free tool for virtualization

UPDATE: VASTO 0.3!

August 23, 2010 11:01 am · 0 comments

by Black

in Open Source,Penetration Testing,Security Reconnaissance,Security tools,Tool Updates

New and improved verion of VASTO is ready for action.

VASTO is a Virtualization Asessment Toolkit, a collection of Metasploit modules meant to be used as a testing tool to perform penetration tests or security audit of virtualization solutions. It has been sponsored by Secure Network and includes contributions by fellow hackers. It has been sponsored by Secure Network and includes contributions by fellow hackers.

Changes made in VASTO:

- Abiquo_guest_stealer.rb
Exploits a path traversal in Abiquo up to version 1.5 A path traversal exploits in Abiquo up to version 1.5

It has been tested under Metasploit 3.4.2 and Ubuntu Linux, It has been tested under Metasploit 3.4.2 and Ubuntu Linux, but should work (maybe with minimal modifications) under but should work (maybe with minimal modifications) under Windows or any platform supported by Metasploit. Windows or any platform supported by Metasploit.

The current version, 0.3, was released at Black Hat US 2010.

Modules currently implemented:
- abiquo_guest_stealer.rb – Abiquo_guest_stealer.rb
Exploits a path traversal in Abiquo up to version 1.5 A path traversal exploits in Abiquo up to version 1.5
- abiquo_poison.rb – Abiquo_poison.rb
Serves evil VM if a MITM is performed. Serves evil VM if a MITM is performed.
- eucalyptus_bouncer.rb – Eucalyptus_bouncer.rb
Turn Eucalyptus systems in proxy servers. Turn Eucalyptus systems in proxy servers.
- eucalyptus_poison.rb – Eucalyptus_poison.rb
Serves evil VM if a MITM is performed. Serves evil VM if a MITM is performed.
- vmware_guest_stealer.rb – Vmware_guest_stealer.rb
Exploits a path traversal in VMware products. products exploits a path traversal in VMware.
- vmware_login.rb – Vmware_login.rb
Brute forcing for VMware Brute forcing for VMware
- vmware_session_rider.rb – Vmware_session_rider.rb
Local proxy to ride stolen SOAPID sessions with VI Client Local proxy to ride stolen SOAPID sessions with VI Client
- vmware_sfcbd_exec.rb – Vmware_sfcbd_exec.rb
Command exec (authenticated) on Studio and Data Protection Command exec (authenticated) on Studio and Data Protection
- vmware_studio_upload.rb – Vmware_studio_upload.rb
Arbitrary file upload on Studio 2.0 beta Arbitrary file upload on Studio 2.0 beta
- vmware_updatemanager_traversal.rb – Vmware_updatemanager_traversal.rb
Jetty path traversal Jetty path traversal
- vmware_version.rb – Vmware_version.rb
Fingerprints VMware products Fingerprints VMware products
- vmware_vilurker.rb – Vmware_vilurker.rb
MITM code execution against VI Client MITM code execution against VI Client
- vmware_webaccess_portscan.rb – Vmware_webaccess_portscan.rb
Turn VMware WebAccess into a portscanner (or a proxy) VMware WebAccess turn into a port scanner (or a proxy)
- vmware_autopwn – Vmware_autopwn
Automatizes exploiting the updatemanager traversal to ride a session Automatizes exploiting the update manager to ring traversal session
- xen_login.rb – Xen_login.rb
Brute forcer for XEN server Brute forcer for XEN server

Video Tutorial of VASTO:

Download VASTO v0.3 here

Searches leading to this post:
VASTO vmware, installation vasto metasploit, vasto metasploit, vasto tool

Tagged as: , , ,

Be the first to comment!

Official Free Download for Microsoft Hyper-V Server 2008 R2 ISO!

June 30, 2010 11:15 am · 0 comments

by Black

in Windows

What is Microsoft Hyper-V Server?
Microsoft Hyper-V is a free hypervisor-based virtualization system for x86-x64 systems, and has been upgraded to R2 version, together with the RTM release of Windows Server 2008 R2. Codenamed Viridian and formerly known as Windows Server Virtualization, Hyper-V exists in two variants – standalone product named Microsoft Hyper-V Server 2008 R2 which is free, and as part of Windows Server 2008 R2. ( competetion for virtual box , vmware and xen )

ebac5ee4e270903708dfb97d3084fadd Official Free Download for Microsoft Hyper V Server 2008 R2 ISO!

New features of Hyper-V Server 2008 R2:

  • Support for physical computers with up to 8 physical processors
  • Support for using up to 1TB of physical memory (virtual machines can use up to 64GB each)
  • Support for clustering
  • Support for live migration
  • Support for CPU Core Parking – Core Parking allows Windows and Hyper-V to consolidate processing onto the fewest number of possible processor cores, and suspends inactive processor cores.
  • Support for Second Level Address Translation (SLAT) in CPUs – On Intel processors this is called “EPT” while AMD calls it “NPT”. SLAT adds a second level of paging below the architectural x86/x64 paging tables in x86/x64 processors, providing an indirection layer from virtual machine memory access to the physical memory access. In many virtualization scenarios, hardware based SLAT support can offer performance improvements.
  • Support for VMQ, Jumbo Frames and other optimizations on networking
  • The ability to hot add / remove SCSI virtual hard disks

Hyper-V Server 2008 R2 RTM supports the following guest operating system client and server:

  • Windows Server 2008 R2
  • Windows Server 2008 (x64 or x86)
  • Windows Server 2003 (x86 or x64)
  • Windows Server 2003 R2 (x86 or x64)
  • Windows Server 2000
  • SUSE Linux Enterprise Server 10 with SP1 or SP2 (x86 Edition or x64 Edition)
  • SUSE Linux Enterprise Server 11 (x86 Edition or x64 Edition)
  • Red Hat Enterprise Linux (RHEL) 5.2, 5.3 and 5.4 (x86 Edition or x64 Edition)
  • Windows 7 (x86 Edition or x64 Edition)
  • Windows Vista (x86 or x64)
  • Windows XP Professional (x86 or x64)

Minimum system requirement:
Minimum CPU speed: 1.4 GHz; Recommended: 2 GHz or faster
RAM: Minimum: 1 GB RAM; Recommended: 2 GB RAM or greater (additional RAM is required for each running guest operating system); Maximum 1 TB
Available disk space: Minimum: 8 GB; Recommended: 20 GB or greater (additional disk space needed for each guest operating system)

Note: Hyper-V Server 2008 R2 is available in 64-bit edition only, so a x64 compatible processor with Intel VT or AMD-V technology enabled is required.

Direct download is also available just check “No I will register later” while downloading.

Click here to download.

Searches leading to this post:
adding microsoft hyper v server R2 to a Windows Server 2003 OS, hyper-v torrent, download hyperV, microsoft hyper-v server 2008 torrent, 2008 server hyper-v torrent, hyper-V v2 iso free download, hyperv download, hypper access free download, Microsoft Windows Server 2008 hyper torrent, rhel 5 4 Microsoft Virtual Bus, subseven on virtualbox, télécharger key windows server 2003 r2 gratuit, windows 8 iso free download, hyper-v download r2 free 2003 server, Hyper-V core free download, download check_ups for Red Hat, download free hyper-v 2008, download hyper v server 2008 r2 x86 iso, download hyper-v win 2008 iso, download hyperv core

Tagged as: , , ,

Be the first to comment!

The Xen – Carry virtual environment on CD or USB

December 30, 2009 10:02 am · 0 comments

by Black

in Open Source,Windows

The Xen hypervisor is a powerful open source industry standard for virtualization, offers a powerful, efficient, and secure feature set for virtualization of x86, x86_64, IA64, ARM, and other CPU architectures. It supports a wide range of guest operating systems including Windows, Linux, Solaris, and various versions of the BSD operating systems.

Xen is not new! It has been there for quite a while.

004d0e3dd2f0ee0d368da42e936e3b71 The Xen Carry virtual environment on CD or USB

The Xen hypervisor contains three components:
1. Xen Hypervisor
2. Domain 0 Guest (Dom0)
3. Multiple Domain Guests (DomU)

Microsoft Windows requires a HVM Guest environment is a basic requirement.
- Paravirtualization
A term used to describe a virtualization technique that allows the operating system to be aware that it is running on a hypervisor instead of base hardware. The operating system must be modified to accommodate the unique situation of running on a hypervisor instead of basic hardware.
- Hardware Virtual Machine (HVM)
A term used to describe an operating system that is running in a virtualized environment unchanged and unaware that it is not running directly on the hardware. Special hardware is required to allow this, thus the term HVM.

Most of the dependencies are covered in live environment.

Xen is very useful for security specialists, system administrators, application testers and other users who roam across the world or places to places and miss their virtual environment for testing.

Booting the system with a cd is simple! Just download and burn the cd.

Booting with USB is a little tricky! We need to use unetbootin.

Download unetbootin here

Download Xen live iso file here

Open Unetbootin select bulid through ISO and select the xen iso path and destination your USB drive. We recommend minimum 2 GB as 700 MB will be used by xen and rest will be used by virtual machine Source code of Xen is also available for curious testers like us. We can build our own virtual server.

Freatures of Xen:
-The version i386 of the Xen Live CD has a Xen Hypervisor for 64-bits CPUs as an option in GRUB’s menu. You can use without any problem, a 32-bits dom0/domU on top of a 64-bits hypervisor.
-The Xorg open source X Window System.
-Basic Gnome Desktop.
-Five tools ready to use for the management of the system, they are: the command `xm’ of the Xen, the libvirt, the program virt-manager, the tool xen-tools and program Convirt.
-Two read-only root file systems that are used by four virtual machines, two servers and two work stations. The servers (server01 and server02) make use of the file “ubuntu-8.10-server-i386.squashfs” and the work stations (client01 and client02) make use of the file “ubuntu-8.10-desktop-i386.squashfs”, both located in the CD-ROM of the Xen Live CD.
-Pre-configured file of a virtual machine to start Windows installation.
-Example of how to convert Linux virtual machines from HVM to PVM. With the new paravirt_ops, this can be done smoothly.
-Also there is a pre-configured file of a virtual machine to start Debian Installer within a Paravirtual domU.
-Three different methods to create the virtual hard disks of their virtual machines, sparse files, discs in LVM and partitions in LVM.
-To explore the possibilities, the tools vblade and aoetools was added to work with the AoE protocol, the Redhat Cluster Suite to make the LVM cluster aware, the virtual switch VDE2 with its web interface VDEtelweb and vconfig to deal with VLANs.

Minimal Requirements to run the Xen Live CD
1 computer with a minimum of 1G of RAM;
1 compatible network card (recognized as eth0);
1 good video board.

You actualy can run Xen Live CD on every computer compatible with Debian.

To make extra virtual machines:
1 optional hard disk or network attached storage, used to host virtual disks of your new virtual machines.

Download Xen here

Video tutorial on making quick desktops with Xen

Searches leading to this post:
dom0 vulnerabilities xen, live xen usb, unetbootin xen, xen live cd to usb, xen live cd toturial, xen usb distro

Tagged as: , , ,

Be the first to comment!

Page 1 of 212