Get the Latest
Subscribe to our RSS feed or enter your email address below to get the feed delivered to you by email:
New! Follow Gizmo on Twitter
Security Wizard
Hot! Get our free security suggestions customized to your needs. Get started
Navigation
User login
| New: | Help keep this site independent with few ads by buying a Gizmo Cap or T-shirt or by Donating |
| Hot: | Get free personalized security suggestions from Gizmo's Security Wizard |
| Help: | Know your freeware? Then suggest a hot product or become a reviewer or moderator for Gizmos |
Best Free Browser Protection Utility
|
In a Hurry?
|
 Go straight to the Quick Selection Guide |
|
Introduction
|
|
There's a scumware plague at the moment. All it takes is a visit to one malware site or a "loaded" shareware install, and next minute your Internet Browser homepage has been changed, your default search setting altered, unwanted ads pop up on your screen, rogue software are nagging you to pay, your passwords have been stolen, and worse. Traditional antivirus software and antispyware software are being overwhelmed by the rapidly increasing amount of virus, spyware and other malware. That's why a different approach to combating these threats is necessary. Instead of technologies that are reacting to malware, we need proactive technology to protect our computers. These browser protection utilities can greatly increase your defenses against drive-by downloads and vulnerabilities. I took a look at several applications that are vital in the fight against unwelcome and harmful intruders. |
|
Discussion
|
|
Usage is remarkably simple. To start a sandboxed browsing session, you just click the "Sandboxed Web Browser" icon on your desktop (or the Sandboxie icon from the Quick Launch tray) and this will launch your default browser in the sandbox. You can then use it in the normal way to browse to sites or download files. By default, files that are saved in the Desktop, My Documents or Favorites will have a prompt to ask you whether you want to save the file permanently. I suggest you add your default downloads folder to the Quick Recovery settings so files saved there will be automatically saved to your real hard disk, saving you the trouble of manually recovering files. The advantage is clear: any virus, trojan, worm, spyware or adware threats that "infected" your PC while browsing will be eliminated. Sandboxie allows for in-depth configuration which increases security. For example, you can set it to block access to your personal files, or only allow certain programs to run or connect to the internet in a sandbox. A recent feature of Sandboxie also allows you to run sandboxed programs in a Limited User Account, similar to DropMyRights, for even greater security. This should also prevent most keyloggers from running. However, there are some downsides to this approach. Firstly, if you want to update your browser addons/widgets, you'll need to open an un-sandboxed browser and do it from there. This also applies to bookmarks but you can configure Sandboxie to automatically retain those. Secondly, Sandboxie is not designed to detect or disable keyloggers. You can get around this (mostly) by always empty your sandbox before you log in to important sites (such as sites involving financial transactions). Thirdly, some people find the nag screen inconvenient, which appears for five seconds before a sandboxed application opens. Sandboxie works fine with all browsers and most software applications, including e-mail clients (though this requires special configuration), instant messaging clients, Bittorrent clients and games. However, it won't work with system software (software which installs a system driver).
1. Can read but cannot modify trusted resources. Known applications also have preconfigured rules so those applications can run properly. In effect, files which you download will not be able to access critical areas on your computer, similar to a Limited User Account. So any malware which you inadverdently download cannot execute and damage your computer. GesWall also allows for detailed customization where you can configure the restrictions of untrusted applications. A user at Wilders Security Forum has some interesting configuration tips for Internet Explorer 8. Just like Sandboxie, updating applications is a problem and you need to open an un-isolated browser. The good news however is that updating addons/widgets and bookmarks are no problem in GesWall. GesWall also does not fully track files which are saved, which means if you move an untrusted file to another partition, GesWall will not be restricting the new file. This is not a problem with computer that have one partition. Also, when I browsed to some sites that require Javascript my browser would sometimes freeze, seemingly randomly. This was solved by opening GesWall and lowering the security level to low. My computer felt a bit more sluggish running GesWall compared to Sandboxie. Overall, GesWall provides excellent security, and is a worthy alternative to Sandboxie. A Limited User Account is an alternate method to protecting your computer. It provides very secure system-wide security, though it is admittedly not very usable if you regularly install new software. SuRun is a very useful application to allow you to run certain applications with Administrator privileges. There is a tutorial on how to use SuRun. A Limited User Account doesn't protect against user-mode malware, but you can implement Software Restriction Policies to block those attacks. DropMyRights and SetSafer allows you to set certain applications to run under a Limited User Account, though you need to manually create the shortcuts. Online Armor Personal Firewall's RunSafer is another option which I really like. It is very easy to use; you just select a program and click "Run Safer" and the program will now run with with restricted priviledges. Tall Emu has an explanation and video on how to use RunSafer.
Returnil provides a different type of protection compared to Sandboxie or GesWall. It is an excellent solution for those who have limited uses of their computer, for example for users who just browse the web. Also, if you have a separate partition for your data then Returnil is particularly useful because you don't have to worry about losing data which you just saved. Returnil can also be used in conjunction with Sandboxie or GesWall. Like all security software, you should have a backup of your hard drive and all your files before you install one of these applications. Please help us by rating this review |
|
Have Your Say
|
|
Please visit our freeware forum to share and discuss your views and get advice on free security software, including antivirus software. There's also a poll where you can vote and discuss your browser protection utility. To post in the forum you need to register first but that's quick and immediate. |
|
|||||||||||||||||||||
|
|||||||||||||||||||||
|
|||||||||||||||||||||
3.44 
Private Freeware (not free for commercial use) 
2000 - Vista
This category is maintained by volunteer editor JonathanT. Registered site visitors can contact JonathanT by clicking here.
|
Tags
|
|
sandbox, browser security, browser protection |
- Article type:
Comments
Thanks Edward for the info.! I value your opinions & info. on my questions as you guys have been doing this alot longer than I have & are in the know! Thanks again!
Darrin
I just don't see how a clickjacking attack could access your "real" OS environment even if combined with a keylogger, in a virtual protected environment. The keylogger may record the actions of what is being done on your system, but I can't see how a clickjacking attack would effect your sandboxie session as long as you deleted the the session after you were done. I realize this issue can get very complex and technical, but on a basic level, I believe your should be safe in a sandbox environment.
Thanks,
I would believe so, since you are isolated to your virtual environment, I don't see how the isolated click jacking attack could spill over and effect your actual OS environment. You would just have to make sure you delete the "negative" Sandboxie session.
Thanks,
Keep an eye on Comodo DiskShield, it will be amazing!
Thanks for the information, I sure will!
Hi Edward / Gizmo,
I need some advise on the actual running of Sandboxie – and after reading the complete forum.
I currently run XP, Antvir, Sunbelt Firewall ( Windows Firewall off )Avast( Only email enabled ) Threatfire and a weekly scan using SAS, A2, Avast + Avast Virus, Panda, with Secunia, ( It all takes a while ) and my question is –
I download plenty of music ( I always check the user comments ) on Firefox and Utorrent, which are both Sandboxed followed by a scan with sandboxed SAS and A2 before releasing to my own Admin machine –and I have had my fair share of Trojans and Malware and general rubbish come down the line and ( touch wood ) so far have survived ( They got close once ! ). Antvir is superb, SAS has started to find loads and Threatfire finds the occasional nasty and the machine needs restarting but that’s OK.
Is there any recommendations you can advise for the best actions, considering that I’m constantly putting my head up in this war zone and downloading loads of missiles. (the content is just superb though ) !!!!!!!!!!!!! Is Returnil the way to go for me ( free or Premium ??) ( + Any advice for torrent users who need decent protection from key loggers ??)
Gizmo - I use your site religiously so - Many Thanks
The “ Sitting Duck “!!!!!!!!!
PS
1. Online Armor sounds good as I’ve always wondered how to control what I’m transmitting out.
Edward,
Many thanks, superb advice.
Keep up the great work.
Rick
RickeeBoy,
Sounds like your taking the right steps in regards to protecting yourself during risky downloading. I basically do you same as yourself when I download from risky environments.
Thanks,
sandboxie is not so free.after 30 days,it will pause for about 5 seconds before lauch any apps,and allow only one sandbox.
I think most users can live with this slight limitation. The overall function of the application is still intact despite the limitation. I've been using it in this matter the last 2 years and have not really seen it as much of a problem....unless your really impatient.
Thanks,
Hi
With Sandboxie, you can also configure it to block Internet Access (under Settings, Resource Access, Internet Access) to all programs except the ones you specify. This can help block keyloggers from sending out information before they are wiped out. However, I don't think it blocks keyoggers from manipulating the browser to send out it info. But if you add:
under GlobalSettings
ProcessGroup=,firefox.exe,Start.exe,SandboxieDcomLaunch.exe,SandboxieRpcSs.exe
in your sandbox
ClosedFilePath=!,*
ClosedIpcPath=!,*
I believe it provides very good protection against keyloggers in the sandbox.
But you should also add your data folders to be blocked, so Firefox itself also cannot access them. (Settings, Resource Access, File Access, Blocked Access)
Very nice addition! Thanks Again!
Hi
This is a privacy thing, but with Sandboxie you can configure it to shred the contents of the sandbox using something like Eraser.
http://www.sandboxie.com/index.php?SecureDeleteSandbox
Good Information JamesSmith, thanks for the lead!
Hi
Thanks!
Another option for privacy is using a Truecrypt container and setting the sandbox to save everything in there. Then after you're done just delete it and unmount the drive. Though this takes longer than shredding it.
Hi
I don't think HauteSecure has been mentioned. I think it's it's classified as a sandbox.
It seems to restrict which certain apps can do to your computer and has site ratings (like SiteAdvisor).
Thanks
Thanks for the information James, I was not aware of this one.
Thanks,
I always used Returnil. No worrys about scanning virus in disk all the time, can create a virtual partition to protect your private files... Sytem virtualization it's the protection of future
Hi
But it does not prevent data theft before reboots. And it still can be bypassed (I think the free version) by some malware.
Returnil, Sandboxie and all the others can be bypassed by malware which attack virtualization apps.
(Returnil free and premium have the same protection and developers say that version 2.1 will have protection against mentioned malware)
Hi
Yes, that's what I was saying.
I think Returnil Premium beta has an anti-executable function which should stop these malware. I don't think the free version has it though.
Hi
I saw this post by Wraithdu over at the Sandboxie forums: http://www.sandboxie.com/phpbb/viewtopic.php?p=20121#20121
It talks about configuration for anti-executable settings to block keyloggers, the main shortcoming of Sandboxie.
Here's what was said:
under GlobalSettings
ProcessGroup=,firefox.exe,Start.exe,SandboxieDcomLaunch.exe,SandboxieRpcSs.exe
in your sandbox
ClosedFilePath=!,*
ClosedIpcPath=!,*
How complicated! All you have to do is to open the sandboxie control> right-click firefox> program settings> select "this is the only program in this sandbox that can acess the internet".
Hi
I think it's slightly different? This is for internet connection and the other is for restricting file access. I'm not sure though.
"Another protection measure against a key-logger is to configure Sandboxie to deny access to the Internet for anything other than your Web browser, in an attempt to prevent the key-logger from sending out the recorded information. See the setting for "the only program that can access the Internet" in Program Settings.
Note two caveats:
* The Internet access feature is neither a replacement for a proper firewall, nor was it designed as a mechanism to counter or hinder key-loggers.
* Some key-loggers could possibly circumvent the Internet access restriction by hijacking the Web browser to be used as a vehicle through which to send out the recorded information. "
http://www.sandboxie.com/index.php?DetectingKeyLoggers#defend
For maximum protection, delete the sandbox after using. I'm not sure about those parameters of yours.
Hi
I know the internet blocking feature, but I thought those rules added extra protection?
Thanks
I'm not a sandboxie expert, maybe asking in their forum helps. And yes, they do say it adds extra protection.
Hi
I think that you can also add some recommended settings and configuration options for Sandboxie. For example, resource protection of your data and option to Always Delete Sandbox. Also, I saw a new blog which talks about security and Sandboxie's configuration: http://hurst-security-blog.blogspot.com/ .
Great idea! Thank for the information on configuration of Sandboxie, it has yet to fail me!
Hi
Maybe you can mention the option in Sandboxie's setting - "Automatically delete contents of Sandbox". Because then people don't have to click delete every time.
Someone,
I think it sort of mentions this in the article:
After you have finished browsing, you can right click the Sandboxie icon and delete all sandboxed files and processes
Maybe a rewrite would be more descriptive.
Thanks,
Some freeware i known:
paragon
easeus partition manager
http://www.brothersoft.com/easeus-partition-manager-51814.html
I appreciate the information. I think those applications would be better under a separate category. I would rather focus on Visualization type Sandboxes for individual programs such as browsers, for this category.
Thanks,
how about RETURNIL. I think this is a very good virtual protection program.
Hi
Sad news. The SafeSpace team has been disbanded and I'm guessing SafeSpace is discontinued.
See here: http://www.wilderssecurity.com/showthread.php?t=213792
Thanks for the information, Someone. Indeed it looks as if Version 2.0.41.0 will be the last version released. I think I will still keep SafeSpace posted for awhile as an option for the near future. I still use Sandboxie, which was been the most effective for me so far.
Thanks Again!
Hi
But maybe you should add it's discontinued so users will be aware of it.
It's really quite a shame, it had the potential to be the best.
Will do Someone, Thanks!
Hi Everybody!
I have to say how much I appreciate this site, Gizmo, & everybodys comments! Not only is site very informative but also a very interesting read, & I have to admit I always check here first for tech info & whats new & cool in software! Thankyou Gizmo & Everybody! Now then I have some questions: I am in the process of Optimizing my TCP/IP settings & what I am finding is the SG TCP Optimizer software I'm using recomends turning off my firewall & all security & any other programs using any bandwith prior to performing a speed test. This test is done late at night for a more accurate test result, & I understand this, but I am greatly concerned with getting any malware during this test, being there is scumware plague of over 200000 sites infected right now. As stated before prevention is more important than security. I am curious if I can safely perform this test using SANDBOXIE & not effect my bandwidth? Also I thought I saw somewhere on this site a link to "how to stop sandboxies nagware, but can't seem to find it ? And, is there any other speedtest sites recommended over SG Speedtest found in the help page from SG TCP Optimizer? Finally, last but not least, is this test better performed using the closest server or the furthest server? Any help would be greatly appreciated & Thankyou in advance to everybody!
Darrin
I guess we need to do a full article on this. It's a big subject.
http://www.dslreports.com/tools
is one reputable site that may be of use to you.
I've been reading previous threads and I think we need another category for Returnil, Shadowsurfer, Powershadow and Windows SteadyState (don't let MS description fool you) as 'Best free Partition Virtualization', as this goes way beyond the scope of 'Browser Protection Utility'.
This software allow you to "freeze" a system partition, and once in this frozen stages (called Shadow, virtualization or protected mode as well) any further file changes made to the partition during this period will only be temporary stored elsewhere and will be discarded once the system gets out of the frozen or protected state (typically at the next re-start).
It's also misleading to put SteadyState in the Parental Control section. Look at Wikipedia: "Windows SteadyState is a tool developed by Microsoft that gives administrators enhanced options for configuring shared computers, such as hard drive protection and advanced user management." It's designed for use on shared computers, such as internet cafes, schools, libraries, at home, but it is also perfectly suitable for individual usage.
Can someone in authority tell us when is this review be reviewed? This category review is outdated.
I'm "someone in authority" and I can tell you that all our reviews are updated as we find time.
If you are a registered user (it's free) you can edit and update this review yourself.
Update: it looks like - ? - that neither Shadowsurfer or Powershadow are free anymore. But my point is that we need another category for this type of software.
http://www.shadowstor.com/download.html
http://powershadowsecurity.com/default.aspx
Creating another category for this is a very low priority for us.
You are free to create one yourself.
Hi all, I was just wondering about a review of Returnil. It is a great virtual protection program.
Like I said "this" is really 2 "things": 'Best free Partition Virtualization' AND 'Best free Browser Protection Utility' - Partition Virtualization includes Browser Protection Utility but the inverse is not true. So in my oppinion we should have a 'Best free Partition Virtualization' which also include 'Browser Protection' and maybe 'Hardware virtualization'.
Don't have the time to edit, thx. I can only contribute like this.
Hi
I agree, they are two different classes of security software but there are not much free contenders - only Returnil.
Hi
Is Bufferzone free still being developed? It looks like it is an outdated version but I could be wrong.
Someone,
It does seem that they are still currently developing BufferZone. There is a Beta version available for Vista, so I would assume that it is still being developed.
Hi
Sorry if I was not clear. I mean Bufferzone FREE. I know the PRO (shareware) version is still being developed.
It looks like the download for the free version of Bufferzone is not currently active. I will be waiting to see if this is something permanent or temporary. So the answer to you question is......"I'm not sure yet."
Hi
"It looks like the download for the free version of Bufferzone is not currently active." Yes, that was what I was trying to say.
Thanks for the quick response.
Hi
It should also be mentioned that Bufferzone free is not very configurable, and even the Pro version (I think) does not have many of the features of Sandboxie free. Like you can add folders/drives to be blocked, make specific programs to be the only program to connect to the internet and much more.
Hi
I agree that in this category there are so many softwares like sandboxie, geswall, safespace, bufferzone, virtualbox and last but not least returnil(it's virtualization based software and different from others).... But no other software is really even near to sandboxie as far as this category is concerned in terms of easy to use, doesn't slow down your computer, flexibility and protection provided..... all others are good to try but all have some disadvantages like majority of them slow down your computer.... stick to sandboxie you will be happy and your computer as well.....
Hi
Yes I agree, currently Sandboxie (free and paid) is the best overall for sandboxes that work by virtualisation. SafeSpace (free, in beta), ZoneAlarm ForceField (paid) and Bufferzone Pro (paid) are the other competitors and are all very good too.
But I disagree with the ease of use part. The easiest to use sandboxes would be policy restrictions, such as GesWall (free and paid) and DefenceWall (paid).
Light virtualisation software like Returnil, which virtualise your entire computer, and virtual machines, such as Virtual Box and VMWare, are for people that install a lot of programs for testing purposes or for fun.
Hi
I haven't tried defense wall, I tried returnil it would have been better choice if it would have the option of making protection off without system reboot... geswall may be easy to use but it slows down computer greatly.... so overall sandboxie take the lead...
Hi
I agree, I think Sandboxie is the best free program that is the most secure and usable at the same time.
Only problem with Sandboxie free is that you cannot run multiple sandboxes on the same time.
Hi
This feature isn't really essential, but if you pay $30 for Sandboxie you can get this feature and more.
You're really a genious! Not essential for you!
Hi
Shouldn't there be a mention of GesWall free? It's effective protection that is easier to use than Sandboxie.
But from personal experience it does slow down my browsing considerably.
Someone,
I haven't finished updating this category yet. There will be mention of GesWall as well, soon.
Thanks,
ive been recently introduced to BUFFERZONE FREE, and i must say it has suprised me and some should give it a try.
BufferZone adds another layer of protection to your browser by setting up a sandbox (an isolated “virtual directory” on your hard drive). As Trustware puts it, the program “transparently redirects modifications in your PC to a virtual, isolated environment, so that unauthorized modifications cannot be applied to your actual PC.” Malicious apps can’t write changes to your actual system files or registry - only BufferZone’s virtualized versions. Anything you download - temp files, images, executables, you name it - gets sandboxed.
for more info go here http://trustware.com/virtualization/freewb.html
Hi
Bufferzone Pro is an okay choice for a sandbox.
Bufferzone Free, however, is so limited in features it does not have much use.
This would appear to be just one more browser protection utility based on sandboxing.
- The BufferZone page download page says:
"Supports: Internet Explorer, Firefox, Download Accelerator Plus.
Note: The free version of BufferZone Security for Web Browsers protects only one of the supported applications. In order to protect more than one application, you must run the downloaded installation file again, once for each application you want to protect."
So the free edition doesn't seem at all competitive with Sandboxie, which allows you to choose whichever of your applications you want to run sandboxed.
NOTE: MacAffee Site Advisor warns that "In our tests, some downloads on this site tried to change some of our system settings." (details at http://www.siteadvisor.com/sites/trustware.com/downloads/11683418/)
Hi
Yes, I agree with you. Sandboxie is a much better choice. It also has more configuration options.
sandboxie is very famous... and I also want to use it but unfortunately I am not able to install it... is it because of other security softwares on my PC ?.. they have mentioned that sandboxie conflicts with McAfee siteadvisor and cannon utilities, is it because of that I am not able to install sandboxie ? as I am using both the programmes... is anyone knowing the trick ? If anyone can help me to solve this problem, please....
Hi
I don't know what the problem is, but you could ask on their forums. I think it is quite active.
Or you could consider getting rid of SiteAdvisor and try install it again. A sandboxed browser is much stronger protection than a web site scanner which will always be outdated (unless they change the whole way of how the program works).
Hi, thanks for reply.. I checked on their forum and I got my answer, I got the link on their forum for the latest version of sandboxie in which they have solved these problem and I could able to install it so now its working for me...
Hi
That is very good, as Sandboxie is a great security program.
Post new comment