Awesome Windows CTF

Where my Windows challenges at?


Making something akin to awesome-mobile-ctf but for Windows to curate a list of Windows CTF problems.

Recent Updates

Pwnables

See Xion’s WinPwn resources for more references on Windows exploitation.

NameCompetitionWriteupsTopics
chatterboxCSAW CTF 2021 Finals
baby kernelpbctf 2021
  • Windows kernelmode
A..Mazing.exeSSTIC 2021 Challenge
  • Usermode
pe_analysis (Description)Pwn2Win CTF 2021
  • Usermode
  • Open source
  • PE file format
Archangel Michael's StorageHITCON CTF 2020
  • Usermode segment heap
LuciferHITCON CTF 2020
  • Kernelmode segment heap
BitmapManagerDragon CTF 2020
LowFunHeapHack.lu CTF 2020
  • Windows heap exploitation
winsanityCodegate 2020 Finals
  • Userland exploitation
winterpreterCodegate 2020 Quals
  • Userland exploitation
WinKern x64 - Use After FreeRoot MeN/a
  • Kernel mode
WinKern x64 - Advanced stack buffer overflow - ROPRoot MeN/a
  • Kernel mode
dadadbHITCON 2019 (Quals)
  • Windows heap exploitation (segment heap)
Breath of ShadowHITCON 2019 (Quals)
  • KVA Shadow
LazyFragmentationHeapWCTF 2019
  • Windows heap exploitation (LFH)
BabyKernelDragon CTF 2019
winhttpdInsomnihack 2019 (Quals)
  • Windows heap exploitation (private heap)
PE32 - Stack buffer overflow basicRoot MeN/a
  • Usermode
  • Stack buffer overflow
PE32 - Advanced stack buffer overflowRoot MeN/a
  • Usermode
  • Stack buffer overflow
PE32+ Format string bugRoot MeN/a
  • Usermode
  • Format string bug
PE32+ Basic ROPRoot MeN/a
  • Usermode
  • ROP
elgoog/SearchmeWCTF 2018
  • Windows heap exploitation (PagedPool)
pigdriverWCTF 2018
WindowslandHITCON CTF 2018
globetrotterCSAW CTF 2018 FinalsHeap overflow
StrikeBackInsomnihack 2018
FastcalcCONFidence CTF 2017 (Teaser)
Fastcalc (Hardened)CONFidence CTF 2017 (Finals)
firewallCSAW 2017 Quals
babystackHITB GSEC 2017
babyshellcodeHITB GSEC 2017
DividedDEFCON 2017 (Quals)
winworldInsomnihack 2017 (Teaser)
easywinInsomnihack 2017 (Finals)
pwn2AIS3 2017 (Quals)
BubblegumCONFidence 2016 (Teaser)
EntreeCONFidence 2016 (Finals)
easierDEFCON 2016 (Quals)
100percentBelluminar 2016
thing2DEFCON 2015 (Quals)
drunkBCTF 2015
VBS0CTF 2015 (Quals)
  • CVE-2014-6332 (VBScript/IE)
greenhorndCSAW 2014 (Quals)
  • Stack buffer overflow
  • ROP to defeat ASLR/DEP
LinksCSAW 2014 (Finals)
BrokenwindowPower of XX 2014 (Finals)
BreznparadisebugmaschineHack.lu CTF 2013

Reversing

NameCompetitionWriteupsTopics
catharsispbctf 2021
Brutal OldskullTeaser Dragon CTF 2018
STDINPragyan CTF 2016
MemoryCONFidence 2014

Misc

NameCompetitionWriteupsTopics
APT41KipodAfterFree CTF 2020

© 2018. All rights reserved.

Powered by Hydejack v8.5.1