Corelan Research

Two decades of exploit development research, techniques, and knowledge β€” shared openly and for free with the community.

Quick links:

πŸ“‘ Exploit Development 
tutorials

πŸŽ₯​ Exploit Development 
videos

πŸ“š Tutorials on Debugging

🧑 Support us

⭐️ Exploit Development training

All articles:

 BlackHat EU 2012 - Day 3

corelanc0d3rMarch 16, 2012

Good morning, Since doing live-blogging seemed to work out pretty well yesterday, I'll do the same thing again today. Β Please join in for day 3 at …

​ Read More

 BlackHat EU 2012 - Day 2

corelanc0d3rMarch 15, 2012

Welcome back friends, at day 2 of BlackHat Europe 2012, held in the Grand Hotel Krasnapolsky in the wonderful city of Amsterdam. Today, I'm going…

​ Read More

 BlackHat EU 2012 - Day 1

corelanc0d3rMarch 14, 2012

Β  Introduction - Back in Amsterdam ! After a 2 year detour in Barcelona, BlackHat Europe has returned to Amsterdam again this year. After spending …

​ Read More

 Debugging Fun - Putting a process to sleep()

Corelan Team (Lincoln)February 29, 2012
Recently I played with an older CVE (CVE-2008-0532, http://www.securityfocus.com/archive/1/489463, by FX) and I was having trouble debugging the CGI …
​ Read More

 Exploit writing tutorial part 11 : Heap Spraying Demystified

corelanc0d3rDecember 31, 2011
A lot has been said and written already about heap spraying, but most of the existing documentation and whitepapers focus on IE7 or older versions. …
​ Read More

Corelan Research is a long-running cybersecurity research project focused on exploit development, vulnerability research and Windows internals.   Since 2009, we have published deep technical tutorials covering topics such as stack-based exploitation, heap exploitation, shellcoding, reverse engineering and debugging. 
These tutorials have helped thousands of security researchers, penetration testers, exploit developers and exploit dev trainers learn how modern memory corruption vulnerabilities work.