Sandboxie testing with Sandkit POCs

View previous topic View next topic Go down

Sandboxie testing with Sandkit POCs

Post by Rico on 4/2/2011, 22:44

I came across a security Researcher/ tester called Stephen Ridley who has made POCs aimed at byapssing chrome's sandbox. So I wanted to know if anyone here was interested to try this out on Sandboxie and see if it will hold up -- which I could bet it does. His tests are located at this URL: http://s7ephen.github.com/SandKit/


This here is a technical document that has some terms that fly over my head, anyhow for technically minded folk, have a read.

ssj, you should persuade people like Didier Stevens and Comodo's wj32 to to register here and create some tests. That way the forums become a great security resource for info and also software testing, so we could keep an eye on any potential bypasses.


https://docs.google.com/viewer?url=https://github.com/s7ephen/SandKit/raw/master/Escaping_The_Sandbox/Escaping_The_Sandbox_Stephen_A_Ridley_2010.pdf


Rico
Advanced Member
Advanced Member

Posts : 118
Join date : 2010-06-18

View user profile

Back to top Go down

Re: Sandboxie testing with Sandkit POCs

Post by ssj100 on 5/2/2011, 02:27

Rico wrote:This here is a technical document that has some terms that fly over my head
Same here.
Rico wrote:ssj, you should persuade people like Didier Stevens and Comodo's wj32 to to register here and create some tests.
Honestly, I doubt they would bother. Regardless, it's not hard to follow eg. Didier Stevens on his blog. He's a very busy man as it is.

_________________
Sandboxie + LUA + SRP + DEP + SuRun
Windows Firewall + NAT Router + IPSec (on-demand)
VirtualBox (on-demand)
Drive SnapShot (on-demand)
avatar
ssj100
Administrator
Administrator

Posts : 1389
Join date : 2010-04-14

View user profile http://ssj100.fullsubject.com

Back to top Go down

View previous topic View next topic Back to top

- Similar topics

 
Permissions in this forum:
You cannot reply to topics in this forum