Windows Sandbox Attack Surface Analysis

Discussion in 'sandboxing & virtualization' started by Minimalist, Nov 20, 2015.

  1. Minimalist

    Minimalist Registered Member

    Joined:
    Jan 6, 2014
    Posts:
    5,057
    http://googleprojectzero.blogspot.nl/2015/11/windows-sandbox-attack-surface-analysis.html
     
  2. Rasheed187

    Rasheed187 Registered Member

    Joined:
    Jul 10, 2004
    Posts:
    8,026
    Location:
    The Netherlands
    A bit complex, but still interesting. The developers of advanced sandboxing must really think on another level, super smart guys and girls.
     
  3. deBoetie

    deBoetie Registered Member

    Joined:
    Aug 7, 2013
    Posts:
    1,149
    Location:
    UK
    Very useful, thank you. I know as a developer, adding decent sandbox controls to an application in Windows is needlessly hard, and MS keep on changing the models and facilities available. Really what's needed are a few templates that could go in a project to say whether internet/registry/file system whitelist/blacklist should be applied. Then more advanced scenarios could be done manually by the bigger shops.
     
  4. Windows_Security

    Windows_Security Registered Member

    Joined:
    Mar 2, 2013
    Posts:
    3,068
    Location:
    Netherlands
Loading...