Please note: For free users, this Network requires a 7-day streak. 🥳

🏴‍☠️

:O

New network room is sick

Good luck to all

too bad my streak is over :(

meep meep go go go

cannot ping the machine with machine vpn

u have to register

VPN profile keeps restarting itself

Do you have more than 1 open?

data-ciphers AES-256-CBC --> --data-ciphers AES-256-CBC try with this in vpn file

The VPN file should be ok.

All the machines are busy at the moment, please retry later

Can you do ip a | grep "tun" ?

utun12: flags=8051<UP,POINTOPOINT,RUNNING,MULTICAST> mtu 1500
    inet 10.50.61.17 --> 10.50.61.17/24 utun12

And your vpn is restaring?

Can you cat the file.

my vpn works now with regen

Happy hacking.

Need one volunteer: anyone who is not in the 10.200.64.x subnet? 😄

@scenic pasture Which subnet are you in?

i'm in 10.50.61.17

i can reach 10.200.64.10

oh sorry misread I actually am 64 😵‍💫 , need to sleep more

All the machines are busy at the moment xD

$ ssh register@10.200.64.250
register@10.200.64.250's password:

Welcome to the Bandit challenge!
Please make a selection:
[1] Register
[2] Exit
Selection:1

Your VPN IP will start with 10.50.61.X. Please provide us with X, the last octet of your VPN IP:
17
All the machines are busy at the moment, please retry later
Connection to 10.200.64.250 closed.

so we need to register to get into 10.200.64.x subnet?

If you leave the room and re-join, it should provide a new subnet now? 😄

tried and get the same IP/subnet

same

Let me check. (still checking)

I'm in 64.

If you still need someone.

This should be mentioned in the room details under "More" tab. No? @cerulean cobalt what you say.

I need someone who is not in 10.200.64.x 😄

:d

I'll try my best.

Ok

I'm in 114.

No wait, I'm not 😂

I'm in 61.24

Ok - found this info under Networks tab on the site.

Yeah, should be in the Networks section 😎

I seem to be in 10.200.114.x now, though the ip under the linux machine is still showing 64.x but the windows one 114.x

Yeah same issue here

the registration seemed to have worked though

I think they're all the same.

Cool cool, how long did you wait after leaving the room before rejoining? 😄

Not long, a couple minutes

Server reset work?

should we do register again here?

im also getting the same error "all machines are busy"

now me too

today has been a rough day for ctfs for me. lots of tech issues

not just here at thm

the name of the room also gave me flashbacks to overthewire bandit https://overthewire.org/wargames/bandit/

Please note: In case you get the following output when registering:
All the machines are busy at the moment, please retry later

Leave the room (Gear icon ⚙️ > Leave), wait 2 minutes, and rejoin. The Windows IP 10.200.x subnet should have changed, where x should no longer be 64. 🙏

A successful registration should look similar to this:

Please add the challenge IP to your /etc/hosts resolving with the hostname bandit.escape 
Good luck

Thank you for using challenge registration, goodbye!
Connection to 10.200.zzz.250 closed.```

how do i leave a room? sorry noob question

i see, its in the gear wheel

hahahhahaha why " 14" is work 🙂

Gear icon > Leave

Thank you 🙂

Network state: Resetting

All should be fine now, please let me know if registering is not working. 😎

Your VPN IP will start with XXX. Please provide us with X, the last octet of your VPN IP:
XXX
All the machines are busy at the moment, please retry later
Connection to XXX closed. 😢

See pinned message. 🙏

Oooh, sorry

Some bandit had stolen all the subnets, we've recovered them now. 🏴‍☠️ 😂

"3 days of access left" Does that mean we have to finish in 3 days?

You can rejoin the room when that expires. 🙂

Man, this first webpage is already a wall

Ah I remember these classics, wow you brought me back for a second, but this one is a whole different thing, trust me

You got this!

Thanks thanks :> nothing so far though

Little crumbs here and there together make a whole cake

Only found one thing so far using ffuf

I hate not being able to use gobuster ;-;

And just for your general reminder:
Please be mindful as a general guideline to not ask for/provide hints in the first 72 hours after a challenge is released. 🙏

yep yep, we're trying harder

Everyone having fun? 😄

yap 😄

very very fun

mmh seems like my target hung up, time for a break 😄

I've been bonking my head straight into a wall for 3 hours

pretty goofy

but the true hacking experience

It's rated at Hard difficulty. Please let me know if this is correct. 😄

Correct and then some, or I'm overlooking something completely

Blood is still up for grabs 🩸 it’s still anyone’s game

exploited 2 vulns, but not yet get a flag

🥹

i am not sure if my instance is broken. can i ping a mod for a checkpoint?

Why do you think it is broken?

it is supposed to be 1 minute interval right

sometime it is missing

looks through the documentation for this well this is definitely not easy

Is the Network still running, or is it hibernating (stopped)?

or possibly reseting

Not anymore 🙂

Eyyyy 👏🏽 👏🏽 👏🏽

Keep it going!

good job jaxa

Can’t get into specifics but I just checked on my subnet 10.200.130.X and everything seems to be in working order

have a feeling this might not get the top 10 users completed until tuesday next week

It's good to know, and then I won't be too strict with myself if I am not able to solve it. 😅

Nice room ! Still working on it . I hope finishing tomorrow 🤣

Huge thanks to anyone involved, was an awesome room!

Congrats @lunar plaza 🥇

Those components are not connected. Are you sure about it? Can you perhaps reach me privately?

we have a second foothold: congrats @final wyvern !

go go go go people prove shadow wrong in how long it will take to reach 10 completions

+rep @wraith field

Gave +1 Rep to @wraith field

That room was a bit wild! I really liked it. That last part was funky to say the least 🤣

+rep @final wyvern

Gave +1 Rep to @final wyvern

Shadow is not wrong ! I’m clueless

403

is there an issue with subnet .64? I am able to register, but no machine I get is reachable

Leave the room and rejoin after waiting 2 minutes. Should be able to join another subnet that is not 10.200.64.x 🙂

reset was possible, worked out too. Thank you 🙂

Gave +1 Rep to @cerulean cobalt

Good luck, you got this!

Top 10 is still up for grabs

yeah stuck on the edge of the foothold, got some privileges on the site :D. Hope that's allowed to share here 😅

Oh well you already made it past the hardest/wildest part in my opinion. But that doesn’t mean the rest is easy, just slightly easier

uhhh i think i broke it - a page is just endlessly redirecting...

yeah mine too...

The Ubuntu machine as the target?

EYYY New network!

Yep - one page was redirecting over and over to itself as an outcome of my exploitation I think. However it didn’t impact my ability to do the machine in the end

And a challenge at that. 🥳

Gotta give it a try, need a streak for that, so streak it is!

i cannot access ssh now its filtered

On which machine?

bandit.escape

Did your network reset, and did you register?

twice

Did you regenerate your VPN?

I had to do that 3 times, before I realized I was doing something stupid.

yes

oo

thanks! i have survive

haha no problem, SSH should definitely not be filtered on the IP that the register bot gives you.

for sure 🙂

If I leave, does my flag submission also get removed? Have same errors again on .64

Flag submission on the site (room page) will remain even if you leave the room and rejoin.

The last part is killing me. I feel like I am in a prison, a really, really tiny prison.

Yeah stuck with the second part too xD

Done!

👏🏽 👏🏽 spot number 4 is taken

+rep @jagged garnet

Gave +1 Rep to @jagged garnet

There we go, silly Robocop

You are nearly there

I believe in you @scenic pasture and @acoustic orbit

Planning on doing a writeup @scenic pasture after?

definitely 🔥

Nice, I'll look forward to it

@wraith mesa are u here can u pm me please?

Just a sanity check for myself. I'm getting close to 4-5 attempts of 2-3 hours at this now.
I have some clues here and there, but nothing to really progress.

The network is indeed hard, seeing the room has over 300 users, with only 5 roots and 2 users flags.

Oh wow!

Feel free to ping me for sanity checks!

w00p w00p!! User took too long, but learnt something new and that is the end goal.

^

Many thanks to the creator, @wraith field, and all involved in this challenge. In the last few days, I have spent more time than on any other challenge so far (except the red team capstone challenge), and the best thing is that I could learn a lot again. My favorite part was the entire foothold and the fact that the ||sources|| were also ||locatable in the wild||. The last part really had me on the edge of my seat, and that was a good thing. Many thanks!

Gave +1 Rep to @wraith field

But seriously the initial part of the foothold though 😎 wild

Thanks for this awesome room, I'm pretty new here on THM, and I really liked it.

Used way too much time on this box - I was supposed to do work for a client, but somehow forgot that.

(It's done now, but did not expect to use my night working.)

I'm on the free tier for now, but this has really pushed me closer to becoming a full member 👍 well done.

Well .. I didn’t have much luck with this room , one day port 80, and 8002 open and next day filtered , I try several s networks like 64,133,135 etc .. then try to register and all the time was lost connection, lost connection . First day was awesome. So Don’t let for tomorrow what you can do today!

Did you regenerate the vpn configuration?

Thank you for asking, yes several times. Also I try on diferentes computers that has installed kali , because maybe I have some corrupted file or something. But it’s the same thing.

Maybe 🤔 it is because now there is more people on the network?

I'm getting "lost connection" during registration too, regenerated the vpn configuration but the issue persist

this network still working? can't seem to register, just times out and the machines are not reachable (all from attackbox)

managed to finish it - the issue is inconsistent, but after a reset i was able to connect again and go through.

I've tried multiple VPN's and leaving / rejoining with new networks. @wraith field @cerulean cobalt

We are looking into the lost connection but right there on the name registration, it says to use bandit.escape instead of bandit.thm

Oh lmao!

I was trying to show a friend the challenge, that would definitely cause the issue.

Sorry for false alarm

Well not entirely, I don't like that lost connection message there either. Would you happen to know what subnet that was?

114 and 111

Thank you 🙂

No problem

pretty sure this means you need to surrender 1st place on the leaderboards. sorry bud

0day occupies the infinitesimal metaphysical zero space, which encompasses all spaces. 😉

lmfao I worked too hard to surrender that one!

hahaha that's unique

I'm pretty sure it's the opposite and @cerulean cobalt occupies all spaces.

I'm on the Bandit room and although I can use the AttackBox to SSH into the registration portal, and successfully edit the hosts file for adding bandit.escape, trying to access the web page in FireFox always times out and never connects. I can even verify the address is correct b/c nmap bandit.escape can sniff out the ports, which includes a filtered port 80 for http. What can I do to proceed with the room?

Is the room just broken? It wouldn't be the first time I've had issues with THM rooms being broken.

hit the reset button or play subnet roulette and see if another one works... network rooms are finicky

Well the Reset button is at 0/3, so even if I did press it, nothing would happen without others actively doing the room and pressing it as well. And subnet roulette? I thought the whole premise of doing the registration was to open a specific IP access point.

subnet roulette is where you leave the room and wait 5 mins and then rejoin it to get another subnet.... hoping said one works better then your current one

and you can send 1 vote every hour too

there is also the vpnscript

!vpnscript

Oh, my typical daily activity on THM is clearing one room per day.

that might be complex to do with network rooms

It's worked so far during my 278 day streak.

Alright, trying again now with a new subnet. nmap result says the same with port 80 filtered for http, which never responds when trying to visit in FireFox on the AttackBox.

hmmm

oh wait... what vpn are you using @young yew

as the network rooms use their own dedicated vpn files

Ah, I finally found the issue. I had to look deeper into the bandit room VPN that's default on my OpenVPN page on the THM website interface, nothing to do with the AttackBox interface as I'm used to dealing with. Got the right octet value now so the nmap states all 4 ports are open.

And bandit.escape navigates properly now.

Thank you for telling me about the OpenVPN troubleshooter, @blissful forum. Without that directive, I wouldn't have known to search for my OpenVPN info on the webpage, even though I didn't use the troubleshooter directly.

nice that you could solve it

Gave +1 Rep to @blissful forum

you're welcome

YATTA

Thank you for the right nudge into starting the room once again, @blissful forum. I finally completed the room.

Gave +1 Rep to @blissful forum

nice good job

Hey everyone!

I'm currently working on the Bandit network challenge. I am trying to exploit the XSS vulnerability to steal the user's PHPSESSID cookie. So I first tried to steal my own cookie by using the following payload:
/"><script>alert(document.cookie);</script>
But it does not work. It gives me an empty alert like the one in the screenshot.

Any advise please?

thanks in advance

looks like the session cookie is not set. Try to login with invalid creds first. This should give you a cookie to verify your approach.

Hey need to restart bandit server.. Getting unreachable address after ssh

Anyone can vote? I'm on 10.200.130.10

Can anyone help me out, I'm facing an issue, my http req smuggling payload is working fine when I'm using it with search feature of webpage but when I'm using python script to get cookies of another user it is failing ( python made request is working fine when I'm testing on my tun0 address locally)

Finally done it.. anyone who will face struggle with this network, I'm leaving a note: try again and again if you are thinking you are doing everything right and not succeeding, try something different or recheck your payloads and retry, reset machine and again retry. My http smuggling request didn't work also I tried one mentioned is YouTube and took help from internet but nothing gave me positive response but finally got the cookies after trying for consecutively 3 days..
There are some issues in this lab but after resetting the network work fine.

It doesn't seem to work even though the PHPSESSID comes from the target

Hello there, maybe I'm just crazy but it seems that I can't download my openvpn file to access Holo Network, when I try to do so, I get a 500, I do have an active subscription so I don't think that's the problem but basically as soon as I head over there: https://tryhackme.com/r/access and try to download hololive configuration file in the networks tab I get this in response:

Did anybody tried since January 2024 ? I saw that the last messages are in January 2024, so I don't think it's a problem on my end since I'm receiving a 500 as soon as I tried to get my .ovpn file...

Please don't ping random staff members please.

The bot could mute you.

Hey I'm sorry, I don't know who to reach out to 😦

@wary mantle Am I supposed to fill a ticket for this or how to get this solved ?

You've put this in the Bandit network, if it's the hololive network, should have gone in #site-support or #holo-network

Few things you can try is:
Disable extension
Try incognito
Try refreshing cache
Different browser

My bad you right we're in the bandit channel, I got confused

I tried already different browser host, it seems to still get a 500

Don't want to bother you but just to validate it's entirely on my end is it possible for you to just check ? That way I'll try other ways, but I just want to make sure the problem comes from my end...

Issue is it says permission denied

And

That does not match the

Bandit game

Can you verify and screenshot?

bandit network not working? I left the room and joined and I cannot seem to ping the linux machine that is supposed to end in .250

tried both attack box and downloading bandit vpn on my own machine

I have not tried reseting the network so that will be my final solution. Honestly not having a good time with the premium rooms, something is always broken or not working. Also sad to see that this room has only been out for a year and is still having issues. At the time of release it seems to have had issues looking at the earlier chat history

I wont be renewing my subscription that is for sure 😂

Sorry to hear that you are having an issue @clever plover 🙏

I just booted up the network, for the first time in over a year, and was able to complete it. Had no issues when connecting either.
Maybe I got lucky, and I am saying this because I don't want to dismiss your claim. Unfortunately, to keep these networks affordable for everyone, they are shared instances. And in shared instances, users tend to mess things up for other users. Sometimes on purpose, and other times, by accident. This happens everywhere, at least to my experience.

I did notice two issues when going through it which can hinder someone's progress. I reported and hopefully someone can look at it.

Yeah I mean there will always be people messing around on the network trying to troll. But at least I can reset the network and still continue. Being not connected at all means I cannot do the machine at all. If this is a free room I would not really mind but its a premium room and I expect proper QA checks are done before such rooms are released because this is what THM users are paying for and they should get better experiences in premium rooms than free rooms. I have tried the FAQ advise on THM, which was to leave the room for 30 minutes and then join it again to be connected to another subnet. After 30 minutes I will rejoin and try my luck. But its mind boggling that 0day had to download the VPN file 3 times to get it to work and this was during its release. I am hoping this feedback gets taken on board when making any future network rooms, because overall this is not good.

You are right, certain things shouldn’t happen

But during QA, there wasn’t an issue with the VPN file because you have a small pool of people working on it

Interesting things happen when suddenly over 100 people start making requests. Again not to say that as an excuse, but I am not here to dismiss the QA process either. It is the 1001 test case.

But again, I do understand the frustration so I have passed this on and apologies for the bad experience

Would x people doing it at the same time if the subnets are only split up to 4-6 people each?

no worries, the FAQ of leaving and rejoining after 30 min did not work either. I have raised a technical ticket with THM. Will see what they say, I am hoping others have raised tickets for this as well then, at least then it will put pressure to get it fixed

"We have millions of users waiting for us to do more, and if we don’t solve their problems better than anyone else, a competitor will." - Ben Spring. Yes he is definitely correct about that 🙂

any update on this network? when can we expect a fix for this?

有道理

Hello everyone I still don't understand how to connect. When registering, I specify the last act of my VPN. There is no connection. Is there a clear connection algorithm? Why make it so difficult to connect to this subnet, I don't understand at all?

What means:
Your VPN IP will start with .X. Please provide us with X, the last octet of your VPN IP: 2 lost connection lost connection lost connection lost connection
Is this the way it should be, or is it a sign that something went wrong?

Heyy