# Writeups

- [Hackthebox Tracks](https://csbygb.gitbook.io/pentips/writeups/htbtracks.md)
- [Hackthebox - Introduction to Android Exploitation - Track](https://csbygb.gitbook.io/pentips/writeups/htbtracks/htb-intro-to-android-exploitation-track.md)
- [Hackthebox Writeups](https://csbygb.gitbook.io/pentips/writeups/htbwriteups.md)
- [Hackthebox - Academy](https://csbygb.gitbook.io/pentips/writeups/htbwriteups/htb-academy.md)
- [Hackthebox - Access](https://csbygb.gitbook.io/pentips/writeups/htbwriteups/htb-access.md)
- [Hackthebox - Active](https://csbygb.gitbook.io/pentips/writeups/htbwriteups/htb-active.md)
- [Hackthebox - Ambassador](https://csbygb.gitbook.io/pentips/writeups/htbwriteups/htb-ambassador.md)
- [Hackthebox - Arctic](https://csbygb.gitbook.io/pentips/writeups/htbwriteups/htb-arctic.md)
- [Hackthebox - Awkward](https://csbygb.gitbook.io/pentips/writeups/htbwriteups/htb-awkward.md)
- [Hackthebox - Backend](https://csbygb.gitbook.io/pentips/writeups/htbwriteups/htb-backend.md)
- [Hackthebox - BackendTwo](https://csbygb.gitbook.io/pentips/writeups/htbwriteups/htb-backendtwo.md)
- [Hackthebox - Bastard](https://csbygb.gitbook.io/pentips/writeups/htbwriteups/htb-bastard.md)
- [Hackthebox - Bastion](https://csbygb.gitbook.io/pentips/writeups/htbwriteups/htb-bastion.md)
- [Hackthebox - Chatterbox](https://csbygb.gitbook.io/pentips/writeups/htbwriteups/htb-chatterbox.md)
- [Hackthebox - Devel](https://csbygb.gitbook.io/pentips/writeups/htbwriteups/htb-devel.md)
- [Hackthebox - Driver](https://csbygb.gitbook.io/pentips/writeups/htbwriteups/htb-driver.md)
- [Hackthebox - Explore](https://csbygb.gitbook.io/pentips/writeups/htbwriteups/htb-explore.md)
- [Hackthebox - Forest](https://csbygb.gitbook.io/pentips/writeups/htbwriteups/htb-forest.md)
- [Hackthebox - Good games](https://csbygb.gitbook.io/pentips/writeups/htbwriteups/htb-goodgames.md)
- [Hackthebox - Grandpa](https://csbygb.gitbook.io/pentips/writeups/htbwriteups/htb-grandpa.md)
- [Hackthebox - Granny](https://csbygb.gitbook.io/pentips/writeups/htbwriteups/htb-granny.md)
- [Hackthebox - Inject](https://csbygb.gitbook.io/pentips/writeups/htbwriteups/htb-inject.md)
- [Hackthebox - Jeeves](https://csbygb.gitbook.io/pentips/writeups/htbwriteups/htb-jeeves.md)
- [Hackthebox - Jerry](https://csbygb.gitbook.io/pentips/writeups/htbwriteups/htb-jerry.md)
- [Hackthebox - Lame](https://csbygb.gitbook.io/pentips/writeups/htbwriteups/htb-lame.md)
- [Hackthebox - Late](https://csbygb.gitbook.io/pentips/writeups/htbwriteups/htb-late.md)
- [Hackthebox - Love](https://csbygb.gitbook.io/pentips/writeups/htbwriteups/htb-love.md)
- [Hackthebox - Mentor](https://csbygb.gitbook.io/pentips/writeups/htbwriteups/htb-mentor.md)
- [Hackthebox - MetaTwo](https://csbygb.gitbook.io/pentips/writeups/htbwriteups/htb-metatwo.md)
- [Hackthebox - Monteverde](https://csbygb.gitbook.io/pentips/writeups/htbwriteups/htb-monteverde.md)
- [Hackthebox - Nibbles](https://csbygb.gitbook.io/pentips/writeups/htbwriteups/htb-nibbles.md)
- [Hackthebox - Optimum](https://csbygb.gitbook.io/pentips/writeups/htbwriteups/htb-optimum.md)
- [Hackthebox - Paper](https://csbygb.gitbook.io/pentips/writeups/htbwriteups/htb-paper.md)
- [Hackthebox - Photobomb](https://csbygb.gitbook.io/pentips/writeups/htbwriteups/htb-photobomb.md)
- [Hackthebox - Poison](https://csbygb.gitbook.io/pentips/writeups/htbwriteups/htb-poison.md)
- [Hackthebox - Precious](https://csbygb.gitbook.io/pentips/writeups/htbwriteups/htb-precious.md)
- [Hackthebox - Querier](https://csbygb.gitbook.io/pentips/writeups/htbwriteups/htb-querier.md)
- [Hackthebox - Resolute](https://csbygb.gitbook.io/pentips/writeups/htbwriteups/htb-resolute.md)
- [Hackthebox - RouterSpace](https://csbygb.gitbook.io/pentips/writeups/htbwriteups/htb-routerspace.md)
- [Hackthebox - Sauna](https://csbygb.gitbook.io/pentips/writeups/htbwriteups/htb-sauna.md)
- [Hackthebox - SecNotes](https://csbygb.gitbook.io/pentips/writeups/htbwriteups/htb-secnotes.md)
- [Hackthebox - Shoppy](https://csbygb.gitbook.io/pentips/writeups/htbwriteups/htb-shoppy.md)
- [Hackthebox - Soccer](https://csbygb.gitbook.io/pentips/writeups/htbwriteups/htb-soccer.md)
- [Hackthebox - Steamcloud](https://csbygb.gitbook.io/pentips/writeups/htbwriteups/htb-steamcloud.md)
- [Hackthebox - Toolbox](https://csbygb.gitbook.io/pentips/writeups/htbwriteups/htb-toolbox.md)
- [Hackthebox - Vault](https://csbygb.gitbook.io/pentips/writeups/htbwriteups/htb-vault.md)
- [Hackthebox - Updown](https://csbygb.gitbook.io/pentips/writeups/htbwriteups/htb-updown.md)
- [TryHackme Writeups](https://csbygb.gitbook.io/pentips/writeups/thmwriteups.md)
- [TryHackMe - Anonymous](https://csbygb.gitbook.io/pentips/writeups/thmwriteups/thm-anonymous.md)
- [TryHackMe - Blaster](https://csbygb.gitbook.io/pentips/writeups/thmwriteups/thm-blaster.md)
- [TryHackMe - CMesS](https://csbygb.gitbook.io/pentips/writeups/thmwriteups/thm-cmess.md)
- [TryHackMe - ConvertMyVideo](https://csbygb.gitbook.io/pentips/writeups/thmwriteups/thm-convertmyvideo.md)
- [TryHackMe - Corridor](https://csbygb.gitbook.io/pentips/writeups/thmwriteups/thm-corridor.md)
- [TryHackMe - LazyAdmin](https://csbygb.gitbook.io/pentips/writeups/thmwriteups/thm-lazyadmin.md)
- [TryHackMe - Looking Glass](https://csbygb.gitbook.io/pentips/writeups/thmwriteups/thm-looking-glass.md)
- [TryHackMe - Nahamstore](https://csbygb.gitbook.io/pentips/writeups/thmwriteups/thm-nahamstore.md)
- [TryHackMe - Overpass3](https://csbygb.gitbook.io/pentips/writeups/thmwriteups/thm-overpass3.md)
- [TryHackMe - OWASP Top 10 2021](https://csbygb.gitbook.io/pentips/writeups/thmwriteups/thm-owasp-top-10-2021.md)
- [TryHackMe - SimpleCTF](https://csbygb.gitbook.io/pentips/writeups/thmwriteups/thm-simplectf.md)
- [TryHackMe - SQL Injection Lab](https://csbygb.gitbook.io/pentips/writeups/thmwriteups/thm-sqli-labs.md)
- [TryHackMe - Sudo Security Bypass](https://csbygb.gitbook.io/pentips/writeups/thmwriteups/thm-sudosecuritybypass.md)
- [TryHackMe - Tomghost](https://csbygb.gitbook.io/pentips/writeups/thmwriteups/thm-tomghost.md)
- [TryHackMe - Ultratech](https://csbygb.gitbook.io/pentips/writeups/thmwriteups/thm-ultratech.md)
- [TryHackMe - Vulnversity](https://csbygb.gitbook.io/pentips/writeups/thmwriteups/thm-vulnversity.md)
- [TryHackMe - Wonderland](https://csbygb.gitbook.io/pentips/writeups/thmwriteups/thm-wonderland.md)
- [Giskard Red Writeups](https://csbygb.gitbook.io/pentips/writeups/giskard-red.md)
- [Giskard - Yes & No (Level 1)](https://csbygb.gitbook.io/pentips/writeups/giskard-red/giskard-yesno1.md)
- [Giskard - Yes & No (Level 2)](https://csbygb.gitbook.io/pentips/writeups/giskard-red/giskard-yesno2.md)
- [Giskard - JSON Translator](https://csbygb.gitbook.io/pentips/writeups/giskard-red/giskard-json-translator.md)
- [Giskard - SQL Helper (Level 1)](https://csbygb.gitbook.io/pentips/writeups/giskard-red/giskard-sql-helper1.md)
- [Giskard - SQL Helper (Level 2)](https://csbygb.gitbook.io/pentips/writeups/giskard-red/giskard-sql-helper2.md)
- [Giskard - SQL Helper (Level 3)](https://csbygb.gitbook.io/pentips/writeups/giskard-red/giskard-sql-helper3.md)
- [Giskard - Math Teacher (Level 1)](https://csbygb.gitbook.io/pentips/writeups/giskard-red/giskard-math-teacher1.md)
- [Giskard - Math Teacher (Level 2)](https://csbygb.gitbook.io/pentips/writeups/giskard-red/giskard-math-teacher2.md)
- [Giskard - Math Teacher (Level 3)](https://csbygb.gitbook.io/pentips/writeups/giskard-red/giskard-math-teacher3.md)
- [Giskard - Tech Teacher (Level 1)](https://csbygb.gitbook.io/pentips/writeups/giskard-red/giskard-tech-teacher1.md)
- [Giskard - Tech Teacher (Level 2)](https://csbygb.gitbook.io/pentips/writeups/giskard-red/giskard-tech-teacher2.md)
- [Giskard - Tech Teacher (Level 3)](https://csbygb.gitbook.io/pentips/writeups/giskard-red/giskard-tech-teacher3.md)
- [Giskard - Einstein (Level 1)](https://csbygb.gitbook.io/pentips/writeups/giskard-red/giskard-einstein1.md)
- [Giskard - Einstein (Level 2)](https://csbygb.gitbook.io/pentips/writeups/giskard-red/giskard-einstein2.md)
- [Giskard - Einstein (Level 3)](https://csbygb.gitbook.io/pentips/writeups/giskard-red/giskard-einstein3.md)
- [Giskard - Mozart biographer](https://csbygb.gitbook.io/pentips/writeups/giskard-red/giskard-mozart-biographer.md)
- [Giskard - Mozart biographer, smarter](https://csbygb.gitbook.io/pentips/writeups/giskard-red/giskard-mozart-biographer-smarter.md)
- [Giskard - Trustful Historian (Level 1)](https://csbygb.gitbook.io/pentips/writeups/giskard-red/giskard-trustful-historian1.md)
- [Giskard - Trustful Historian (Level 2)](https://csbygb.gitbook.io/pentips/writeups/giskard-red/giskard-trustful-historian2.md)
- [Giskard - Trustful Historian (Level 3)](https://csbygb.gitbook.io/pentips/writeups/giskard-red/giskard-trustful-historian3.md)
- [Giskard - Email Assistant (Level 1)](https://csbygb.gitbook.io/pentips/writeups/giskard-red/giskard-email-assistant1.md)
- [Giskard - Email Assistant (Level 2)](https://csbygb.gitbook.io/pentips/writeups/giskard-red/giskard-email-assistant2.md)
- [Giskard - Email Assistant (Level 3)](https://csbygb.gitbook.io/pentips/writeups/giskard-red/giskard-email-assistant3.md)
- [Vulnmachines Writeups](https://csbygb.gitbook.io/pentips/writeups/vulnmachines-writeups.md)
- [Web Labs Basic](https://csbygb.gitbook.io/pentips/writeups/vulnmachines-writeups/vulnmachine-web-basic.md)
- [Web Labs Intermediate](https://csbygb.gitbook.io/pentips/writeups/vulnmachines-writeups/vulnmachine-web-intermediate.md)
- [Cloud Labs](https://csbygb.gitbook.io/pentips/writeups/vulnmachines-writeups/vulnmachines-cloud.md)
- [Mobile Hacking Lab](https://csbygb.gitbook.io/pentips/writeups/mhlwriteups.md)
- [Mobile Hacking Lab - Lab - Config Editor](https://csbygb.gitbook.io/pentips/writeups/mhlwriteups/mhl-lab-config.md)
- [Mobile Hacking Lab - Lab - Strings](https://csbygb.gitbook.io/pentips/writeups/mhlwriteups/mhl-strings.md)
- [Portswigger Web Security Academy - XSS](https://csbygb.gitbook.io/pentips/writeups/ps-xss.md)
- [PS - DomXSS](https://csbygb.gitbook.io/pentips/writeups/ps-xss/ps-domxss.md)
- [Portswigger Web Security Academy - Web LLM attacks](https://csbygb.gitbook.io/pentips/writeups/ps-web-llm.md)
- [PS - Exploiting LLM APIs with excessive agency](https://csbygb.gitbook.io/pentips/writeups/ps-web-llm/ps-excessive-agency.md)
- [PS - Exploiting vulnerabilities in LLM APIs](https://csbygb.gitbook.io/pentips/writeups/ps-web-llm/ps-exploiting-vulnerabilities-in-llm-apis.md)
- [PS - Indirect prompt injection](https://csbygb.gitbook.io/pentips/writeups/ps-web-llm/ps-indirect-prompt-injection.md)
- [PS - Exploiting insecure output handling in LLMs](https://csbygb.gitbook.io/pentips/writeups/ps-web-llm/ps-insecure-output-handling.md)
- [PS - Web cache deception](https://csbygb.gitbook.io/pentips/writeups/ps-web-cache-deception.md)
- [PS - Exploiting path mapping for web cache deception](https://csbygb.gitbook.io/pentips/writeups/ps-web-cache-deception/ps-mapping-web-cache-deception.md)
- [OWASP projects and challenges writeups](https://csbygb.gitbook.io/pentips/writeups/owasp-writeups.md)
- [OWASP MAS Crackmes](https://csbygb.gitbook.io/pentips/writeups/owasp-writeups/owasp-mas-crackmes.md)
- [Vulnerable APIs](https://csbygb.gitbook.io/pentips/writeups/vulnerable-apis.md)
- [Vampi](https://csbygb.gitbook.io/pentips/writeups/vulnerable-apis/va-vampi.md)
- [Damn Vulnerable Web Service](https://csbygb.gitbook.io/pentips/writeups/vulnerable-apis/va-dvws-node.md)
- [Damn Vulnerable RESTaurant](https://csbygb.gitbook.io/pentips/writeups/vulnerable-apis/va-dvrestaurant.md)
- [Various Platforms](https://csbygb.gitbook.io/pentips/writeups/various.md)
- [flAWS 1&2](https://csbygb.gitbook.io/pentips/writeups/various/various-flaws.md)


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://csbygb.gitbook.io/pentips/writeups.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.