Start ProgramsThis is the default b

Start Programs

This is the default behavior. By specifying a full or partial path to a program executable file, Sandboxie Start will launch that program under the supervision of Sandboxie:

"C:Program FilesSandboxieStart.exe" c:windowssystem32calc.exe
"C:Program FilesSandboxieStart.exe" calc.exe
Two special program names are allowed:

"C:Program FilesSandboxieStart.exe" default_browser
"C:Program FilesSandboxieStart.exe" mail_agent
Sandboxie Start can also display the Run Any Program dialog window, or the Sandboxie Start Menu, depending on parameters specified:

"C:Program FilesSandboxieStart.exe" run_dialog
"C:Program FilesSandboxieStart.exe" start_menu
In all forms, the parameter /box:SandboxName is applicable, and may be specified between Start.exe and the parameter, to indicate a sandbox name other than the default of DefaultBox. For example:

"C:Program FilesSandboxieStart.exe" /box:TestBox run_dialog
A special form of the /box parameter is /box:__ask__ and causes Start.exe to display the sandbox selection dialog box.

The parameter /nosbiectrl can be used to make sure Start.exe does not try to run Sandboxie Control before running the sandboxed program.

"C:Program FilesSandboxieStart.exe" /nosbiectrl calc.exe
The parameter /silent can be used to eliminate some pop-up error messages. For example:

"C:Program FilesSandboxieStart.exe" /silent no_such_program.exe
In both silent and normal operation, Start.exe exits with a zero exit code on success, or non-zero on failure. In batch files, the exit code can be examined using the IF ERRORLEVEL condition.

The parameter /elevate can be used to run a program with Administartor privileges on a system where User Account Control (UAC) is enabled. For example:

"C:Program FilesSandboxieStart.exe" /elevate cmd.exe
The parameter /env can be used to pass an environment variable:

"C:Program FilesSandboxieStart.exe" /env:VariableName=VariableValueWithoutSpace
"C:Program FilesSandboxieStart.exe" /env:VariableName="Variable Value With Spaces"
The parameter /hide_window can be used to signal that the starting program should not display its window:

"C:Program FilesSandboxieStart.exe" /hide_window cmd.exe /c automated_script.bat
The parameter /wait can be used to run a program, wait for it to finish, and return the exit status from the program:

"C:Program FilesSandboxieStart.exe" /wait cmd.exe
Note that Start.exe is a Win32 application and not a console application, so the system "start" command is useful here to force the system to wait for Start.exe to finish:

start /wait "C:Program FilesSandboxieStart.exe" /wait cmd /c exit 9
echo %ERRORLEVEL%
9
The system waits for Start.exe to finish, which in turn waits for "cmd /c exit 9" to finish, and then the exit status 9 is returned all the way back.

Parameters can be combined in any order. For example:

"C:Program FilesSandboxieStart.exe" /box:CustomBox /silent /nosbiectrl MyProgram.exe
Stop Programs

Terminate all programs running in a particular sandbox. Note that the request is transmitted to the Sandboxie service SbieSvc, which actually carries out the termination.

"C:Program FilesSandboxieStart.exe" /terminate
"C:Program FilesSandboxieStart.exe" /box:TestBox /terminate
"C:Program FilesSandboxieStart.exe" /terminate_all
If the parameter /box:SandboxName is omitted, programs running in the default sandbox, DefaultBox, will be stopped.

The form /terminate_all terminates all programs in all sandboxes.

List Programs

List the system process ID numbers for all programs running in a particular sandbox.

"C:Program FilesSandboxieStart.exe" /listpids
"C:Program FilesSandboxieStart.exe" /box:TestBox /listpids
If the parameter /box:SandboxName is omitted, programs running in the default sandbox, DefaultBox, will be listed.

The output is formatted as one number per line. The first line contains the number of programs, followed by one process ID per line. Example output:

"C:Program FilesSandboxieStart.exe" /listpids | more
3
3036
2136
384
Note that Start.exe is not a console applications, so the output does not appear in a command prompt window unless you pipe the output using a construct such as | more.

Delete Contents of Sandbox

"C:Program FilesSandboxieStart.exe" delete_sandbox
"C:Program FilesSandboxieStart.exe" delete_sandbox_silent
The /box:SandboxName parameter may be specified between Start.exe and the delete command.

The _silent suffix on the delete command, indicates Sandboxie Start should silently ignore any errors and not display any error messages.

The delete operation occurs in two phases:

Phase 1 scans the contents of the sandbox and processes files which could pose a problem during the second phase:
Junctions (also known as reparse points) are removed.
Read-only files and directories are made fully accessible.
Files and directories that have very long names are renamed to shorter names.
Renames the sandbox to the format __Delete_(sandbox name)_(some random number)_. For example, if the sandbox is DefaultBox, it could be renamed to __Delete_DefaultBox_01C4012345678912.
Phase 2 deletes any sandboxes that were processed in phase 1.
Sandboxes that were processed in phase 1 are those that have been renamed as described above.
More than one sandbox may be deleted in phase 2.
By default, the standard system command RMDIR is used to delete the renamed sandbox folder.
Alternatively, a third-party delete utility may used. See Secure Delete Sandbox.
Issuing the delete_sandbox command causes Start.exe to invoke phase 1 followed by phase 2. Start.exe also accepts these commands to invoke a specific phase:

"C:Program FilesSandboxieStart.exe" delete_sandbox_phase1
"C:Program FilesSandboxieStart.exe" delete_sandbox_phase2
"C:Program FilesSandboxieStart.exe" delete_sandbox_silent_phase1
"C:Program FilesSandboxieStart.exe" delete_sandbox_silent_phase2
Reload Configuration

This command reloads the Sandboxie configuration in SandboxieIni into the active Sandboxie driver. Typically useful after manually editing the Sandboxie.ini file.

"C:Program FilesSandboxieStart.exe" /reload
Note that reloading the configuration does not take effect on sandboxed programs that are already running when this command is issued.

Disable Forced Programs

The following command runs a program outside the sandox, even if the program is forced. It is similar to using the Run Outside Sandbox option from the sandbox selection window of the Run Sandboxed command.

"C:Program FilesSandboxieStart.exe" /dfp c:path oprogram.exe
"C:Program FilesSandboxieStart.exe" /disable_force c:path oprogram.exe
Note that /dfp and /disable_force are identical.

An older form of this command can temporarily disable the forced programs mode, for all programs. It is similar in function to using the Disable Forced Programs command from the Tray Icon Menu in Sandboxie Control (and not the File Menu).

"C:Program FilesSandboxieStart.exe" disable_force
Note the missing slash in this command syntax. Note also that this command is not a toggle. It always puts the Disable Forced Programs mode into effect and always restarts the countdown timer. At this time, Start.exe does not offer a way to request the cancelation of this mode.

Related Reading Material

See also: InjectDll and SBIE DLL API

Go to Help Topics.