM64 and x86-64 architectures.
Full-featured development and staging environment - Perfect for prototyping and debugging before deploying specialized containers. Includes everything you need:
- BusyBox (complete toolset) - Full UNIX utilities
- Dropbear SSH - Secure remote access
- mini-snmpd - Network monitoring
- netopeer-cli - NETCONF client
- nftables - Advanced firewall
- ntpd - Network time synchronization
See this blog post on how to use this container with Infix:
Precision time synchronization (~400KB) - Ultra-lightweight NTP daemon for accurate timekeeping across your infrastructure. Features:
- ISC ntpd with
-n -gflags for quick sync - Multicast NTP support for subnet-wide time distribution
- Persistent drift data via
/var/libvolume mount - Custom config support - mount your own
/etc/ntp.conf
Perfect for IoT devices and distributed systems requiring precise time. See the official ntpd documentation for advanced configuration.
Advanced containerized firewall (~670KB) - Production-ready netfilter management with zero-downtime rule updates. Features:
- Host network mode support for transparent firewalling
- Graceful startup/shutdown - Loads rules on start, flushes on stop
- Live configuration - Built-in vi editor for rule modifications
- Mount-friendly - Use host-based config files via volumes
- Sample configurations included for end-devices and routers
Ideal for edge devices, containers-as-firewalls, and advanced network policies.
See this blog post on how to use this container with Infix:
Ultra-lightweight web server (~270KB) - The smallest possible HTTP server for embedded applications and IoT devices. Features:
- Minimal footprint - Perfect for resource-constrained environments
- Volume support - Mount your content to
/var/www/ - Flexible configuration - Customizable ports, logging, and behavior
- Firmware-ready - Ideal for embedding in device firmware
Example usage:
# Custom port and verbose logging
docker run -p 8080:8080 ghcr.io/kernelkit/curios-httpd /usr/sbin/httpd:edge -f -v -p 8080For more help, see the BusyBox docs
System information at a glance (~750KB) - Perfect for demos, system monitoring, and showing off your container infrastructure. Features:
- Beautiful ASCII art - Eye-catching system logos and information display
- Comprehensive details - OS, kernel, uptime, memory, CPU, and more
- Container-optimized - Shows host system info even when containerized
- Demo-ready - Perfect for presentations and system showcases
Example usage:
# Simple system info display
docker run --rm ghcr.io/kernelkit/curios-neofetch:edge
# With host system access for accurate info
docker run --rm -v /etc/os-release:/etc/os-release:ro ghcr.io/kernelkit/curios-neofetch:edge
# Get a shell instead
docker run --rm -i -t --entrypoint /bin/bash ghcr.io/kernelkit/curios-neofetch:edgecuriOS is a wrapper around Buildroot for creating container images for uploading to Docker Hub or similar. Buildroot is an SDK for building embedded Linux distributions. It handles the removal of man pages, shared files, and many pieces not germane to running on an embedded platform, and, as it turns out, containers.
curiOS is a fork of https://github.com/brianredbeard/coreos_buildroot