Corelan Research

Two decades of exploit development research, techniques, and knowledge — shared openly and for free with the community.

Quick links:

Corelan Exploit Development tutorials
Support the community, get Corelan merchandise
Professional Exploit Development training

All articles:

 Installing Watobo on BackTrack 5

Corelan Team (fancy)July 23, 2011
Watobo author Andy Schmidt made 2 great videos about installing Watobo on Windows and on BackTrack 5. I created a rather simple and short shell …
​ Read More

 mona.py - the manual

corelanc0d3rJuly 14, 2011
This document describes the various commands, functionality and behaviour of mona.py. Released on june 16, this pycommand for Immunity Debugger …
​ Read More

 ROP your way into B-Sides Las Vegas 2011

corelanc0d3rJuly 12, 2011
Ahh.. Vegas.. What happens in Vegas, stays in Vegas right ? With a variety of cons ahead (BlackHat, Defcon, B-Sides, …) there is plenty of things …
​ Read More

 Universal DEP/ASLR bypass with msvcr71.dll and mona.py

corelanc0d3rJuly 3, 2011
Over the last few weeks, there has been some commotion about a universal DEP/ASLR bypass routine using ROP gadgets from msvcr71.dll (written by …
​ Read More

 Mona 1.0 released !

corelanc0d3rJune 16, 2011
FINALLY ! After spending almost 6 months of designing, developing and testing, and after 'surviving' 2 presentations (at AthCon and Hack In Paris), I…
​ Read More

 Hack Notes : Ropping eggs for breakfast

corelanc0d3rMay 12, 2011

Introduction I think we all agree that bypassing DEP (and ASLR) is no longer a luxury today. As operating systems (such as Windows 7) continue to …

​ Read More

Corelan Research is a long-running cybersecurity research project focused on exploit development, vulnerability research and Windows internals.
Since 2009, we have published deep technical tutorials covering topics such as stack-based exploitation, heap exploitation, shellcoding, reverse engineering and debugging.
These tutorials have helped thousands of security researchers, penetration testers, exploit developers and exploit dev trainers learn how modern memory corruption vulnerabilities work.