How to Safely Test Software Without Messing Up Your System


The internet is full of sweet apps, but it's also packed with shady software. Before you install something awful, give yourself an infosec education. Here are the best tools to protect yourself out there when you're experimenting with new programs.
Unless you have spare computers lying around, you need to protect your system when trying out software you don't trust. This post will guide you through several methods that can help contain any malicious changes or prevent rogue apps from doing something you don't want. Some methods are focused on staying as secure as possible. Others are better at trying out apps without messing up your settings, but may not be perfectly secure. We'll explain which ones are best for which at the end of each section.

Method 1: Virtualize an Entire Desktop with VirtualBox

Virtual machines are one of the safest ways to test software (without building an entirely separate computer). This method allows you to simulate a full operating system, isolated from the rest of your machine. If a program installs crapware without your knowledge, it will be contained in the virtual machine. If it changes your wallpaper to a picture of dinosaurs attending the Last Supper, your regular computer won't be affected. You can also save snapshots of your virtual machine so that, no matter what happens, you can restore it to exactly the way it was before with a single button.
There are several tools that you can use to create virtual machines, but for we like VirtualBox. It's available for Windows, OS X, and Linux and allows you to take the aforementioned snapshots very easily.
Before you start testing software, you'll need to create the secluded place where you can be alone with it. Begin by creating your virtual machine:
  1. Install and open VirtualBox. Be sure to install the extension pack from the downloads page.
  2. Click "New" to create a new virtual machine. You can check out our guide here for detailed instructions, but the wizard should make it fairly simple. You will need to download the OS you want to try.
  3. Install the operating system of your choice on the virtual machine.
  4. Before you install anything else, take a snapshot. This will allow you to revert back to your original, "fresh install" state after you're done testing.
At this point, you should have a pristine installation and a quick way to reset back to normal. This is a safe place where you can install programs and try them out. However, it's important to remember that this doesn't mean that everything you do is safe. Here are some other things you should be aware of if you need to try out potentially malicious software:
  • Do not enable Bridged Mode: This can also make your host machine vulnerable to some malware, so be careful. By default, this should be disabled, but if you've ever enabled it for any reason, turn it off. Ideally, you should keep a separate, clean VM for testing potentially malicious software.
  • Disable network activity when necessary: Once you've downloaded the software you want to install, you can remove network access from the VM in the menu along the bottom. Simply right-click the network adapter, select Network Settings, and change "Attached t" to "Not Attached." It's important to note that not only does this disconnect your VM from the internet, but it also disconnects it from other devices on your network such as the host computer or even your router.
  • Be mindful of personal information: If your virtual machine is connected to the internet, you can still transmit personal information. A VM only protects your computer itself. It can't stop you from sending your credit card info to an untrustworthy merchant. If you absolutely have to enter personal information into an app you don't fully trust, disable its internet connection first.
Virtual machines are one of the most powerful, software control methods out there. It's highly recommended that anyone who is regularly testing apps create a virtual machine and have it handy at all times. However, if you only try suspicious apps out every few months or so, there are other, less cumbersome methods.

Method 2: Simpler Virtualization with Cameyo

The downside to virtual machines is that they require a full OS installation and considerable overhead. If you only want to see how an app works once without worrying about all the extra work, Cameyo offers a slightly simpler alternative. You can try out applications in a remote virtualized environment.
As we've talked about recently, the service runs a virtualized version of Windows on a remote computer that you can run apps in. The downside to this method is that you are limited to just one app, so it's not a perfect solution for every task. However, if you just want to see what an app looks like before you try it out on your system, or don't want to go to the hassle of setting up an entire virtual machine, it's a nice middle ground.
If you want to use Cameyo to try out your own applications, follow these steps:
  1. Create a Cameyo account and log in.
  2. In the sidebar on the left, click Add App.
  3. Select "Create a new Cameyo package."
  4. If you've already downloaded the .exe, upload it by selecting "Local machine." If you're not sure you can trust the source, use the URL option to link to the file.
  5. Choose a target to store the repackaged app. In most cases, My Apps will work, but you can save the app packages to your Dropbox space if you need to return to the app more than a week later.
  6. Click Submit.
Once Cameyo is done creating the repackaged app, you'll be able to run it in a browser window. This method is particularly useful if you need to see how an app works while you're on an OS other than Windows, or if you want to make sure it's not going to do anything shady during installation.

Method 3: Get Basic Protection with Sandboxie

Sandboxie is a simpler alternative to virtualization that allows you to try out software on your own desktop without giving it total control. It allows you to browse the web, or install and run apps alongside your existing system, so it can give you the closest idea of what it would be like if you actually installed it. You can quickly erase anything that's been downloaded or installed with a single button. You can think of it like a disposable sleeve you place over your apps or browser as a form of protection from infections or unwanted installations.
Of course, Sandboxie doesn't come without trade offs. Anything you download or install on your system is still on your system. Which means if it's given permission to read files, there's no barrier between the apps and your sensitive data. Sandboxie can revert any changes it makes, but reading is fair game. And, of course, if anything happens to slip past Sandboxie, it can infect your real computer. Strictly speaking, virtual machines are safer, but Sandboxie does offer some extra protection to your normal, everyday routine.
You can download Sandboxie here. Once you install the app, you can create a sandboxed browser window, download files, and install apps within the sandbox. Everything you do within this sandbox can be deleted with one button. If you want to download an app to try out, it's recommended to start with a sandboxed browser session first, just to prevent any infections from the site itself. To get started, follow these steps:
  1. Start the sandboxed web browser. Sandboxie should have offered to create a shortcut on your desktop to the web browser when you first installed it. If not, right-click the Sandboxie icon in the system tray and select Default Box > Run Web Browser.
  2. Open the site with the app you want to test and download it.
  3. When you download files, Sandboxie will offer to let you "recover" them, which means they would leave the sandbox and stay permanently available. If it's a file you know is safe, accept this option, but otherwise, keep everything inside the sandbox.
  4. Install the app. In the User Account Control prompt, Sandboxie will appear as the application requesting permission to install software, as opposed to the developer you're testing. You should be able to see a window beneath the prompt detailing which app is requesting permission.
  5. Run the app as normal. You should see a yellow outline over any windows that are within the sandbox.
  6. When you are finished, right click Sandboxie's icon in the system tray and select DefaultBox > Delete Contents.
When you delete the contents of a sandbox, everything you have downloaded or installed during that sessions should be removed from your computer. Keep in mind that this doesn't mean nothing nefarious can happen: If you use a sandboxed browser to send your credit card information to a shady merchant, there's nothing Sandboxie can do to prevent that. It can, however, remove anything that was quietly installed or revert any changes you make to your system. It's not 100% effective, but it should keep you safer than browsing without protection.

Comments

Post a Comment

Popular posts from this blog

Why I Wake Up Early (And 9 Reasons You Should Do So Too)

Here are 9 reasons why I say this: 1. Get a head start When you wake up at 5am, you start your day earlier than 99.9% of the world — hence giving you a head start in your day. This creates a feel-good factor, which, while psychological, creates a host of positive effects (especially for reasons #2 and #3 in the list). After all, a good start is half the battle won. It will motivate you to stay ahead so you can maintain or even widen the lead. For example, my modus operandi when I wake up early is to work on the high-impact tasks right away, as opposed to the small, easy but unimportant tasks. I will also think and work effectively, and strive to end my day earlier so that I can have an early sleep, wake up early the next day, and continue my “head start.” On the whole, I’d say that I’m more forward thinking and proactive in managing my tasks — since I have a head start in my day, I naturally think about how I can be ahead in my work too. On the other hand, when I wake up ...
Read more

Google launches OnHub, a simple, expensive Wi-Fi router

Image
Hate your finicky Wi-Fi router? Google does too, apparently. Google announced Tuesday that it's making a Wi-Fi router called OnHub, which is designed to alleviate the typical frustrations of buggy routers. It is partnering with TP-Link for the $199 router, available for immediate preorder. Google's preorder page already lists it as out of stock. In terms of design, the OnHub doesn't really look like any router before it. It eschews the usual antennas, wires and blinking lights for a large cylindrical shape with just one large light at the top. Google's cylindrical OnHub router. IMAGE: GOOGLE Google thinks there are benefits to this design: In its announcement post, it explains many people keep unsightly routers hidden away under desks and behind TVs where they don't work as well.  If the router is more pleasing to the eye, Google says, people will be more likely to keep it out in the open. A win-win. Within the cy...
Read more

2 iPhone Apps to Manage Expenses and Budget Efficiently

Image
2 iPhone Apps to Manage Expenses and Budget Efficiently Ads by Google While budgeting might not be one of the most exciting things to do (I’m sure a lot of people consider it boring and tedious), it is an extremely important activity that every household should undertake. With budgeting, you are able to plan your financial life and afford things you need and like. In short, proper budgeting lets you enjoy life to the fullest through sound financial planning. And while the task might indeed feel a bit like a chore for some, the good news is that you don’t need to make this a complex process. In fact, there are several apps out there that help people take care of their finances, and some of them allow you to do it in a very simple way, without creating complex online profiles or adding your bank accounts if you don’t want to. So if you want to know more about two such iPhone apps, read along. Pocket Expense Created by developer Appxy, Pocket Expense lets yo...
Read more