Let’s discuss Hypervisor Internals
.
Types of Hypervisors
Question: What type of Hypervisors have direct access to bare metal?
Answer: type 1
Question: What type of Hypervisors do not have access to bare metal but run inside and through another Operating System?
Answer: type 2
Hypervisor Landscape
Question: What is the name of the Hypervisor that can be found as both a type 1 and type 2 Hypervisor?
Answer: Hyper-V
Question: What is the name of the open-source Hypervisor developed by Oracle?
Answer: VirtualBox
Hypervisors in Cyber Security
Question: As of the time of writing, what is the maximum amount that Microsoft offers for disclosed Hyper-V vulnerabilities?
Answer: $250,000
Question: What category of use do cyber security analysts use Hypervisors to analyse malicious code?
Answer: Research
Question: What is the name of one of the APT groups that has been identified as targeting ESXi Hypervisors?
Answer: AlphaV
Hypervisor Internals
Question: What is the acronym for a virtual CPU?
Answer: vCPU
Question: What is the acronym for a virtual network adapter?
Answer: vNIC
Question: What virtualisation method allows for a Hypervisor to be ran within a virtual machine?
Answer: Nested virtualisation
Guest Additions
Question: What is the full CVE of the vulnerability that allowed attackers to exploit guest additions to escape the guest environment? Format: CVE-XXXX-XXXX
Answer: CVE-2018-2693
Question: What name does the VMware guest additions process show up as on the guest?
Answer: VMware Tools Core Service
Practical
Question: What is the flag from the practical?
Answer: THM{LAYERS_UPON_LAYERS}