Sandboxie驱动解禁

Block Drivers

BlockDrivers is a sandbox setting in Sandboxie.ini. It specifies whether Sandboxie will allow sandboxed programs to load drivers into the operating system. However, this setting does not govern the installation of new drivers – see more below.

Usage:

   .   .   .   [DefaultBox]
               BlockDrivers=n

Specifying n indicates that a sandboxed program may load drivers into the operating system. If this is not done, Sandboxie will deny the driver load attempt, and instead issue message SBIE2103.

Note: Disabling the protection afforded by BlockDrivers is not recommended.

驱动解禁功能仅限4.01-02及更早版本；
如果不想全部解禁，只解禁指定驱动，还需修改sandboxie源码自行编译：

https://github.com/sandboxie-plus/Sandboxie

Driver Installation

Before a driver can be loaded, it must first be installed. Driver installation is not affected by the BlockDrivers setting. To allow driver installation, you should add the following OpenKeyPath setting:

OpenKeyPath=HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services

And you should additionally open the driver file, using OpenFilePath. This is needed because the driver path that will be set in the registry (in a key created below CurrentControlSet\Services) will typically not point inside the sandbox.

OpenFilePath=c:\program files\MyNewSoftware\SoftwareDriver.sys

Note: Allowing sandboxed programs to install drivers is not recommended.