# pwny.cc ## pwny.cc - [Home](https://www.pwny.cc/master.md) - [AI](https://www.pwny.cc/so/ai.md) - [Evasion](https://www.pwny.cc/so/ai/evasion.md): This is an attack in which an attacker perturbs an input such that a model produces an incorrect output (for example: this photo of a dog is now classified as a corkscrew) - [Exercise 1](https://www.pwny.cc/so/ai/evasion/exercise-1.md): "Evasion" with random noise - [Exercise 2](https://www.pwny.cc/so/ai/evasion/exercise-2.md): Carlini L2 Attack - [Exercise 3](https://www.pwny.cc/so/ai/evasion/exercise-3.md): Carlini L2 Attack - [Exercise 4](https://www.pwny.cc/so/ai/evasion/exercise-4.md): SimBA (Simple Black-bot Adversarial Attack) - [Android](https://www.pwny.cc/so/android.md) - [adb](https://www.pwny.cc/so/android/adb.md): Android Debug Bridge (adb) is a versatile command-line tool that lets you communicate with a device. - [apktool](https://www.pwny.cc/so/android/apktool.md): Tool for reverse engineering 3rd party, closed, binary Android apps. It can decode resources to nearly original form and rebuild them after making some modifications. - [burp suite](https://www.pwny.cc/so/android/burp-suite.md): The class-leading vulnerability scanning, penetration testing, and web app security platform. - [dns spoofing](https://www.pwny.cc/so/android/dns-spoofing.md) - [frida](https://www.pwny.cc/so/android/frida.md): Dynamic instrumentation toolkit for developers, reverse-engineers, and security researchers. - [intent](https://www.pwny.cc/so/android/intent.md): A messaging object you can use to request an action from another app component. - [jadx](https://www.pwny.cc/so/android/jadx.md): Dex to Java decompiler. - [JNI](https://www.pwny.cc/so/android/jni.md) - [objection](https://www.pwny.cc/so/android/objection.md): Objection is a runtime mobile exploration toolkit, powered by Frida, built to help you assess the security posture of your mobile applications, without needing a jailbreak. - [tcpdump](https://www.pwny.cc/so/android/tcpdump.md): A powerful command-line packet analyzer; and libpcap, a portable C/C++ library for network traffic capture. - [webview](https://www.pwny.cc/so/android/webview.md): A View that displays web pages. - [iOS](https://www.pwny.cc/so/ios.md) - [objection](https://www.pwny.cc/so/ios/objection.md): Objection is a runtime mobile exploration toolkit, powered by Frida, built to help you assess the security posture of your mobile applications, without needing a jailbreak. - [Linux](https://www.pwny.cc/so/linux.md) - [Internal Recon](https://www.pwny.cc/so/linux/internal-recon.md) - [Bypasses](https://www.pwny.cc/so/linux/bypasses.md) - [Network](https://www.pwny.cc/so/linux/network.md) - [Exfiltration](https://www.pwny.cc/so/linux/exfiltration.md) - [Containers](https://www.pwny.cc/so/linux/containers.md) - [Iptables](https://www.pwny.cc/so/linux/iptables.md) - [Windows](https://www.pwny.cc/so/windows.md) - [Internal Recon](https://www.pwny.cc/so/windows/internal-recon.md) - [External Recon](https://www.pwny.cc/so/windows/external-recon.md) - [Bypasses](https://www.pwny.cc/so/windows/bypasses.md) - [Network](https://www.pwny.cc/so/windows/network.md) - [Exfiltration](https://www.pwny.cc/so/windows/exfiltration.md) - [Misc](https://www.pwny.cc/shells/misc.md) - [Web Shells](https://www.pwny.cc/shells/webshells.md) - [Reverse Shells](https://www.pwny.cc/shells/reverse-shells.md) - [Obfuscated Shells](https://www.pwny.cc/shells/obfuscated-shells.md) - [Misc](https://www.pwny.cc/web-attacks/misc.md) - [Command Injection](https://www.pwny.cc/web-attacks/command-injection.md) - [Cross-Site Scripting (XSS)](https://www.pwny.cc/web-attacks/cross-site-scripting-xss.md) - [XSS Tips](https://www.pwny.cc/web-attacks/cross-site-scripting-xss/xss-tips.md) - [WAF Bypasses](https://www.pwny.cc/web-attacks/cross-site-scripting-xss/waf-bypasses.md) - [Insecure Direct Object Reference (IDOR)](https://www.pwny.cc/web-attacks/insecure-direct-object-reference-idor.md) - [Insecure File Upload](https://www.pwny.cc/web-attacks/insecure-file-upload.md) - [Local File Inclusion (LFI)](https://www.pwny.cc/web-attacks/local-file-inclusion-lfi.md) - [Bypass Techniques](https://www.pwny.cc/web-attacks/local-file-inclusion-lfi/bypass-techniques.md) - [LFI to RCE](https://www.pwny.cc/web-attacks/local-file-inclusion-lfi/lfi-to-rce.md) - [OAuth](https://www.pwny.cc/web-attacks/oauth.md) - [Open Redirect](https://www.pwny.cc/web-attacks/open-redirect.md) - [Open Redirect to XSS](https://www.pwny.cc/web-attacks/open-redirect/open-redirect-to-xss.md) - [Server Side Request Forgery (SSRF)](https://www.pwny.cc/web-attacks/server-side-request-forgery-ssrf.md) - [Server Side Template Injection (SSTI)](https://www.pwny.cc/web-attacks/server-side-template-injection-ssti.md) - [SQL Injection (SQLi)](https://www.pwny.cc/web-attacks/sql-injection-sqli.md) - [SQLMap](https://www.pwny.cc/web-attacks/sql-injection-sqli/sqlmap.md) - [MySQL](https://www.pwny.cc/web-attacks/sql-injection-sqli/mysql.md) - [MSSQL](https://www.pwny.cc/web-attacks/sql-injection-sqli/mssql.md) - [Oracle](https://www.pwny.cc/web-attacks/sql-injection-sqli/oracle.md) - [PostgreSQL](https://www.pwny.cc/web-attacks/sql-injection-sqli/postgresql.md) - [XML External Entity (XXE)](https://www.pwny.cc/web-attacks/xml-external-entity-xxe.md) - [Cracking](https://www.pwny.cc/other/cracking.md) - [Hashcat](https://www.pwny.cc/other/cracking/hashcat.md) - [John the Ripper](https://www.pwny.cc/other/cracking/john-the-ripper.md) - [Sandbox Escape](https://www.pwny.cc/other/sandbox.md) --- # Agent Instructions This documentation is published with GitBook. GitBook is the documentation platform designed so that both humans and AI agents can read, navigate, and reason over technical content effectively. Learn more at gitbook.com. ## Querying This Documentation If you need additional information, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on a page URL with the `ask` query parameter: ``` GET https://www.pwny.cc/master.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.