Hello all, are there any tried-&-true Best Practices for scanning/cleaning a virtual machine that might have some malicious scripts/spyware/etc? I've got a CentOS vm to run in Virtualbox which a subcontractor has loaded with software of my specification (mostly developer tools...Anaconda3, Rodeo, etc), but now I wonder if that was a good idea, seeing as there *could* be extra goodies on there to get access to IP-sensitive files I would load there later.
I briefly searched this subforum for 'security' and didn't see any titles that lined up with the general concern.
If there's no way to scan a VM with high confidence of detection capability, is there a way to get a log of the software packages added so I can make a fresh VM and have it automatically download and install the suite of packages?
I briefly searched this subforum for 'security' and didn't see any titles that lined up with the general concern.
If there's no way to scan a VM with high confidence of detection capability, is there a way to get a log of the software packages added so I can make a fresh VM and have it automatically download and install the suite of packages?