VerSprite's Vulnerability Security Research and Development Services VerSprite's Vulnerability Security Research and Development Services

Home  |  Cybersecurity Consulting Notice: Undefined variable: children in /var/www/html/wp-content/themes/versprite/tpl-research-services.php on line 15  |  Research

Security Research

Offensive Minded Security Exploit Development

Vulnerability Research, Exploit Development, Reverse Engineering, and Security Training

Zero Day Vulnerability Research

Maintain awareness regarding unknown threats to your products, technologies, and enterprise networks. Clients that are willing to take the next step in proactively securing their flagship product or environment can leverage our zero-day vulnerability research offering. This subscription-based capability provides the customer immediate access to zero-day vulnerabilities affecting their products, and software used throughout their organization.

B.O.S.S (Back of Store Security) Research

Essentially a research for hire for client specific goals and objectives. VerSprite's Research and Development division prides itself on being able to solve technical challenges for our clients. VerSprite's BOSS offering allows our clients to utilize these capabilities and dive into the security internals of their products.

Advanced Security Training

VerSprite's advanced technical security training is created from VerSprite's Research and Development division. VerSprite's training offerings provide unique and original content that targets the advanced user and allows them to up their game in a technical discipline. Learn More →

View our security advisories detailing vulnerabilities found in major products for MacOs, Windows, Android, and iOS.

Access Advisories

arrow right

Latest Research

Chrome Exploit

Security Resources

To teach Chrome exploitation to my team, I've selected a previous 0day RCE that I found last year for my company VerSprite: CVE-2021-21224 https://crbug.com/1195777, and I've paired it with a SBX bug found by Tim Becker: https://crbug.com/1062091.

Read more

arrow right
Printer Vulnerability

Security Resources

In this blog, we dive into and show how attackers could combine the 0day CVE-2020-0986 with the 0day in IE browser to achieve privilege escalation and then execute code remotely. Now, Maddie Stone, a security researcher on Google's Project Zero team, found that an attacker can still trigger CVE-2020-0986 and elevate kernel privileges by sending an offset instead of a pointer.

Read more

arrow right
Windows Vulnerability

Security Resources

in this blog, we show POC Windows LPE CNG.sys CVE-2020-17087: root cause + patch analysis + reduction of crashing sample to be a 1 liner

Read more

arrow right
Cyber Attacks on Smart Cars

Security Resources

The aim of this research is to uncover the vulnerabilities of the keyless smart cars as well as to hack and exploit them through the technologies like software defined radio (SDR) and devices GNURadio and HackRF.

Read more

arrow right
Android

Security Resources

This blog continues Part I of the android exploitation experiment. We build a proof-of-concept code with an Android NDK. UAF vulnerability (CVE-2019-2215)

Read more

arrow right
Android Vulnerability

Security Resources

This blog post will trigger a UAF vulnerability (CVE-2019-2215) in Binder from scratch. After preparing the necessary environment and tools, we will reach the KASAN output with the POC exploit.

Read more

arrow right

We are an international squad of professionals working as one.

logos

Copyright 2021 VerSprite - All Rights Reserved