vulnerability research / reverse engineering / AI tooling

Xchg Labs is a vulnerability research and reverse engineering lab tackling the hardest problems in government and commercial security using exceptional in-house AI tooling.

Discuss a target Read research

Latest research from the blog

GPSD master @ 43a340603

Fuzzing GPSD, Part 3: The Bugs

Eight memory-safety issues from public work item #397, including Skytraq RCE, NMEA format strings, AIS writes, and parser leaks.

Read

gpsd_fuzzer lessons Fuzzing GPSD, Part 2

Target selection, mutation scheduling, corpus quality, performance, and crash triage.

gpsd_fuzzer Fuzzing GPSD, Part 1

Building a structure-aware LibAFL fuzzer around GPS protocol parser shapes.

Public work

Public Research

View all

Xchg Labs Public Research

QEMU EDU Guest-to-host escape

dnsmasq 2.92 Five CVEs

lwIP 2.2.1 SMTP AUTH overflow

Linux KVM Dirty-ring OOB

GPSD Part 1 Lexer harness

GPSD Part 2 Lessons learned

GPSD Part 3 Bugs + RCE