Home | VerSprite Resources

Security Vulnerabilities

We are passionate about helping our clients chart a course that brings security and business together.

security awareness

Blog Post

PASTA Threat Modeling

Penetration Testing Methodology: Emulating Realistic Attacks by a Malicious Actor

The foundation of VerSprite’s penetration testing service is based on emulating realistic attacks by a malicious actor through the use of PASTA (Process for Attack Simulation and Threat Analysis).

Learn more

Reverse engineering undocumented structures,undocumented structures, ESTROBJ Windows 10 x64, STROBJ Windows 10 x64, STROBJ, ESTROBJ, _ESTROBJ, _STROBJ, STROBJ Windows 10, ESTROBJ Windows 10

Blog Post

Undocumented Structures

Reversing Stories: Updating the Undocumented ESTROBJ and STROBJ Structures for Windows 10 x64

Have you ever come across undocumented Windows structures that need to be reverse-engineered in order to perform a vulnerability analysis? In this post, we will demonstrate how to update these using IDA Pro and HexRays Decompiler for the ESTROBJ and STROBJ structures on Windows 10 x64.

Learn more

reverse-engineer

Blog Post

Security Vulnerabilities

Automating CVE-2019-1436 Variant Analysis: An Intro to Detecting Information Leaks via IDAPython

After investigating an information leak within Windows 10 in more detail, we decided to see how feasible it would be for an attacker to create an IDAPython script that could discover CVE-2019-1436 and other similar memory leaks automatically.

Learn more

Access Controls Named Pipes

Blog Post

Named Pipe Servers

Part II: Analysis of a Vulnerable Microsoft Windows Named Pipe Application

In part II of this three-part series, we dive deeper into hands on examples of identifying usage of named pipe servers within applications using a custom vulnerable application. The methods covered to achieve this goal is through usage of both dynamic and static analysis.

Learn more

4 Fundamentals of Microsoft Windows Pipes

Blog Post

Security Vulnerabilities

Part I: The Fundamentals of Windows Named Pipes

In this three-part blog series, we will discuss the mechanics of Windows pipes and how they can be abused by attackers to gain privileged access.

Learn more

VerSprite Uncovers Silently Patched Information Leak Within Win32k Affecting Windows 10 v1709 to v1903

Blog Post

Security Vulnerabilities

Analyzing CVE-2019-1436 on Windows 10 v1903

VerSprite’s Research team uncovers silently patched information leak within Win32k Windows 10 v1709 to v1903. Exploitation of this vulnerability allows attackers to leak the value of win32kbase!gahDpiDepDefaultGuiFonts. Read the N-Day vulnerability and exploit analysis here.

Learn more

Secure Your Website: Simple HTTPS with Nginx

Blog Post

Web Application Security

Secure Your Website: Simple HTTPS with Nginx

Even if your organization is running a backend web service that doesn’t support HTTPS, there are still options to use HTTPS, such as using Let’s Encrypt and Nginx. Transport Layer Security (TLS) is very important to protect your website from malicious code injections.

Learn more

Google Cloud Security Scanner

Blog Post

Continuous Integration & Continuous Delivery (CI/CD)

5 Techniques to Avoid Unwanted Outcomes with Cloud Security Scanner

Cloud Security Scanner checks for security vulnerabilities in your App Engine and Compute Engine web applications. It is designed to complement your existing secure design and development processes.

Learn more

Cloud Armor works as a multi-layer firewall for your GCP resources. To configure it, you must use Security Policies which are basically rules that allow or deny traffic from an IP or an IP range.

Blog Post

Data Loss Protection

How to Configure Google Cloud Armor as a Multi-Layer Firewall

In our three-part series Cloud Armor works as a multi-layer firewall for your GCP resources. To configure it, you must use Security Policies which are basically rules that allow or deny traffic from an IP or an IP range.

Learn more

We are an international squad of professionals working as one.

Email

[email protected]

logos