The converation about potential keyloggers being sandboxed and passing on your information while sandboxed got me thinking.
I feel that Sandboxie is an indispenible part of my security suite. But what type of security product is best suited to compliment the protection sandboxie provides?
an anti-keystroke logging application like Snoop Free (a free product)?
an anti trojan like Boclean (which is now free)
a good antivirus like Kaspersky?
a good firewall like Comodo ( also free)?
A top notch general antispyware application like Spysweeper?
A good HIPS application like Pro Security or SSM?
I want to protect my PC, but I don't want to run a ton of security applications that slow down the computer or make it less convenient to use. So I am curious what other Sandboxie users think. Where does Sanboxie leave you potentially vulnerable and what type of program do you think best compliments the protection that sandboxie offers?
What is the best type od software to compliment sandboxie?
-
- Posts: 0
- Joined: Wed Dec 31, 1969 7:00 pm
Re: Software complementing Sandboxie
Hi,
1. A full-featured firewall product like ZA Security Suite that can block and stealth all your ports facing the internet. It puts only 2 processes in Task Manager. ALL the capabilities you mention in one product.
2. Malware is changing rapidly to non-signature mobile code that uses regular Windows services. The most vulnerable software on your computer is Microsoft Internet Explorer with its incredibly opaque cache. You cannot scroll through an IE cache without the program closing and hiding cache content to view. You cannot really delete its contents because of its hidden index. I urge all, not to uninstall it, because that will hose up other parts of Windows, but to completely lock it down, park it, put a Club on the steering wheel. Set every single configuration to max security. Never let it open. My browser is Opera because it has the most transparent simple cache, is very fast & easy. After using it a few weeks, going back to IE would feel like using an 18-wheeler for commuting!
3. Next get a browser proxy. That will vastly expand and differentiate the filtering capability of the firewall. I use these, free for single users. http://www.pyrenean.com/. Tech support is incredible for a free product. Many proxy experts are also devoted to this one, http://homepage.usask.ca/~ijm451/prox/ called the Proxomitron. I've used and been amazed by it, but its not easy. The developer died a few years ago, so there's no support, its not evolving, and the internet is.
4. After that you might think of a personal port sniffer, IP resolver, and packet sniffer as tools to become familiar with, because until you really understand how many computers are probing for open ports, or actually inside your computer, and why, its going to make you crazy! I started with these. Free for single users. http://www.nirsoft.net/. Get both items, Current Ports and IPNetInfo. They work together.
Sooner or later you may want a serious packet sniffer. http://www.wireshark.org. This free open source, fully professional quality, possible the best packet sniffer/analyzer in the world.
With this suite and Sandboxie, you can consider yourself covered !-)
Best regards
bayj
1. A full-featured firewall product like ZA Security Suite that can block and stealth all your ports facing the internet. It puts only 2 processes in Task Manager. ALL the capabilities you mention in one product.
2. Malware is changing rapidly to non-signature mobile code that uses regular Windows services. The most vulnerable software on your computer is Microsoft Internet Explorer with its incredibly opaque cache. You cannot scroll through an IE cache without the program closing and hiding cache content to view. You cannot really delete its contents because of its hidden index. I urge all, not to uninstall it, because that will hose up other parts of Windows, but to completely lock it down, park it, put a Club on the steering wheel. Set every single configuration to max security. Never let it open. My browser is Opera because it has the most transparent simple cache, is very fast & easy. After using it a few weeks, going back to IE would feel like using an 18-wheeler for commuting!
3. Next get a browser proxy. That will vastly expand and differentiate the filtering capability of the firewall. I use these, free for single users. http://www.pyrenean.com/. Tech support is incredible for a free product. Many proxy experts are also devoted to this one, http://homepage.usask.ca/~ijm451/prox/ called the Proxomitron. I've used and been amazed by it, but its not easy. The developer died a few years ago, so there's no support, its not evolving, and the internet is.
4. After that you might think of a personal port sniffer, IP resolver, and packet sniffer as tools to become familiar with, because until you really understand how many computers are probing for open ports, or actually inside your computer, and why, its going to make you crazy! I started with these. Free for single users. http://www.nirsoft.net/. Get both items, Current Ports and IPNetInfo. They work together.
Sooner or later you may want a serious packet sniffer. http://www.wireshark.org. This free open source, fully professional quality, possible the best packet sniffer/analyzer in the world.
With this suite and Sandboxie, you can consider yourself covered !-)
Best regards
bayj
Hi:
http://www.matousec.com/projects/window ... esults.php
For spyware, adaware... maybe enough whith Firefox with as many security and privacy extensions as you like: NoScript, Nixory, SafeCache... remember that you're under the SandboxIE Typical Spybot SD, Spywareblaster... as well.
I agree at Snoopfree software. I would consider Cyberhawk or similar process protection.
Nirsoft, and even Wireshark software are for average users, I vote for more comfortable (easier) soft... there's no need to monitor every bit passing trough your ports, unless you host ultra-sensitive information. I know this last assert can be easily argued.
Maybe you would like to take a look at:1. A full-featured firewall product like ZA Security Suite that can block ...
http://www.matousec.com/projects/window ... esults.php
For spyware, adaware... maybe enough whith Firefox with as many security and privacy extensions as you like: NoScript, Nixory, SafeCache... remember that you're under the SandboxIE Typical Spybot SD, Spywareblaster... as well.
I agree at Snoopfree software. I would consider Cyberhawk or similar process protection.
Nirsoft, and even Wireshark software are for average users, I vote for more comfortable (easier) soft... there's no need to monitor every bit passing trough your ports, unless you host ultra-sensitive information. I know this last assert can be easily argued.
Webmasturb
It's all personal taste..
The reality is most malware gets launched by a web browser, multimedia file or application installer. Security suites just slow down and hinder your Internet access. If malware got past your router, Windows firewall and your common sense you just need to break down and fresh install/re-image your C drive.
That being said passive anti-spyware such as Ad-Aware, Spywareblaster and Spybot Search and Destroy are always good calls. Mozilla Firefox with the NoScrpt extension is wonderful.
AVG 7.5 Anti-Virus drags down performance less than Norton or McAfee. The commercial version is much closer to the personal edition now and has a much cleaner UI.
The bit of common sense I don't see is people actually reviewing software before installing it. Just a simple Google search will do. If you're really interested after that it's time to use Sandboxie and inspect the sandbox contents afterwards.
That being said passive anti-spyware such as Ad-Aware, Spywareblaster and Spybot Search and Destroy are always good calls. Mozilla Firefox with the NoScrpt extension is wonderful.
AVG 7.5 Anti-Virus drags down performance less than Norton or McAfee. The commercial version is much closer to the personal edition now and has a much cleaner UI.
The bit of common sense I don't see is people actually reviewing software before installing it. Just a simple Google search will do. If you're really interested after that it's time to use Sandboxie and inspect the sandbox contents afterwards.
Who is online
Users browsing this forum: No registered users and 1 guest