Sandboxie Acquired by Invincea

Discussion in 'sandboxing & virtualization' started by ad18, Dec 16, 2013.

Thread Status:
Not open for further replies.
  1. guest

    guest Guest

    No idea, but I wanted to be sure the app wasn't ran once prior being sandboxed.
     
  2. Rasheed187

    Rasheed187 Registered Member

    Joined:
    Jul 10, 2004
    Posts:
    14,929
    Location:
    The Netherlands
    But they can't modify the app itself right? They can't implement any backdoors I assume? I can't really visualize it.

    Yes, I think I will also start using portable apps inside the sandbox. What I forgot is that even if you install a new version of some app inside the sandbox, it will always try to upgrade, so a clean install is not possible, and that's why I'm having problems with Firefox.
     
  3. Brummelchen

    Brummelchen Registered Member

    Joined:
    Jan 3, 2009
    Posts:
    4,150
    @guest - portables behave same in sandboxie but for some reason they are not able to delete some files windows create, eg the prefetch folder - which ofc is in the box, but its not deleted because that files also exist in the real host. beieng home again i can test/work with YARU on registry files.

    yaru is able to load/read system and other hives. assuming that it the way of working with yaru i am not sure that it can recover an unloaded sandboxie hive which was mounted in HKU

    HKLM and HKU is the sum of that hives of windows while HKCR and HKCU are copies of HKU\S-1-5... current user.
    searching in technet means to find the needle...

    to dump a hive is easy but that was not the question here
     
  4. Rasheed187

    Rasheed187 Registered Member

    Joined:
    Jul 10, 2004
    Posts:
    14,929
    Location:
    The Netherlands
    I'm also not sure what Brummelchen is exactly talking about? Every single change that both portable and non portable apps make inside the sandbox, won't show up on the real system, that's the whole point of Sandboxie.
     
  5. Minimalist

    Minimalist Registered Member

    Joined:
    Jan 6, 2014
    Posts:
    14,504
    Location:
    Slovenia
    It's not about changes that app makes but about logs, registry entries... that system makes when apps are run. To prevent those record from being created one can use virtual machine and restore old snapshot after an app is used. Sandboxie can't help here because it can't sandbox the whole system.
     
  6. Rasheed187

    Rasheed187 Registered Member

    Joined:
    Jul 10, 2004
    Posts:
    14,929
    Location:
    The Netherlands
    But who cares about that, and why did he even bring this up? Portable apps are mostly meant to give you the ability to run apps on any machine and for keeping the system clean. I believe they only make changes to their own folder, so they won't interfere with apps that are already installed. And if you don't really trust a certain type of portable app, you can always run it inside the sandbox, so that's where Sandboxie comes into play.
     
  7. guest

    guest Guest

    They can pack it with unwanted stuff. It is why when using non-official portable version, you need to trust the maker.
     
  8. Mr.X

    Mr.X Registered Member

    Joined:
    Aug 10, 2013
    Posts:
    4,059
    Location:
    Mexico
    Yes correct. This apply to any software, portable or not portable.
    Yes correct. This apply to any software, portable or not portable.

    Faaaiiiith :D
     
  9. Mr.X

    Mr.X Registered Member

    Joined:
    Aug 10, 2013
    Posts:
    4,059
    Location:
    Mexico
    Exactly, I just wonder the same thing. Looks like an ad hominem... but who know right? :isay:
    Correct.
    If the portable is well done then yes. And if you configure SBIE's settings to do so then yes.
    Trusted or not, just do it whenever you can. My advice.
     
  10. Rasheed187

    Rasheed187 Registered Member

    Joined:
    Jul 10, 2004
    Posts:
    14,929
    Location:
    The Netherlands
    What do you mean with pack it, do you mean they can run other software in the background?

    Now that I think about it, portable apps should also make it easy to run multiple browsers like Vivaldi and Firefox with their own settings and bookmarks right? I will do some testing.
     
  11. guest

    guest Guest

    @Rasheed187

    Packed meaning an installer/app recompiled to include a malware.

    Not to confound with "packed malware" as obfuscation technique which is often done by encrypting the malware.
     
    Last edited by a moderator: Jan 7, 2019
  12. Quassar

    Quassar Registered Member

    Joined:
    Oct 19, 2011
    Posts:
    194
    Location:
    Poland
    In this situation only full virtualization can help and also still not give you 100% protection but for sure more cover system behind scene...than sandbox which partial use main system hardware to starts sandboxed apps.
     
  13. Rasheed187

    Rasheed187 Registered Member

    Joined:
    Jul 10, 2004
    Posts:
    14,929
    Location:
    The Netherlands
    OK so this will then run malware in the background, but they can't mess with portable app itself. BTW, I just saw that Vivaldi won't terminate when running sandboxed, so I guess it's time to upgrade SBIE.
     
  14. mood

    mood Updates Team

    Joined:
    Oct 27, 2012
    Posts:
    42,311
    Sandboxie v5.27.3 beta Released (January 15, 2019)
    Forum
     
  15. Osaban

    Osaban Registered Member

    Joined:
    Apr 11, 2005
    Posts:
    5,393
    Location:
    Milan and Seoul
    Thanks!
     
  16. plat1098

    plat1098 Registered Member

    Joined:
    Dec 19, 2018
    Posts:
    1,285
    Location:
    Brooklyn, NY
    Thank you, mood. Unsure whether the Chrome failing to install in Sandboxie is applicable only to the latest version? I'll stick with 5.27.2 for the time being, no rush.
     
  17. focus

    focus Registered Member

    Joined:
    Feb 5, 2007
    Posts:
    484
    Location:
    USA
    Thanks mood.
     
  18. mood

    mood Updates Team

    Joined:
    Oct 27, 2012
    Posts:
    42,311
  19. Mr.X

    Mr.X Registered Member

    Joined:
    Aug 10, 2013
    Posts:
    4,059
    Location:
    Mexico
    Trying to run Adobe Acrobat Reader DC portable (unofficial) on top of Sandboxie to no avail.

    W8.1 x64 | SBIE 5.27.3

    Portable:
    Code:
    https://s.put.re/vHiF1C6d.7z

    Any help will be appreciated.
     
  20. bjm_

    bjm_ Registered Member

    Joined:
    May 22, 2009
    Posts:
    4,104
    Location:
    .
    Um, did you try extract (outside sandboxie) and try to run executable in default sandbox.
    4345.png
    and try change to Open
    4346.png
    4353.png
     
    Last edited: Jan 20, 2019
  21. Mr.X

    Mr.X Registered Member

    Joined:
    Aug 10, 2013
    Posts:
    4,059
    Location:
    Mexico
    Yes I did. But it only shows up a blank window with the yellow border, that's it.
    Does not show up the info you posted in your pic.

    Outside SBIE, it runs fine.
     
  22. bjm_

    bjm_ Registered Member

    Joined:
    May 22, 2009
    Posts:
    4,104
    Location:
    .
    Edit: did you try extract (outside sandboxie)
     
    Last edited: Jan 20, 2019
  23. Mr.X

    Mr.X Registered Member

    Joined:
    Aug 10, 2013
    Posts:
    4,059
    Location:
    Mexico
    Yes I did. I extracted all files and run outside SBIE to be sure the portable works.
     
  24. bjm_

    bjm_ Registered Member

    Joined:
    May 22, 2009
    Posts:
    4,104
    Location:
    .
    Hmm.....so works 4U outside sandbox. IDK if it works beyond
    4349.png
    and I did get Firewall prompt.
    4350.png
     
    Last edited: Jan 20, 2019
  25. Mr.X

    Mr.X Registered Member

    Joined:
    Aug 10, 2013
    Posts:
    4,059
    Location:
    Mexico
    I see. So SBIE can actually open it on your end but not on mine. I'll investigate further.
     
Thread Status:
Not open for further replies.
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.