Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Security-Basics
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: Virtual environments security

from [Alexey Eremenko] Network Security [Permanent Link]
Subject: Re: Virtual environments security
Date: Thu, 14 Dec 2006 22:51:47 +0200
On 12/14/06, Octavian Popescu <sigquit@yahoo.com> wrote: 
Hi,

Any idea about some good resources on the subject? (VMware, Virtual PC/Server security etc) I'm interested most of all in studies towards the possibility of breaking the virtual env. and directly accessing the hw resources but other general info should be just fine. 

This is doable either via:
-Virtual Network (only if it's configured in the VM software)
or
-Bugs in the VM Software

(for example VirtualPC crashes with certain commands - esp. while
playing TuxRacer on Mandrake Linux 9.2 :) - maybe those bugs can be
exploited to get control over the real environment. )

-Technologov

---------------------------------------------------------------------------
This list is sponsored by: ByteCrusher

Detect Malicious Web Content and Exploits in Real-Time.
Anti-Virus engines can't detect unknown or new threats.
LinkScanner can. Web surfing just became a whole lot safer.

http://www.explabs.com/staging/promotions/xern_lspro.asp?loc=sfmaildetect
---------------------------------------------------------------------------

[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: advice for CEH certification, Adam Hunt
Next by Date:  RE: Is a career change to Computer Forensics fantasy orcanitbereality?, Craig Wright
Previous by Thread:  Virtual environments security, Octavian Popescu
Next by Thread:  RE: Virtual environments security, Lall, Navneet Singh
Indexes:  [Date] [Thread] [Top] [All Lists]