How to set up SD to allow Windows Updates in Shadow Mode

Discussion in 'Shadow Defender' started by SearchLight, Nov 27, 2017.

  1. SearchLight

    SearchLight Level 3

    Jul 3, 2017
    134
    221
    New Jersey
    Windows 10
    Malwarebytes
    Would like to try SD but would like to know how to configure it to allow Windows Updates. Thanks.
     
  2. Sephiroth Source

    Jul 13, 2015
    46
    180
    Are you planning to leave Shadow Mode on constantly? I only use it when I go to test new programs or samples of malware and then disable it. I'm not sure if you can delete the Windows Update folders so that you do not roll back the updates after SD is disabled.
     
  3. SearchLight

    SearchLight Level 3

    Jul 3, 2017
    134
    221
    New Jersey
    Windows 10
    Malwarebytes
    I see your point as a tester but some have also suggested to use SD full time to supplement one's AV/AM just in case something slips through so you can reverse it.
     
  4. HarborFront

    HarborFront Level 33
    Content Creator

    Oct 9, 2016
    2,295
    5,745
    Far East
    #4 HarborFront, Nov 27, 2017
    Last edited: Nov 27, 2017
    SD is not a 100% foolproof thing just like any other virtualzation/sandboxing software. There are sandbox-evading malware

    You can

    1) Exit SD on shut down
    2) Start SD on boot up

    I use 1) on my 2 tablets so that on each start up I perform all updates, if needed, after which I then enter into Shadow Mode

    Making exclusions is like punching holes through SD armor. Also, it's not immune to keyloggers from exfitrating data from your system. And you not only need to exclude files/folders but registry entries as well, if required, the latter is difficult to carry out.
     
    Opcode, frogboy and harlan4096 like this.
  5. Mr.X

    Mr.X Level 6

    Aug 2, 2014
    289
    877
    PC Tech
    Mexico
    No no no no no, not configure anything in SD as others have stated above. Exit shadow mode, update then set SD back to your like.
     
    Opcode and SearchLight like this.
  6. ichito

    ichito Level 2

    Dec 12, 2013
    67
    186
    Poland (Cracow)
    No sense for me to exclude location from system disk - each update for system or software can be done on real system and than you can enter SM. That's my experiences after ca 7 years of using SD.
    Of course...SD doesn't protect against data-leaking at all...it's not designet to do so.
     
  7. Opcode

    Opcode Level 18
    Content Creator

    Aug 17, 2017
    890
    6,285
    Caille
    Windows 10
    Watch out regarding data theft... As others have stated above, it doesn't protect your data. Malware may dump passwords auto-saved by web browsers (and decrypt them using the browsers own APIs), steal personal documents (e.g. photos), steal chat-logs (e.g. IM software), collect your name/e-mail and similar, etc.

    If you're using VPN to help protect your IP address from getting into the wrong hands, well if the VPN is applied on the host where the malware is being tested, it also opens up a big opportunity for an easier kill-switch.

    Would be wiser and safer to use a secondary system for malware testing (which may have SD) or a Virtual Machine in my opinion
     
  8. Mr.X

    Mr.X Level 6

    Aug 2, 2014
    289
    877
    PC Tech
    Mexico
    Guys this thread is about a request: Windows Updates + Shadow Defender
    No off-topics please.
     
  9. Sephiroth Source

    Jul 13, 2015
    46
    180
    Just said how do I use SD. As for my security: CF configurations CS, ZAM (Pandora Enabled), Windscribe VPN and SD. I think I'm fine. And really the best proposal is to update Windows and then activate Shadow Mode so I said I did not know if it was possible to delete Windows Update (folders, registry keys, etc) in SD.
     
  10. Umbra

    Umbra From Emsisoft
    Developer

    May 16, 2011
    17,162
    29,617
    Community manager
    Vietnam & France
    Windows 10
    Emsisoft
    You just don't, by doing this you open holes, which defeats all SD purpose.
     
    Opcode likes this.
Loading...