starlabs (@starlabs

starlabs

314 posts

starlabs

@starlabs_sg

A Singapore company that discovers vulnerabilities to help customers mitigate the risks of cyber attacks. Organisers of @offbyoneconf

Singapore

starlabs.sg

Joined September 2018

Following

10K

Followers

starlabs
@starlabs_sg
Sep 25, 2023
Are you ready for a deep dive into MS Sharepoint? Our team member, @testanull ,is sharing with everyone his latest blog post. [P2O Vancouver 2023] SharePoint Pre-Auth RCE chain (CVE-2023–29357 & CVE-2023–24955) starlabs.sg/blog/2023/09-s… We hope that everyone enjoyed reading it
68K
starlabs
@starlabs_sg
May 21, 2022
We are a small little company in little red dot, Singapore. We are lucky that we just won the Master of Pwn. All the other contestants did very well too. Making this event a successful one. We got so much more to learn from them & other researchers x.com/thezdi/status/… [1/n]
TrendAI Zero Day Initiative
@thezdi
May 21, 2022
With all of the points totaled, @starlabs_sg has been crowned Master of Pwn for #Pwn2Own Vancouver 2022! They wan $270,000 and 27 points during the contest.
starlabs
@starlabs_sg
May 21, 2023
We have just uploaded the slides for "Unearthing Vulnerabilities in the Apple Ecosystem: The Art of KidFuzzerV2.0" by @Peterpan980927 Our team member is truly honored to participate in OffensiveCon 2023. github.com/star-sg/Presen…
28K
starlabs
@starlabs_sg
May 12, 2022
"New Wine in Old Bottle - Microsoft SharePoint Post-Auth Deserialization RCE (CVE-2022-29108)" We are happy to share the technical details of how our team member @testanull found and exploited CVE-2022-29108 🤩 starlabs.sg/blog/2022/05/n…
starlabs
@starlabs_sg
Jul 10, 2025
One of our current intern, @goatmilkkk shared his Chrome-atic escape adventure using CVE-2024-30088 Epic obstacles documented in it too!
starlabs.sg
Fooling the Sandbox: A Chrome-atic Escape
For my internship, I was tasked by my mentor Le Qi to analyze CVE-2024-30088, a double-fetch race condition bug in the Windows Kernel Image ntoskrnl.exe. A public POC demonstrating EoP from Medium...
27K
starlabs
@starlabs_sg
Apr 28, 2023
It's TGIF and we have a new blog post by our team member, @testanull Microsoft Exchange Powershell Remoting Deserialization leading to RCE (CVE-2023-21707) Thanks to all the other team members for reviewing it as well.
starlabs.sg
Microsoft Exchange Powershell Remoting Deserialization leading to RCE (CVE-2023-21707)
Introduction While analyzing CVE-2022-41082, also known as ProxyNotShell, we discovered this vulnerability which we have detailed in this blog. However, for a comprehensive understanding, we highly...
41K
starlabs
@starlabs_sg
Aug 19, 2022
Today, our team member, @tuanit96 , shared his analysis on: "Exploiting CVE-2021-1789 : WebKit JSPropertyNameEnumerator Out-of-Bounds Read" - starlabs.sg/blog/2022/08-e… Thanks to our other team member, @Chocologicall for the help in editing it.
starlabs.sg
Exploiting WebKit JSPropertyNameEnumerator Out-of-Bounds Read (CVE-2021-1789)
Initially, our team member, Đỗ Minh Tuấn, wanted to write about the RCA (Root Cause Analysis) of CVE-2021-1870 which APT used. But Maddie Stone pointed it to us that it was actually CVE-2021-1789....
starlabs
@starlabs_sg
Sep 8, 2022
Today @daniellimws & @tuanit96 are sharing their "Step-by-Step Walkthrough of CVE-2022-32792 - WebKit B3ReduceStrength Out-of-Bounds Write" starlabs.sg/blog/2022/09-s… Awesome work by Daniel Lim and Minh Tuan.
starlabs
@starlabs_sg
Jun 26, 2020
Blog post on "Oracle VirtualBox VHWA Use-After-Free Privilege Escalation Vulnerability” starlabs.sg/blog/2020/06/o… by our former intern before he got enlisted for NS @__lord_idiot We hope it’s good for everyone to read on a Friday.
starlabs
@starlabs_sg
Jan 9, 2021
It's time for another blog post. Chrome 1-Day Hunting - Uncovering and Exploiting CVE-2020-15999 by our team mate @Hacker_Chai We hope everyone will enjoy the blog post by him starlabs.sg/blog/2021/01/c…
starlabs
@starlabs_sg
Jun 14, 2023
The Old, The New and The Bypass - One-click/Open-redirect to own Samsung S22 at Pwn2Own 2022 written by @testanull starlabs.sg/blog/2023/06-t… Thanks to @thezdi for reviewing and inputs to the blog post. Greatly appreciate that.
46K
starlabs
@starlabs_sg
Aug 3, 2025
Reverse engineering Google's undocumented DSP pays off! Our co-workers @st424204 & @Peterpan980927 found the first public vuln in Pixel 8's DSP → kernel takeover MTE? What MTE? 😎 Their talk got accepted at @HacksInTaiwan
Cracking the Pixel 8: Exploiting the Undocumented DSP to Bypass MTE - HITCON 2025
From hitcon.org
12K
starlabs
@starlabs_sg
Mar 17, 2025
STAR Labs Windows Exploitation Challenge Writeup We're happy to announce that @Fr0st1706 solved our recent Windows exploitation challenge & earned a ticket to @offbyoneconf ! 🎉 Full writeup here: starlabs.sg/blog/2025/03-s… Thank you to everyone who participated!
starlabs.sg
STAR Labs Windows Exploitation Challenge 2025 Writeup
STAR Labs Windows Exploitation Challenge Writeup Over the past few months, the STAR Labs team has been hosting a Windows exploitation challenge. I was lucky enough to solve it and got myself a ticket...
16K
starlabs
@starlabs_sg
Dec 24, 2024
🎄 All I Want for Christmas is a CVE-2024-30085 Exploit 🎄 As always, we at @starlabs_sg are sharing what we learnt. This time, it's brought to you by Cherie-Anne Lee starlabs.sg/blog/2024/all-…
17K