VS-Labs

Analyzing CVE-2019-1436 on Windows 10 v1903

Analyzing CVE-2019-1436 on Windows 10 v1903

VerSprite's Research team uncovers silently patched information leak within Win32k Windows 10 v1709 to v1903. Exploitation of this vulnerability allows attackers to leak the value of win32kbase!gahDpiDepDefaultGuiFonts. Read the N-Day vulnerability and exploit analysis here.

Watch Now

Category

View All
Frida Engage Part One | Building an ELF Parser with Frida
Application Security, Mobile Security Testing, Security Research

Frida Engage Part One | Building an ELF Parser with Frida

Into the Jar | Jsonpickle Exploitation
Application Security, Security Research

Into the Jar | Jsonpickle Exploitation

Android Titan SMS Trojan Analysis | Part One
Application Security, Mobile Security Testing, Security Research

Android Titan SMS Trojan Analysis | Part One

Multiple Vulnerabilities in Mercury Browser for Android Version 2.2.2 & 3.0.0
Application Security, Mobile Security Testing, Security Research

Multiple Vulnerabilities in Mercury Browser for Android Version 2.2.2 & 3.0.0

Android InfoStealer – Godwon – Analysis
Application Security, Mobile Security Testing, Security Research

Android InfoStealer – Godwon – Analysis

Android Emulator Detection
Application Security, Mobile Security Testing, Security Research

Android Emulator Detection

Baidu Browser for Android Insecurely Handles the Intent Url Scheme
Application Security, Mobile Security Testing, Security Research

Baidu Browser for Android Insecurely Handles the Intent Url Scheme

iOS Reverse Engineering: Part Two – Debugging and Tracing with LLDB
Application Security, Mobile Security Testing, Security Research

iOS Reverse Engineering: Part Two – Debugging and Tracing with LLDB

iOS Reverse Engineering: Part One – Configuring LLDB
Application Security, Mobile Security Testing, Security Research

iOS Reverse Engineering: Part One – Configuring LLDB

Experiments with JSON-IO, Serialization, Mass Assignment, and General Java Object Wizardry
Application Security, Security Research

Experiments with JSON-IO, Serialization, Mass Assignment, and General Java Object Wizardry

Quick and Dirty Web Services Testing with Suds and Burp Suite
Application Security, Security Research

Quick and Dirty Web Services Testing with Suds and Burp Suite

Exploiting XML Serialization in Python
Application Security, Security Research

Exploiting XML Serialization in Python

VerSprite Cyberwatch
Security Research

VerSprite Cyberwatch