Home | VerSprite Resources

Security Vulnerabilities

We are passionate about helping our clients chart a course that brings security and business together.

Identifying a Userland Application’s Attack Surface on Windows

Upcoming Event

Windows Security Vulnerabilities

VerSprite’s Security Research Consultant & VS-Labs Research Leader, Robert Hawes, will be presenting at the Wild West Hackin’ Fest. Robert’s presentation will cover how to perform attack surface enumeration concerning windows userland applications.

Learn more

5 Techniques to Avoid Unwanted Outcomes with Cloud Security Scanner

Blog Post

Continuous Integration & Continuous Delivery (CI/CD)

Cloud Security Scanner checks for security vulnerabilities in your App Engine and Compute Engine web applications. It is designed to complement your existing secure design and development processes.

Learn more

How to Configure Google Cloud Armor as a Multi-Layer Firewall

Blog Post

Cloud Infrastructure

In our three-part series Cloud Armor works as a multi-layer firewall for your GCP resources. To configure it, you must use Security Policies which are basically rules that allow or deny traffic from an IP or an IP range.

Learn more

Attacking LastPass: Compromising an Entire Password Database

Blog Post

Phishing Attacks

LastPass is a commonly used cloud-based password management solution that stores hundreds of unique and strong passwords, but what if a user’s entire password database is compromised? While a cloud-based solution to password management is very convenient, it isn’t without its own set of dangers.

Learn more

Google Cloud Platform: Identity and Access Management, Secure Networking, and Data Loss Protection

Blog Post

Threat Intelligence

In previous posts, we have covered security around Azure and AWS cloud solutions and now it’s time to look at the third big contestant, Google Cloud Platform.

Learn more

Why an Increasing Number of Clients Are Migrating to Microsoft Azure

Blog Post

Microsoft Azure Cloud Computing

Given the noticeable upward trend in Azure adoption, let’s explore more about Azure security, compliance, and its other rich capabilities. In this post we’ll just touch on big picture and what is important to securing your Azure environment.

Learn more

Waves Maxx Audio DLL Side-Loading LPE via Windows Registry

Blog Post

Security Vulnerabilities

When performing vulnerability research, it is essential to make sure that all attack vectors concerning exploitation are exhausted. One avenue of exploitation comes from the Windows registry.

Learn more

Microsoft Windows Remote Code Execution (RCE) Vulnerability: BlueKeep

Blog Post

Windows Security Vulnerabilities

On June 17, 2019 the Department of Homeland Security (DHS) issued an alert for the Microsoft Windows Remote Code Execution (RCE) vulnerability named BlueKeep and CVE-2019-0708.

Learn more

Microsoft Outlook for Android Vulnerable to Cross-Site Scripting

Blog Post

Exploitation of Vulnerabilities

Microsoft published an advisory on a critical vulnerability found in the Microsoft Outlook Android application. The attack happens when an email is sent to the victim with an embedded hidden code.

Learn more

We are an international squad of professionals working as one.

Email

[email protected]

logos