Use an off-by-one write to achieve arbitrary read/write in kernel

Integer type confusion and seccomp bypass

Complete walkthrough of the T19 challenge

Escape the game field to run around on the stack

Switch from 32-bit to 64-bit mode to get around syscall filtering

Creating a syscall gadget to orw flag

ARM rop

rop chain through web-interface

Format string vulnerability to create a stack writer

Unlink into bss