Collaborate Disseminate
I recently learned about DOSBox-X. It’s basically a somewhat less awful version of the basically-abandoned DOSBox.
I currently have it installed inside a Windows 10 VM inside of my Windows 10 bare metal PC. It’s the only computer I have. I… Continue reading Is there a more convenient, yet safe, way to run DOSBox-X than I’m currently doing it?
Installing a network sandbox to safeguard against external threats has been accepted by many as the gold standard for more than a decade. Sandbox-based cybersecurity solutions are a protected and isolated environment on a network that simulates a compa… Continue reading Are your cyber defenses stuck in the sandbox?
I recently read this article by a security researcher on Linux security shortcomings. It covers things like sandboxing, root privileges, exploit mitigations, the kernel itself, etc. They seem pretty serious, but for years I’ve been told Li… Continue reading Is Linux actually insecure? [closed]
I was wondering if crowdstrike falcon EPP or Trend Micro Apex-central/vision one have the option to sandbox an app by default? As in set an executable path, or a hash that if run will be done so in a sandbox environment isolated from the r… Continue reading Run an app in sandbox by default? [closed]
Suppose we have a complete implementation of SFI on a CPU hardware that is vulnerable to meltdown attacks that also happens to run a Linux kernel that is also vulnerable to meltdown attacks. Can SFI alone prevent these meltdown attacks fro… Continue reading Can Software-based fault isolation (SFI) prevent meltdown?
I realise on the face of it this may seem like a silly question. However, AWS released AWS Nitro which we’ve been playing around with quite a lot. Unlike hardware-based enclaves (Intel SGX, etc) which offer hardware partitioning, AWS Nitro… Continue reading Sandboxing inside a docker container?
I published the following diary on isc.sans.edu: “C2 Activity: Sandboxes or Real Victims?“: In my last diary, I mentioned that I was able to access screenshots exfiltrated by the malware sample. During the first analysis, there were approximately 460 JPEG files available. I continued to keep an eye on the
The post [SANS ISC] C2 Activity: Sandboxes or Real Victims? appeared first on /dev/random.
Continue reading [SANS ISC] C2 Activity: Sandboxes or Real Victims?
If for example there is a game, that is specifically designed to try to get control of your game console or to be able to provide the user of the game control over their system and somehow got onto the console’s respective official store (… Continue reading Do modern video game consoles sandbox games? [closed]
There is a lot of malware that can detect whether it is running inside a VM or sandboxed environment and if such environment is detected it can conceal it self and not execute. So why not make everything a VM? Now all systems are safe!
I k… Continue reading If malware does not run in a VM why not make everything a VM?
Shouldn’t it just "emulate" the admin privileges like everything else? Why dose it actually require it? And is there any security problems with that?