How to Hide Running Applications Outside Sandbox from Programs Inside Sandboxie?

[yobibi]

I am looking for a way to configure Sandboxie (or a specific version of it) so that applications running inside the sandbox cannot see the list of processes or applications running outside of it on the host system. Is this feature supported, or are there any settings or workarounds to achieve this level of isolation?

For example i need app running inside doesnt see the python.exe is running outside.

Thank you for your help!

 

[bastik-1001]

You can set

HideHostProcess=python.exe

in the sandbox you want to hide this process from.

In Sandman (the user interface of Sandboxie-Plus) you can set which processes are hidden. Sandbox Options > Advanced Options > [Processes]

"Don't allow sandboxed processes to see processes running in other boxes" (Should be checked by default.)
"Don't allow sandboxed processes to see processes running outside any box"
You can add individual process names to hide those processes if you wish or the software does not work properly, otherwise. (Something that looks for running processes will find it suspicious that it can't find commonly running processes.)

If the sandboxed process is trying to detect running processes via WMI, you should check the following option:
"Prevent sandboxed processes from accessing system details through WMI"

You could block tasklist from being executed, if the tool would use it and the WMI setting above is not and option.

ClosedClsid={8BC3F05E-D86B-11D0-A075-00C04FB68820}
ClosedPath="C:\Windows\System32\tasklist.exe"

 

[yobibi]

thank you! but im afraid i cant find this advanced options, neither WMI related ones. i have Sanboxie-Plus 1.15.4, also cant find any sandman

 

[bastik-1001]

SandMan (short for SandboxManager or SandboxieManager, sandman.exe), is the user-interface of Sandboxie-Plus. It's the user-interface you took a screenshot from. The old user-interface of Sandboxie is called Sandboxie Control, SbieCtrl.exe. I use Sandman to refer to the user-interface to avoid confusion with SbieCtrl.exe.

I remembered that someone could not see the advanced options, but not what it was that was different. Now, I know that the type of view has an influence on which items get displayed. In the main window you have to select "View" and then "Advanced View", this will show the advanced options.

(There were complaints that there are too many options and I guess that this was one way to address that. My idea, which you already used is the search function, which is not pretty, but works if you can't find a function or forgot where it was or to find it again, if it has been moved.)

 

[yobibi]

thank you ! advanced view let me find it <3

 

[bastik-1001]

One can add function via the "Edit.ini Section" feature, shown in the screenshot above, (or manually edit the Sandboxie.ini), if one likes to use the configuration options. (Normally the names of the options don't change, but for newly added options they have changed in the past, mostly to be easier to understand.)

"Don't allow sandboxed processes to see processes running in other boxes" sets HideOtherBoxes=y (which is not shown as it is the default)
"Don't allow sandboxed processes to see processes running outside any box" sets HideNonSystemProcesses=y
"Prevent sandboxed processes from accessing system details through WMI" adds Template=BlockAccessWMI