Skip to content
A tiny "sandbox" to run untrusted code 🏖️
Go Makefile
Branch: master
Clone or download
Latest commit dcba083 Jan 17, 2020
Type Name Latest commit message Commit time
Failed to load latest commit information.
.github/workflows Create go.yml Jan 12, 2020
.editorconfig add block pattern and some tests Jan 10, 2020
.gitignore add .idea to git ignore Jan 19, 2020
Makefile Add docs Jan 12, 2020 add warning Jan 13, 2020
go.mod add deps Jan 8, 2020
go.sum add deps Jan 8, 2020
password.txt twerks Jan 8, 2020
sandy.go update usage handler and handle no args Jan 19, 2020
sandy_test.go remove duplicate code, add err checks and print error in test cases Jan 16, 2020


A tiny sandbox to run untrusted code. 🏖️

Sandy uses Ptrace to hook into READ syscalls, giving you the option to accept or deny syscalls before they are executed.

WARNING: While sandy is able to intercept READ syscalls there are a variety of ways to get around this. Full details can be found in the hackernews thread. Some of which can be patched to catch simple attacks, but you should use sandy with the expectation that it is better than nothing but it is not true isolation.


Usage of ./sandy:

  sandy [FLAGS] command

    -h	Print Usage.
    -n value
        A glob pattern for automatically blocking file reads.
    -y value
        A glob pattern for automatically allowing file reads.

Use cases

You want to install anything

> sandy -n "/etc/password.txt" npm install sketchy-module

  BLOCKED READ on /etc/password.txt
> sandy -n "/etc/password.txt" bash <(curl

  BLOCKED READ on /etc/password.txt

You are interested in what file reads you favourite program makes.

Sure you could use strace, but it references file descriptors sandy makes the this much easier at a glance by printing the absolute path of the fd.

> sandy ls
Wanting to READ /usr/lib/x86_64-linux-gnu/ [y/n]

You don't want to buy your friends beer

A friend at work knows that you are security conscious and that you keep a /free-beer.bounty file in home directory. With the promise of a round of drinks and office wide humiliation Dave tries to trick you with a malicious script under the guise of being a helpful colleague.

You run there script with sandy and catch him red handed.

> sandy -n *.bounty bash ./

  BLOCKED READ on /free-beer.bounty

NOTE: It's definitely a better idea to encrypt all your sensitive data, sandy should probably only be used when that is inconvenient or impractical.

NOTE: I haven't made any effort for cross-x compatibility so it currently only works on linux. I'd happily accept patches to improve portability.

You can’t perform that action at this time.