Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Virtual Box and/or Avast Sandbox usage questions


  • Please log in to reply
No replies to this topic

#1 Tiger-Heli

Tiger-Heli

  • Members
  • 171 posts
  • OFFLINE
  •  
  • Local time:10:21 AM

Posted 02 October 2015 - 10:35 AM

Virtual Box Info

https://www.virtualbox.org/manual/ch01.html

 

Avast Sandbox info

https://blog.avast.com/2012/11/16/what-is-the-avast-autosandbox-and-how-does-it-work/

http://www.combofix.org/how-to-enable-the-autosandbox-in-avast-free-antivirus.php

 

I have some questions on how Virtual Box or Sandbox options can be used for OS Security.

 

I have a fair understanding of how Virtual Box works - essentially, you are running the entire OS in the app itself.  So if I download a freeware app that I am not certain about, I would test it out in Virtual Box and if Virtual Box keeps running, the app is most likely safe and I can install it in the main OS.  (I don't know how it protects against apps that install the virus/payload after 10 reboots or after a certain calendar date).

 

Question - is there an easy way and would it be a good idea to clone my existing C:\ Drive and load it into the Virtual Box, rather than just loading WinXP to the box from a CD?

 

What I am less sure of is how applications like Avast Sandbox or Sandboxie work.  I understand the concept is that I right-click on the application and select "Run in Sandbox" and supposedly the OS is then protected.  So if I wanted to do this for the scenario above, would I run the web browser in the sandbox and then download the file and then run the downloaded file in the sandbox later, and if nothing bad happens, presumably the file is safe?

 

It's the presumably part that bothers me.

 

Which one works better or is safer to use?

 

Thanks in advance!!!



BC AdBot (Login to Remove)

 





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users