Home | VerSprite Resources

Attack Surface

We are passionate about helping our clients chart a course that brings security and business together.

Utilizing Reverse Proxies to Inject Malicious Code & Extract Sensitive Information

Video

Web Application Security

Utilizing reverse proxies offers a more advanced approach for creating phishing web pages that not only allow the Victim User to fully authenticate to their account through a malicious site, but also how to automate the theft of information within the account.

Learn more

Waves Maxx Audio DLL Side-Loading LPE via Windows Registry

Blog Post

When performing vulnerability research, it is essential to make sure that all attack vectors concerning exploitation are exhausted. One avenue of exploitation comes from the Windows registry.

Learn more

Microsoft Outlook for Android Vulnerable to Cross-Site Scripting

Blog Post

Cross-Site Scripting (XSS) Attack

Microsoft published an advisory on a critical vulnerability found in the Microsoft Outlook Android application. The attack happens when an email is sent to the victim with an embedded hidden code.

Learn more

Exploitation of Remote WCF Vulnerabilities

Blog Post

In this blog, we’ll be discussing the discovery, analysis, and exploitation of CVE-2019-8917 which is a remotely exploitable WCF vulnerability that we discovered in SolarWinds Orion NPM 12.3.

Learn more

Windows Userland Application Attack Surface Enumeration

Blog Post

Microsoft Windows Security Vulnerabilities

Inside the domain of vulnerability research, many different methodologies exist for how a researcher may start their journey with auditing an application. This blog provides information on how to enumerate the attack surface of userland applications that are deployed on the Windows operating system.

Learn more

Managing Cloud Security Risk: Where Do You Start?

Blog Post

Amazon Web Services (AWS)

Operating your cloud infrastructure isn’t a one-time proposition, so it makes sense that securing it isn’t either. Establishing security compliance controls and then continuously monitoring those controls ensures your infrastructure continues to be secured per policy.

Learn more

Why Androids are a Prime Target for Hackers

Blog Post

The Android operating system and the mobile devices it runs on dominate the market in comparison to other device manufactures. Along with the market share, the Android ecosystem is heavily fragmented; that is to say many individuals are still using older versions of the Android operating system.

Learn more

Exploiting VyprVPN for MacOS

Blog Post

Exploit Development

In this blog, we’ll dive into the process of finding the advised vulnerability and writing a simple exploit for VyprVPN for MacOS.

Learn more

Assessing Emerging JavaScript Platforms with Express.js and Node.js – What to Look For

Blog Post

Cross-Site Scripting (XSS) Attack

Node.js is known as one of the most important emerging technologies. It is an event driven open source runtime to create server side applications.

Learn more

We are an international squad of professionals working as one.

Email

[email protected]

logos