Results 1 to 5 of 5

Thread: Virtual machines...

  1. #1
    Join Date
    Jul 2005

    Virtual machines...

    Is there a way to detect if an application is running from within a virtual machine, like one set up with VMWare? Preferably in both Windows and Linux.

  2. #2
    Leftie Linux Lover the_JinX's Avatar
    Join Date
    Nov 2001
    Beverwijk Netherlands
    There was a thread a bout this a while back..

    Also points to some example code.
    ASCII stupid question, get a stupid ANSI.
    When in Russia, pet a PETSCII.

    Get your ass over to SLAYRadio the best station for C64 Remixes !

  3. #3
    Join Date
    Jul 2005
    Thanks! The link to http://www.codeproject.com/system/Vm...asp?print=true is very helpful, when I'm using a Windows client. But it is just a Windows example. Am not sure if the same trick can be used from a Linux client.
    The redpill information at http://invisiblethings.org/papers/redpill.html is also useful but is it reliable? Thanks for the information.

  4. #4
    Senior Member
    Join Date
    May 2004
    I think following is something interesting in VMWARE detection.

    Jerry presents a very reliable method to determine if a current OS is running inside a VMware Virtual Machine (VM) or on a native system. This is accomplished by exploiting an undocumented "feature" of VMware
    Scoopy doo presents one stupid and one reliable way to determine if a current OS is running inside a VMware Virtual Machine (VM) or on a native system. The next step would be breaking out of a VMOS. Let me know about your hints

    Excuse me, is there an airport nearby large enough for a private jet to land?

  5. #5
    AO übergeek phishphreek's Avatar
    Join Date
    Jan 2002
    I once read a paper, which I can't find right now, that has to do with detecting a virtual honeypot.
    While you are not looking at detecting honeypots... the techniques may be useful.

    http://www.securityfocus.com/infocus/1828 is one that talks a little about it, but I can't find the one I have in mind. I could have sworn it was on securityfocus... maybe sans...

    Give these a look.
    Quitmzilla is a firefox extension that gives you stats on how long you have quit smoking, how much money you\'ve saved, how much you haven\'t smoked and recent milestones. Very helpful for people who quit smoking and used to smoke at their computers... Helps out with the urges.

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts