Cybergenic Shade-sandbox tool

Discussion in 'sandboxing & virtualization' started by co22, Oct 4, 2015.

  1. boredog

    boredog Registered Member

    Joined:
    Feb 1, 2015
    Posts:
    2,499
    I tried it this morning and could not figure out how to sandbox Edge. Directions say drag desktop shortcut into program. I have no shortcut for Edge. It resides in the tray and not as a shortcut.
    Was the only video on their web site created by cruelsister or was it just her quotes?
     
    Last edited: Jul 15, 2017
  2. Umbra

    Umbra Registered Member

    Joined:
    Feb 10, 2011
    Posts:
    4,616
    Location:
    Europe then Asia
    @boredog Edge cannot be isolated (yet), it runs at Appcontainer level which i one integrity level deeper than any sandboxing apps.

    so in term of security even if you can , it would be pointless.
     
  3. boredog

    boredog Registered Member

    Joined:
    Feb 1, 2015
    Posts:
    2,499
    Thanks Umbra
    Didn't know that about Edge. I thought something was strange because I was able to put IE in there but when I added AVG, AVG stopped working.
     
  4. Umbra

    Umbra Registered Member

    Joined:
    Feb 10, 2011
    Posts:
    4,616
    Location:
    Europe then Asia
    Appcontainer is the Windows8/10 sandboxing capability, every Metro Apps use it.
    To explain very very simply, when those apps are created, the dev allow some areas of the system to be accessible so the apps can do its job while restricting access to others.

    you can see the appcontainer integrity level (IL) by using Process Explorer and selecting the "integrity" column; then launching edge or any metro apps.

    for example in my screenshot below:

    - Edge has its IL as Appcontainer
    - Firefox in sandboxie has its IL as "Untrusted"
     

    Attached Files:

    Last edited: Jul 16, 2017
  5. NormanF

    NormanF Registered Member

    Joined:
    Feb 20, 2009
    Posts:
    2,354
    That applies only to UWP apps. In that case, a virtualization sandbox is redundant because Windows 8 and 10 already have one for those apps.

    If you're still running 32 bit desktop apps, Cybernetic Shade or Sandboxie will give you an extra layer of protection for them.
     
  6. deugniet

    deugniet Registered Member

    Joined:
    Nov 25, 2013
    Posts:
    708
    Shade 1.7 just got released.
     
  7. Peter2150

    Peter2150 Global Moderator

    Joined:
    Sep 20, 2003
    Posts:
    19,938
    What's new. I couldn't find anything on the website
     
  8. ichito

    ichito Registered Member

    Joined:
    Jan 14, 2011
    Posts:
    1,717
    Location:
    Poland - Cracow
  9. Mr.X

    Mr.X Registered Member

    Joined:
    Aug 10, 2013
    Posts:
    3,273
    Location:
    Mexico
    Great software firm indeed :rolleyes: (being sarcastic)
     
    Last edited: May 14, 2018
  10. Peter2150

    Peter2150 Global Moderator

    Joined:
    Sep 20, 2003
    Posts:
    19,938
    I hear you on that one, but what about the software??
     
  11. Peter2150

    Peter2150 Global Moderator

    Joined:
    Sep 20, 2003
    Posts:
    19,938
    Guess it will take some testing.
     
  12. The Count

    The Count Registered Member

    Joined:
    Jun 13, 2016
    Posts:
    138
    Location:
    France
  13. Peter2150

    Peter2150 Global Moderator

    Joined:
    Sep 20, 2003
    Posts:
    19,938
    So what.
     
  14. bjm_

    bjm_ Registered Member

    Joined:
    May 22, 2009
    Posts:
    3,020
    Location:
    .
     
  15. deugniet

    deugniet Registered Member

    Joined:
    Nov 25, 2013
    Posts:
    708
    Problably wont sandbox MS Edge too like Sandboxie.
     
  16. The Count

    The Count Registered Member

    Joined:
    Jun 13, 2016
    Posts:
    138
    Location:
    France
    Best free alternatives to Cybergenic and Sandboxie for Windows?
     
  17. lofac

    lofac Registered Member

    Joined:
    Jan 18, 2018
    Posts:
    103
    Location:
    .
    ReHips and Comodo Firewall.
     
  18. Rasheed187

    Rasheed187 Registered Member

    Joined:
    Jul 10, 2004
    Posts:
    10,658
    Location:
    The Netherlands
    What I don't like is that there is no technical info about the way that sandboxing is implemented. Is it purely about virtualization of the file system and registry, or do processes also run with low/untrusted integrity, that kind of stuff. And what about interprocess communications?

    https://msdn.microsoft.com/en-us/library/windows/desktop/aa365574(v=vs.85).aspx
     
  19. Mr.X

    Mr.X Registered Member

    Joined:
    Aug 10, 2013
    Posts:
    3,273
    Location:
    Mexico
    That's why I already said: "Great software company indeed" /sarcasm :rolleyes:
     
  20. Peter2150

    Peter2150 Global Moderator

    Joined:
    Sep 20, 2003
    Posts:
    19,938
    The target audience wouldn't understand the technicals. Just test it and see if it works.
     
  21. cruelsister

    cruelsister Registered Member

    Joined:
    Nov 6, 2007
    Posts:
    1,355
    Location:
    Paris
    It's a nice on demand sandbox. If that's what one needs it will be fine. No magic here...
     
  22. Mr.X

    Mr.X Registered Member

    Joined:
    Aug 10, 2013
    Posts:
    3,273
    Location:
    Mexico
    I love and need technical details so I expect them from any software firm. Publicly available like Sandboxie's. Non-technical target audience just turn the page to skip such details, done. :geek:
     
  23. bjm_

    bjm_ Registered Member

    Joined:
    May 22, 2009
    Posts:
    3,020
    Location:
    .
     
    Last edited: May 20, 2018
  24. Rasheed187

    Rasheed187 Registered Member

    Joined:
    Jul 10, 2004
    Posts:
    10,658
    Location:
    The Netherlands
    That's the thing, I don't do malware testing. But I did receive some info via PM that makes me believe that Shade is more advanced than I thought.

    Have you tested it lately? How does it compare with Sandboxie on a technical level?
     
  25. cruelsister

    cruelsister Registered Member

    Joined:
    Nov 6, 2007
    Posts:
    1,355
    Location:
    Paris
    Rasheed- looks like I spoke too soon before. As I'm on the road I don't have my malware zoo with me, nor do I feel like coding. But from the probes I utilized to test Shade the results were far from optimal with this new version. As examples, looks like a Service can be created by an application run from within the sandbox, and even worse it seems that a sandboxed process can both fork and autostart a legit Windows file.

    Needless to say this would have to be confirmed by actual malware/applicatiions, but I'm fairly certain this is the case.
     
Loading...
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.