Section 8: Virtualization

Question 1

Virtualization

Answer 1

Creation of a virtual resource

Question 2

Virtual Machine

Answer 2

a container for an emulated computer that runs an entire operating system

Question 3

System Virtual Machine

Answer 3

Entire OS being run virtually

Question 4

Processer Virtual Machine

Answer 4

An application being run virtually

Question 5

Hypervisor

Answer 5

Manages the distro of physcial resources of a host machine (server) to the virtual machines being run (guests)

Question 6

Type 1 Hypervisor

Answer 6

Bare metal or native; runs directly on the hardware (ESXi, hyper v, etc.) (more efficient than type 2)

Question 7

Type 2 Hypervisor

Answer 7

Runs on the OS (Virtualbox, etc.)

Question 8

Third type of Hypervisor that’s becoming popular

Answer 8

Application Containerization - A single operating system kernel is shared across multiple virtual machines but each virtual machine received its own user space for programs and data (Docker)

Question 9

VM Escape

Answer 9

An attack that allows an attacker to break out of a normally isolated VM by interacting with the hypervisor

Question 10

Data Remnants

Answer 10

Contents of a virtual machine that exist as deleted files on a cloud based server after deprovisioning

Question 11

Privilege Elevation

Answer 11

Occurs when a user is able to grant themselves the ability to run functions as higher level user

Question 12

How do you secure a VM?

Answer 12

keep it up to date

have antivirus on it

limit connectivity between the virtual machine and the host

remove any unnecessary pieces of virtual hardware from the virtual machine

using proper patch management is important to keeping your guest’s operating system secure

enable file encryption of the vm

Question 13

Which of the following vulnerabilities involves leveraging access from a single virtual machine to other machines on a hypervisor?

Answer 13

VM Escape