Skip to content

blackcon/vmware-rpc-tools

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

18 Commits

images

images

 
 

README.md

README.md

 
 

rpc_sniff.py

rpc_sniff.py

 
 

rpci_fuzz.py

rpci_fuzz.py

 
 

Repository files navigation

vmware-rpc-tools

1. vmware rpc sniffer

  • Languate: Python 3.7.2
  • Module: FRIDA (python library for hooking)
  • Target
    • Vmware Workstation 15
    • Runing tool on host enviroment
  • Description
    • In vmware, host and guest communicate using rpc.
    • This tool(rpc-sniffer.py) was made for easy viewing of data between communication.
    • The core of the tool is to output the corresponding argument by hooking a specific function of the target process.
  • Logic
    • Analyze the vmware-vmx.exe binary to check the offset of the execRPCFunc.
    • Using Frida, attach to the target process and get the base address.
    • Hook at the location the execRPCFunc (base_address + offset)
    • Outputs the argument value passed to the function.
  • Result Result Sniff

2. vmware rpci fuzzer (draft version)

  • Languate: Python 2.7.17
  • Module
    • keystone (asm tools)
    • ctypes
  • Target
    • Vmware Workstation 15
    • Runing tool on guest enviroment
  • Concenpt
    • Randomly generates various commands.(CommandList)
    • Request the created chunks in random order.
  • Result
    • Result Backdoor

About

Communication sniff tools both host and guest

Resources

Readme
Activity

Stars

0 stars

Watchers

1 watching

Forks

1 fork
Report repository

Releases

No releases published

Packages

No packages published

Languages