WELCOME TO MWR LABS

On the MWR Labs website you will discover a wealth of exciting and interesting information from the world of Information Security including an insight into the security research activities being undertaken by the MWR team. You will find updates from the current research projects as well as the white papers, tools and advisories that have been published. You should also find news articles and other items of interest about the latest happenings in the IT security industry. So whether your interest is the latest developments with respect to security testing or the research being conducted into a specific technology, there should be something within MWR Labs of interest.

Advisories

  1. August 17, 2015
    Microsoft Office CTaskSymbol Use-After-Free Vulnerability
  2. August 13, 2015
    Sandbox bypass through Google Admin WebView
  3. July 23, 2015
    Samsung S5 Arbitary File Retrieval during SBeam Transfer
  4. July 17, 2015
    JavaScript Privilege Escalation in Adobe Reader

/var/log/messages

  1. August 28, 2015
    44Con 2015 Challenge
  2. June 25, 2015
    Set Fire to the Phone
  3. May 22, 2015
    Android Wear Security Analysis
  4. April 02, 2015
    How to own any windows network with group policy hijacking attacks

Publications

  1. July 03, 2015
    Understanding the Microsoft Office 2013 Protected-View Sandbox
  2. June 05, 2015
    Why Bother Assessing Popular Software?
  3. March 06, 2015
    Watch You Lookin' At?
  4. October 31, 2014
    Windows Services – All roads lead to SYSTEM


drozer enables you to search for security vulnerabilities in apps and devices by assuming the role of an app and interacting with the Dalvik VM, other apps’ IPC endpoints and the underlying OS.


MWR Labs Twitter: