Add writeups

orangetw · web-flow · commit e3de43666c4d · 2017-11-08T11:04:52.000+08:00
diff --git a/README.md b/README.md
@@ -110,11 +110,11 @@ You can check the [exploit.py](hitcon-ctf-2017/babyfirst-revenge/exploit.py) for
 #### Write Ups
 
 * [HITCON CTF 2017-BabyFirst Revenge-writeup](https://chybeta.github.io/2017/11/04/HITCON-CTF-2017-BabyFirst-Revenge-writeup/)  
-* [HITCON CTF 2017-BabyFirst Revenge-writeup Via curl](http://www.jianshu.com/p/82788b6949c7)  
+* [HITCON CTF 2017-BabyFirst Revenge-writeup (Via curl)](http://www.jianshu.com/p/82788b6949c7)  
 * [HITCON 2017 CTF BabyFirst Revenge](https://infosec.rm-it.de/2017/11/06/hitcon-2017-ctf-babyfirst-revenge/)  
 * [HITCON CTF 2017 - BabyFirst Revenge (172 pts.)](https://kimtruth.github.io/2017/11/06/HITCON-CTF-2017-BabyFirst-Revenge-172-pts/)  
 * [Hitcon CTF 2017 - Baby Revenge](https://theromanxpl0it.github.io/ctf_hitcon2017/babyrevenge/)  
-* [Hitcon CTF 2017 Quals: Baby First Revenge (web 172) (solved by using xxd)](https://losfuzzys.github.io/writeup/2017/11/06/hitconctf-babyfirstrevenge/)  
+* [Hitcon CTF 2017 Quals: Baby First Revenge (web 172) (Via xxd)](https://losfuzzys.github.io/writeup/2017/11/06/hitconctf-babyfirstrevenge/)  
 
 
 
@@ -145,7 +145,7 @@ You can check [exploit.py](hitcon-ctf-2017/babyfirst-revenge-v2/exploit.py) for
 
 #### Write Ups
 
-* [script.py](https://gist.github.com/bennofs/63ce0503c5fba9277f01d13adbe95bf6) from @bennofs  
+* [Baby First Revenge v2 (Via vim)](https://github.com/bennofs/docs/blob/master/hitcon-2017/baby-first-revenge2.md)  
 * [\[python\] baby-exp.py](https://codegists.com/snippet/python/baby-exppy_beched_python)  
 
 
@@ -184,6 +184,7 @@ $ curl http://host/?filename=xxx&url=orange://orange.tw
 
 * [Another Solution by @Paul_Axe](https://twitter.com/Paul_Axe/status/927669724439293953)  
 * [HITCON 2017 SSRFme](https://ricterz.me/posts/HITCON%202017%20SSRFme)  
+* [SSRFme by @sorgloomer](https://github.com/sorgloomer/writeups/blob/master/writeups/2017-hitcon-quals/ssrfme.md)  
 
 
 
@@ -209,7 +210,7 @@ Tag:  **WhiteBox**, **MySQL**, **PostgreSQL**, **SQL Injection**, **Code Injecti
 
 #### Write Ups
 
-    TBD
+* [SQL so Hard by @sorgloomer](https://github.com/sorgloomer/writeups/blob/master/writeups/2017-hitcon-quals/sql-so-hard.md)  
 
 
 ## **Baby^H Master PHP 2017**
