Releases: sandboxie-plus/Sandboxie
Release v1.16.0 / 5.71.0
Release Notes
This release introduces several important improvements to Sandboxie-Plus, further enhancing compatibility, usability, and control for advanced users. A new option has been added to copy the Hardware ID directly from the support page for convenience. More significantly, a powerful new feature allows administrators to automatically redirect all files marked with "Mark of the Web" into a specified sandbox using the MarkOfTheWebBox=BoxName setting. Wildcard support has also been introduced for forced process rules, and a new option now allows for the creation of virtual sandboxes that do not require persistence in the main configuration file.
The Trace Log page now properly adapts text scaling in the 'Type' dropdown, ensuring clarity on high-DPI displays. Several system object types, such as EventPair, KeyedEvent, and Timer, have received improved virtualization and filtering support. A new UAC handling option (UseSandboxieUAC=y) enables Sandboxieβs own prompt, which includes the ability to simulate administrator rights without actually elevating privileges.
Under the hood, the DNS Filter logic has been refactored to address issues where domains that did not resolve could bypass filteringβthis resolves potential security leaks and improves consistency. Support for compiler security features like /GS and /CETCOMPAT has been expanded to more components, and INI configuration handling has been modernized to allow importing sandbox configurations from external files and support for virtual config sections within the driver.
Finally, a number of bugs have been resolved, including a persistent taskbar issue in Firefox when entering fullscreen mode, glitches in content deletion UI, unexpected Sandboxie Plus shutdowns, and context menu execution behavior on Windows 11. Display issues and inconsistencies in the Move Sandbox menu have also been addressed, offering a more stable and refined user experience overall.
For a full list of changes please review the change log.
Known Issue
You can support the project through donations, any help will be greatly appreciated.
If you have issues with an update installation, just uninstall the previous version keeping the sandboxie.ini and reinstall the new build.
Release v1.15.12 / 5.70.12
Release Notes
Sandboxie Plus version 1.15.12 / 5.70.12 introduces a range of enhancements, fixes, and usability improvements. This release adds Indonesian language support to the Plus UI, a new template for the WeType Input Method Editor (IME), and support for proxy configuration using host names instead of raw IPs by resolving them at WSA_Startup. Sandboxie can now bind to network adapters rather than specific IP addresses, providing more flexibility in networking setups. Additionally, support for the %ProgramFiles(x86)% environment variable has been introduced, along with a new TemplateDefaultFolders entry to define standard paths in privacy-enhanced boxes.
Several changes improve usability and performance. The "Move Sandbox" list sorting behavior has been refined, and personal details like name and hardware ID in the Support tab are now hidden by default. An experimental alternative proxy relay implementation has also been added, shifting from socket modification to relay threads.
Numerous issues have been addressed. These include the BoxAlias not appearing in the "run in box" dialog, UI inconsistencies after using Ctrl+F, and persistent high I/O usage by SbieCtrl.exe and SandMan.exe. Registry access functions were hardened with additional checks, and problems with Tencent TIM, MSI installer behavior, and oversized Sandboxie.ini files have been resolved. Other fixes address UI glitches, translation inconsistencies, drag-and-drop issues, and crashes related to SbieDll.dll. Compatibility problems with PingInfoView and a loop condition in CollectProducts() have also been fixed.
For a full list of changes please review the change log.
Known Issue
You can support the project through donations, any help will be greatly appreciated.
If you have issues with an update installation, just uninstall the previous version keeping the sandboxie.ini and reinstall the new build.
Release v1.15.11 / 5.70.11
Release Notes
This release primarily addresses critical compatibility issues with Firefox, ensuring that version 137.0 and later now runs correctly within Sandboxie Plus without generating SBIE2328 notifications. This fix restores proper functionality for Firefox users, resolving a major disruption introduced in the previous version.
In addition to the Firefox fix, this update introduces a new configuration option, BindAdapterIP, which allows users to bind sandboxed applications to a specific host IP address. This can be defined globally or per process via the INI file, offering greater control over network behavior within the sandbox. Itβs important to note that the specified IP must be bound to a local network interface, or connections will fail.
Several additional issues have been resolved, including problems affecting Thunderbird. Memory leaks related to process command line retrieval have been addressed, and missing components like SbieShellExt.dll have been restored. And issues with DLL injection afecting SbieHostDll.dll and custom injection dll's.
For a full list of changes please review the change log.
Known Issue
You can support the project through donations, any help will be greatly appreciated.
If you have issues with an update installation, just uninstall the previous version keeping the sandboxie.ini and reinstall the new build.
Release v1.15.10 / 5.70.10
Release Notes
Warning
Please note that SbieHostDll.dll is not properly injected in this build breaking office compatibility, please use 1.15.11
This release primarily addresses critical compatibility issues with Firefox, ensuring that version 137.0 and later now runs correctly within Sandboxie Plus without generating SBIE2328 notifications. This fix restores proper functionality for Firefox users, resolving a major disruption introduced in the previous version.
In addition to the Firefox fix, this update introduces a new configuration option, BindAdapterIP, which allows users to bind sandboxed applications to a specific host IP address. This can be defined globally or per process via the INI file, offering greater control over network behavior within the sandbox. Itβs important to note that the specified IP must be bound to a local network interface, or connections will fail.
Several additional issues have been resolved, including problems affecting Thunderbird. Memory leaks related to process command line retrieval have been addressed, and missing components like SbieShellExt.dll have been restored.
For a full list of changes please review the change log.
Known Issue
You can support the project through donations, any help will be greatly appreciated.
If you have issues with an update installation, just uninstall the previous version keeping the sandboxie.ini and reinstall the new build.
Release v1.15.9 / 5.70.9
Release Notes
Sandboxie Plus 1.15.9 delivers a robust update centered on security, stability, and compatibilityβparticularly for users of modern web browsers and those prioritizing privacy and sandbox integrity.
A key highlight is the improved compatibility with Firefox 137 Nightly and later, resolving previous hooking issues that caused instability or functional limitations. Firefox now runs smoothly within sandboxed environments once again.
Security enhancements are another major focus. This release addresses a potential IP leakage vulnerability affecting dual-stack IPv4/IPv6 setups when only one proxy type was configured. Connections now fail gracefully if no proxy is set for the relevant IP type, effectively preventing unintentional bypasses and preserving user anonymityβa critical improvement for users relying on VPNs or proxies.
Additionally, a serious local privilege escalation vulnerability tied to the HostInjectDll mechanism has been patched, thanks to responsible disclosure. This fix strengthens Sandboxie's role as a secure execution layer.
For advanced users, a new debug option OpenAllSysCalls=y has been added, allowing unrestricted system call access for testing purposes. However, due to its permissive nature, it should be used with caution.
Among the usability improvements, users can now duplicate sandboxes and their contents directly from the UI, streamlining environment management. The update also introduces a new developer certificate type that disables user-mode component verification for advanced use cases. This node-locked certificate is available at no additional cost to existing Contributor or Eternal/Huge certificate holders upon request.
Overall, version 1.15.9 brings a thoughtful balance of new features, critical fixes, and user-focused enhancements, reinforcing Sandboxie Plus as a powerful tool for secure application isolation.
For a full list of changes please review the change log.
Known Issue
Warning
Please note that SbieShellExt.dll is missing in 1.15.9, which will be fixed in 1.15.10. SbieShellExt.dll is used for the shell integration, so don't worry if you can't start applications sandboxed from the explorer by right-clicking on it.
You can support the project through donations, any help will be greatly appreciated.
If you have issues with an update installation, just uninstall the previous version keeping the sandboxie.ini and reinstall the new build.
Release v1.15.8 / 5.70.8
Release Notes
Sandboxie-Plus v1.15.8 / Classic v5.70.8 introduces several improvements and fixes to enhance usability and stability. The sandbox deletion confirmation prompt has been refined for better clarity. The online updater has been updated to ensure smoother updates, and the Plus installer now includes the ImDisk 3.0 driver for 64-bit systems, expanding its functionality.
This release also addresses key issues reported by users. A problem where the "WriteFilePath" setting was not functioning correctly has been resolved, ensuring expected behavior when writing files. Additionally, an issue with Box Notes that caused matching lines to be deleted upon saving has been fixed, restoring proper note-taking functionality.
For a full list of changes please review the change log.
You can support the project through donations, any help will be greatly appreciated.
If you have issues with an update installation, just uninstall the previous version keeping the sandboxie.ini and reinstall the new build.
Release v1.15.7 / 5.70.7
Release Notes
In this update, several improvements and fixes have been introduced to enhance the stability and functionality of Sandboxie Plus.
A new capability has been added to the service, allowing it to log monitor events, providing users with additional insights and diagnostics.
The Notepad++ template has been updated to ensure compatibility with Sandboxie Classic, improving usability for users of the legacy version. Additionally, MiscHelpers.dll has been updated with enhancements to the finder, contributing to improved performance and reliability.
Several issues have been resolved in this release. Obsolete entries in the Sandboxie Plus installer have been removed, ensuring a cleaner installation process. An issue where pinned shortcuts created via the 'Run from Start Menu' option were non-functional has been fixed, addressing reported concerns (#4502). A potential Blue Screen of Death (BSoD) issue with the driver under low-resource conditions has been resolved, improving overall system stability.
Further refinements include fixing a crash occurring in NsiAllocateAndGetTable, thanks to a report from tzf-omkey (#4511). Additionally, two memory leaks have been addressed: one occurring when a sandboxed process received a device change notification, and another affecting the NtQueryDirectoryFile hook, which previously manifested in privacy-enhanced sandboxes (#4509).
This update ensures a more robust and efficient experience for Sandboxie Plus users. As always, feedback and reports from the community are invaluable in maintaining and improving the software.
For a full list of changes please review the change log.
Announcement
Additionally, I am pleased to announce that TaskExplorer, a powerful system exploration tool first launched in 2019, has been revitalized and is now production-ready thanks to its fully signed driver. With a host of new features and enhancements, including advanced security options, expanded data columns, and improved usability, TaskExplorer is an ideal choice for both casual users and IT professionals. For more details and to download the latest release, visit: TaskExplorer on GitHub.
You can support the project through donations, any help will be greatly appreciated.
If you have issues with an update installation, just uninstall the previous version keeping the sandboxie.ini and reinstall the new build.
Release v1.15.6 / 5.70.6
Release Notes
This update introduces improvements to stability, compatibility, and debugging tools, addressing several reported issues affecting various applications and sandbox configurations.
This release also includes a rework of CreateDesktop handling, which addresses various issues encountered with browsers and browser-based applications when running within Sandboxie. These changes should result in improved stability and functionality for affected software. Furthermore, a missing hook for NtQueryInformationByName has been implemented to enhance overall system compatibility.
Several bugs have been resolved in this update. An issue where the Sandboxie Plus data folder was not functioning correctly after updating to version 1.15.5 has been fixed. Additionally, crashes affecting Adobe Acrobat Reader when used within an Application Compartment box have been resolved.
Compatibility issues with Viber have also been fixed, ensuring that the software no longer crashes upon launch within Sandboxie. Users of qutebrowser will benefit from a fix that now allows the browser to run properly in a sandboxed environment. A problem preventing applications from launching when ApiTrace was enabled in version 1.15.5 has also been resolved. Lastly, a critical fix has been implemented to prevent blue screen errors (BSoD) when using OpenWndStation=y on Windows 10 with applications that call CreateDesktopW/A.
This release provides key stability and usability improvements for Sandboxie Plus, ensuring better compatibility across a range of applications.
For a full list of changes please review the change log.
Announcement
Additionally, I am pleased to announce that TaskExplorer, a powerful system exploration tool first launched in 2019, has been revitalized and is now production-ready thanks to its fully signed driver. With a host of new features and enhancements, including advanced security options, expanded data columns, and improved usability, TaskExplorer is an ideal choice for both casual users and IT professionals. For more details and to download the latest release, visit: TaskExplorer on GitHub.
You can support the project through donations, any help will be greatly appreciated.
If you have issues with an update installation, just uninstall the previous version keeping the sandboxie.ini and reinstall the new build.
Release v1.15.5 / 5.70.5
Release Notes
This release introduces several important fixes to enhance functionality and improve user experience.
A new debugging feature has been added with the inclusion of the HookTrace=y setting, which provides enhanced debugging capabilities for API hooking.
The Sandboxie-Plus data folder has been relocated from C:\Users[User]\AppData\Local\Sandboxie-Plus to C:\Users[User]\AppData\Local\Xanasoft\Sandboxie-Plus. This change is automatic for users upgrading to this version, but those downgrading to an older version will need to move the folder back manually. Additionally, some options in the box context menu have been re-ordered for improved usability.
This update resolves several critical issues and enhances overall stability. The crash triggered by selecting "Run as Administrator" in the non-advanced view has been fixed, along with a crash caused by missing IP definitions in DNS filtering (#3600, #4475).
Compatibility with ARM64 systems has been significantly improved, addressing issues such as x64 executables failing to run on Windows 11 ARM64 (#4422, #4415) and resolving compatibility MSEdge and explorer problems with Windows 10 ARM64.
Several user experience issues have also been addressed. These include process self-termination failures, infinite loops when Gui_ConnectConsole waited for SbieSvc.exe to quit (#4462), and missing program icons when paths with spaces were specified in the RunCommand setting (#4416). Additional fixes include template scanning reliability (#4401) and the proper display of credential dialogs for RDP connections in encrypted boxes (#4389).
This update aims to provide a smoother, more reliable experience across supported platforms, particularly for users on ARM64 systems.
For a full list of changes please review the change log.
Known Issue
- Setting migration fails under certain conditions resulting in the UI configuration being reset to default. You can close the UI and move the files manually C:\Users[User]\AppData\Local\Sandboxie-Plus to C:\Users[User]\AppData\Local\Xanasoft\Sandboxie-Plus this issue will be fixed in 1.15.6
Announcement
Additionally, I am pleased to announce that TaskExplorer, a powerful system exploration tool first launched in 2019, has been revitalized and is now production-ready thanks to its fully signed driver. With a host of new features and enhancements, including advanced security options, expanded data columns, and improved usability, TaskExplorer is an ideal choice for both casual users and IT professionals. For more details and to download the latest release, visit: TaskExplorer on GitHub.
You can support the project through donations, any help will be greatly appreciated.
If you have issues with an update installation, just uninstall the previous version keeping the sandboxie.ini and reinstall the new build.
Release v1.15.4 / 5.70.4
Release Notes
This update introduces significant improvements and fixes to enhance the stability and usability of the application.
A variety of critical issues have been resolved. The ini section editor now functions correctly in dark mode, and sandbox content deletion has been fixed (#4407), thanks to bot-1450. Additionally, the "Run Unsandboxed" option, which was not working from the box picker window, has been repaired (#4403).
Firefox tab crashes have been addressed when running with the ProtectHostImages=y setting enabled (#4394). While this fix improves compatibility for default installation locations, custom-installed Firefox-based browsers may still encounter crashes. To avoid this, users should manually add DontCopy= to their configuration.
Several BSOD issues have been resolved to improve system stability:
- "SYSTEM_SERVICE_EXCEPTION (3b)" occurred when using StartRunAlertDenied=y in combination with DenyHostAccess (#4421).
- "CRITICAL_PROCESS_DIED" occurred when terminating all sandboxed programs (#1316). Processes are now terminated individually rather than using the job object, unless explicitly configured with TerminateJobObject=y.
- A BSOD related to the LogMessageEvents=y setting has also been fixed which has been introduced in 1.15.2
Other notable fixes include enabling proper font selection in the ini editor following the addition of the ini highlighting feature (#4429).
These updates collectively ensure a smoother, more reliable experience.
For a full list of changes please review the change log.