Pf: the OpenBSD packet filter
Se está descargando tu SlideShare.
×
Eche un vistazo a continuación
Recomendado
Más Contenido Relacionado
Presentaciones para usted (20)
A los espectadores también les gustó (20)
Similares a Vm ware fuzzing - defcon russia 20 (20)
Más de DefconRussia (9)
Más reciente (20)
Vm ware fuzzing - defcon russia 20
- 1. Virtual DoS is useful Peter Kamensky @Python0x0 Defcon Russia 0x16
- 2. WhoAmI • •
- 3. Agenda • • • • •
- 4. VMWare VM theory notes
- 5. VMWare Backdoor I/O • • • •
- 6. VMWare GuestRPC • • • •
- 7. GuestRPC work scheme Open Channel Send length Send data Get return data length Receive data End of receive Close channel
- 8. GuestRPC packet example
- 9. VMWare VM main loop VMM vmx86/ESXi-kernelGuest VM Backdoor I/O UserRPC user-mode vmware-vmx main vm-loop I/O UserRPC handler GuestRPC handler IOCTL/syscall BackDoor I/O handler
- 10. Fuzzing GuestRPC
- 11. Grab GuestRPC commands • • • http://pastebin.com/HWGtfy3G
- 12. Create a simple fuzzer • • • •
- 13. HGFS DoS bugs
- 14. Host Guest File System • • “ ” •
- 15. HGFS #1 • • •
- 16. HGFS #2 • • •
- 17. SetGuestInfo memory leak
- 18. SetGuestInfo • • “ ”
- 19. Host memory abuse
- 20. Impact • • •
- 21. VMWare fixes • •
- 22. How to Use?
- 23. Countermeasure to AV sandbox system • • •
- 24. Obvious steps • • •
- 25. Not so easy • • • • •
- 26. Never Fixed VMWare behavior • • • http://www.piotrbania.com/all/adv/vmware-io-adv.txt
- 27. RWEverything • • • • http://rweverything.com/
- 28. NOT_IMPLEMENTED+RWEverything • • • •
- 29. Conclusion • • •
- 30. Questions?
