Video Shade AntiMalware- A Review

Video Uploaded by
cruelsister

cruelsister

Level 36
Content Creator
Verified
Joined
Apr 13, 2013
Messages
2,577
#1
This one had to be a great deal longer than others I have done, and even so only highlights of what can be expected are presented.

Bottom line is that for those that just want something to sandbox a browser Shade is worthy of consideration. For more generalized protection there are much more robust solutions.

 

Umbra

Level 85
Content Creator
Verified
Joined
May 16, 2011
Messages
18,422
OS
Windows 10
Antivirus
Default-Deny
#2
Just for infos, sandboxes are not supposed to block datas leaks, but just isolate things from modifying the system .
Sandboxie can block leaks because you have an option to restrict files to connect to internet.

Shade is indeed quite simple but with time they would had more options to stand against sandboxie and other rivals.

Anyway a standalone free sandbox is already a good thing.

I saw Shade can open multiple sandboxes which is better than sandboxie free version.
 

Ilya

New Member
Joined
Oct 7, 2015
Messages
12
#4
This one had to be a great deal longer than others I have done, and even so only highlights of what can be expected are presented.

Bottom line is that for those that just want something to sandbox a browser Shade is worthy of consideration. For more generalized protection there are much more robust solutions.

Than you for this video, @cruelsister!
Sandbox escape possibility through API exploitation bug fixed!
Please, find the update button in the tray, or reload your PC.
Thank you!
 
Last edited:

Umbra

Level 85
Content Creator
Verified
Joined
May 16, 2011
Messages
18,422
OS
Windows 10
Antivirus
Default-Deny
#5
Fast fix , very good.

Important options, in my opinion, that a anti-malware oriented sandbox should have (without copying Sandboxie too much :D )

- ability to restrict files to access internet. (in case of Keyloggers, malware with C&C, etc...)

- ability to automatically sandbox execution of any files/apps, from selected folders. (This will ensure that downloaded files stay secured until verification)

In fact some granularity is welcomed for advanced users, could be an "expert mode" that open advanced settings and options.
 

Moose

Level 22
Joined
Jun 14, 2011
Messages
2,274
#6
Look @ my questions on Wilder Security. I am looking forward to your answers on Shade AntiMalware!


Making to today a great day! And tomorrow an even better day!

Moose's World
 
Likes: LAGUN

Moose

Level 22
Joined
Jun 14, 2011
Messages
2,274
#8
@ Umbra! Okay! I will then! Post # 7.

I wanted to get answers from one of their support/members here. First hand!
Did not think it was that big of deal! I thought malwaretips.com was to get answers
and help to our questions. Um.....o_O
 
Last edited:

Cats-4_Owners-2

Level 37
Verified
Joined
Dec 4, 2013
Messages
2,673
OS
Windows 10
Antivirus
Kaspersky
#10
Thank you for another enjoyably meaningful review @cruelsister, meaningful (as Umbra pointed out) particularly because of the developers' quick response & fix, & even if this is a bit off topic I'd enjoyed the fact my wife commented on how she'd liked the accompanying music selection(-s) too. I didn't think she liked :eek:jazz!:D

Edit: It seems Cybergenic are not the only ones working weekends!!;) :):)
 
Last edited:

cruelsister

Level 36
Content Creator
Verified
Joined
Apr 13, 2013
Messages
2,577
#11
Hi Moose!

Although not an expert on Shade:

1). I don't see how any AV would conflict. Also as the Shade directory is without any special attributes an AV will also be able to detect and malware spawned there.
2). Shade is browser agnostic, so any should be covered (I used Seamonkey with isn't exactly common).
3). They updated Shade pretty fast for this occasion.
4). No idea about shadow Defender.

Hope this helps,

M
 

cruelsister

Level 36
Content Creator
Verified
Joined
Apr 13, 2013
Messages
2,577
#14
That is an excellent question- It would really depend on two things:

1). How effective is Shade in isolating the browser, and
2). How effective is MBAE in stopping exploits/vulnerabilities?

Let me give that some thought...
 
Joined
May 11, 2014
Messages
1,622
OS
Windows 10
Antivirus
Sophos
#15
Umbra and cruelsister how do you "restrict files to access internet" with Sandboxie? Quote taken from Umbra.
 
Likes: Overkill

Umbra

Level 85
Content Creator
Verified
Joined
May 16, 2011
Messages
18,422
OS
Windows 10
Antivirus
Default-Deny
#16
Umbra and cruelsister how do you "restrict files to access internet" with Sandboxie? Quote taken from Umbra.
Under restriction settings , just add the process
 
H

hjlbx

Guest
#17
Umbra and cruelsister how do you "restrict files to access internet" with Sandboxie? Quote taken from Umbra.
In the Sandboxie GUI there is option to limit access for applications\processes running in the sandbox.

You can create sandbox in which only browser can run along with any required system files... like dllhost.exe, rundll32.exe, etc.

Just create the sandbox, set only browser to run in it, launch browser. Sandboxie will fire alert indicating could not be launched because the required system files have not been allowed. In that alert click the ones indicated as "needed" and Sandboxie will auto-add them to the sandbox. That's it. No mental, IT hard work...
 

cruelsister

Level 36
Content Creator
Verified
Joined
Apr 13, 2013
Messages
2,577
#18
Nicely put. But there is indeed a difference between SB and Shade at the default level, with Shade being a trifle more restrictive.

Tony- As Umbra stated, just highlight the Default Box, and
1). from the drop down menu choose Sandbox Settings.
2). from the box that appears click (as Umbra pointed out) Restrictions, the
3). choose Internet Access

From there you can do what you will.

M
 

Latest Posts