Luca Greeb
@Yeeb
Penetration Tester, Red Teamer, and CTF Player (@Laniakea) with hands-on Incident Response experience and a passion for offensive security.
# currently roaming around japan
projects
The Shelf is a repository containing various tools, exploits, and scripts that I’ve gathered over the years. These are small but useful utilities for hacking, automation, and configurations that didn't justify their own repo but are too handy to lose. Useful for quick tasks, testing, or competitive hacking.
The Cortex-XDR-Config-Extractor is a Python tool that extracts configuration details from Palo Alto Cortex XDR agent database files, including uninstall password hashes, exclusions, and module settings. It is primarily intended for red-team assessments and audits.
A small set of Beacon Object Files (BOFs) that I developed over the time with a Magic: The Gathering theme.
Lightweight binary that joins a device to a Tailscale network and exposes a local SOCKS5 proxy. Designed for red team operations and ephemeral access into restricted environments using Tailscale’s embedded client (tsnet). Zero config, no daemon, no persistence - just a fast way in.
DeathTrooperDecryption is a toolset for decrypting and analyzing encrypted communications in the Empire C2 framework. It's intended to decode staging data, command outputs, session keys, and cookies from captured Empire agent traffic.
A Python script to recover the AES key and decrypt agent traffic from the NimPlant C2 server by exploiting the limited keyspace of the XOR key used in pre-crypto operations.
Automatically extract and decrypt all configured scanning credentials of a Lansweeper instance.
Fork of nyxgeek's bad_guest.ps1 which outputs into JSON and has some basic analytics added.
SquidSideOut is a Go-based tool that performs internal port scanning by routing probes through a Squid or any HTTP proxy. It can enumerate localhost ports on the proxy host or scan remote targets reachable via the proxy to discover open services.
The Phish is the Bait. Identify security infrastructure by deploying intentionally suspicious links that bait scanners and blue teams. Fingerprints automated systems to optimize your actual campaign delivery.
A Python script designed for generating authentication tokens for Proxmox VE (Virtual Environment). The script automates the process of creating 'PVEAuthCookie' and 'PMGAuthCookie', with the private key typically found at /etc/pve/priv/authkey.key for PVE and /etc/pmg/pmg-authkey.key for PMG
A tool for cracking WinSSHTerm vault master passwords, with a wordlist.
Exploits a flaw in Remote Desktop Plus by monitoring and decrypting temporary .rdp files in %localappdata%/Temp, revealing credentials used in remote desktop sessions.
Command-line interface for CTFd competitions: sync challenges, submit flags, and track progress.
Python tools for quickly sharing command outputs, files, and clipboard content to Discord.
HackTheBot is a Discord bot that posts Hack The Box updates - such as new machines, challenges, and platform notices - directly into your Discord server, with OSINT details and optional link archiving.
This script converts FileZilla hashes into a format compatible with Hashcat (PBKDF2-HMAC-SHA256) for cracking. Additionally, it can parse users.xml or server.xml files to extract hashes, salts, and iterations automatically.
Converts ASP.NET Identity (PBKDF2+HMAC-SHA1 and PBKDF2+HMAC-SHA256) to Hashcat format
SMB module that finds and downloads Windows Snipping Tool screenshots (from %USERPROFILE%\Pictures\Screenshots) for all or specific users via SMB, allowing automated collection of saved screenshots from remote hosts.
SMB module that parses GptTmpl.inf from the Default Domain Policy (and other deployed GPOs) to extract GPO-deployed privilege assignments and optionally resolves SIDs to user/group names via LDAP (can disable LDAP with NO_LDAP).
certs
Certified Red Team Expert (CRTE)
Advanced Active Directory attack techniques, domain dominance, cross-forest attacks, and Azure AD exploitation.
Certified Red Team Lead (CRTL)
Advanced red team leadership covering engagement planning, command and control, and advanced post-exploitation.
Certified Red Team Operator (CRTO)
Practical red team operations using Cobalt Strike for command and control, lateral movement, and domain dominance.
Security Researcher Acknowledgments
Recognition for responsible disclosure of security vulnerabilities in Palo Alto Networks products.
Offensive Security Certified Professional (OSCP)
Industry-standard penetration testing certification covering enumeration, exploitation, privilege escalation, and reporting.
Palo Alto Networks Certified Network Security Administrator (PCNSA)
Configuration and management of Palo Alto Networks next-generation firewalls and security policies.
IT-Spezialist Profil IT-Administrator
German IT specialist certification covering system administration and enterprise IT infrastructure.
CompTIA Security+
Foundational cybersecurity certification covering network security, compliance, threats, and vulnerabilities.
Microsoft Certified: Azure Security Engineer Associate
Azure security implementation including identity management, platform protection, and security operations.
Microsoft Certified: Azure Solutions Architect Expert
Azure infrastructure design, implementation, monitoring, and security architecture at enterprise scale.
trainings
Malware Development Course
Comprehensive malware development training covering advanced evasion techniques, custom impant creation, and anti-analysis methods.
MalOpSec2 - EDR: The Great Escape @OffensiveCon
Advanced EDR evasion techniques including userland hooks, kernel callbacks, and telemetry manipulation.
Advanced Threat Emulation: Active Directory @BlackHat USA
APT-style attack chains against Active Directory using tools like Covenant, Empire, and custom tradecraft.
Hacking Enterprises: 2024 Red Edition @BlackHat USA
Modern enterprise exploitation techniques covering Azure/Entra ID, hybrid environments, and cloud security.
labs
Pro Labs: Offshore
Enterprise red team simulation involving multi-domain environments, certificate services abuse, and C2 infrastructure.
Red Team Lab: Ifrit Master
Advanced red team operations in a fully adversary-simulated enterprise environment.
Pro Labs: Rastabas
Advanced Active Directory exploitation including trust relationships, delegation attacks, and persistence mechanisms.
Machine Master
Completion of all standalone machine challenges demonstrating comprehensive penetration testing capabilities.
Chain Master
Completion of all Multi-system attack chains requiring pivoting, lateral movement, and privilege escalation across diverse environments.
Pro Labs: Zephyr
Large-scale penetration testing lab simulating real-world enterprise network with multiple attack vectors.
Red Team Lab: Shiva Master
Complex red team engagement requiring advanced persistence, detection evasion, and objective completion.
Red Team Lab: Shinra Master
Adversary simulation focused on realistic TTPs and operational security in a monitored environment.
Red Team Lab: Wutai Master
Advanced red teaming scenarios including network segmentation bypass and multi-stage payload delivery.
Pro Labs: Dante
Network penetration testing across 27 machines requiring enumeration, exploitation, and pivoting through network segments.
cves
Active Directory Integration / LDAP Integration <= 4.1.5 - Authenticated (Subscriber+) LDAP Injection
PHOENIX CONTACT ENERGY AXC PU Web service - Directory Traversal allowing authenticated restricted users to access, read, write and create files throughout the file system
Appointment Hour Booking <= 1.3.72 - CAPTCHA Bypass
Appointment Hour Booking <= 1.3.72 - Unauthenticated iFrame Injection via Appointment Form
Appointment Hour Booking <= 1.3.72 - CSV Injection
Quiz and Survey Master <= 8.0.4 - Improper Input Validation
Quiz and Survey Master <= 8.0.4 - Unauthenticated iFrame Injection via Paragraph and Short Answer
Simple:Press <= 6.8 - Authenticated (Admin+) Path Traversal to Arbitrary File Modification
Simple:Press <= 6.8 - Authenticated (Subscriber+) Path Traversal to Arbitrary File Deletion
Simple:Press <= 6.8 - Reflected Cross-Site Scripting via Cookie Value
Simple:Press <= 6.8 - Authenticated (Subscriber+) Stored Cross-Site Scripting via Profile Signatures
Simple:Press <= 6.8 - Unauthenticated Stored Cross-Site Scripting via Forum Replies
Responsible Disclosures
Over the years, I've resposible disclosed several impactful vulnerabilities to multiple vendors across different sectors. Unfortunately, most of the time no reply or communication was ever received. These issues sadly remain uncoordinated, and it is unknown if they were ever fixed.
writing
Security research on Palo Alto Networks Cortex XDR revealing configuration extraction vulnerabilities, exclusion rule enumeration, and bypass techniques.
⡇⣾⣿⣧⣿⣿⣿⣿⣿⣿⣽⣿⣿⡧⣾⣿⡏⢼⡇⣼⣿⣿⣿⣿⣿⣷⣿⣿⡿⢸⠁⣾⡟⡼⣼⣿⣿⡟⢡⠇⠀⠀⠀⠀⠀⠀⠀⠀⠀⢸⣿⢿⣿⡿⢩⢃⣿⢿⣿⣿⣿⣿⢟⣿⣿⣸⣿⣿⣿⣿ ⢃⣿⣿⣽⣿⣿⣿⣿⣿⣯⣿⣿⡿⣰⣿⡿⢠⡿⢰⣿⣿⣿⣿⣿⣿⣿⣿⡿⢡⠃⣸⡿⣝⣵⣿⣿⡿⣇⡏⠀⠀⠀⠀⠀⠀⠀⠀⠀⢀⡿⢣⣿⣏⡔⣡⣿⠿⠟⡩⠟⠁⠈⢸⣿⣿⡕⣿⣿⣿⣿ ⢸⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⢡⣿⣿⠁⣼⢃⣿⡟⣽⣿⣿⡿⣻⣿⡿⠁⠁⣰⡿⠳⣿⣿⣿⠟⣰⡏⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠘⠁⢓⣽⠿⠟⠃⠀⠀⠀⠀⠀⠀⠀⣾⣿⣿⡇⣿⣿⣿⣿ ⢸⣿⣿⣿⣿⣿⣿⣿⣿⣿⢷⢃⣿⣿⠏⣰⢏⣾⣟⣼⣿⢟⡞⣱⣿⡿⠁⠀⣼⠏⠀⣼⣿⠟⠁⢴⠛⠁⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠉⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⢸⠇⣿⣿⡇⣿⣿⣿⣿ ⣿⣿⣿⣿⣿⣿⣿⣿⣿⢯⣣⣿⣿⠏⢠⢃⣾⠟⣼⣿⡫⠋⣴⠟⡑⣀⣠⣾⣥⣶⣾⠟⠁⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⢀⣀⣤⡽⠀⣿⣿⡇⢻⣿⣿⣿ ⣿⣿⣿⣿⣿⣿⣿⣿⠃⣡⣿⠿⠋⣠⣃⣿⣷⣾⡿⡧⢶⠞⠿⠟⠛⠛⠛⠛⠉⠋⠁⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⣀⡤⠖⠊⢉⣠⣗⣣⡤⣿⣿⣿⢸⣿⣿⣿ ⣿⣿⣿⣿⣿⡿⡿⠁⡴⠟⠋⠉⡠⠉⠀⢠⡾⠋⠀⠀⠀⠐⠁⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⣠⠔⠋⣀⣤⣶⣿⡿⣟⣙⡋⠀⢹⣿⣿⢸⣿⣿⣿ ⣿⣿⣿⣿⠏⡈⢀⢈⠀⠀⠀⠀⠀⠀⠐⠁⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⣠⡾⣡⣶⣿⣿⠭⡿⠛⢻⠆⢨⡄⠀⢸⣿⣯⠘⣿⣿⣿ ⣿⣿⣿⡅⡌⡄⢡⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⢠⣶⣿⣽⡟⡟⢩⠑⠚⠀⡔⢪⠉⠙⡇⠀⠘⣿⣿⡇⣿⣿⣿ ⣿⣿⡏⠪⢮⢄⠥⠈⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⡀⠀⠀⢀⡀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⢀⣾⣿⣿⣿⣴⣦⣄⣀⡾⢁⠇⣼⡧⠀⣇⠀⠀⣿⣿⢃⣿⣿⣿ ⣿⣟⡇⡀⠄⠣⢤⠂⢢⠤⡃⢄⣂⣤⢶⣰⣶⠿⠯⠿⠿⣗⣯⣷⣶⣢⢴⠂⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⢠⣾⣿⣿⠃⠈⠙⠛⢋⠭⠄⢊⣾⣯⡍⠂⣻⠄⠀⢻⣿⢸⢿⣿⣿ ⣿⣿⡗⠂⢀⡂⢄⡢⠧⢳⡿⠿⠛⠉⢀⣀⣤⣴⣶⣶⣾⣷⣿⣿⣷⣿⣋⣢⣲⣗⡀⢀⣀⡄⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⢼⣿⣿⢧⣵⣴⣆⣀⣤⣤⣶⡅⠸⡯⠃⠀⢾⡀⠀⢸⣿⠘⣿⣿⣿ ⣿⢿⣗⠮⡖⣻⠕⠒⠉⣀⣠⣴⣶⣿⢿⠏⠻⣿⣿⡿⣀⢤⡏⠈⠻⣿⣿⣯⣟⠿⡉⠉⠀⡀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠸⠋⠡⡞⢾⡮⣪⠚⠧⢻⠊⠹⡀⠡⡀⠀⢽⡇⠀⠸⣿⡅⢻⣿⣿ ⣿⣾⣇⡱⢈⠴⣮⣶⣾⢿⡟⠁⠋⠱⣦⣄⣀⣾⣥⣿⠷⠀⡀⠤⢀⣈⡹⠏⣒⠨⢔⡲⠈⠊⠀⣀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠈⠀⠀⠀⠀⠀⠀⠀⠘⡀⠃⠀⢺⡇⠀⠀⣿⡇⢸⣿⣿ ⣿⣿⣷⡘⠴⡚⢝⡿⣣⢶⢎⡁⠂⠀⠈⠭⢟⠿⠛⠋⠀⣈⣴⢾⣿⣻⣢⡜⣢⠯⠁⠠⠀⡠⠁⢌⠤⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠠⡄⠰⠀⣸⡇⠀⢀⢻⣿⢘⣿⣿ ⣿⣯⡏⠁⡰⠔⠊⠝⡗⡋⣼⠫⢳⡶⣦⢀⠀⣠⣶⢾⠿⣏⢛⡯⣘⠵⢊⡡⠀⠀⠐⠔⠂⠑⠒⣡⠦⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⡁⡉⠀⣹⠆⠀⠈⣸⣿⡈⣿⣿ ⣿⣿⡷⠈⠂⠀⡂⠠⠀⠈⡃⠌⢏⢴⣉⠀⢠⣝⡽⣮⠴⢙⢭⡦⠋⠉⠁⠂⠙⢛⠔⣈⠔⠞⠛⡋⡠⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠈⠁⠀⣽⠂⢠⠀⢟⣿⡇⣿⣿ ⣿⣿⣷⠅⠄⠑⠀⡀⠰⠎⠂⢈⠢⠁⢾⠀⠰⢀⠈⠐⠚⠳⠛⠉⠀⠀⠀⠀⠈⠐⠊⠀⢀⠄⠚⡁⠀⢀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⣾⠀⠸⡀⢸⣿⣇⣿⣿ ⣿⣿⣷⠞⠃⠄⠬⠢⠄⠈⠰⠄⠈⠐⢸⠀⡆⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠄⠁⡀⠂⠨⢀⠨⠀⡀⠄⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⣿⠀⠀⡇⠨⣿⣷⢸⣿ ⣿⣿⣗⠠⠪⠀⠔⠁⠂⠀⠀⠀⠀⠀⡇⠀⡇⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⢐⠠⠐⠁⠀⠂⠠⠀⠠⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⢸⡟⡆⠀⣇⠀⣿⣿⣸⣿ ⣿⣿⣏⡀⣊⢈⠘⠀⠂⠀⠀⠀⠀⠀⡇⠀⡇⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠘⠀⠀⠀⠀⠊⡔⠀⢀⠠⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⣼⡇⡇⠀⣿⠀⢿⣿⣇⣿ ⣿⣿⣿⡈⠀⠃⠀⠀⠀⠀⠀⠀⠀⠀⡇⠀⠃⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⢀⠈⠀⠈⢀⠠⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⢀⣿⢠⢁⠀⢿⡆⠸⣿⣿⣿ ⣿⣿⣿⡗⠁⠀⠀⠀⠀⠀⠀⠀⠀⠀⡇⠈⡇⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠄⠀⠈⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⢸⣿⢸⢸⠀⢸⣷⠈⣿⣿⣿ ⣿⣿⣿⢹⡠⠀⠀⠀⠀⠀⠀⠀⠀⠀⡇⠐⡇⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⡴⠞⠁⠀⠀⠀⠀⠀⠀⠀⠀⠀⢀⣿⣿⡀⡝⠀⢸⣿⠀⣿⣿⡾ ⣿⣿⣿⢽⠪⠀⠀⠀⠀⠀⠀⠀⠀⠀⡇⢨⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠠⢀⢀⣀⣤⣶⣿⣶⣄⣀⠴⠋⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⣼⣿⣿⡅⡏⡆⢸⣿⡆⢽⣿⣧ ⣿⣿⣿⡕⡅⡂⠀⠀⠀⠀⠀⠀⠀⠀⡁⠠⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠉⠑⠛⠛⠛⠙⠉⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⢠⣿⣿⣿⡇⢣⢇⠈⣿⣧⠠⣿⣿ ⣿⣿⣿⣇⡟⠀⠀⠀⠀⠀⠀⠀⠀⠀⡇⠀⡇⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⢀⡀⠀⠀⠀⠀⠀⠀⠀⢀⣿⣿⣿⣿⣿⢠⢸⠀⣿⣿⠸⢻⣿ ⣿⣿⣿⣿⢳⠀⠀⠀⠀⠀⠀⠀⠀⠀⡇⠀⡇⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⢀⣴⣻⣿⠆⠀⠀⠀⠀⠀⠀⠀⣼⣿⣿⣿⣿⣿⢈⠈⡆⣿⣿⣿⢸⣿ ⣿⣿⣿⣿⣸⠀⠀⠀⠀⠀⠀⠀⠀⠀⡇⠀⡇⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⣐⢂⡪⡐⣾⣽⣯⡿⠃⠀⠀⠀⠀⠀⠀⠀⣼⡏⢹⣿⣿⣿⣿⡆⡆⠇⣿⣿⣿⡜⣿ ⣿⣿⣿⣿⡇⡇⠀⠀⠀⠀⠀⠀⠀⠀⡇⠀⡇⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⢀⣀⣴⣾⡿⠯⠾⣤⣮⣷⣿⣿⠁⠀⠀⠀⠀⠀⠀⢀⣼⣿⣷⠸⣿⣿⣿⣿⡇⡇⢰⢸⣿⣿⡇⣿ ⣿⣿⣿⣿⣿⡇⠀⠀⠀⠀⠀⠀⠀⠀⢃⠀⢃⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⣠⣾⣿⣿⣩⣤⣤⣴⣾⣿⣿⣿⣿⡅⠀⠀⠀⠀⠀⠀⢀⣾⣟⢹⡏⡇⣿⣿⣿⣿⣿⢹⠘⣾⣿⣿⣧⢹ ⣿⣿⣿⣿⣿⣇⠀⠀⠀⠀⠀⠀⠀⠀⢸⠀⢸⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⣴⢾⢿⣿⣿⣿⣿⣿⣿⣿⢿⠟⡿⡟⣵⡻⠁⠀⠀⠀⠀⠀⢠⣾⣿⣿⠘⣷⢳⣿⣿⣿⣿⣿⠸⡄⢿⣿⣿⣿⣸ ⣿⣿⣿⣿⣿⣿⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⢰⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠠⣈⡀⠉⠷⠇⢠⣸⠾⢆⠶⣋⢩⠓⠀⠀⠀⠀⠀⠀⣰⣿⣿⣿⣿⡀⣿⣼⣿⣿⣿⣿⣿⡇⡇⢸⣿⣿⣿⡹ ⣿⣿⣿⣿⣿⣿⣧⣄⠀⠀⠀⠀⠀⠀⠀⡇⠨⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠈⠃⠠⠤⣠⢠⠰⠁⢾⡞⠝⠈⠀⠀⠀⠀⠀⠀⣰⣿⣿⣿⣿⣿⣇⢸⣧⣿⣿⣿⣿⣿⣷⣁⠀⣿⣿⣿⣇ ⣿⣿⣿⣿⣿⣿⣿⣿⣳⣤⣀⠀⠀⠀⠀⢡⡀⡇⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⢀⣼⣿⣿⣿⣿⣿⣿⣿⡜⣿⣿⣿⣿⣿⣿⣿⣿⡀⢻⣿⣿⣿