Running malware within Sandboxie

If it doesn't fit elsewhere, it goes here
Post Reply
Audio

Running malware within Sandboxie

Post by Audio » Tue Mar 13, 2007 8:36 pm

I'd like to capture malware using a low interaction honeypot such as nepenthes and then run them within Sandboxie to do behavior analysis. Just so I'm 100% certain, I could do this and there is nearly a 100% chance that I would be safe, right? All writes happen in memory or a specific area on the hard drive?
Top
tzuk
Sandboxie Founder
Sandboxie Founder
Posts: 16076
Joined: Tue Jun 22, 2004 12:57 pm

Post by tzuk » Wed Mar 14, 2007 8:11 am

They say only two things in life are guaranteed. :) But yes, Sandboxie should confine all writes to the sandbox folder -- that is the whole point, after all.
tzuk
Top
Guest

Post by Guest » Wed Mar 14, 2007 9:52 am

Great, I'll give it a try then, thanks!
Top
Post Reply

Return to “Anything Else”

Who is online

Users browsing this forum: No registered users and 1 guest