What is the alternative, Bo? Deliberately using insecure versions of security software? Sounds ridiculous, doesn't it? Severe vulnerabilities are...
Older versions of Sandboxie have an excellent overall architecture, but they have multiple vulnerabilities. Here is a link to a pre-release of...
Incorrect. David closed way more security holes than he introduced. I will be publishing all of my exploits for 5.33.6 in the upcoming weeks:...
If it's interesting for anyone, I wrote a blog post about how the tool works. Image File Execution Options and related topics are full of...
I meant David's fork. As David mentioned above, which UI you use does not change anything regarding security or compatibility.
Also, we advise those users who still use Sophos's release to update to Sandboxie Plus. Note, though, that even the older versions of Sandboxie...
As we know from David's fix, a new flag they started using in version 86 to tighten job-based restrictions broke process creation because it is...
Except... It is a bad idea. Do you want me to publicly disclose a complete chain of exploits that allows a sandboxed program started by a user...
You are insane people. Using --no-sandbox flag is a terrible idea that weakens your security tremendously. Vulnerabilities that allow sandbox...
Not directly, I didn't find his email. However, the person from Sophos I contacted back in September 2019, told me that she forwarded all my...
Yes, and the fix for at least one of them will be available soon. I will make all the details public after we see them patched in both branches of...
I don't think it's possible. However, if you double-click the process and go to the Security page, it should show the correct information in the...
It is a caching bug in Process Explorer. I reported the same bug in Process Hacker almost three years ago. Sandboxie swaps the security context of...
Why not just set EFS encryption for the whole sandbox folder in its properties? Also, you can configure Sandboxie to use SDelete.
I know that it sounds cool, but can anyone explain me the actual value of this? Are there really any known examples of malware that purposefully...
Sandboxie already has some security flaws, and the fact that it is open-source now provides us with an excellent opportunity to fix them. So I see...
@WildByDesign That's a great idea, thanks. Configurable actions are not an issue - I was planning to add some of them (like limiting CPU...
Of course, you should know what you are doing. Execution Master even shows warnings when you try to mess around with system programs. Not...
Separate names with a comma.
