With Great Research Comes Great Responsibility.

Welcome to our research and development platform: F-Secure Labs. Here we dissect industry news and trends, publish research, and share our tools with the security community.

Whitepaper

Apple Safari Pwn2Own 2018 Whitepaper

By Alex Plaskett, Fabian Beterke and Georgi Geshev on 29 October 2018

Read more

Article

DNS Rebinding Headless Browsers

By Alexandre Kaskasoli on 23 August 2018

Read more

dref

By Alexandre Kaskasoli on 20 August 2018

Read more

Whitepaper

Huawei Mate 9 Pro Mobile Pwn2Own 2017

By Alex Plaskett and James Loureiro on 26 April 2018

Read more

Tools

The following are recent tools published by F-Secure Labs.

Read more

Latest Tools

Needle

The iOS Security Testing Framework.

Drozer

Comprehensive security and attack framework for Android.

Physmem2profit

Physmem2profit can be used to create a minidump of a target hosts' LSASS process by analysing physical memory remotely.

See all

var/log/messages

How are we doing with Android's overlay attacks in 2020?

Mar 27th, 2020

Making Donuts Explode – Updates to the C3 Framework

Mar 10th, 2020

Rethinking Credential Theft

Feb 14th, 2020

TamaGo

Feb 11th, 2020
Slides

Chainspotting: Building Exploit Chains with Logic Bugs

By Georgi Geshev on 13 June 2018

Georgi Geshev and Robert Miller presented 'Logic Bug Hunting in Chrome on Android' at Infiltrate.

Read more