Corelan Research

Two decades of exploit development research, techniques, and knowledge — shared openly and for free with the community.

Quick links:

Corelan Exploit Development tutorials
Support the community, get Corelan merchandise
Professional Exploit Development training

All articles:

 HITB2012AMS Day 1 - Intro and Keynote

corelanc0d3rMay 24, 2012

Introduction Good morning everyone, After spending a couple of hours on the train, picking up my HITB badge, meeting with some of the organizers …

​ Read More

 Hack In The Box Amsterdam 2012 - Preview

corelanc0d3rMay 17, 2012
In less than a week from now, Hack In The Box Amsterdam will open its 2012 edition. The conference will take place in the Okura Hotel, and features …
​ Read More

 Reversing 101 - Solving a protection scheme

Corelan Team (fancy)May 14, 2012
In this post, we'll look at an application reversing challenge from HTS (hackthissite.org) resembling a real-life protection scheme. Put simple, the…
​ Read More

 BlackHat EU 2012 - Day 3

corelanc0d3rMarch 16, 2012

Good morning, Since doing live-blogging seemed to work out pretty well yesterday, I'll do the same thing again today.  Please join in for day 3 at …

​ Read More

 BlackHat EU 2012 - Day 2

corelanc0d3rMarch 15, 2012

Welcome back friends, at day 2 of BlackHat Europe 2012, held in the Grand Hotel Krasnapolsky in the wonderful city of Amsterdam. Today, I'm going…

​ Read More

 BlackHat EU 2012 - Day 1

corelanc0d3rMarch 14, 2012

  Introduction - Back in Amsterdam ! After a 2 year detour in Barcelona, BlackHat Europe has returned to Amsterdam again this year. After spending …

​ Read More

Corelan Research is a long-running cybersecurity research project focused on exploit development, vulnerability research and Windows internals.
Since 2009, we have published deep technical tutorials covering topics such as stack-based exploitation, heap exploitation, shellcoding, reverse engineering and debugging.
These tutorials have helped thousands of security researchers, penetration testers, exploit developers and exploit dev trainers learn how modern memory corruption vulnerabilities work.