Sandboxie Plus & Classic
18.9k
Stars
2k
Forks
722
Open issues
30
Contributors
AI Analysis
Sandboxie is a Windows sandbox isolation software that runs applications in a secure virtual environment without permanently modifying the host system or registry. It serves security-conscious users, developers testing untrusted software, and enterprises managing application isolation—not suitable for non-Windows environments or users seeking cross-platform sandboxing solutions.
Inferred from signals mentioned in the README (tests, CI, type safety) — not a review of the actual code.
AI's overall editorial judgment — not an average of the bars above, can weigh other factors too.
Sandboxie: open-source Windows application isolation sandbox with 18K+ stars and active community maintenance
Sandboxie is a kernel-level sandbox for Windows that isolates applications from the host OS by virtualizing filesystem and registry writes. It targets security-conscious Windows users, IT administrators, malware analysts, and developers who need to test untrusted software without risking system integrity. Originally a commercial product (Sophos era), it was open-sourced in 2020 and is now maintained by the community. Two editions exist: Classic (legacy UI) and Plus (modern Qt UI with extended features). Its long track record and deep OS integration make it a mature, specialized tool in the Windows security space.
Originally developed by Ronen Tzur, acquired by Invincea then Sophos, which open-sourced it in April 2020. The sandboxie-plus community fork took over active development thereafter, with dual GPL/custom licensing.
Growth has been steady rather than explosive, driven by privacy-aware users, security researchers, and IT professionals who lost access to the original commercial tool. Open-sourcing in 2020 triggered initial momentum. Ongoing feature additions (encrypted sandboxes, network firewall, SOCKS5 proxy) sustain a loyal niche audience. ~51 stars/week indicates modest but consistent interest.
Sandboxie has verifiable historical adoption from its commercial era (millions of users under Sophos). The open-source fork has 18,722 GitHub stars, 2,011 forks, WinGet package availability, and an active Discord community. Presence of a troubleshooting wizard and browser compatibility templates suggests real-user feedback driving development. Exact post-fork install count is not publicly documented, but adoption signals are strong for a Windows-desktop security niche tool.
Appears to use a Windows kernel driver combined with a userspace service and UI layer. The driver intercepts system calls to virtualize filesystem and registry access. Plus edition uses Qt for the GUI. Shared core components between Plus and Classic editions suggest a modular separation between kernel/service logic and UI. Likely requires a signed kernel driver, which constrains portability and deployment.
not documented in README
Last push was 2026-06-25, three days before evaluation date, indicating very active maintenance. CI/CD workflows for builds, codespell, and WinGet packaging are visible. A public roadmap and active Discord server further confirm ongoing project health. Not stagnant by any measure.
ADOPT IF: you are a Windows power user, IT administrator, or security researcher who needs lightweight, persistent, per-application sandboxing on Windows 7–11 without full VM overhead, and you accept community-maintained open-source software. AVOID IF: you need enterprise support SLAs, centralized policy management at scale, or cross-platform sandboxing — or if Windows kernel-driver complexity and compatibility risks (e.g., Secure Boot, third-party AV conflicts) are unacceptable in your environment. MONITOR IF: you use it in environments where Microsoft's Virtualization-Based Security or future Windows kernel policy changes could affect unsigned/signed driver compatibility.
Independent dimensions
Mainstream potential
3/10
Technical importance
8/10
Adoption evidence
7/10
- Windows kernel driver signing requirements and evolving Secure Boot/VBS policies may create compatibility breakage on future Windows versions, requiring significant engineering effort.
- Community-maintained project without a corporate sponsor; bus-factor risk if the core maintainers reduce involvement.
- Kernel-level code handling security boundaries is inherently high-risk — vulnerabilities in the driver could be exploited to escape the sandbox, and without a formal security audit trail, this is hard to assess.
- Dual licensing (Plus custom license vs Classic GPL) may create confusion about what users can and cannot do, potentially limiting contributions or commercial use.
- Antivirus and endpoint detection products may conflict with or flag Sandboxie's kernel hooks, creating friction in enterprise or managed environments.
Likely to remain a well-maintained, niche-but-important tool for Windows desktop security users. Unlikely to expand beyond the Windows-desktop space. May face increasing pressure from Microsoft's own isolation features over time.
Newsletter
Get analyses like this every Monday
Free weekly digest of the most interesting open-source discoveries.
Languages
Information
- Website
- https://Sandboxie-Plus.com
- Language
- C
- License
- GPL-3.0
- Last updated
- 2d ago
- Created
- 76mo ago
- Analyzed with
- anthropic/claude-haiku-4-5
Stars over time
Contributors over time
Top 100 contributors only — repos with more will plateau at 100.
Open issues
"The system cannot find the file specified. (2)" when trying to run from context menu.
When using 'aliyundrive' to play videos, the monitor will automatically turn off and lock.
Claude Code 命令行工具在标准沙盒中运行时,只要执行 Bash 工具调用就崩溃
PR #2950 masks a DDE property lookup failure; unified property-name formatting preserves validation
The InjectDll64 feature appears to be unreliable or frequently fails when used with the latest version of Microsoft Edge
Top contributors
Similar repos
anthropic-experimental/sandbox-runtime
Sandbox Runtime is a lightweight OS-level sandboxing tool for enforcing...
langgenius/dify-sandbox
Dify-Sandbox is a lightweight code execution environment designed to safely run...
| Repository | Stars | Week Δ | Language | Score | Updated |
|---|---|---|---|---|---|
|
|
18.9k | +103 | C | 8/10 | 2d ago |
|
|
4.6k | — | TypeScript | 7/10 | 12h ago |
|
|
1.8k | — | C++ | 8/10 | 22h ago |
|
|
1.2k | — | Go | 7/10 | 1w ago |
|
|
7k | — | JavaScript | 7/10 | 3w ago |
|
|
1.1k | — | TypeScript | 8/10 | 17h ago |
Targets developers embedding sandboxing into C++ applications; developer-facing library, not an end-user tool. Sandboxie operates at the OS process level without requiring code changes. Different audience entirely.
Windows Sandbox provides a full lightweight VM per session; requires Windows 10/11 Pro or higher and Hyper-V. Sandboxie runs on Windows 7+ and supports persistent sandbox state, snapshots, and per-app isolation without VM overhead.
Linux-based web app sandboxing platform; targets server-side app isolation. Completely different OS target and use case — not a practical alternative for Windows desktop users.
Automated malware analysis sandbox, VM-based, aimed at security researchers doing dynamic analysis at scale. Sandboxie is interactive and user-driven, better suited for daily desktop use than automated batch analysis.
Commercial Windows isolation products with vendor support and enterprise integrations. Sandboxie offers comparable technical depth at no cost but lacks enterprise SLAs, centralized management, and vendor accountability.
