Collaborate Disseminate
I’d want to ask, what’s the safest environment to run potentially unsafe software?
I’m aware that this question may be very tricky, because each of those may have its flaws, but generally speaking which of those 3 sounds like safest optio… Continue reading What’s the safest virtualization tool for running unsafe software – VirtualBox vs Windows Sandbox vs Hyper-V [closed]
VirusTotal would like to welcome BitDam to the multi-sandbox project! In their own words:BitDam Advanced Threat Protection (ATP) is a cloud-based engine that proactively detects threats, pre-delivery, preventing hardware and logical exploits, ransomwa… Continue reading VirusTotal MultiSandbox += BitDam ATP
In the case of social engineering attack vector is an email sent with a malicious attachment like XSL file, I am not really understanding where we will need Sandbox solution if we can just use CDR (content disarm and reconstr… Continue reading If we integrate CDR in our email solution, do we really need Sandbox as well?
I want to run an application on macOS, but preventing it from making any type of network access, or any type of internet access.
I have seen the following possibilities:
Use the built-in firewall. Unfortunately, this block… Continue reading Prevent an application from making any network access on macOS
What if I download a virus to my real folder but only execute it in Sandboxie, is it less secure that if I download it directly from SB?
Continue reading Running virus from real folder in Sandboxie
Windows Sandbox works on the principle of a disposable virtualized desktop environment where a user…
For more visit TheWindowsClub.com.
Continue reading How to enable Windows Sandbox in Windows 10 Home
TL;DR: VirusTotal APIv3 includes an endpoint to retrieve all the dynamic analysis reports for a given file. This article showcases programmatic retrieval of sandbox behaviour reports in order to produce indicators of compromise that you can use to pow… Continue reading Pipelining VT Intelligence searches and sandbox report lookups via APIv3 to automatically generate indicators of compromise
I am trying to analyze a malware in a virtual machine (linux), but it uses the cpuid output to verify if it is in a virtual machine/sandbox, and refuses to run malign code if inside a virtualized environment.
Is it possible … Continue reading Fake output of CPUID instruction
VirusTotal Jujubox Sandbox in action:This is a small datastudio set up to illustrate the kind of analytics that can be built with a massive dynamic analysis setup, generating IoCs. Note that there are several pages.One of the main themes of VirusTotal’… Continue reading Revamping in-house dynamic analysis with VirusTotal Jujubox Sandbox
VirusTotal multisandbox project welcomes VenusEye. The VenusEye sandbox is currently contributing reports on PE Executables, documents and javascript. In their own words:VenusEye Sandbox, as a core component product of VenusEye Threat Intelligence Cent… Continue reading VirusTotal multisandbox += VenusEye