How to safely use virtual box?

M

MalwareBlockerYT

Guest
#2
How do I safely test malware in virtual box? I heard something about using a nat connection, can't remember. Any tips?
Good question :)

1) You should use NAT or a custom network - don't use Bridged.
2) You should disable Shared Folders or have them as Read Only (I use them with Read Only ticked).
3) You should use 1 or 2 VPNs - 1 on the Host PC & then if you want a second on the VM as well (I use 2 - one on the Host & one on the VM - Windscribe & Betternet)
4) If you want to be extra cautious then you should use a 2nd router to the main home router.
5) You could also run VMWare or VirtualBox (the VM software) in a Sandbox - eg. Comodo Sandbox...

There you go ;)
 

McLovin

Level 72
AV-Tester
Verified
Joined
Apr 17, 2011
Messages
8,777
OS
Windows 10
Antivirus
Trend Micro
#3
Honestly with all the virtual machine stuff I do at Uni and at home. I just have the virtual machine setup with NAT, having my main Antivirus (Trend Micro) updated and turned on, on my host. Nothing more to it. I have never encountered anything jumping from the VM to the host in the whole time I've been using a virtual machine.
 
M

MalwareBlockerYT

Guest
#4
Honestly with all the virtual machine stuff I do at Uni and at home. I just have the virtual machine setup with NAT, having my main Antivirus (Trend Micro) updated and turned on, on my host. Nothing more to it. I have never encountered anything jumping from the VM to the host in the whole time I've been using a virtual machine.
You should use a VPN though since otherwise malware can find out your home IP address.
 
Likes: harlan4096

RejZoR

Level 9
Verified
Joined
Nov 26, 2016
Messages
436
OS
Windows 10
Antivirus
Avast
#7
VirtualBox NAT allows access to network resources using the host computer's IP address, so it is essential that you protect your IP by using a VPN at host or VM level.
This is important to avoid that
malware can process your real IP.
That's not as much of a problem as it is your ISP whining about it and ordering you to clean your PC even though you know the PC is fine, but they don't know that.
 
M

MalwareBlockerYT

Guest
#8
I've never had a problem with any malware getting onto my host.
It's not about it getting onto the host it's about criminals getting your IP address. But it is possible if you don't use a VPN that malware can transfer over the network - trust me it can happen. It is really quite stupid to not use a VPN.
 
Joined
Feb 3, 2017
Messages
103
OS
Windows 10
Antivirus
Kaspersky
#9
As these guys have said - VPN - Adapter in NAT mode - Limited/Standard User account - Software restriction policies on host (be careful with the software restriction policies though! - make sure that you don't prevent anything you need to run such as program files and system files such as command prompt and task manager.) - Happy testing!
 
Joined
Jun 17, 2017
Messages
103
#10
If you can, use a dedicated DSL line or something. That way you can have a air gapped sand box machine on it's own internet connection and you can afford to burn it to the ground and rebuild it often
 

Similar Threads

Similar Threads