Introducing Diskshot™ - an alternative to Shadow Defender

Discussion in 'sandboxing & virtualization' started by dax123, Oct 3, 2012.

Thread Status:
Not open for further replies.
  1. dax123

    dax123 Registered Member

    Joined:
    Jul 2, 2010
    Posts:
    58
    Introducing Diskshot™ - an alternative to Shadow Defender

    Project page : http://www.diskool.com/

    Thread Index
    1. Introduction
    2. Suggestion for use in action
    3. Additional features
    4. Translations
    I've posted a comparison of 'instant recovery software' before.
    Only shadow defender could keep the system safe from TDSS rootkits.
    Today I found another one that works - DiskShot, the safest ISR software ever!!


    1. Introduction

    Diskshot™ creates a sandbox to your system, and keep it safe from any malicious attacks / unwanted changes.

    kool.jpg

    Basic operation
    • When you create an image, it keeps your initial data from being overwritten. all changes will be stored in sandbox.
    ds_create.jpg

    • And when it comes to recover your system, all changes within the sandbox is removed.
    ds_load.jpg

    • Also it provides 'commit changes' option, in case you want to make permanent changes.
    ds_save.jpg

    Here are pros' and cons' compared to other product.

    Pros
    MBR, Sector-level, Disk-level protection at once
    (Shadow defender does not provide MBR-level protection, you need to use additional software like MBRGuard)
    provides TRUE protection against low-level attacks like rootkits
    (which Deep freeze, Rollback RX cannot provide, they are bulls**t)
    Keeps your data after reboot
    (shadow defender removes the data each reboot)
    TRIM support
    (Especially for SSD performance/lifespan, only Rollback Rx supports this)
    Provides pre-boot emergency center
    (you can recover your data even when the system is not bootable.)
    Supports GRUB multi-boot system
    (to do this, install your grub to PBR sector in windows partition, instead of using MBR)
    (and you need to use a custom configuration 'FilterBootSector=0', if you want how to do this I'll post it)
    Is being actively developed
    (Currently the author of shadow defender is MIA :( )

    Cons
    No Multilanguage support
    (it's a commercial software especially targeting korean companies)
    (however I'm planning to provide an 'unofficial' english translation)
    No Snapshot/Timeline feature (yet)
    (however it will be supported in next version, as the deloper team promised)
    No Hibernation

    DiskShot @ home is provided free for home-user.
    Ds@home - x86 : download
    Ds@home - x64 : download (corrected!!)
    English translation : currently in progress

    You can register with this free giveaway license :
    7SPUT-MQHT2-N5D8C-V7C4X-J3PK7 (valid until 2014-07-19, for 8000 users)
    After the giveaway is finished, you can request a trial key (15-days) in this link :
    http://www.diskshot.com/demokey

    (* if you request a key in the project forum you will get unlilmited personal license for free, but it's hard for non-korean user to post in this site.. :( )
     
    Last edited: Oct 6, 2012
  2. dax123

    dax123 Registered Member

    Joined:
    Jul 2, 2010
    Posts:
    58
    2. Suggestion for use in action

    Reserved
     
    Last edited by a moderator: Oct 3, 2012
  3. dax123

    dax123 Registered Member

    Joined:
    Jul 2, 2010
    Posts:
    58
    :cool: 3. Additional features

    Bootfetch - Shortens boot time
    It accelerates the boot process by making ramdrive for boot partition,
    therefore boot time can be much shortened. (Up to 10.42 seconds, Ordinary HDD takes 14-17 seconds to boot)
    When enabled, a logo appears upper left side during boot time.

    bootfetch.png

    To enable this feature, you need to allocate your first partition (up to 4096MB)
    and set the filesystem to 0x37.

    booot.png

    * NOTE : it only supports Windows 7 64bit




    Virtual FDD image boot support

    It can load Norton GHOST, Rescue CD, or any other external OS for further maintenance. (like BIOS update)

    * Supported image list :
    supported extension is *.VFD, *.FLP, *.IMA, *.IMG, *.BIF.
    (does not support compressed images like *.IMZ)

    to use this feature, you need to insert the boot image first.
    you can do this like you use DAEMON tools or something like that :

    FDD success.gif


    and once FDD image is successfully mounted, you can boot with FDD anytime in DiskShot™ preboot center:

    preboot_0003.png


    PRESS F9, and the mounted image will be loaded.


    S.M.A.R.T status check

    Customization


    Reserved
     
    Last edited by a moderator: Oct 25, 2012
  4. dax123

    dax123 Registered Member

    Joined:
    Jul 2, 2010
    Posts:
    58
    4. Translations

    Since this Diskshot@home software detects self-modification and rejects running,
    I have to screenshot and translate the dialogs.
    Please forgive me :'( :'(


    Installation

    install.gif

    (after click "OK" button the system will be rebooted)



    Tray icon context menu

    context.png

    Main menu

    mainmenu.gif

    Options menu

    config.gif
     
    Last edited: Oct 5, 2012
  5. PaulBB

    PaulBB Registered Member

    Joined:
    Jan 2, 2006
    Posts:
    708
    Seem to be a pretty solid tool but there's a glitch; no uninstall shortcut, no program files folder. So my question is how I remove it because the interface and menus are in Korean?
     
  6. dax123

    dax123 Registered Member

    Joined:
    Jul 2, 2010
    Posts:
    58
    here is the menu to remove

    remove.png

    guess i have to make the translation as soon as possible...
     
  7. PaulBB

    PaulBB Registered Member

    Joined:
    Jan 2, 2006
    Posts:
    708
    Thank you very much, Sir ....waiting for the English version!
     
  8. dax123

    dax123 Registered Member

    Joined:
    Jul 2, 2010
    Posts:
    58
    in about 1 hour i can convey initial translation.. :rolleyes:

    EDIT:: this software has self-modification defence mechanism, it rejects execution.. lol
    I couldn't translate it at my disposal. :'( :'( :'( :'( :'( :'( :'(
    but still I'm seeking the way..
     
    Last edited: Oct 3, 2012
  9. Adric

    Adric Registered Member

    Joined:
    Feb 1, 2006
    Posts:
    795

    Is the key you supplied unlimited or is it 15-day?

    Al
     
    Last edited by a moderator: Oct 3, 2012
  10. dax123

    dax123 Registered Member

    Joined:
    Jul 2, 2010
    Posts:
    58
    the key I supplied is valid until 2014-07-19.
    this key is giveaway key for 8000 users, currently 1842 users are using :D
     
  11. dax123

    dax123 Registered Member

    Joined:
    Jul 2, 2010
    Posts:
    58
    I uploaded the picture translation to upper thread here

    and I'm contacting the developer to request multilanguage support...
    so please wait :D :D
     
  12. Pliskin

    Pliskin Registered Member

    Joined:
    Feb 8, 2009
    Posts:
    341
    Awesome find and also thank you for translating it.

    Small question, do you mean:

    DiskShot @ home is provided free for first 8000 home-users until 2014-07-19?
     
  13. kupo

    kupo Registered Member

    Joined:
    Jan 25, 2011
    Posts:
    1,122
    This software is interesting! After looking at your translated screenshot. It seems a mini RollbackRx and Shadow Defender combined.
     
  14. dax123

    dax123 Registered Member

    Joined:
    Jul 2, 2010
    Posts:
    58
    well, I think the developer is control freak or something, (:D )

    though we have to input the serial key, developer team promised to continuously provide the free serial key..
    (and once you register the korean forum, you can get an unlimited key.)

    and in fact this is a commercial product, but the developer decided to provide it free for home users.
    I think that's why this software uses serial key method, to prevent illegal-commercial-use of companies.
     
    Last edited by a moderator: Oct 25, 2012
  15. dax123

    dax123 Registered Member

    Joined:
    Jul 2, 2010
    Posts:
    58
    and it protects against TDSS or some other rootkits!!!
    hurray!!

    according to system infection test performed 2011/01/11, 00:16.47, results are below
    http://www.diskool.com/ds_tip/1111593

    comparison.png
     
    Last edited: Oct 3, 2012
  16. The Red Moon

    The Red Moon Registered Member

    Joined:
    May 17, 2012
    Posts:
    3,872
    I dont think it was very good the developer of this calling other products bull***t was it?

    Think i will wait for more feedback on this.its quite new and needs some testing etc.
    Personally i dont think its really my sort of program and the origin seems dubious at the minute and the developer does seem arrogant and conceited when saying rollback rx etc is bull***t.

    Regards.:thumb:
     
  17. dax123

    dax123 Registered Member

    Joined:
    Jul 2, 2010
    Posts:
    58
    omg deep freeze or rollback developers are actually bull***t.

    they just ignored the rootkit 'bypass' problem, and still advertises their product is virus-free or bullet-proof !! they are lying!! :eek:
     
  18. Pliskin

    Pliskin Registered Member

    Joined:
    Feb 8, 2009
    Posts:
    341
    Where did you read that? Dax123 is not the developer.
     
  19. The Red Moon

    The Red Moon Registered Member

    Joined:
    May 17, 2012
    Posts:
    3,872
    Its within the first post on this thread.:blink:
     
  20. The Red Moon

    The Red Moon Registered Member

    Joined:
    May 17, 2012
    Posts:
    3,872
    Has this product been thoroughly tested with rootkits etc.?
    Any results to check.:blink:
     
  21. Pliskin

    Pliskin Registered Member

    Joined:
    Feb 8, 2009
    Posts:
    341
    Dax123 wrote the first post, not the developer.
     
  22. dax123

    dax123 Registered Member

    Joined:
    Jul 2, 2010
    Posts:
    58
    here are some articles

    Light virtualization software / Partial sandbox test : the truth about rollback software

    system infection test


    and the second one has the realtime video proof
    and they say :



    From Faronics (Deep Freeze):

    From Horizon Datasys (Rollback Rx, EAZ-FIX):



    they STILL couldn't fix it. so they are actually a bull***t
     
  23. The Red Moon

    The Red Moon Registered Member

    Joined:
    May 17, 2012
    Posts:
    3,872
    Thanks for this.
    How does this compare to shadow defender.?
    As far as i know shadow defender is the only virtualisation program which can survive a rootkit infection.:doubt:
     
  24. dax123

    dax123 Registered Member

    Joined:
    Jul 2, 2010
    Posts:
    58
    shadow defender is good.

    but the developer (I heard tony is his name) is still missing in action, their forums were closed.
    and furthermore, it has some limitation (removing changes every boot, does not provide MBR-level protection, TRIM support)
    so I looked for some another fancy software, and found this.

    and returnil is also a good solution, it can protect some rootkits now.
    (but it causes some performance impacts so i don't use it)
     
  25. WSFfan

    WSFfan Registered Member

    Joined:
    May 10, 2012
    Posts:
    374
    Location:
    The Earth
    Can someone confirm that SD does not protect the MBR?
     
Thread Status:
Not open for further replies.