Corelan Research

Two decades of exploit development research, techniques, and knowledge — shared openly and for free with the community.

Quick links:

Corelan Exploit Development tutorials
Support the community, get Corelan merchandise
Professional Exploit Development training

All articles:

 Death of an ftp client / Birth of Metasploit modules

corelanc0d3rOctober 12, 2010
Over the past few weeks, Corelan Team has given its undivided attention to fuzzing ftp client applications. Using a custom built ftp client fuzzer, …
​ Read More

 BruCON 2010 : Day 0x2

corelanc0d3rSeptember 25, 2010

[WORKSHOP] – Malicious PDF Analysis I started the second day at BruCON with attending the workshop about analyzing malicious pdf files. Didier …

​ Read More

 BruCON 2010 : Day 0x1

corelanc0d3rSeptember 23, 2010

After hearing a lot of great things about the first edition of BruCON (in 2009), I decided to attend the con this year.  The fact that BruCON …

​ Read More

 DLL Hijacking (KB 2269637) - the unofficial list

corelanc0d3rAugust 25, 2010

This page hosts an unofficial list of applications that are said to be vulnerable to the dll hijacking flaw (or feature or whatever you want to …

​ Read More

 Exploit notes - win32 eggs-to-omelet

corelanc0d3rAugust 22, 2010

In article 8 of my exploit writing series, I have introduced the concept of egg hunters, and explained what an omelet hunter is and how it works. …

​ Read More

 Cisco VoIP Phones – A Hackers Perspective

Corelan Team (chap0)July 27, 2010

Introduction In the world of VoIP phones, each person may look at them differently. For some, an annoyance that sit on their desk, or maybe for …

​ Read More

Corelan Research is a long-running cybersecurity research project focused on exploit development, vulnerability research and Windows internals.
Since 2009, we have published deep technical tutorials covering topics such as stack-based exploitation, heap exploitation, shellcoding, reverse engineering and debugging.
These tutorials have helped thousands of security researchers, penetration testers, exploit developers and exploit dev trainers learn how modern memory corruption vulnerabilities work.