Sandbox Edit

Selection of Sandbox snapshots:
(Click to enlarge)







GeSWall Freeware


SafeSpace Personal Edition



Like behavior blockers, Sandboxes have recently come into vogue. Even Google purchased GreenBorder for their sandbox and virtualization technology. Though policy based sandboxes are not a new idea, recent new offering have focused on using virtualization of files to allow more flexibility. Such Sandboxes are particularly useful for sandboxing browsers.

Popular Edit

  1. Blink Neighborhood Watch - align=center Replaced with Blink Personal -free for one year (after which antiVirus functions stop)
  2. Bufferzone Single application -
  3. CORE FORCE (betaware)- Star
  4. Vista DriveSentry - Star
  5. Vista GeSWall Freeware- Star
  6. Vista Haute Secure (betaware)- (Includes elements of HIPS with sandboxing and behavior analysis). New
  7. Vista SafeSpace Personal Edition (betaware) - New (.NET required)
  8. Vista Sandboxie (nagware) - StarRecommended
  9. Surfingguard (outdated) -
  10. Virtual Sandbox - Only version 1.0 is free.
  11. See also Lists of freeware behavior blockers
  12. See also Lists of freeware virtualization

Sandboxie is perhaps most popular and well known , followed by GesWall and Bufferzone. DriveSentry is a fairly new entry (and it differs quite a bit from the other entries in this section as it covers *only* file/directory restrictions), Virtual Sandbox is the older version of the commercial one and development for it has stopped.

Coreforce provides inbound and outbound stateful packet filtering for TCP/IP protocols using a Windows port of OpenBSD's PF firewall , granular file system and registry access control and programs' integrity validation.

Note that Coreforce, and GesWall provide only policy restrictions, while Sandboxie and most of the rest provide virtualization of file/folder systems by shunting file changes made by sandboxed application to a temp folder.

Restriction of privileges Edit

  1. Amust 1 Defender -
  2. Dropmyrights - Star
  3. Runsafe (liteware) -
  4. SuDown -
  5. StripMyRights Enhanced - http://www.freeweb . Note : The original StripMyRights can be found at here. This version adds a couple of tweaks including modifications to the context menu and toolbars to the browser. I was unable to find much about this "enhanced" version, so use with caution.

In theory everyone should be using accounts with administrative privileges only when necessary. But some users might find this overly restrictive working in none-administrative accounts on Windows XP. Tools in this category allow you to run only programs that are more likely to be compromised with lower user rights, which makes infection harder and/or will mitigate any damage occurs. Most commonly it is used to run internet facing applications like browsers.

This function is already built in for Windows Vista. So they should not need this.

Information Sources Edit

This article is part of the Lists of Freeware Security Software: Malware Control series.

Freeware Anti-Viruses | Freeware Anti-Spyware | Freeware Anti-Trojans | Freeware Anti-Keyloggers | Freeware Anti-Rootkits | Freeware Firewalls | Freeware Behavior blockers | Freeware Sandboxes | Freeware Virtualization | Freeware Security analysis tools | Freeware Hardening tools | Freeware Blocklists | Freeware security services (excluding virus scanners) | Freeware Anti-Phishing | List of portable tools | List of unclassified tools

Related : Lists of online scanners