projects
/
grml-scripts.git
/ blobdiff
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
shortlog
|
log
|
commit
|
commitdiff
|
tree
raw
|
inline
| side by side
vmware-detect.c: added doc
[grml-scripts.git]
/
compile
/
vmware-detect.c
diff --git
a/compile/vmware-detect.c
b/compile/vmware-detect.c
index
fad9b96
..
7662a5a
100644
(file)
--- a/
compile/vmware-detect.c
+++ b/
compile/vmware-detect.c
@@
-2,6
+2,7
@@
#include "unistd.h"
#include "stdio.h"
#include "stdlib.h"
#include "unistd.h"
#include "stdio.h"
#include "stdlib.h"
+#include "signal.h"
#define WRITE(x) write(1, x, strlen(x))
#define DWRITE(x) do{ \
#define WRITE(x) write(1, x, strlen(x))
#define DWRITE(x) do{ \
@@
-12,6
+13,12
@@
#define FALSE 0
#define TRUE !FALSE
#define FALSE 0
#define TRUE !FALSE
+/* doc:
+ * vmware IO backdoor: http://chitchat.at.infoseek.co.jp/vmware/backdoor.html
+ * http://www.honeynet.org/papers/bots/botnet-code.html
+ * http://www.codegurus.be/codegurus/Programming/virtualpc&vmware_en.htm
+ */
+
// from libowfat {{{
static inline char tohex(char c) {
return c>=10?c-10+'a':c+'0';
// from libowfat {{{
static inline char tohex(char c) {
return c>=10?c-10+'a':c+'0';
@@
-33,7
+40,7
@@
unsigned int fmt_xlong(char *dest,unsigned long i) {
void printIdtr(const unsigned char* idtr, unsigned size)
{
unsigned i;
void printIdtr(const unsigned char* idtr, unsigned size)
{
unsigned i;
- for(i=0; i<
=
size; ++i) {
+ for(i=0; i<size; ++i) {
char out[4] = {0};
fmt_xlong(out, idtr[i]);
WRITE(out);
char out[4] = {0};
fmt_xlong(out, idtr[i]);
WRITE(out);