Virtual Box doesn't seem to expose host network shares to the guest, but guest can still connect to any services running on the host.
Prikaži ovu nit
Potentially dangerous VMWare caveat that malware analysts might want to be aware of: NAT mode also creates a bridge between guest and host, so the guest can connect to services running on the host, and interfere with network shares.
-
-
-
The best solution is to have a middleman VM that runs a router OS, then connect malware VM to router VM and router VM to host. Will write up how to do that for those who don't know.
Prikaži ovu nit
Kraj razgovora
Novi razgovor -
-
-
Always amazed how many malware analysts don't know this.
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
-
-
-
Potential workaround, depending on what you're trying to achieve (credit to
@jaredhaight since I first saw this idea on his blog): 1. Create a firewall VM (PFSense or similar) and give it two network adapters: NAT'd WAN interface (upstream) and host-only LAN interface 1/x -
2. Give your lab VMs a single host-only interface (same virtual network as the firewall), and set their default gateways to the firewall's LAN interface. You may have to remove the relevant host-only network interface from your host. fin/x
Kraj razgovora
Novi razgovor -
-
-
That always has seemed obvious to me. I mean, NAT means the guest and the host are sharing the same IP address. Call me paranoid, but that has never seemed like a good idea.
- Još 4 druga odgovora
Novi razgovor -
-
-
This has been the case for 10+ years. If you must have complete separation, use a usb nic that is allocated to the VM (disabled on host machine. Ensure upstream vlan/port/devices are configured properly) or simply use host only (with the caveat of no external connectivity).
- Još 1 odgovor
Novi razgovor -
-
-
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
-
Čini se da učitavanje traje već neko vrijeme.
Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.