Corelan Research

Two decades of exploit development research, techniques, and knowledge — shared openly and for free with the community.

Quick links:

📑 Exploit Development 
tutorials

🎥​ Exploit Development 
videos

📚 Tutorials on Debugging

🧡 Support us

⭐️ Exploit Development training

All articles:

 HITB2012AMS Day 2 - Ghost in the Allocator

corelanc0d3rMay 25, 2012

Ghost in the Allocator - Abusing the Windows 7 / 8 Low Fragmentation Heap After introducing himself, Steven Seeley, Senior Penetration Tester and …

​ Read More

 HITB2012AMS Day 2 - Attacking XML Processing

corelanc0d3rMay 25, 2012

Attacking XML Processing Dressed in a classy Corelan Team T-Shirt, Nicolas Grégoire kicks off his presentation by introducing himself. Nicolas has …

​ Read More

 HITB2012AMS Day 2 - Taint Analysis

corelanc0d3rMay 25, 2012

Automatically Searching for Vulnerabilities: How to use Taint Analysis to find Security Flaws (by Alex Bazhanyuk (not present) and Nikita Tarakanov,…

​ Read More

 HITB2012AMS Day 2 - PostScript - Danger Ahead

corelanc0d3rMay 25, 2012

Good morning everyone, welcome back at Hack In The Box 2012 Amsterdam ! Before looking at the first talk that I attended today, I would like to …

​ Read More

 HITB2012AMS Day 1 - Window Shopping

corelanc0d3rMay 24, 2012

Window Shopping: Browser Bugs Hunting in 2012 In the last talk of Day 1, Roberto Suggi Liverani and Scott Bell (not present during the …

​ Read More

Corelan Research is a long-running cybersecurity research project focused on exploit development, vulnerability research and Windows internals.   Since 2009, we have published deep technical tutorials covering topics such as stack-based exploitation, heap exploitation, shellcoding, reverse engineering and debugging. 
These tutorials have helped thousands of security researchers, penetration testers, exploit developers and exploit dev trainers learn how modern memory corruption vulnerabilities work.