Hypervisor Internals Discussion

Let’s discuss Hypervisor Internals.

Types of Hypervisors

Question: What type of Hypervisors have direct access to bare metal?
Answer: type 1

Question: What type of Hypervisors do not have access to bare metal but run inside and through another Operating System?
Answer: type 2

Hypervisor Landscape

Question: What is the name of the Hypervisor that can be found as both a type 1 and type 2 Hypervisor?
Answer: Hyper-V

Question: What is the name of the open-source Hypervisor developed by Oracle?
Answer: VirtualBox

Hypervisors in Cyber Security

Question: As of the time of writing, what is the maximum amount that Microsoft offers for disclosed Hyper-V vulnerabilities?
Answer: $250,000

Question: What category of use do cyber security analysts use Hypervisors to analyse malicious code?
Answer: Research

Question: What is the name of one of the APT groups that has been identified as targeting ESXi Hypervisors?
Answer: AlphaV

Hypervisor Internals

Question: What is the acronym for a virtual CPU?
Answer: vCPU

Question: What is the acronym for a virtual network adapter?
Answer: vNIC

Question: What virtualisation method allows for a Hypervisor to be ran within a virtual machine?
Answer: Nested virtualisation

Guest Additions

Question: What is the full CVE of the vulnerability that allowed attackers to exploit guest additions to escape the guest environment? Format: CVE-XXXX-XXXX
Answer: CVE-2018-2693

Question: What name does the VMware guest additions process show up as on the guest?
Answer: VMware Tools Core Service

Practical

Question: What is the flag from the practical?
Answer: THM{LAYERS_UPON_LAYERS}