Home | VerSprite Resources

Attack Surface

We are passionate about helping our clients chart a course that brings security and business together.

Utilizing Reverse Proxies to Inject Malicious Code & Extract Sensitive Information

Video

Phishing Attacks

Utilizing Reverse Proxies to Inject Malicious Code & Extract Sensitive Information

Utilizing reverse proxies offers a more advanced approach for creating phishing web pages that not only allow the Victim User to fully authenticate to their account through a malicious site, but also how to automate the theft of information within the account.

Learn more

Waves Maxx Audio DLL Side-Loading LPE via Windows Registry

Blog Post

Waves Maxx Audio DLL Side-Loading LPE via Windows Registry

When performing vulnerability research, it is essential to make sure that all attack vectors concerning exploitation are exhausted. One avenue of exploitation comes from the Windows registry.

Learn more

Microsoft Outlook for Android Vulnerable to Cross-Site Scripting

Blog Post

Cross-Site Scripting (XSS) Attack

Microsoft Outlook for Android Vulnerable to Cross-Site Scripting

Microsoft published an advisory on a critical vulnerability found in the Microsoft Outlook Android application. The attack happens when an email is sent to the victim with an embedded hidden code.

Learn more

Exploitation-Remote-WCF-Vulnerabilities

Blog Post

Exploitation of Remote WCF Vulnerabilities

In this blog, we’ll be discussing the discovery, analysis, and exploitation of CVE-2019-8917 which is a remotely exploitable WCF vulnerability that we discovered in SolarWinds Orion NPM 12.3.

Learn more

Windows userland attack surface

Blog Post

Microsoft Windows Vulnerabilities

Windows Userland Application Attack Surface Enumeration

Inside the domain of vulnerability research, many different methodologies exist for how a researcher may start their journey with auditing an application. This blog provides information on how to enumerate the attack surface of userland applications that are deployed on the Windows operating system.

Learn more

Managing Cloud Security Risk

Blog Post

Cloud Infrastructure

Managing Cloud Security Risk: Where Do You Start?

Operating your cloud infrastructure isn’t a one-time proposition, so it makes sense that securing it isn’t either. Establishing security compliance controls and then continuously monitoring those controls ensures your infrastructure continues to be secured per policy.

Learn more

android vulnerabilities and exploits

Blog Post

Exploitation of Vulnerabilities

Why Androids are a Prime Target for Hackers

The Android operating system and the mobile devices it runs on dominate the market in comparison to other device manufactures. Along with the market share, the Android ecosystem is heavily fragmented; that is to say many individuals are still using older versions of the Android operating system.

Learn more

exploiting vypervpn macos featured image

Blog Post

Exploiting VyprVPN

Exploiting VyprVPN for MacOS

In this blog, we’ll dive into the process of finding the advised vulnerability and writing a simple exploit for VyprVPN for MacOS.

Learn more

Javascript Platforms

Blog Post

Assessing Emerging JavaScript Platforms with Express.js and Node.js – What to Look For

Node.js is known as one of the most important emerging technologies. It is an event driven open source runtime to create server side applications.

Learn more

We are an international squad of professionals working as one.

Email

[email protected]

logos