It goes without saying that a server hosting a bunch of virtual machines is a juicy target. But it's always nice to see that principle demonstrated in a very concrete and simple form. VMInjector is such a tool.
To quote a bit from the Readme:
VMInjector injects a DLL library into the VMWare process to gain access to the mapped resources. The DLL library works by parsing memory space owned by the VMware process and locating the memory-mapped RAM file, which corresponds to the guest's RAM image. By manipulating the allocated RAM file and patching the function in charge of the authentication, an attacker gains unauthorised access to the underlying virtual host. VMInjector can currently bypass locked Windows, Ubuntu and Mac OS X operation systems.
http://www.sectechno.com/2013/02/02/vminjector-tool-to-unlock-guest-vms/
It's available at:
https://github.com/batistam/VMInjector
Simple and elegant.
No comments:
Post a Comment