Closed xyzeva closed 1 year ago
What about a 'Fake FileSystem'? (https://docs.oracle.com/javase/8/docs/api/java/nio/file/spi/FileSystemProvider.html)
Can be bypassed very easily
msix packaging (without sandboxing yet) is being worked on in https://github.com/PrismLauncher/PrismLauncher/pull/1149. this includes some more advanced things like integrating msixs for multiple architectures in an msixbundle, as well as allowing for auto updates with appinstaller. i hope this can be a good example for some other projects to get started :)
this work from microsoft also seems very interesting...but sadly isn't even in regular windows 11 releases yet, let alone any older versions :/
There is Sandboxie (was closed sourced for a while, got bought out, then now is open source) which sandboxes applications: https://github.com/sandboxie-plus/Sandboxie
It has been a while since I have used this software though, but may point us in the right direction
Issue
Windows offers barely any sandboxing kernel api calls, etc. This prevents us from sandboxing windows kernel-level and have to go for other solutions like MSIX
Current Options