This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
ironmathyu5
Level 2
‎May 09, 2020 06:08 AM

Virtual Machine Escape within Sandbox Environment

I'm currently running a sandbox environment on my ESXI host, which sits on a physical HP server. I have quite a few VMs running, in addition to the Windows 10 sandbox VM. The only purpose on this Sandbox is for myself to detonate Malware and run analytics. The Sandbox host resides on it's own network/VLAN which ultimately terminates to a firewall, the Sandbox network cannot talk to any other networks. All control of the Sandbox is handled through console connection via Vsphere. As far as I'm concerned this is a standard sandbox environment setup, but it begs the question: Those of you with a similar setup, how concerned are you about someone exploiting the hypervisor via virtual machine escape? Also, before someone chimes in: Yes I'm aware some modern Malware will detect that it's running on a VM and not fully detonate, this is purely for independent research.

Appvalley TutuApp Tweakbox
Labels (1)
Labels

This thread has been automatically locked due to inactivity.

To continue the discussion, please start a new thread.
1 Reply
aryan
Level 3 Flexeran
Level 3 Flexeran
‎May 11, 2020 03:00 PM

Which Flexera product is your post in regards to?

Thanks.
Arpe

0 Kudos