Hi there, what would be the best way to get the maximum protection out of sandboxie free version? Any tutorial available?
http://www.sandboxie.com/?GettingStarted http://www.sandboxie.com/?FrequentlyAskedQuestions http://www.techsupportalert.com/content/introduction-and-quick-guide-sandboxie.htm http://www.sandboxie.com/index.php?HelpTopics http://www.sandboxie.com/index.php?ExternalTutorials http://www.sandboxie.com/index.php?FAQ_Licensing https://www.wilderssecurity.com/threads/sandboxie-acquired-by-invincea.357312/
Running sandboxed most files and programs that run in your computer is the answer. Can this be done with the free version? Yes, it can be done. For browsing, Sandboxie places the SandboxedWebBrowser icon on your desktop for your default browser. For the rest of your browsers, you can right click their icon and select Run sandboxed. You can also create sandboxed shortcuts for the rest of your browsers. Get used to creating sandboxed shortcuts. This is a great feature in Sandboxie that goes highly ignored by users. And its probably one of the best features in Sandboxie. So, how can you get most files and programs in your computer to run sandboxed with the free version? Create a sandboxed shortcut for Windows explorer. As the shortcut gets created, Sandboxie places the icon in the desktop, you can leave it there or move it to your task bar. For navigating to files and programs that you download or get created in your PC, use the sandboxed Windows explorer. When you click on the shortcut, a sandboxed version of Windows explorer opens up, anything you click or execute via this shortcut, runs under Sandboxies protection. You can also use the shortcut for navigating to USB drives, CD or DVD drives. 1, create a new sandbox and name it Windows explorer. And 2, create the sandboxed shortcut for Explorer. Sandboxie control>Configure>Windows shell integration, Click Add shortcuts, Select the sandbox you named Windows explorer, find the real Windows explorer shortcut in one of the menus, Click it. After the click, you ll find the sandboxed shortcut at the desktop. You can change settings to the Windows explorer sandbox. Like, set it up to delete on closing and forbid all programs from having access to the internet. What I just wrote is a good beginning to get plenty juice out of SBIE. Bo
Another question. Is it safe enough to have instant recovery active behind a free antivirus like mse or avast? I mean recover download files directly outside sandboxie? Can an antivirus scan within a sandbox folder and then later on recover a file?
Antiviruses treat the sandbox folder as it does any other folder. So, most of the time, most antiviruses, should be able to scan successfully within the sandbox folder. But sometimes when there is some sort of conflict between the AV and Sandboxie, scanning within the sandbox folder breaks. I seen that happens sometimes after Sandboxie or an AV has updated or upgraded and when this happens, usually a few days later, another update fixes the issue. I remember a few years ago that happening temporarily with Avast. I don't recall ever happening with MSE. I think both, Avast and MSE are good choices to use along SBIE. Take your pick. Immediate recovery is a safe way of recovering files but if you are going to depend on an AV telling you if files are clean, then you better make sure they are clean before executing them after being recovered. If you get used to using the sandboxed windows explorer that I talked about earlier to run all files that get created in your PC, then the only files that you really have to trust would be installers for programs that you install in your system. Bo
Ok, I am progressing. Now I am trying to make a "set up" to scan all downloaded files before recovering them. I tried to use MBAM (malwarebytes) free version. But I get this error: SBIE2103 Denied attempt to load system driver 'mbamswissarmy [DefaultBox]' How do I make an exception only for this application? Update. Found the solution for my question below. If you put the shortcut of defaultbox on desktop, than the avast scans the whole directory. Mbam doesn't do that, it seems scans just the shortcut. Final question (hopefully). Any hint how to scan with MBAM (or Avast )on demand the folder C:\Sandbox\User\DefaultBox and make a shortcut in desktop for that command ? thanks guys
Thanks for the great response. I wasn't even searching for anything on this but found it very useful!
In my opinion, it is best to leave SBIE at it's default settings! All the advices you are going to get are sort of encouraging you to get a licence with multiple sandboxes that you can configure to the best. But free version, just leave it as it is. My advice. Anything else will be too much a bother with the free version. Even if you get the licence there are other options to guard your protection systemwise with windows better than SBIE. Sandboxie though has some features in the licensed version that you may like. I certainly did.
I agree and would also give similar advice to OP. Use default settings and run browser in SBIE. If you want to open suspicious file open it using sandboxed Explorer.
I am glad you found that post helpful. The sandboxed Windows explorer is a really nice tool, if you create a sandboxed shortcut for it, it makes sandboxing files and folders semi automatic. That brings the free version closer to the paid version since now with one click, you ll have explorer running in a sandbox. There are many purposes for using one. When you are using the free version, you can use it for navigating anywhere in your computer, anything that runs, runs sandboxed. Even for people using the paid version, its a useful tool. Many times in the course of the day when I am about to do something, I quickly realize that what I want to do works best using the sandboxed explorer. And even though I have the paid version, I use the sandboxed explorer all the time. Let me give you an example of something that will give you an idea of the sort of things that can be done with the sandboxed explorer that have nothing to do with running files you download under SBIE. The first time I tested disabling Flash protected mode, I clicked my sandboxed shortcut for explorer and navigated to the mmms.cfg file in the System32 folder, there I made the necessary change to disable protected mode, after doing that, I closed the sandbox without deleting the sandbox, afterward, I ran Firefox in the same sandbox and I was able to test Flash in Firefox with protected mode being disabled. That day, I was going to test the change in Shadow mode using Shadow defender but since I am used to using my sandboxed explorer all the time, I realized it was going to be a lot quicker to test using Sandboxie. So, get used to using one and the sandboxed shortcuts. You can create sandboxed shortcuts for your programs and folders. Get a shortcut for your Downloads folder. Running your downloads sandboxed is a great purpose for using SBIE. Same with your USB drives. For people who share flash drives, using SBIE works great. Bo
Okay I'm trying to comprehend everything that you're saying but I'm still a noob with most f this stuff. Currently, the web browser is the only feature I use by right clicking on the icon. I use it when going to a questionable site, or downloading a questionable file, etc. When I'm down I delete all contents and terminate session. I know I utilize this tool more than that. When you say windows explorer, do you mean the browser or the system thing?
The system thing. Do this, another way for running explorer sandboxed: Right click the Sandboxie icon by the clock, Click DefaultBox, Click Run Windows explorer. The sandboxed exploer will run in your DefaultBox if you are using an unrestricted Start Run sandbox. Bo
When you installed Sandboxie, it placed a SandboxedWebBrowser icon at your desktop. This icon runs your default browser. For other browsers, you can right click their icon, Or, make a sandboxed shortcut, this way: Sandboxie control>Configure>Windows shell integration, Click Add shortcuts, select DefaultBox, find the browser icon in one of the menus, like the Desktop menu. Click the browser icon, after the click, you ll find the sandboxed shortcut for this browser at the desktop. Questionable sites and questionable downloads. I follow Sandboxies motto..."Trust no program" so I treat all files and programs the same way. Dont trust any. I took the motto a little further and treat sites the same way. Dont trust any either. So, I run all files and visit all sites under SBIE. If you do that, getting infected will belong in your past. Bo
Free version of sandboxie + free antivirus + veracrypt + windows firewall / router are a good free security setup so far. Just need a free anti keylogger to add...
You guys that recently started using Sandboxie or are thinking about using Sandboxie, ought to watch this video. This is not a SBIE Vs malware video. The video came out 7 years ago, right about the time when I discovered Sandboxie and it kind of got me enthused about testing Sandboxie. Since Sandboxie had/have a free version, it was easy to test the program. https://www.youtube.com/watch?v=GueXMq-Vyi8 If you watch it, listen to what the guy says. After seven years using Sandboxie, I can tell you that what he says in the video is how it is. But when he made the video, he was not familiar with SBIE so put more attention to what he says than what he does. In my opinion, this is the best SBIE video ever posted in YouTube. And great watch for new SBIE users. When I first started using SBIE, I said, give it 6 months and see what the results are. By the time the six months came around, I was already convinced that SBIE was for real. Nothing ever since has made me change that opinion. Eventually, I had to have the paid version, after seeing what SBIE can do with the browser, I wanted more, I wanted to do everything else that can be done with SBIE. So, after using the free version for about a year, I went ahead and bought my license. Bo
Is it possible to have Sandboxie automatically sandbox drive letters in the free version ( I have USB sticks in mind) or are we dependent on having something like autoplay disabled?
Reality, like Brummelchen said, you need the paid version to force folders. But you could, disable autoplay, and set up a sandbox to run Windows explorer sandboxed. And then, you ll use it for navigating to the USB sticks whenever you plug one. Is not automatic like with the paid version. But, thats a secure way for opening your memory sticks. Bo
Thanks Bo. I successfully got a WE shortcut done after looking in here for some tips. If I could buy a Sandboxie Version at a bricks and mortar I would.
You are welcome, by the way, you can also use the sandboxed Windows explorer for navigating to your Downloads folder or any file in the PC. You click the file, it runs sandboxed. Restricting all programs from having access to the internet is a good setting for using in a sandbox of this kind. Same with Drop rights, if it doesn't interfere with the running of any of the programs that will run in this sandbox. Bo
Yes and thanks again. I think it's great how you've utilized Sandboxie , freely and willingly shared your tips. I think we all love freebies but this is one of the very few programs I would pay for in a heartbeat if it was boxed in a shop near me. I can't think of any program that does so much for those with not so much tech experience, and yet is very technical should you delve into it. Sandboxie is GREAT and covers a lot of bases.
You know, this is what I love most about the Sandboxie community, everyone is so eager to help others. Great job
as you learned fast you cannot box all programs - makes sense, heh? for this special purpose a virtual machine is better. if you want to deal with your system get shadow defender and let shadow mode activated on startup. for my needs i have a license for SB and i have several boxes for several or special purposes. and i have a license for shadow defender. virtual machines are for free. boxing as much as you can is at least a silly idea - and for the free version not really, nah. next point that you dont have interaction between boxes - although it is possible - dont know if free can do that. HTH