Page 1 of 1
Sandbox function
Posted: Sun Apr 02, 2017 6:10 am
by yabbadoo
Would somebody please explain the basic difference between Sandboxie and other programs with sandboxes like browsers and AV's.
I have looked on the web but became totally confused. I am sure that somebody here can explain it simply without going into complex technical details.
Thank you.
Re: Sandbox function
Posted: Mon Apr 03, 2017 12:35 pm
by Barb@Invincea
Re: Sandbox function
Posted: Tue Apr 04, 2017 9:49 pm
by Curt@invincea
Browser sandboxes, like Chrome and Firefox, can only sandbox what is running in the browser. If you download malware and run it, it is not sandboxed. Browser sandboxes also have no capability of hiding/blocking files on your computer from exfiltration. Browser sandboxes also rely on user-mode hooking. If a bad plugin slips through the Chrome/Firefox approval process, these hooks can easily be bypassed. Sandboxie has a kernel mode driver that enforces security.
Re: Sandbox function
Posted: Tue Apr 04, 2017 10:37 pm
by bo.elam
yabbadoo, regarding AV sandboxes, the ones I know about are designed to sandbox automatically processes or programs that run in the computer that are unknown to the AV program. I think in some of this sandboxes you can choose to run a browser or another program in their sandbox manually but pretty much what they do is automatically sandbox unknown processes. The restrictions and Sandbox settings as you know them in Sandboxie are non existent in AV sandboxes.
Bo