[escalated] Sandbox For Files/applications/processes

There should be the option of Sandbox for Files/Applications/Processes whether they are suspicious or not. It should also available in the Contextual Menu and also Prompt whenever the application is executed.

Sandbox may should be in connection with AVC and IDS.

Find more posts tagged with

Comments

Charyb

You are suggesting that this sandbox is manual/on-demand by context menu and automatic decided by AVC and IDS?

coolcool1227

You are suggesting that this sandbox is manual/on-demand by context menu and automatic decided by AVC and IDS?

Both. I also request to gather the logs/events of the Sandbox in detail like system snapshot, I mean what changes made by the executable.

coolcool1227

I emphasize more that the whatever the application is executed in the Sandbox,

1) It should also be monitored by AVC and IDS,

2) Based on that monitoring, its malicious or risk level is also shown

3) Modifications/Additions should be logged that can be done by application, similar to to comparing the snapshots taken before and after its execution.