# Nightmare

## 1. Introduction

1. strings  (picoCTF 2018)
2. Helithumper RE
3. Beleaf  (CSAW 2019)

***

## 2. Stack Buffer Overflow

1. [pwn1](/trees-daily-journal/ctf-writeups/tamuctf/2019/pwn1.md)  (TAMU 2019)
2. JustDoIt  (TokyoWesterns 2017)
3. Warmup  (CSAW 2016)
4. Getit  (CSAW 2018)
5. Vulnchat  (TUCTF 2017)
6. SimpleCalc  (BKP 2016)
7. Pilot  (CSAW 2017)
8. [pwn3](/trees-daily-journal/ctf-writeups/tamuctf/2019/pwn3.md)  (TAMU 2019)
9. Speedrun1  (Defcon Quals 2019)
10. Feedme  (Defcon Quals 2016)
11. [baby\_boi](/trees-daily-journal/ctf-writeups/csaw/2019/baby_boi.md)  (CSAW 2019)
12. SVC  (CSAW Quals 2017)
13. Overfloat  (Facebook CTF 2019)
14. storytime  (HS 2019)

***

## 3. Format Strings

1. bbpwn  (BackdoorCTF 2017)
2. echo  (PicoCTF 2018)
3. Greeting  (TokyoWesterns 2016)

***

## 4. Array Indexing

1. DoubleTrouble  (CSAW 2018)
2. XKCD  (Defcon Quals 2016)
3. Alternate Solution  (SunshineCTF 2017)
4. Dreamheaps  (SwampCTF 2019)

***

## 5. Bad Seed

1. time  (H3)
2. Tuxtalkshow  (HSCTF 2019)
3. Prepared  (Sunshine CTF 2017)

***

## 6. Z3 & Symbolic Execution (angr)

1. abyte  (HSCTF 2019)
2. revrevrev  (TokyoWesterns 2017)
3. Future  (TUCTF)
4. r100  (Defcamp CTF Quals 2015)
5. icancount  (Plaid CTF 2019)
6. fairlight  (Securityfest 2019)

***

## 7. Return Oriented Programming (ROP)

#### 1. Partial Overwrite

1. stackstuff  (Hack.lu 2015)
2. [pwn2](/trees-daily-journal/ctf-writeups/tamuctf/2019/pwn2.md)  (TAMU 2019)
3. vulnchat2  (TUCTF 2017)

#### 2. Stack Pivoting

1. speedrun4  (Defcon Quals 2019)
2. onewrite  (insomnihack 2018)
3. sum  (SECCON 2019)
4. b0verflow  (XCTF 2016)

#### 3. SIGROP (SROP)

1. funsigals  (BackdoorCTF 2019)
2. [small\_boi](/trees-daily-journal/ctf-writeups/csaw/2019/small_boi.md)  (CSAW 2019)
3. stupidrop  (InCTF 2017)
4. syscaller  (SwampCTF 2019)

#### 4. ret2csu

1. babystack  (0CTF 2018)
2. ret2csu  (ROP Emporium)

#### 5. ret2system

1. marymorton  (ASIS 2017)
2. poor\_canary  (hxp 2018)
3. guestbook  (TUCTF)

***

## 8. Heap Exploitation

***

## 9. Integer Overflows

1. vuln  (sploitFUN)
2. Puzzle
3. Signed vs Unsigned

***

## 10. FILE Exploitation

1. Bad File  (SwampCTF 2019)

***

## 11. Grab Bag

#### 1. Shellcoding 

1. shell\_code  (CSAW 2018)
2. speedrun-003  (Defcon Quals 2019)
3. speedrun-006  (Defcon Quals 2019)

#### 2. Patching

1. gametime  (CSAW Quals 2016)
2. ELFCrumble  (Defcon Quals 2018)
3. PPP  (Plaid CTF 2019)

#### 3. .NET

1. Bikinibonanza  (CSAW 2013)
2. DotNetReversing  (CSAW 2013)
3. re06  (Whitehat 2018)

#### 4. Obfuscation

1. Unholy  (BKP 2016)
2. Wyvern  (CSAW 2015)
3. Prophecy  (CSAW 2017)
4. MOVfuscation
   1. babyc  (ASIS 2018)
   2. movfuscated  (REcon)
   3. Future Fun  (SwampCTF 2019)

#### 5. Custom Architecture

#### 6. Emulation

1. Hackingtime  (CSAW 2015)
2. Gibberishcheck  (CSAW 2019)
3. Shop  (HackIM 2019)

***


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://trees-daily-journal.gitbook.io/trees-daily-journal/ctf-writeups/nightmare.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.