Home - Blog - Advisories - Research - Papers - Books - Presentations - Tools - About

VMMs (2003-2008)

► Status: Project closed
► Description: A virtual machine monitor (VMM) is a piece of software that allows multiple operating systems to run concurrently on so called virtual machines (VMs) on a single hardware plattform. Therefore the VMM creates efficient, isolated environments. An example for a VMM is VMware. VMMs are widely used today, e.g. for server consolidation, Honeypots/nets or forensic/antivirus purposes. There are several exciting issues regarding VMMs, e.g.: 1. Can one reliably determine if she/he/it is inside a virtual machine or on a native system? 2. Is it possible to escape from a VM (to reach the Host OS or to manipulate other VMs)? If you find this subject as exciting as I do, you can find some of my writings/codes/findings etc. about VMMs here or in my blog.

Rootkit Profiler (2007)

► Status: Project closed
► Description: RKProfiler is an advanced kernel rootkit detection toolkit.

IT Forensic (2006)

► Status: Project closed
► Description: I have written some tools to assist forensic analysis. If you are interested in this subject have a look here.

SSL Cert/Key Finder (2006)

► Status: Project closed
► Description: If you are interested in how to extract RSA private keys and certificates from process memory click here.

Advanced Exploiting (2005)

► Status: Project closed
► Description: This project dealt with different aspects of software vulnerabilities and exploitation. I focused on advanced exploitation techniques of remote memory corruption vulnerabilities in network services deployed in (highly secured) enterprise environments. If you are interested in this subject have a look here.

:: Copyright (c) 2000-2010 Tobias Klein. All rights reserved. ::