# Writeups

- [Hackthebox Tracks](/pentips/writeups/htbtracks.md)
- [Hackthebox - Introduction to Android Exploitation - Track](/pentips/writeups/htbtracks/htb-intro-to-android-exploitation-track.md)
- [Hackthebox Writeups](/pentips/writeups/htbwriteups.md)
- [Hackthebox - Academy](/pentips/writeups/htbwriteups/htb-academy.md)
- [Hackthebox - Access](/pentips/writeups/htbwriteups/htb-access.md)
- [Hackthebox - Active](/pentips/writeups/htbwriteups/htb-active.md)
- [Hackthebox - Ambassador](/pentips/writeups/htbwriteups/htb-ambassador.md)
- [Hackthebox - Arctic](/pentips/writeups/htbwriteups/htb-arctic.md)
- [Hackthebox - Awkward](/pentips/writeups/htbwriteups/htb-awkward.md)
- [Hackthebox - Backend](/pentips/writeups/htbwriteups/htb-backend.md)
- [Hackthebox - BackendTwo](/pentips/writeups/htbwriteups/htb-backendtwo.md)
- [Hackthebox - Bastard](/pentips/writeups/htbwriteups/htb-bastard.md)
- [Hackthebox - Bastion](/pentips/writeups/htbwriteups/htb-bastion.md)
- [Hackthebox - Chatterbox](/pentips/writeups/htbwriteups/htb-chatterbox.md)
- [Hackthebox - Devel](/pentips/writeups/htbwriteups/htb-devel.md)
- [Hackthebox - Driver](/pentips/writeups/htbwriteups/htb-driver.md)
- [Hackthebox - Explore](/pentips/writeups/htbwriteups/htb-explore.md)
- [Hackthebox - Forest](/pentips/writeups/htbwriteups/htb-forest.md)
- [Hackthebox - Good games](/pentips/writeups/htbwriteups/htb-goodgames.md)
- [Hackthebox - Grandpa](/pentips/writeups/htbwriteups/htb-grandpa.md)
- [Hackthebox - Granny](/pentips/writeups/htbwriteups/htb-granny.md)
- [Hackthebox - Inject](/pentips/writeups/htbwriteups/htb-inject.md)
- [Hackthebox - Jeeves](/pentips/writeups/htbwriteups/htb-jeeves.md)
- [Hackthebox - Jerry](/pentips/writeups/htbwriteups/htb-jerry.md)
- [Hackthebox - Lame](/pentips/writeups/htbwriteups/htb-lame.md)
- [Hackthebox - Late](/pentips/writeups/htbwriteups/htb-late.md)
- [Hackthebox - Love](/pentips/writeups/htbwriteups/htb-love.md)
- [Hackthebox - Mentor](/pentips/writeups/htbwriteups/htb-mentor.md)
- [Hackthebox - MetaTwo](/pentips/writeups/htbwriteups/htb-metatwo.md)
- [Hackthebox - Monteverde](/pentips/writeups/htbwriteups/htb-monteverde.md)
- [Hackthebox - Nibbles](/pentips/writeups/htbwriteups/htb-nibbles.md)
- [Hackthebox - Optimum](/pentips/writeups/htbwriteups/htb-optimum.md)
- [Hackthebox - Paper](/pentips/writeups/htbwriteups/htb-paper.md)
- [Hackthebox - Photobomb](/pentips/writeups/htbwriteups/htb-photobomb.md)
- [Hackthebox - Poison](/pentips/writeups/htbwriteups/htb-poison.md)
- [Hackthebox - Precious](/pentips/writeups/htbwriteups/htb-precious.md)
- [Hackthebox - Querier](/pentips/writeups/htbwriteups/htb-querier.md)
- [Hackthebox - Resolute](/pentips/writeups/htbwriteups/htb-resolute.md)
- [Hackthebox - RouterSpace](/pentips/writeups/htbwriteups/htb-routerspace.md)
- [Hackthebox - Sauna](/pentips/writeups/htbwriteups/htb-sauna.md)
- [Hackthebox - SecNotes](/pentips/writeups/htbwriteups/htb-secnotes.md)
- [Hackthebox - Shoppy](/pentips/writeups/htbwriteups/htb-shoppy.md)
- [Hackthebox - Soccer](/pentips/writeups/htbwriteups/htb-soccer.md)
- [Hackthebox - Steamcloud](/pentips/writeups/htbwriteups/htb-steamcloud.md)
- [Hackthebox - Toolbox](/pentips/writeups/htbwriteups/htb-toolbox.md)
- [Hackthebox - Vault](/pentips/writeups/htbwriteups/htb-vault.md)
- [Hackthebox - Updown](/pentips/writeups/htbwriteups/htb-updown.md)
- [TryHackme Writeups](/pentips/writeups/thmwriteups.md)
- [TryHackMe - Anonymous](/pentips/writeups/thmwriteups/thm-anonymous.md)
- [TryHackMe - Blaster](/pentips/writeups/thmwriteups/thm-blaster.md)
- [TryHackMe - CMesS](/pentips/writeups/thmwriteups/thm-cmess.md)
- [TryHackMe - ConvertMyVideo](/pentips/writeups/thmwriteups/thm-convertmyvideo.md)
- [TryHackMe - Corridor](/pentips/writeups/thmwriteups/thm-corridor.md)
- [TryHackMe - LazyAdmin](/pentips/writeups/thmwriteups/thm-lazyadmin.md)
- [TryHackMe - Looking Glass](/pentips/writeups/thmwriteups/thm-looking-glass.md)
- [TryHackMe - Nahamstore](/pentips/writeups/thmwriteups/thm-nahamstore.md)
- [TryHackMe - Overpass3](/pentips/writeups/thmwriteups/thm-overpass3.md)
- [TryHackMe - OWASP Top 10 2021](/pentips/writeups/thmwriteups/thm-owasp-top-10-2021.md)
- [TryHackMe - SimpleCTF](/pentips/writeups/thmwriteups/thm-simplectf.md)
- [TryHackMe - SQL Injection Lab](/pentips/writeups/thmwriteups/thm-sqli-labs.md)
- [TryHackMe - Sudo Security Bypass](/pentips/writeups/thmwriteups/thm-sudosecuritybypass.md)
- [TryHackMe - Tomghost](/pentips/writeups/thmwriteups/thm-tomghost.md)
- [TryHackMe - Ultratech](/pentips/writeups/thmwriteups/thm-ultratech.md)
- [TryHackMe - Vulnversity](/pentips/writeups/thmwriteups/thm-vulnversity.md)
- [TryHackMe - Wonderland](/pentips/writeups/thmwriteups/thm-wonderland.md)
- [Giskard Red Writeups](/pentips/writeups/giskard-red.md)
- [Giskard - Yes & No (Level 1)](/pentips/writeups/giskard-red/giskard-yesno1.md)
- [Giskard - Yes & No (Level 2)](/pentips/writeups/giskard-red/giskard-yesno2.md)
- [Giskard - JSON Translator](/pentips/writeups/giskard-red/giskard-json-translator.md)
- [Giskard - SQL Helper (Level 1)](/pentips/writeups/giskard-red/giskard-sql-helper1.md)
- [Giskard - SQL Helper (Level 2)](/pentips/writeups/giskard-red/giskard-sql-helper2.md)
- [Giskard - SQL Helper (Level 3)](/pentips/writeups/giskard-red/giskard-sql-helper3.md)
- [Giskard - Math Teacher (Level 1)](/pentips/writeups/giskard-red/giskard-math-teacher1.md)
- [Giskard - Math Teacher (Level 2)](/pentips/writeups/giskard-red/giskard-math-teacher2.md)
- [Giskard - Math Teacher (Level 3)](/pentips/writeups/giskard-red/giskard-math-teacher3.md)
- [Giskard - Tech Teacher (Level 1)](/pentips/writeups/giskard-red/giskard-tech-teacher1.md)
- [Giskard - Tech Teacher (Level 2)](/pentips/writeups/giskard-red/giskard-tech-teacher2.md)
- [Giskard - Tech Teacher (Level 3)](/pentips/writeups/giskard-red/giskard-tech-teacher3.md)
- [Giskard - Einstein (Level 1)](/pentips/writeups/giskard-red/giskard-einstein1.md)
- [Giskard - Einstein (Level 2)](/pentips/writeups/giskard-red/giskard-einstein2.md)
- [Giskard - Einstein (Level 3)](/pentips/writeups/giskard-red/giskard-einstein3.md)
- [Giskard - Mozart biographer](/pentips/writeups/giskard-red/giskard-mozart-biographer.md)
- [Giskard - Mozart biographer, smarter](/pentips/writeups/giskard-red/giskard-mozart-biographer-smarter.md)
- [Giskard - Trustful Historian (Level 1)](/pentips/writeups/giskard-red/giskard-trustful-historian1.md)
- [Giskard - Trustful Historian (Level 2)](/pentips/writeups/giskard-red/giskard-trustful-historian2.md)
- [Giskard - Trustful Historian (Level 3)](/pentips/writeups/giskard-red/giskard-trustful-historian3.md)
- [Giskard - Email Assistant (Level 1)](/pentips/writeups/giskard-red/giskard-email-assistant1.md)
- [Giskard - Email Assistant (Level 2)](/pentips/writeups/giskard-red/giskard-email-assistant2.md)
- [Giskard - Email Assistant (Level 3)](/pentips/writeups/giskard-red/giskard-email-assistant3.md)
- [Vulnmachines Writeups](/pentips/writeups/vulnmachines-writeups.md)
- [Web Labs Basic](/pentips/writeups/vulnmachines-writeups/vulnmachine-web-basic.md)
- [Web Labs Intermediate](/pentips/writeups/vulnmachines-writeups/vulnmachine-web-intermediate.md)
- [Cloud Labs](/pentips/writeups/vulnmachines-writeups/vulnmachines-cloud.md)
- [Mobile Hacking Lab](/pentips/writeups/mhlwriteups.md)
- [Mobile Hacking Lab - Lab - Config Editor](/pentips/writeups/mhlwriteups/mhl-lab-config.md)
- [Mobile Hacking Lab - Lab - Strings](/pentips/writeups/mhlwriteups/mhl-strings.md)
- [Portswigger Web Security Academy - XSS](/pentips/writeups/ps-xss.md)
- [PS - DomXSS](/pentips/writeups/ps-xss/ps-domxss.md)
- [Portswigger Web Security Academy - Web LLM attacks](/pentips/writeups/ps-web-llm.md)
- [PS - Exploiting LLM APIs with excessive agency](/pentips/writeups/ps-web-llm/ps-excessive-agency.md)
- [PS - Exploiting vulnerabilities in LLM APIs](/pentips/writeups/ps-web-llm/ps-exploiting-vulnerabilities-in-llm-apis.md)
- [PS - Indirect prompt injection](/pentips/writeups/ps-web-llm/ps-indirect-prompt-injection.md)
- [PS - Exploiting insecure output handling in LLMs](/pentips/writeups/ps-web-llm/ps-insecure-output-handling.md)
- [PS - Web cache deception](/pentips/writeups/ps-web-cache-deception.md)
- [PS - Exploiting path mapping for web cache deception](/pentips/writeups/ps-web-cache-deception/ps-mapping-web-cache-deception.md)
- [OWASP projects and challenges writeups](/pentips/writeups/owasp-writeups.md)
- [OWASP MAS Crackmes](/pentips/writeups/owasp-writeups/owasp-mas-crackmes.md)
- [Vulnerable APIs](/pentips/writeups/vulnerable-apis.md)
- [Vampi](/pentips/writeups/vulnerable-apis/va-vampi.md)
- [Damn Vulnerable Web Service](/pentips/writeups/vulnerable-apis/va-dvws-node.md)
- [Damn Vulnerable RESTaurant](/pentips/writeups/vulnerable-apis/va-dvrestaurant.md)
- [Various Platforms](/pentips/writeups/various.md)
- [flAWS 1&2](/pentips/writeups/various/various-flaws.md)