Matthias Luft & Jan Harrie, H2HC, São Paulo, Brazil
In this presentation we will describe how we performed and still are performing an offensive security analysis of VMware’s SDN solution NSX. NSX integrates deeply into VMware’s virtualization infrastructure and provides network filtering features in a centrally managed, hypervisor-based micro segmentation way. The deep virtualization integration resulted in challenges that we will address in this talk. For example, we will detail how to analyze ESXi kernel modules, both in a debugging and static code analysis way. We will also provide an attack vector analysis based on the NSX architecture and communication protocols as well as fuzzing results and technologies for the kernel modules and overlay networking components.