{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2024,9,9]],"date-time":"2024-09-09T16:54:21Z","timestamp":1725900861624},"publisher-location":"Berlin, Heidelberg","reference-count":19,"publisher":"Springer Berlin Heidelberg","isbn-type":[{"type":"print","value":"9783642322976"},{"type":"electronic","value":"9783642322983"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2012]]},"DOI":"10.1007\/978-3-642-32298-3_9","type":"book-chapter","created":{"date-parts":[[2012,7,11]],"date-time":"2012-07-11T05:11:11Z","timestamp":1341983471000},"page":"129-137","source":"Crossref","is-referenced-by-count":2,"title":["A Technique for Remote Detection of Certain Virtual Machine Monitors"],"prefix":"10.1007","author":[{"given":"Christopher","family":"J\u00e4mthagen","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Martin","family":"Hell","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Ben","family":"Smeets","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","reference":[{"key":"9_CR1","unstructured":"Conficker\u2019s virtual machine detection, \n \n http:\/\/nakedsecurity.sophos.com\/2009\/03\/27\/confickers-virtual-machine-detection\/"},{"key":"9_CR2","unstructured":"Nmap, \n \n http:\/\/nmap.org\/\n \n \n (last accessed on June 22, 2011)"},{"key":"9_CR3","unstructured":"Official website of the apache http server, \n \n http:\/\/httpd.apache.org\/"},{"key":"9_CR4","unstructured":"Path traversal vulnerability in vmware\u2019s shared folders implementation, \n \n http:\/\/www.immunityinc.com\/documentation\/cloudburst-vista.html"},{"key":"9_CR5","first-page":"267","volume-title":"A technique for counting natted hosts","author":"S. Bellovin","year":"2002","unstructured":"Bellovin, S.: A technique for counting natted hosts, pp. 267\u2013272. ACM, New York (2002)"},{"key":"9_CR6","unstructured":"Oracle Corporation. Oracle vm virtualbox, user manual, \n \n http:\/\/www.virtualbox.org\/manual\/"},{"key":"9_CR7","doi-asserted-by":"crossref","unstructured":"Dingledine, R., Mathewson, N., Syverson, P.: The second-generation onion router. In: Proceedings of the 13th USENIX Security Symposium (2004)","DOI":"10.21236\/ADA465464"},{"key":"9_CR8","doi-asserted-by":"publisher","first-page":"83","DOI":"10.1145\/1368506.1368518","volume":"42","author":"J. Franklin","year":"2008","unstructured":"Franklin, J., Luk, M., McCune, J.M., Seshadri, A., Perrig, A., van Doorn, L.: Remote detection of virtual machine monitors with fuzzy benchmarking. SIGOPS Oper. Syst. Rev.\u00a042, 83\u201392 (2008)","journal-title":"SIGOPS Oper. Syst. Rev."},{"key":"9_CR9","unstructured":"Fyodor. Return on investment, \n \n http:\/\/insecure.org\/stc\/"},{"key":"9_CR10","unstructured":"Jordan, G.: Stealing profits from stock market spammers (2009), \n \n http:\/\/www.defcon.org\/images\/defcon-17\/dc-17-presentations\/defcon-17-grant_jordan-stock_market_spam.pdft"},{"key":"9_CR11","unstructured":"Kortchinsky, K.: Cloudburst vista - vmware vulnerability, \n \n http:\/\/www.immunityinc.com\/documentation\/cloudburst-vista.html"},{"key":"9_CR12","doi-asserted-by":"publisher","first-page":"181","DOI":"10.1007\/s11416-008-0096-y","volume":"6","author":"B. Lau","year":"2008","unstructured":"Lau, B., Svajcer, V.: Measuring virtual machine detection in malware using dsd tracer. Journal in Computer Virology\u00a06, 181\u2013195 (2008)","journal-title":"Journal in Computer Virology"},{"key":"9_CR13","unstructured":"MacManus, G.: Vmware workstation shared folders directory traversal vulnerability, \n \n http:\/\/www.immunityinc.com\/documentation\/cloudburst-vista.html"},{"key":"9_CR14","doi-asserted-by":"crossref","unstructured":"West, M., McCann, S.: Tcp\/ip field behavior (2006), \n \n http:\/\/www.ietf.org\/rfc\/rfc4413.txt","DOI":"10.17487\/rfc4413"},{"key":"9_CR15","unstructured":"Rutkowska, J.: Introducing blue pill, \n \n http:\/\/theinvisiblethings.blogspot.com\/2006\/06\/introducing-blue-pill.htmll"},{"key":"9_CR16","unstructured":"Rutkowska, J.: Red pill... or how to detect vmm using (almost) one cpu instruction, \n \n http:\/\/invisiblethings.org\/papers\/redpill.html"},{"key":"9_CR17","unstructured":"Wang, Y.-M., Verbowski, C., Wang, H.J., King, S.T., Chen, P.M., Lorch, J.R.: SubVirt: implementing malware with virtual machines. In: Proceedings of the IEEE Symposium on Security and Privacy (May 2006)"},{"key":"9_CR18","unstructured":"Wojtczvk, R.: Cve-2007-4496 - vmware vulnerability, \n \n http:\/\/www.immunityinc.com\/documentation\/cloudburst-vista.html"},{"key":"9_CR19","doi-asserted-by":"crossref","unstructured":"Xu, B., Wang, J., Peng, D.: Practical protocol steganography: Hiding data in ip header. In: Asia International Conference on Modelling & Simulation, pp. 584\u2013588 (2007)","DOI":"10.1109\/AMS.2007.80"}],"container-title":["Lecture Notes in Computer Science","Trusted Systems"],"original-title":[],"link":[{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-642-32298-3_9.pdf","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2021,5,4]],"date-time":"2021-05-04T12:00:24Z","timestamp":1620129624000},"score":1,"resource":{"primary":{"URL":"http:\/\/link.springer.com\/10.1007\/978-3-642-32298-3_9"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2012]]},"ISBN":["9783642322976","9783642322983"],"references-count":19,"URL":"https:\/\/doi.org\/10.1007\/978-3-642-32298-3_9","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"type":"print","value":"0302-9743"},{"type":"electronic","value":"1611-3349"}],"subject":[],"published":{"date-parts":[[2012]]}}}