After years of trainings, CTFs, classes, and practice binaries around stack exploits, everything about the heap was still mysterious dark magic to me. A lot of people who had taken high-level Offensive Security courses strongly recommended taking Corelan’s Heap exploit class and said it was a key component of giving them the knowledge needed to succeed at exploit dev and high-level OffSec classes. After completing the Heap exploit class, I have to agree – Peter clearly explained the Heap using terms that made perfect sense to me with my knowledge of the deterministic stack, and shed light on why Heap exploits are harder for software and OS developers to prevent. What was previously dark magic became a simple matter of thinking differently about concepts and structures I already knew. Peter also understands the value of practice and doesn’t leave students hanging after the end of class – he provides a lot of guidance on where to go from here as well as offering ongoing support via Discord. Of all the cybersecurity classes I have taken, this is THE class that goes the extra mile to set students up for longterm success. This class was very, very, very worth the time & money. As I write this, a handful of hours after the end of the last day, my brain has melted, but I can’t wait to wake up tomorrow, review the slides and my notes, and get started on the follow-up exercises.