{"id":21377364,"url":"https://github.com/zeyu-li/tryhackme","last_synced_at":"2026-03-19T20:07:25.759Z","repository":{"id":120381842,"uuid":"344551416","full_name":"Zeyu-Li/TryHackMe","owner":"Zeyu-Li","description":"Hacker Man 👨‍💻","archived":false,"fork":false,"pushed_at":"2023-05-19T03:55:17.000Z","size":2002,"stargazers_count":9,"open_issues_count":0,"forks_count":4,"subscribers_count":3,"default_branch":"master","last_synced_at":"2025-10-09T10:17:57.834Z","etag":null,"topics":["hacking","security","tryhackme","vulnversity","writeups"],"latest_commit_sha":null,"homepage":"https://tryhackme.com/","language":null,"has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":null,"status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/Zeyu-Li.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":null,"code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2021-03-04T17:14:09.000Z","updated_at":"2025-08-03T19:22:47.000Z","dependencies_parsed_at":null,"dependency_job_id":"c891b6ec-4200-4365-956f-c14c0eb737b9","html_url":"https://github.com/Zeyu-Li/TryHackMe","commit_stats":null,"previous_names":[],"tags_count":0,"template":false,"template_full_name":null,"purl":"pkg:github/Zeyu-Li/TryHackMe","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Zeyu-Li%2FTryHackMe","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Zeyu-Li%2FTryHackMe/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Zeyu-Li%2FTryHackMe/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Zeyu-Li%2FTryHackMe/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/Zeyu-Li","download_url":"https://codeload.github.com/Zeyu-Li/TryHackMe/tar.gz/refs/heads/master","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Zeyu-Li%2FTryHackMe/sbom","scorecard":null,"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":29540189,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-02-17T08:11:05.436Z","status":"ssl_error","status_checked_at":"2026-02-17T08:09:38.860Z","response_time":100,"last_error":"SSL_connect returned=1 errno=0 peeraddr=140.82.121.6:443 state=error: unexpected eof while reading","robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":false,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["hacking","security","tryhackme","vulnversity","writeups"],"created_at":"2024-11-22T09:20:27.894Z","updated_at":"2026-02-17T10:36:36.101Z","avatar_url":"https://github.com/Zeyu-Li.png","language":null,"funding_links":[],"categories":[],"sub_categories":[],"readme":"# Try Hack Me Solutions\n\n![badge](https://github.com/Zeyu-Li/TryHackMe/workflows/Convert%20Markdown%20to%20PDF/badge.svg)\n\n[tryhackme.com](https://tryhackme.com/) is a website containing cyber security problems/questions. \n\nTry Hack Me is organized into rooms that might have many problems relating to a central theme. To attempt the problems, one needs to open a connection to AttackBox, a web-based connection to a Kali machine. Alternatively you can use OpenVPN. For free users there exists a time limit on using the machine, but people with subscriptions, it is unlimited max machine open is 3. \n\n\n\n## Path\n\n1. Start with the tutorial which will help you set up\n2. Next do an easy challenges such as [Vulnversity](https://tryhackme.com/room/vulnversity) although this one is a bit long and something like [Web Fundamentals](https://tryhackme.com/room/webfundamentals) might be easier \n3. Do some more easy/tutorial ones to get your feet wet\n\n\n\n\u003ca name=top\u003e\u003c/a\u003e\n\n## Index\n\n1. [Tutorial](#begin)\n2. [How to use TryHackMe](htuthm)\n3. [Welcome](#welcome)\n4. [OpenVPN](#openvpn)\n5. [Web Fundamentals](#webf)\n6. [Intro to Python](#python)\n7. [Burp Suite](#burp)\n8. [Linux Series (1-3)](#linux)\n   1. [Part 1](#l1)\n   2. [Part 2](#l2)\n   3. [Part 3](#l3)\n9. [Windows Intro](#introwindows)\n10. [Google Dorking](#googled)\n11. [How Websites Work](#introwebsite)\n12. [Introductory Networking](#inetwork)\n13. [Hashing - Crypto 101](#hash101)\n14. [Intro Shells](#ishell)\n15. [Nmap](#nmap)\n16. [Hydra](#hydra)\n17. [HTTP in detail](#http)\n18. [Putting it all together](#putting)\n19. [Active Directory Basics](#adb)\n20. [John the Ripper](#john)\n21. [Common Linux Privesc](#CLP)\n22. [Metasploit](#Metasploit)\n23. [Encryption - Crypto 101](#encryption)\n24. [Linux PrivEsc](#linuxesc)\n25. [DNS in Detail](#dns)\n26. [Vulnversity](#vulnversity)\n27. [Network Services](#ns)\n28. [Network Services 2](#ns2)\n29. [OhSINT](#OhSINT)\n30. [OWASP Top 10](#owasp)\n31. [OWASP Juice Shop](#owaspjs)\n32. [Upload Vulnerabilities](#upload)\n33. [Kenobi](#Kenobi)\n34. [Basic Pentesting](#bp)\n35. [Mr Robot CTF](#mrrobot)\n36. [Blue](#blue)\n37. [Ice](#ice)\n38. [Steel Mountain](#sm)\n39. [Nessus](#Nessus)\n40. [Pickle Rick](#pickle)\n41. [Wireshark 101](#wireshark)\n42. [Attacktive Directory](#attacktive)\n43. [Post-Exploitation Basics](#peb)\n44. [Attacking Kerberos](#attackk)\n45. [Introduction to Django](#django)\n\n\n\n\u003ca name=begin\u003e\u003c/a\u003e\n\n### [Tutorial](https://tryhackme.com/room/tutorial)\n\n1. Start a machine, this will take ~ 1-2 minutes for pro accounts\n2. (Recommended) have two windows if 2+ monitors, 1 for Kali Linux window and another for the instructions\n3. Follow instructions to get the flag and submit it\n\n\n\n\u003ca name=htuthm\u003e\u003c/a\u003e\n\n### [How to use TryHackMe](https://tryhackme.com/room/tutorial)\n\nSimilar to Tutorial (above), however you don't need to do `Start AttackBox`\n\n\n\n\u003ca name=welcome\u003e\u003c/a\u003e\n\n### [Welcome](https://tryhackme.com/room/hello)\n\nA nice intro to TryHackMe\n\n\n\n\u003ca name=openvpn\u003e\u003c/a\u003e\n\n### [OpenVPN](https://tryhackme.com/room/openvpn)\n\n1. Download OpenVPN and install it\n2. Download the configuration files from TryHackMe\n3. Load the config file onto OpenVPN\n4. Connect\n5. ssh into server\n\n\n\n\u003ca name=webf\u003e\u003c/a\u003e\n\n### [Web Fundamentals](https://tryhackme.com/room/webfundamentals)\n\nGood place to start out\n\nInstead of using curl in the command line, using postman to send requests might be easier\n\n\n\n\u003ca name=python\u003e\u003c/a\u003e \n\n### [Intro to Python](https://tryhackme.com/room/introtopython)\n\nTrivial\n\nDo for last step (\\* note txt is the text file containing the task file)\n\n```python\nimport base64\n\nwith open(\"txt\", \"r\") as fp:\n    flag = f.read()\n\nfor i in range(5):\n    flag = base64.b16decode(flag)\n\nfor i in range(5):\n    flag = base64.b32decode(flag)\n\nfor i in range(5):\n    flag = base64.b64decode(flag)\n\nprint(flag)\n```\n\nThen run with `python3 t.py` or whatever you named your python file\n\n\n\n\u003ca name=burp\u003e\u003c/a\u003e\n\n### [Burp Suite](https://tryhackme.com/room/rpburpsuite)\n\nFollow instructions, mostly straight forward\n\nTask 6 (some step in the middle) the question that starts with \"Return to your web browser and navigate to the web application hosted on the VM we deployed just a bit ago\", this web application is deployed/started in Task 6 (show below)\n\n![startBurp](img/startBurp.png)\n\nThe URL to enter is the one at the top of the page in a red box (see below)\n\n![urlBurp](img/urlBurp.png)\n\n\n\n\u003ca name=linux\u003e\u003c/a\u003e\n\n### [Linux Series](#)\n\n\u003ca name=l1\u003e\u003c/a\u003e\n\n#### 1. [Part 1](#https://tryhackme.com/room/linux1)\n\nSimple and easy -\u003e do it in any Linux distro except for **Task 9**, but that's just my friend *pinguftw* for the answer if you can't be bothered to run the binary :p\n\n\u003ca name=l2\u003e\u003c/a\u003e\n\n#### 2. [Part 2](https://tryhackme.com/room/linux2)\n\n\\* Remember to start the machine (which is different from the attack box)\n\n\n\nThis one has a lot of useful information and here are some that I did not know:\n\n* `;` operator is the same as `\u0026\u0026` but does not need to execute successfully\n\n  \n\n\u003ca name=l3\u003e\u003c/a\u003e\n\n#### 3. [Part 3](https://tryhackme.com/room/linux3)\n\nThis part goes through some more tools and commands for us to go into. \n\nTask 7 -\u003e `find / -name shiba4 2\u003e/dev/null` (idk what `2\u003e/dev/null` does but it works)\n\n\n\n\u003ca name=introwindows\u003e\u003c/a\u003e\n\n### [Windows Intro](https://tryhackme.com/room/intro2windows)\n\nA simple intro to the Windows operating system. This barely counts as a room, but it is what it is.\n\n\n\n\u003ca name=googled\u003e\u003c/a\u003e\n\n### [Google Dorking](https://tryhackme.com/room/googledorking)\n\nGoogle, SEO, and indexing!\n\nNotice for me:\n\n![notice](./img/notice.png)\n\n\n\n\u003ca name=introwebsite\u003e\u003c/a\u003e\n\n### [How Websites Work](https://tryhackme.com/room/howwebsiteswork)\n\nEasy intro into web dev and how websites work\n\n\n\n\u003ca name=inetwork\u003e\u003c/a\u003e \n\n### [Introductory Networking](https://tryhackme.com/room/introtonetworking)\n\nNetworking stuff (Mostly IT/network stuff)\n\n\n\n\u003ca name=hash101\u003e\u003c/a\u003e \n\n### [Hashing - Crypto 101](https://tryhackme.com/room/hashingcrypto101)\n\nIntro cryptography\n\nTask 4, Last question -\u003e check length with Python\n\n`len(\"HASH\")`\n\nFor Task 5, to crack, use\n\n`hashcat -m NUM hash rockyou.txt ` where hash is the txt file containing the hash  and change NUM to whatever the code for your hash type (found here: https://hashcat.net/wiki/doku.php?id=example_hashes). Also note that rockyou.txt was saved in the same directory level as the hash file\n\n\\* Note this may take a while\n\n\n\n\u003ca name=ishell\u003e\u003c/a\u003e \n\n### [Intro Shell](https://tryhackme.com/room/introtoshells)\n\nYou can do the questions in order, but a better idea is to go to the bottom (task 14/15), start those machines and test the other tests with the open machine while AttackBox is open\n\n\n\n\u003ca name=nmap\u003e\u003c/a\u003e \n\n### [Nmap](https://tryhackme.com/room/furthernmap)\n\nTask 3 -\u003e recommended to redirect output to text file like this\n\n`nmap -h \u003e t.txt` then grep the output of the t.txt to find the answer like this\n\n`cat t.txt | grep -in -e 'FIND TEXT'`\n\nTo get the answers most of the time and line number if you do not find it immediately\n\n\n\n\u003ca name=hydra\u003e\u003c/a\u003e \n\n### [Hydra](https://tryhackme.com/room/hydra)\n\nNice and simple intro to Hydra (you can use Burp for intercept)\n\n\\* note the usual word list rock you and it is found in `/usr/share/wordlists/rockyou.txt ` on the attack box by default\n\n\n\n\u003ca name=http\u003e\u003c/a\u003e \n\n### [HTTP in detail](https://tryhackme.com/room/httpindetail)\n\nSome simple questions to get you to know HTTP and the web\n\n\n\n\u003ca name=putting\u003e\u003c/a\u003e \n\n### [Putting it all together](https://tryhackme.com/room/puttingitalltogether)\n\nNow with the other modules completed, put it all together and finish the quiz, good luck!\n\n\n\n\u003ca name=adb\u003e\u003c/a\u003e \n\n### [Active Directory Basics](https://tryhackme.com/room/activedirectorybasics)\n\nReading assignment :weary: \n\n(Don't be afraid to use the hint for the second last part)\n\n\n\n\u003ca name=john\u003e\u003c/a\u003e \n\n### [John The Ripper](https://tryhackme.com/room/johntheripper0)\n\nUse rockyou.com for test: [rockyou.txt wordlist](https://github.com/brannondorsey/naive-hashcat/releases/download/data/rockyou.txt)\n\nFor cracking in task 4, use `john hashX.txt --wordlist=../rockyou.txt` if rockyou.txt is in the directory above yours\n\nIn Task 9-11, zip2john, rar2john, and ssh2john are not found so install it manually or just enter \n\n`pass123` as the passcode zip and\n\n`password` for the rar (you also need unrar)\n\n`mango` for the ssh key\n\n\n\n\u003ca name=CLP\u003e\u003c/a\u003e \n\n### [Common Linux Privesc](https://tryhackme.com/room/commonlinuxprivesc)\n\nThis video series covers this room in great detail: https://www.youtube.com/watch?v=PjjuZwVvCgc\n\n\n\n\u003ca name=Metasploit\u003e\u003c/a\u003e \n\n### [Metasploit](https://tryhackme.com/room/rpmetasploit)\n\nFollow the steps and/or watch the video (which contain the answers)\n\n\n\n\u003ca name=encryption\u003e\u003c/a\u003e \n\n### [Encryption - Crypto 101](https://tryhackme.com/room/encryptioncrypto101)\n\nTask 4 -\u003e use python interrater\n\n\n\n\u003ca name=linuxesc\u003e\u003c/a\u003e \n\n### [Linux PrivEsc](https://tryhackme.com/room/linuxprivesc)\n\nGood resource for escalation later on (definitely a good bookmark)\n\n\n\n\u003ca name=dns\u003e\u003c/a\u003e \n\n### [DNS in Detail](https://tryhackme.com/room/dnsindetail)\n\nFind out what a DNS is\n\n\n\n\u003ca name=vulnversity\u003e\u003c/a\u003e\n\n### [Vulnversity](https://tryhackme.com/room/vulnversity)\n\n1. Run `nmap -A -sC -p- -oN vul.nmap 10.10.IP ADDRESS HERE*` on the instance of Kali \n\n2. Wait \u003e10 minutes for it to resolve\n\n3. Scan for hidden files by doing `gobuster dir -u http://\u003cip\u003e:3333 -w /usr/share/wordlists`\n\n4. Go to the \\\u003cip\u003e/internal/index.html on firefox (**Make sure u aren't using http or https before the url**)\n\n5. Follow the rest of the steps till yo get to injecting the PHP code\n\n6. Make sure download the PHP file from GitHub, rename it to be a .phtml and change the IP to the TMP IP address\n\n   ![screen1](./img/screen1.png)\n\n7. Save, upload, listen, then submit file\n\n8. Then the netcat should allow you in such that you can gain control and find out things about the machine\n\n9. Follow https://n0w4n.nl/vulnversity/#crayon-60458bd07482b875406373 to gain admin privileges\n\n10. Follow the rest of the instructions and you should be done! 🥳\n\nResources: \n\n* https://n0w4n.nl/vulnversity/\n* https://www.youtube.com/watch?v=hvYWCegfEZs\u0026ab_channel=JohnHammond\n\n\n\n\u003ca name=ns\u003e\u003c/a\u003e \n\n### [Network Services](https://tryhackme.com/room/networkservices)\n\nsee [YouTube 1](https://www.youtube.com/watch?v=eedTXtYiOK4), [YouTube 2](https://www.youtube.com/watch?v=qcvZ2Jm8fPU), or [YouTube 3](https://www.youtube.com/watch?v=18bHDxj1JpE) for hints\n\n\n\n\u003ca name=ns2\u003e\u003c/a\u003e \n\n### [Network Services 2](https://tryhackme.com/room/networkservices2)\n\n`/usr/sbin/showmount` is just `showmount` (Task 3)\n\nSome parts maybe broken like the MySQL (also need to install MySQL)\n\nA very good writeup: http://wuvel.net/network-services-2/#:~:text=What%20process%20allows%20an%20NFS,Mounting.\n\n\n\n\u003ca name=OhSINT\u003e\u003c/a\u003e \n\n### [OhSINT](https://tryhackme.com/room/ohsint)\n\nMSINT fun. Do some googling and don't be afraid of using the hint\n\nFor SSID of WAP, the website has changed the the answer is `UnileverWiFi`\n\nLast question requires you to look in the source code (under the header)\n\n\n\n\u003ca name=owasp\u003e\u003c/a\u003e \n\n### [OWASP Top 10](https://tryhackme.com/room/owasptop10)\n\nFollow the steps till task 7, where the arthur task might be broken. Therefore the password is `d9ac0f7b4fda460ac3edeb75d75e16e`\n\nIn severity 3, you go into SQL. Notes on SQLite3:\n\n* find the structure of the table with `.schema TABLE_NAME` in sqlite3\n\nSSH key is usually located at `/home/falcon/.ssh/id_ra`\n\nIn take 16, it can be annoying to get the first 18 characters so use python by specifying \n\n```python\na = \"KEY\"\nprint(a[:18])\n```\n\nSeverity 6: MSINT\n\nSeverity 7: Note that the alert must be case sensitive (ie `Hello`)\n\nSeverity 8: Task 21 is a trick question since it's `the Apache Software Foundation` 🙄\n\nalso note the first flag (cookie) requires a decoder\n\n\n\n\u003ca name=owaspjs\u003e\u003c/a\u003e \n\n### [OWASP Juice Shop](https://tryhackme.com/room/owaspjuiceshop)\n\nNote the best1050 wordlist from task 4 exists in `/usr/share/wordlists/SecLists/Passwords/Common-Credentials` (also that question takes a long time because burp wants you to buy premium) \n\n\n\n\u003ca name=upload\u003e\u003c/a\u003e \n\n### [Upload Vulnerabilities](https://tryhackme.com/room/uploadvulns)\n\nMake sure you follow tasks 1 otherwise, the website will not work. In addition, when entering the website via firefox, if it is not showing the website and redirecting to Google, please do `overwrite.uploadvulns.thm/` (with the slash). Follow the steps and have fun with the challenge!\n\n\n\n\u003ca name=Kenobi\u003e\u003c/a\u003e \n\n### [Kenobi](https://tryhackme.com/room/kenobi)\n\nFollow the steps are the rest is trivial\n\n\n\n\u003ca name=bp\u003e\u003c/a\u003e \n\n### [Basic Pentesting](https://tryhackme.com/room/basicpentestingjt)\n\nCheck The video (https://www.youtube.com/watch?v=xl2Xx5YOKcI)\n\nThis room should be done near the end because it requires a bunch of other tools and it requires you know how to pentest starting from nothing\n\n\n\n\u003ca name=mrrobot\u003e\u003c/a\u003e \n\n### [Mr Robot CTF](https://tryhackme.com/room/mrrobot)\n\nThis is similar to [Blue](#blue), or at least the steps are the same, just some praxis\n\n\n\n\u003ca name=blue\u003e\u003c/a\u003e \n\n### [Blue](https://tryhackme.com/room/blue)\n\nThe behaviour of msfconsole may vary on your machine and therefore you may have to background once you do `run`.  Sometimes the run will fail and you may need to restart the machine \n\n(This room is a bit finicky)\n\n\n\n\u003ca name=ice\u003e\u003c/a\u003e \n\n### [Ice](https://tryhackme.com/room/ice)\n\n1561 is the one we want in task 3\n\nHere I will break down the steps for general cracking:\n\n1. Scan and recon\n2. Hopefully find an exploit\n3. Use metasploit (msfconsole)\n   1. search for the exploit found\n   2. set to use the exploit (with `use NUMBER`)\n   3. set the host/port\n   4. run (the exploit at the host)\n4. Pray that you are successful\n5.  Escalate \n\n\n\n\u003ca name=sm\u003e\u003c/a\u003e \n\n### [Steel Mountain](https://tryhackme.com/room/steelmountain)\n\nYet another Mr. Robot room 😅\n\nIn task 2 the name of the webserver starts with the word `rejetto`\n\n\\*note the flag is in Desktop\n\n\n\n\u003ca name=Nessus\u003e\u003c/a\u003e \n\n### [Nessus](https://tryhackme.com/room/rpnessusredux)\n\nUnless you have 30GB of space or don't want to waste 30GB, don't do this room! \n\nIf me want the badge (🥺👉👈), follow this tutorial: https://www.youtube.com/watch?v=JMyuEiz1dWQ\n\n\n\n\u003ca name=pickle\u003e\u003c/a\u003e \n\n### [Pickle Rick](https://tryhackme.com/room/picklerick)\n\nI turned myself into a CTF room Morty... \n\nFollow the video but at this point, you should know your way around by now\n\n\n\n\u003ca name=wireshark\u003e\u003c/a\u003e \n\n### [Wireshark 101](https://tryhackme.com/room/wireshark)\n\nWireshark on the Attack machines can be opened with the `wireshark` command\n\nIn task 8, the last question requires it without the colon so use python to remove them\n\n```python\na = 'STRING HERE'\nb = ''\nfor char in a:\n    if char != ':':\n\t    b += char\nprint(b)\n```\n\n\n\n\u003ca name=attacktive\u003e\u003c/a\u003e \n\n### [Attacktive Directory](https://tryhackme.com/room/attacktivedirectory)\n\nPrograms should be installed by default on attack machines. \n\n\n\n\u003ca name=peb\u003e\u003c/a\u003e \n\n### [Post-Exploitation Basics](https://tryhackme.com/room/postexploit)\n\nWhat do you do after you exploit the system? Well this room will let you find out how persistently stay on the system! \n\n\n\n\u003ca name=attackk\u003e\u003c/a\u003e \n\n### [Attacking Kerberos](https://tryhackme.com/room/attackingkerberos)\n\nKerberos must be installed in the Attack machines because dogs go waff waff hehe.\n\n\n\n\u003ca name=django\u003e\u003c/a\u003e \n\n### [Introduction to Django](https://tryhackme.com/room/django)\n\nA nice intro to starting Django (Python web framework) development\n\nFor user flag, hint is look in `/home` after ssh\n\n\n\n## CI for PDF\n\n![badge](https://github.com/Zeyu-Li/TryHackMe/workflows/Convert%20Markdown%20to%20PDF/badge.svg)\n\n\n\n## Thanks 💖\n\nThanks for taking time to look at these hints for TryHackMe. I hope this helped and by the end you would have reached Hacker rank and ~13,000 rank/500,000 users\n\n\n\n🔝[Back to Top](#top)\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fzeyu-li%2Ftryhackme","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fzeyu-li%2Ftryhackme","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fzeyu-li%2Ftryhackme/lists"}