Skip to content
/ ManagedSandbox Public

A managed sandbox implementation that lets developers choose between various levels of security.

License

MIT license
8 stars 1 fork Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

ificator/ManagedSandbox

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

10 Commits
src
src
 
 
test
test
 
 
.gitignore
.gitignore
 
 
LICENSE
LICENSE
 
 
ManagedSandbox.sln
ManagedSandbox.sln
 
 
README.md
README.md
 
 

Repository files navigation

ManagedSandbox

A managed sandbox implementation that lets developers choose between various levels of security.

NOTE: This code is intended to lay the foundation for creating a secure sandbox, but by default is not fully locked down.

The following resources were used to write this code:

Resource Usage
MalwareTech Launching a process in an AppContainer
pinvoke.net Various interop stubs
Practical Sandboxing 1 2 3 Various sandboxing concepts

Usage

An application is launched in a sandbox using the SandboxedProcess class, and specifying the various IProtection implementations applicable for the sandboxing scenario.

var sandboxProcess = SandboxedProcess.Start(
    @"c:\foo.exe",
    new JobObjectProtection(),
    new DesktopProtection(),
    new RestrictedTokenProtection(),
    new AppContainerProtection());

Protections

AppContainer

Desktop

JobObject

Restricted Token

Troubleshooting

About

A managed sandbox implementation that lets developers choose between various levels of security.

Resources

Readme

License

MIT license
Activity

Stars

8 stars

Watchers

1 watching

Forks

1 fork
Report repository

Releases

No releases published

Packages

No packages published

Languages