VS-Labs
Security Research
Analyzing CVE-2019-1436 on Windows 10 v1903
VerSprite's Research team uncovers silently patched information leak within Win32k Windows 10 v1709 to v1903. Exploitation of this vulnerability allows attackers to leak the value of win32kbase!gahDpiDepDefaultGuiFonts. Read the N-Day vulnerability and exploit analysis here.
Application Security, Mobile Security Testing, Security Research
Android Emulator Detection
The two techniques we will leverage in Android emu...
Application Security, Mobile Security Testing, Security Research
Baidu Browser for Android Insecurely Handles the Intent Url Scheme
VerSprite Research discovered the Baidu Browser fo...
Application Security, Mobile Security Testing, Security Research
iOS Reverse Engineering: Part Two – Debugging and Tracing with LLDB
In part two of this blog series, we will demonstra...
Application Security, Mobile Security Testing, Security Research
iOS Reverse Engineering: Part One – Configuring LLDB
In this post, we will show you how to configure an...
Application Security, Security Research
Experiments with JSON-IO, Serialization, Mass Assignment, and General Java Object Wizardry
My focus is currently on Java libraries that suppo...
Application Security, Security Research
Quick and Dirty Web Services Testing with Suds and Burp Suite
This is a really simply example of using the Pytho...
Application Security, Security Research
Exploiting XML Serialization in Python
Lately I have been really interested in XML serial...