Skip to content

1.8 Release

Choose a tag to compare

View all tags
@kernelwernel kernelwernel released this 18 Aug 05:04
· 1370 commits to main since this release
v1.8
7e650bb
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.
  • Fixed false positives due to Hyper-V artifacts with new "Hyper-X" mechanism designed by @NotRequiem




  • added 10 new VM brands:

    • Hyper-V artifact (not an actual VM)
    • User-mode Linux
    • IBM PowerVM
    • Google Compute Engine (KVM)
    • OpenStack (KVM)
    • KubeVirt (KVM)
    • AWS Nitro System EC2 (KVM-based)
    • Podman
    • WSL
    • OpenVZ

  • added 14 new techniques:

    • VM::EVENT_LOGS
    • VM::QEMU_VIRTUAL_DMI
    • VM::QEMU_USB
    • VM::HYPERVISOR_DIR
    • VM::UML_CPU
    • VM::KMSG
    • VM::VM_PROCS
    • VM::VBOX_MODULE
    • VM::SYSINFO_PROC
    • VM::DEVICE_TREE
    • VM::DMI_SCAN
    • VM::SMBIOS_VM_BIT
    • VM::PODMAN_FILE
    • VM::WSL_PROC

Contributors

NotRequiem
Assets 8
Loading