Critical-risk tools in Taw Computer
4 of the 36 tools in Taw Computer are classified as critical risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.
Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.
Tools at critical risk
-
vm_destroyDestructiveDestroy a sandbox and free its ports. By default the VM filesystem is saved as a snapshot so recreating with the same label resumes where you left off. Set save_snapshot to fals...
-
vm_resetDestructiveReset a VM to a clean state. Destroys the current VM AND deletes its saved snapshot, so the next vm_create with the same label starts fresh from the base image.
-
snapshot_deleteDestructiveDelete a saved snapshot by label. This frees disk space and means the next vm_create with this label will start fresh.
-
browser_closeDestructiveKill all Chrome processes inside the sandbox.
Attacks that target this class
Critical-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.