Needles in heaps, allocator primitives, posts, tutorials, papers, research notes ...

Your search for

resolved the following candidate gadgets:

Cheat sheet : Installing Snorby 2.2 with Apache2 and Suricata with Barnyard2 on Ubuntu 10.x

corelanc0d3r February 27, 2011
After spending a few hours fighting a battle against Snorby and Apache2 + Passenger, I finally managed to get it to run properly on my Ubunty 10.x box (32bit). Looking back, I figured I might not be the only one who is having issues with this. So I decided to publish the notes I took while setting everything up, and as a little bonus, explain how to install and configure Suricata as well (configured in combination with barnyard2 which will pick up local logs and send them to the remote MySQL server). Read more

Backtrack 4 cheat sheet

corelanc0d3r July 4, 2009

Download backtrack from http://www.remote-exploit.org/backtrack_download.html. Current version at the time of writing is BT4 Pre-Final.This document is based on BT4 pre-final. Ergo, some of the instructions below may not work with other versions of BT.

FYI : An excellent guide Read more

Cisco switch IOS cheat sheet

corelanc0d3r June 22, 2008

Reset to factory defaults :

  • connect console (9600/8/None/1, no flow control)
  • take out power cable
  • press mode button (at the front), hold it,  and put power cable back
  • switch will go into recovery mode
  • run :
    • flash_init
    • load_helper
  • rename Read more

Starting to write Immunity Debugger PyCommands : my cheatsheet

corelanc0d3r January 26, 2010

When I started Win32 exploit development many years ago, my preferred debugger at the time was WinDbg (and some Olly). While Windbg is a great and fast debugger, I quickly figured out that some additional/external tools were required to Read more

Cheatsheet : Cracking WPA2 PSK with Backtrack 4, aircrack-ng and John The Ripper

corelanc0d3r February 24, 2009

Basic steps :

  • Put interface in monitor mode
  • Find wireless network (protected with WPA2 and a Pre Shared Key)
  • Capture all packets
  • Wait until you see a client and deauthenticate the client, so the handshake can be captured
  • Crack Read more

Cheatsheet : Cracking WEP with Backtrack 4 and aircrack-ng

corelanc0d3r February 20, 2009

I know, there a probably already a zillion number of websites that show how to crack WEP.

So I guess this will be website zillion+1 learning how to audit your own WEP security. To be honest, the main reason Read more

Exchange 2007 Administration : Setup and Delegation

corelanc0d3r October 12, 2007

Management tools for 32bit OS

Download from : http://www.microsoft.com/downloads/details.aspx?familyid=6BE38633-7248-4532-929B-76E9C677E802&displaylang=en. During installation, you need to have access to AD. Furthermore, the tools won't work on Vista. You'll get a similar error when those conditions are not met:    Check Read more

Zabbix SQL Injection/RCE - CVE-2013-5743

Corelan Team (Lincoln) October 4, 2013

Table of Contents

Table of Contents

QuickZip Stack BOF 0day: a box of chocolates

corelanc0d3r March 27, 2010

Over the last couple of weeks, ever since I published 2 articles on the Offensive Blog, I have received many requests from people asking me if they could get a copy of those articles in pdf format.  My blog Read more