Shadow Defender

Discussion in 'sandboxing & virtualization' started by Retadpuss, Jul 23, 2009.

Thread Status:
Not open for further replies.
  1. Retadpuss

    Retadpuss Suspended Member

    Joined:
    Apr 4, 2009
    Posts:
    226
    I have used Returnil for some time now and on the whole, been happy with it. the only feature it lacked for me was the ability to specify particular folders which would be saved along with their contents to the real system (you can save a folder, but not contents)

    I discovered Shadow Defender today and It has the features that were missing from Returnil. I have configured it so my documents, outlook pst and a few other folders (including document backup folder on external drive) are saved to the real system, but my system image and the rest of the system are protected.

    This has been the missing piece of my ideal system - so now, along with Prevx , Sandboxie and Zemana, I feel I have got the perfect setup.

    I would welcome members thoughts and tips on shadow defender.

    Puss
     
  2. trjam

    trjam Registered Member

    Joined:
    Aug 18, 2006
    Posts:
    9,057
    Location:
    North Carolina
    Puss, SD is one of the best softwares here. Peter and Longview and a few others can atest to this. It is made in China and the maker, Tony, is a member here. His English is not great but he will answer all support questions and is good about fixing any issues there are. The software works great, and 64 bit is slated for later this year. On a scale of 1-10, it is a 10. Trust me on this one.
     
  3. Sully

    Sully Registered Member

    Joined:
    Dec 23, 2005
    Posts:
    3,719
    I have recently used it myself. Initially I was looking for something that I could stay 'locked' in, but that also I could say 'save these changes because I am happy with them'.

    SD and Rnil paid can do that. But as I found, I would rather now just stay shadowed, and as you say, make exclusions for areas that I will write/modify a lot for my use. This way, I don't have to commit, it is always live. Yet, my OS directories are still shadowed, unless I make a specific exlusion, like for sandboxie.ini file.

    I pay the price of turning off SD on next boot. Then I must install new programs to keep or change settings to keep. Then I can turn SD back on. Playing with many of these programs now, I like the way SD lets me make exclusions, and I like the one-off price rather than subscription. But overall, as you, I like being able to exclude. I have found it to be a nice solution so far, but then I am imaging a little more now too, so I am not so worried about the state of things until I have messed with all this for a little while.

    Sul.
     
  4. Osaban

    Osaban Registered Member

    Joined:
    Apr 11, 2005
    Posts:
    4,220
    I have always been a believer of light virtualization and ShadowUser Pro is still working very well on my XP laptop (almost 5 years). I could not imagine at first that Shadow Defender could replace and even improve ShadowUser's performance in just about everything.

    I'm so pleased with it that I'm staying with my Vista x32 so that I can use it. I'm also eagerly waiting for the x64 version.
     
  5. Montecristo

    Montecristo Registered Member

    Joined:
    Dec 23, 2008
    Posts:
    72
    ShadowDefender is a cornerstone of my security setup. It has never failed me or caused system errors once. It is an excellent software.
     
  6. hany3

    hany3 Registered Member

    Joined:
    Dec 2, 2007
    Posts:
    207
    Golden piece of software
     
  7. Saraceno

    Saraceno Registered Member

    Joined:
    Mar 24, 2008
    Posts:
    2,404
    Retad, I posted a previous thread of tips when using the program.

    Namely, setting up a text file on my desktop, that I right-click and 'commit' before reboot. This has my bookmarks, and other notes which I then add out of shadow mode.

    Also, if you use a portable browser, such as firefox portable: http://portableapps.com/news/2009-07-17_-_firefox_portable_3.5.1 or Iron portable, or any other portable programs, you can just right-click and commit the whole folder, to save your preferences, or just commit the bookmarks file.

    Also has some other features, such as continuing shadow mood after reboot, and adding a password to commit. Meaning, you could enable continue shadow mode after reboot, and password to commit, which would then allow you to lend someone you're system/laptop, and they wouldn't be able to add any files to your 'real environment', even after a reboot.

    Just a note to not commit very large files without a slight delay as SD commits these files. It's best to commit smaller files, say up to 100MB (I have tried with larger file sizes, but this took awhile).
     
  8. Dark Star 72

    Dark Star 72 Registered Member

    Joined:
    May 27, 2007
    Posts:
    703
    I have been using Shadow Defender along with Sandboxie for ages now and cannot visualise ever not using either of them, especially SD. Why I bother with adding any other security apps between them I really don't know - lack of confidence I suppose. I can now let family members use my computer and know that with a reboot everything is back to normal and also no pop-ups for happy clickers to answer (wrongly :D ) All it needs now is for Tony to incorporate an anti-executable, but to keep it simple and you have the one ultimate security app you will ever need.
    The only thing I haven't figured out is how to keep bookmarks that I add to my Smart Bookmarks Bar in FireFox. I have SB set to allow them but not in SD.
     
  9. bonedriven

    bonedriven Registered Member

    Joined:
    Jan 14, 2007
    Posts:
    565
    I heard that the biggest problem of SD is that it doesn't update frequently enough so it is more easily to get penetrated by malware compared to Returnil.
     
  10. trjam

    trjam Registered Member

    Joined:
    Aug 18, 2006
    Posts:
    9,057
    Location:
    North Carolina
    name me something that doesnt get penetrated at some point.
     
  11. hany3

    hany3 Registered Member

    Joined:
    Dec 2, 2007
    Posts:
    207
    i don't agree with u
    shadow defender protects against all the currently "known" low level disk access malwares

    please refere to the link below also u can review returnil results

    u will find shadow defender and returnil results in page 3 of the test results page

    http://malwaretestlab.com/more.aspx?entry=24

    https://www.wilderssecurity.com/showthread.php?t=243496&highlight=killdisk+returnil+shadow+defender

    http://img23.imageshack.us/img23/5299/88003254.jpg
     
    Last edited: Jul 24, 2009
  12. nanana1

    nanana1 Frequent Poster

    Joined:
    Jun 22, 2007
    Posts:
    947
    Given what the TS wanted to achieve, Shadow Defender is his best option.:cool:

    Tested and reliable, it will be updated as the malware prevalence situation warrants it. This is a on-going battle out there with the nasties which is what Wilders Security forum is all about.:argh:
     
  13. bonedriven

    bonedriven Registered Member

    Joined:
    Jan 14, 2007
    Posts:
    565
    Read my post carefully plz.
     
  14. developers

    developers Registered Member

    Joined:
    Apr 1, 2009
    Posts:
    62
  15. bonedriven

    bonedriven Registered Member

    Joined:
    Jan 14, 2007
    Posts:
    565
    I don't do any test myself so I said "I heard". In a chinese security forum I read posts complaining SD got penetrated easily and how Returnil was better against malwares. They even uploaded samples of malware which could defeat SD. I just want to inform you guys who put so much trust in SD.

    Doctor,it's an interesting test. :thumb:
     
  16. Peter2150

    Peter2150 Global Moderator

    Joined:
    Sep 20, 2003
    Posts:
    17,042
    I've sent the sample and test of the piece of malware referenced in the other thread to Tony. I expect that hole will be plugged.
     
  17. Osaban

    Osaban Registered Member

    Joined:
    Apr 11, 2005
    Posts:
    4,220
    These applications are not meant to update frequently (otherwise you may as well forget them and get an antivirus only). On the other hand SD (for that matter any of these applications) + an AV or an anti executable (any HIPS) will make your system almost impenetrable.

    One thing is to install and execute malware on purpose to see what happens, but in the real world if you have SD you are possibly a person who will have something else along with it, either an AV or a HIPS type of program, malware wouldn't have a chance to execute.
     
  18. Sully

    Sully Registered Member

    Joined:
    Dec 23, 2005
    Posts:
    3,719
    Quite honestly, if a threat can bypass SD, and I ever am hit with it, one of two things will happen.

    A) I ignore this and put my image back on or reinstall, waiting another 7 years for such a thing to happen

    B) Piss on M$, let the masses have that OS and all the criminals/arsholes that go with it, and move on to *nix. At least I don't have to pay to be screwed that way.

    I will not worry about anything compromising SD or SBIE until it happens, and I don't think it will honestly.

    Sul.
     
  19. Acadia

    Acadia Registered Member

    Joined:
    Sep 8, 2002
    Posts:
    4,048
    Location:
    SouthCentral PA
    And if you use them both together at the same time it never will. :thumb: :thumb: :thumb:

    Acadia
     
  20. Sully

    Sully Registered Member

    Joined:
    Dec 23, 2005
    Posts:
    3,719
    Indeed, it is what I am doing.

    Sul.
     
  21. hany3

    hany3 Registered Member

    Joined:
    Dec 2, 2007
    Posts:
    207
    u welcome , bonedriven ;)



    thanks for the reference , i will check the thread
    in fact in the malware world every thing is relative , i must admit that i wrote a wrong expression "all currently known malware " and i should add "known by me "

    coz every minute and every second there's new emerging malware

    also
    u may do a complete scan for ur computer by a famous antivirus then it tells u that ur pc is clean

    and after a week after updating the antivirus database , and without adding anything to ur pc , the same antivirus could tell u that ur pc contains 1000 malware

    NO DOCTOR IN THE WORLD CAN SAY THAT A PERSON IS ABSOLUTELY COMPLETELY FREE OF DISEASES AT A GIVED TIME "IT'S RELATIVE"

    AND THE SAME

    NO SECURITY EXPERT IN THE WORLD CAN APPLY THE SAME ABSOLUTE PRICIPAL TO A CERTAIN PC AT CERTAIN TIME

    may be the pc contain a decent file that is non-malacious at the current time but this file will be considered malacious after some years under certain environment

    every thing in the world is relative

    sorry again
     
  22. smith2006

    smith2006 Registered Member

    Joined:
    Mar 28, 2006
    Posts:
    759
    It seems like the beta testing has started.

    Read in a Chinese forum that version 1.1.0.280 is available.
     
  23. Saraceno

    Saraceno Registered Member

    Joined:
    Mar 24, 2008
    Posts:
    2,404
    Does anyone know if the beta covers this new threat?
     
  24. developers

    developers Registered Member

    Joined:
    Apr 1, 2009
    Posts:
    62
    Version 1.1.0.280 is not vulnerable to safesys
     
  25. hany3

    hany3 Registered Member

    Joined:
    Dec 2, 2007
    Posts:
    207
    shadow defender 1.1.0.280 beta

    <snip>

    Best Regards
     
    Last edited by a moderator: Jul 29, 2009
Loading...
Thread Status:
Not open for further replies.