Researchers first.
Consultants second.
Based in Singapore, with a focus on meeting global standards. We work across the security spectrum, including vulnerability research, offensive security, AI security, security for AI systems, and hardware research. The kind of work that ends up as CVEs, Pwn2Own wins, and conference talks — not just PDF reports.
We find vulnerabilities in the software the world depends on, before adversaries do.
Founded in Singapore, STAR Labs is a vulnerability research and offensive security team competing and delivering at an international level. Our researchers have won Master of Pwn at Pwn2Own twice, earned credits from Microsoft, Google, Apple, Oracle, and Samsung, and published original research at top-tier security conferences worldwide. We are not a consultancy that dabbles in research. We are researchers who also consult.
Our work covers the full attack surface: kernel and hypervisor exploitation, browser and runtime security, firmware and embedded systems, cloud and container infrastructure, and the growing attack surface introduced by AI-integrated applications. When we assess a product or system, we approach it the same way a capable adversary would, with the goal of finding what matters before it is found by someone with worse intentions.
Beyond the work itself, we invest in the next generation. We mentor junior researchers, contribute to the regional security community, and hold ourselves to a standard of responsible disclosure that we believe makes the broader ecosystem more secure. Singapore is where we are based. The problems we work on are global.
PTE. LTD.
#05-02 Harbourside Building 2
Singapore 119844