With all of the hype around virtualization, I couldn't resist another post. A few items I've found while surfing lately have really peaked my interest.
The first one is well over my head, but extremely cool. It's a year old, but I imagine some of the concepts still apply (or have been revised/improved/tweaked). It's called Hardware Virtualization Rootkits, from Dino A. Dai Zovi and can found here. If you are in to security at all, this guy does some insane research.
The second one I ran across was from a favorite blogger of mine - Christofer Hoff. It's a presentation on Virtualization and Network Security. It's an excellent mix of Virtualization concepts, vulnerabilities and solutions from his former company, Crossbeam. Check out the blog post here and presentation here.
The final is a presentation entitled The Virtualized Rootkit is Dead from Matasano, Symantec and RootLabs. It discusses HVM malware, virtualized malware detection and the Samsara framework. (Dino Dai Zovi is on the Matasono team)
No comments:
Post a Comment