Software recommendation: refuse to invade – virtual sandbox to protect Windows 10

The current cyber security situation is not optimistic, online browsing when hit by web Trojans, trial software brings a variety of bundled software, etc., always make people defensive. Now you can use the free and open source sandbox software – Sandboxie to better protect Windows 10 from external aggression.

For Windows 10 versions 1903 and above, the system has a similar sandbox protection component built in, but the use of this component requires the CPU virtualization support to be enabled in the BIOS first, and it achieves protection by creating a snapshot mode, which is more system resource intensive. Sandboxie, on the other hand, supports Windows 7 to Windows 10 systems and takes up fewer resources, making it more convenient for the average user.

Sandboxie achieves system isolation protection by virtualizing an environment under the current system and then running the specified program under this virtual environment. The software has built-in common protection modes and it is very easy to use. For example, to start a program in Sandboxie mode, click on “Start → Sandboxie Start Menu”, and the Sandboxie Start Menu will appear (Figure 1).


Figure 1 Sandboxie start menu

As long as the application is started from the Sandboxie start menu, it can be in the sandbox protection mode, for example, in Excel, “Enable Macro” is a relatively dangerous operation, you can use the sandbox mode to start Excel, and then enable the macro in it to run the document containing the macro, so that you can both run the macro In this case, you can use the sandbox mode to start Excel, and then enable the macro in which to run the document containing the macro, so that you can run the macro, but also allow the macro to run only in the protected mode, in the protected mode to run the program, in the program window will appear yellow box prompt (Figure 2).


Figure 2 Excel running in protected mode

Because Excel is running in the virtual sandbox at this time, the file is saved in the sandbox mode by default. If you need to save the file to the normal system environment, you can click “Sandbox→DefaultBox→Browse Saved Content” in Sandboxie, and then choose whether you need to save it according to your needs (Figure 3).


Figure 3 View protection documents

Sometimes we may need to run multiple applications at the same time, so we can create multiple sandboxes through Sandboxie and run the specified applications in different sandboxes.

Launch “Sandboxie Control”, click “Sandbox → Create New Sandbox”, and create sandboxes according to your actual needs. For example, you can start your browser in the “Browser Sandbox” (which can protect your Internet access), start your email client in the “Mail Sandbox” (which can effectively isolate viruses brought by emails), and test dangerous software in the “Software Sandbox”. Sandbox” to test dangerous software (close the software window to achieve isolation) and so on (Figure 4).


Figure 4 Creating a Sandbox

However, we need to remind you that Sandboxie can be very good at protecting our system security, but it is not foolproof. For example, if you use Sandboxie mode to launch IE to browse phishing websites, you may still be phished if you enter your real account information! Because Sandboxie mainly clears all the operation results after closing the program, and it has no control over such artificial process operations as information input, we still need to be vigilant ourselves.


Leave a Comment