老外写的一份关于windows平台下的exploit 编写专题,目前共有十篇,其中关于SEH分两篇写,共七部分,最后一篇是2009.11.6刚写的,可能还有下文,期待中……作者的博客上还有其它经典的文章,推荐大家去看下。如果可以的话,希望可以有几个人一块将这个专题翻译成中文,方便大家学习,毕竟这一专题,每篇都比较长,一个人翻译的话,工作量比较大,所以建议多人合译,提高出产时间,就像之前翻译那个OD教程那一专题一样,呵呵……

> * Stack based overflows (direct RET overwrite) :
> (Tutorial Part 1)
http://www.corelan.be:8800/index.php/2009/07/19/exploit-writing-tutorial-part-1-stack-based-overflows/ 
译文:(by moonife)Exploit 编写系列教程第一篇:
http://bbs.pediy.com/showthread.php?p=713035#post713035

> * Jumping to shellcode :
> (Tutorial Part 2)  
http://www.corelan.be:8800/index.php...torial-part-2/ 
 译文:(by riusksk)Exploit 编写系列教程第二篇:
 http://bbs.pediy.com/showthread.php?p=715546#post715546 

> * Stack based overflows - SEH
> (Tutorial Part 3)  
http://www.corelan.be:8800/index.php...al-part-3-seh/ 
译文(by:moonife):Exploit编写系列教程第三篇ahttp://bbs.pediy.com/showthread.php?t=102040

> * Stack based overflows - SEH part 2
> (Tutorial Part 3b)    
> http://www.corelan.be:8800/index.php/2009/07/28/seh-based-exploit-writing-tutorial-continued-just-another-example-part-3b/ 
译文(by:moonife):Exploit编写系列教程第三篇bhttp://bbs.pediy.com/showthread.php?t=102040

> * Writing Metasploit exploits
> (Tutorial Part 4)   
译文:(by riusksk)Exploit 编写系列教程第四篇:
http://bbs.pediy.com/showthread.php?t=101887
http://www.corelan.be:8800/index.php/2009/08/12/exploit-writing-tutorials-part-4-from-exploit-to-metasploit-the-basics/ 

> * Using debuggers to speed up exploit development
> (Tutorial Part 5)     
> http://www.corelan.be:8800/index.php/2009/09/05/exploit-writing-tutorial-part-5-how-debugger-modules-plugins-can-speed-up-basic-exploit-development/
  译文(by:riusksk)Exploit编写系列教程第五篇:
http://bbs.pediy.com/showthread.php?p=828359#post828359
 
> * Bypassing Stack Cookies, Safeseh, NX/DEP and ASLR
> (Tutorial Part 6) 
http://www.corelan.be:8800/index.php/2009/09/21/exploit-writing-tutorial-part-6-bypassing-stack-cookies-safeseh-hw-dep-and-aslr/ 
  译文(by dge)Exploit编写系列教程第六篇:
 http://bbs.pediy.com/showthread.php?t=102719/

> * Writing stack based unicode exploits
> (Tutorials Part 7)      
> http://www.corelan.be:8800/index.php/2009/11/06/exploit-writing-tutorial-part-7-unicode-from-0x00410041-to-calc/    
 译文(by riusksk)Exploit 编写系列教程第七篇:
http://bbs.pediy.com/showthread.php?t=120637

> * Win32 Egg Hunting
> (Tutorials Part 8)   
http://www.corelan.be:8800/index.php...2-egg-hunting/
 译文(by 秋风寒)Exploit编写系列教程第八篇:
http://bbs.pediy.com/showthread.php?t=116190

Exploit writing tutorial part 9 : Introduction to Win32 shellcoding
http://www.corelan.be:8800/index.php...2-shellcoding/
 译文(by dragonltx)Exploit 编写系列教程第九篇
http://bbs.pediy.com/showthread.php?t=120649

Exploit writing tutorial part 10 : Chaining DEP with ROP  the Rubik’s[TM] Cube 
http://www.corelan.be:8800/index.php...rubikstm-cube/
 译文(by dragonltx)Exploit 编写系列教程第十篇
http://bbs.pediy.com/showthread.php?t=120952

Exploit writing tutorial part 11 : Heap Spraying Demystified
https://www.corelan.be/index.php/201...g-demystified/
 译文(by riusksk):Exploit 编写系列教程第十一篇(上)
http://bbs.pediy.com/showthread.php?t=151381

译文(by hellok):Exploit 编写系列教程第十一篇:堆喷射技术揭秘(下)
http://bbs.pediy.com/showthread.php?t=154313