# 五、高级篇 * [5.0 软件漏洞分析](https://firmianay.gitbook.io/ctf-all-in-one/5_advanced/5.0_vulnerability) * [5.1 模糊测试](https://firmianay.gitbook.io/ctf-all-in-one/5_advanced/5.1_fuzzing) * [5.1.1 AFL fuzzer](https://firmianay.gitbook.io/ctf-all-in-one/5_advanced/5.1_fuzzing/5.1.1_afl_fuzzer) * [5.1.2 libFuzzer](https://firmianay.gitbook.io/ctf-all-in-one/5_advanced/5.1_fuzzing/5.1.2_libfuzzer) * [5.2 动态二进制插桩](https://firmianay.gitbook.io/ctf-all-in-one/5_advanced/5.2_dyn_binary_instrumentation) * [5.2.1 Pin](https://firmianay.gitbook.io/ctf-all-in-one/5_advanced/5.2_dyn_binary_instrumentation/5.2.1_pin) * [5.2.2 DynamoRio](https://firmianay.gitbook.io/ctf-all-in-one/5_advanced/5.2_dyn_binary_instrumentation/5.2.2_dynamorio) * [5.2.3 Valgrind](https://firmianay.gitbook.io/ctf-all-in-one/5_advanced/5.2_dyn_binary_instrumentation/5.2.3_valgrind) * [5.3 符号执行](https://firmianay.gitbook.io/ctf-all-in-one/5_advanced/5.3_symbolic_execution) * [5.3.1 angr](https://firmianay.gitbook.io/ctf-all-in-one/5_advanced/5.3_symbolic_execution/5.3.1_angr) * [5.3.2 Triton](https://firmianay.gitbook.io/ctf-all-in-one/5_advanced/5.3_symbolic_execution/5.3.2_triton) * [5.3.3 KLEE](https://firmianay.gitbook.io/ctf-all-in-one/5_advanced/5.3_symbolic_execution/5.3.3_klee) * [5.3.4 S²E](https://firmianay.gitbook.io/ctf-all-in-one/5_advanced/5.3_symbolic_execution/5.3.4_s2e) * [5.4 数据流分析](https://firmianay.gitbook.io/ctf-all-in-one/5_advanced/5.4_dataflow_analysis) * [5.4.1 Soot](https://firmianay.gitbook.io/ctf-all-in-one/5_advanced/5.4_dataflow_analysis/5.4.1_soot) * [5.5 污点分析](https://firmianay.gitbook.io/ctf-all-in-one/5_advanced/5.5_taint_analysis) * [5.5.1 TaintCheck](https://firmianay.gitbook.io/ctf-all-in-one/5_advanced/5.5_taint_analysis/5.5.1_taintcheck) * [5.6 LLVM](https://firmianay.gitbook.io/ctf-all-in-one/5_advanced/5.6_llvm) * [5.6.1 Clang](https://firmianay.gitbook.io/ctf-all-in-one/5_advanced/5.6_llvm/5.6.1_clang) * [5.7 程序切片](https://firmianay.gitbook.io/ctf-all-in-one/5_advanced/5.7_slicing) * [5.8 SAT/SMT](https://firmianay.gitbook.io/ctf-all-in-one/5_advanced/5.8_sat-smt) * [5.8.1 Z3](https://firmianay.gitbook.io/ctf-all-in-one/5_advanced/5.8_sat-smt/5.8.1_z3) * [5.9 基于模式的漏洞分析](https://firmianay.gitbook.io/ctf-all-in-one/5_advanced/5.9_pattern_based_analysis) * [5.10 基于二进制比对的漏洞分析](https://firmianay.gitbook.io/ctf-all-in-one/5_advanced/5.10_diff_based_analysis) * [5.11 反编译技术](https://firmianay.gitbook.io/ctf-all-in-one/5_advanced/5.11_decompiling) * [5.11.1 RetDec](https://firmianay.gitbook.io/ctf-all-in-one/5_advanced/5.11_decompiling/5.11.1_retdec) --- # Agent Instructions: Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://firmianay.gitbook.io/ctf-all-in-one/5_advanced.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.