scr00ge


Content

  1. Content (this section)
  2. About
  3. Getting the source
  4. Invocation

About

This application tries to find out if it lives in a virtual environment. It runs in userland and don't need any privileges.

scr00ge is able to detect several virtual environments:

in default installations.

↑ Top of page ↑

Getting the source

General

I use GIT repositories, hosted on gitlab as my version control system of choice - and I recommend you read up on the Git documentation.

The webpage is hosted here and I use sourceforges Ticketsystem to keep track of bugs, etc. There is also a Mailinglist, currently not used by anyone but me, so I need some more advertisments for it :-)
(Note: you have to login to sourceforge in order to use the trackers and mailinglists)

If you wish to contribute to development, feel free. To get started, you're probably best off sending me an email, or just checking out repositories and sending me patches via git diff. The Patchtracker is also a good place to put diffs.

About GIT

GIT is a source code management tool. You must have a recent version of git installed on your system in order to get the sources of fgms. Cygwin and most modern linux distributions offer an installable git package that should work great.
On this page I describe how to get the sources with the (unix) command line client. If you use another operating system or client, I can't assist you. If you have experience with other operating systems/clients, feel free to send me a description of how you get the sources with it.

Prerequisites

In order to compile the source into an executable file you need a working build environment preinstalled on your system:

Step 1 - creating a directory for the sources

cd /some/path

Step 2 - checking out the sources

# git clone https://oschroeder@gitlab.com/scr00ge/scr00ge.git

Step 3 - compiling the source

Configure and compile the sources:

cd sc00ge

./autogen.sh

./configure

make

↑ Top of page ↑

Invocation and example output

scr00ge does not require any commandline arguments, but prints out additional debug output if you provide any. The default invocation simply executes the binary:
 ./scr00ge 
 ####################################################
 :: scr00ge - detecting system emulator environments
 :: detecting hostsystem : Linux
 [+] : IDT : Native OS
 [+] : LDT : VM detected
 [+] : GDT : Native OS
 [+] : STR : Native OS
 [+] : VirtualPC backdoor  : Native OS
 [+] : VMware "get version" command  : FAILED 
 [+] : VMware "get memory size" command  : FAILED 
 [+] : checking for openvz : openvz found (3 evidences)!
 [+] : openvz_backdoor  : FAILED 
 [+] : detecting qemu : Native OS
 [+] : checking long opcodes : VM detected
 ####################################################
 Hostsystem presumably is: OpenVZ
 The evidence is STRONG.

↑ Top of page ↑


copyright © 1997-2024  Oliver Schroeder (remove XYZ)