|
|
|
|
|
|
by pilif
2337 days ago
|
|
|
> How does once check for the presence of a VM from inside the VM for example by enumerating the connected PCI devices and looking for common VM vendors virtual devices. >Doesn't that defeat the purpose of the VM to begin with that depends on your use-case. If it's about separating mostly trusted applications and/or servers, then absolutely not. If it's about investigating known-bad code, then, yes, absolutely - malware is often intentionally disabling itself when it detects it's running in a VM. |
|
|