Skip to content
/ virtualbox-qemu-vuln-research-notes Public

Vulnerability research notes for VirtualBox and QEMU. Contains debug environment setup notes, a PoC template, exploit primitive notes, and more.

176 stars 15 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

farazsth98/virtualbox-qemu-vuln-research-notes

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

20 Commits

qemu-build

qemu-build

 
 

templates

templates

 
 

virtualbox

virtualbox

 
 

README.md

README.md

 
 

tips_and_tricks.md

tips_and_tricks.md

 
 

Repository files navigation

Introduction

This repo contains a guide on setting up Virtualbox and QEMU for doing VM escape related security research.

It also contains a template for a userspace proof of concept that you can use to interact with emulated devices in the hypervisor code.

Note: if your Guest VM has secure boot enabled, you cannot use the above template. You must write a kernel module and sign it using the private key (accessible as long as you're root). I'll document how to do this some time in the future.

Contents

Useful links

  1. A full e1000 exploit in an LKM - https://github.com/cchochoy/e1000_fake_driver/
  2. Qemu VM Escape Case Study - http://www.phrack.org/issues/70/5.html

About

Vulnerability research notes for VirtualBox and QEMU. Contains debug environment setup notes, a PoC template, exploit primitive notes, and more.

Resources

Readme
Activity

Stars

176 stars

Watchers

5 watching

Forks

15 forks
Report repository

Releases

No releases published

Packages

No packages published

Contributors 2

  •  
  •  

Languages