I was looking for instant response

@humble minnow

@tall crown

no response -.-

@ebon creek is it possible to get a quick response?

Is there any restricted tools on this cert? Like sqlmap or chatgpt?

For tools No you're free to use whatever (Though if you're using any premium paid tool then I'm not sure). For AI read this #pt1 message

I am not a staff member , sorry , but I can't help you

well... I got 730 points (I didn't pass) but... here says I got a free retake in 2d 1h 23m 37s can I do it in 5 days? my exam voucher expires in 5 days btw

Yeah, you can. The timer just means you have to wait 2d 1h before retaking. As long as your voucher’s still valid, you're good.

awesome, thanks!!

Gave +1 Rep to @grizzled torrent (current: #288 - 30)

So you did it in just 11h?

Has anybody any links / resources for web application testing methodology that would help with exam.The rooms / path had lots of individual vulnerabilities but little of an actually methodology / path for testing

PT1 Channel Rules

These guidelines have been established to provide clarity for everyone in this channel. It also serves as a central hub for the most commonly asked questions.

Discussions

Discussing exam specifics is strictly prohibited
This includes (but is not limited to): vulnerabilities, techniques used in the exam, and the names of any vulnerable software on the machines.

Discussing the exam during your attempt is strictly prohibited
This includes (but is not limited to): asking for help or hints, or commenting on the difficulty of the exam (e.g., saying it is easy, hard, etc.). Such comments may indirectly invite others who have already passed the exam to contact you privately and provide hints, which violates exam integrity.

If you believe your exam environment is bugged, you may discuss it here - without challenge specifics.
Only mention the exam section and the issue you are experiencing. Please note that it is unlikely anyone here will be able to resolve the problem. For official assistance, contact: support@tryhackme.com

Requests

Manual Review Requests
You may request a manual review of your exam results by contacting support@tryhackme.com. Please note: this service is not available through this channel.

Requesting help from Staff & Moderators
Do not ping moderators or staff members in this channel for direct assistance. They are unable to provide support here. All formal requests must go through support via email.

Connectivity Issues Support
If you are experiencing connectivity issues, first ensure you have strictly followed the Rules of Engagement (RoE). Failure to respect the RoE is the most common reason for network crashes. Support will not assist you if the issue is caused by violating or overlooking the RoE. If you believe you have adhered to the RoE, please follow [these steps](#pt1 message).

Common Misconceptions

AI giving 0 points on flags
The AI does not grade flags. It only evaluates your written report; CVSS scores, Vulnerability IDs, and flag values are all hardcoded matches and must match exactly. If you did not receive points, it means your submission was incorrect - most often due to a typo or an extra/missing character in the flag.

Any vulnerability you find will give you points
This is incorrect, especially for the web section - context is very important: For each of the vulnerabilities you find, we will score identification, classification, proof of exploitation, and reporting separately. BUT, if a vulnerability has no flag behind it, you will not receive points, even if your exploitation is correct. If a vulnerability has a flag but you could not retrieve it (e.g., you executed an XSS but not the correct type needed to capture the flag), you will receive partial points. Basically, only vulnerabilities with flags behind them are scored for points.

Are the machine difficulty levels similar to the practice ones like ledger and reset

Also nowhere does it say but is this just going to be 3 ctfs?

3 sections

1. Web with 4 flags (you'll find more vulns but only 4 yield a flag and those are the only ones graded)
2. netsec (standalone machines) total of 2 machines = 4 flags
3. AD chain (you can check the exam scope for the number of machines but it should be 2) = 2 flags

Those machins might be harder than the exam itself IMO. But in exam you'll have multiple machines so you'll need to go through some of the suggested AD paths like pivoting to learn about them.

Just do the suggested rooms for netsec / AD they should cover most of the topic you'd probably need but its always good to practice more. The new room #1400901674742059038 might also be a nice one to do

But netsec and AD parts are quite easy if have done some THM boot2root machines before

hey guys im facing an issue on doing PT1

on ID verification its showing "The SDK token provided in this verification process has expired."

i have tried various things like switching browser, trying verification from phone and did log out and log in but still facing it. Can someone help me please?

@plush vector sir can you look onto it please?

Could someone confirm if this is normal
AD - DC directly accessible and has only one open port

Reacch out to support on the email below

Read the guidelines. Confirming whether something is open or not with challenge specifics should not be discussed. Contact support for more information. #pt1 message

it is nonsense waiting one hour to reset the machines if the machines are not online...

Hi guys, I have a question. I passed the exam with a score of 770, and I still have a retake attempt remaining. If I use that retake and fail, my previous passing status won't be affected, right? And if I manage to get a higher score in the retake, will it update my previous score?

i had a error when attempting the exam. why?
"Your session has expired. The SDK token provided in this verification process has expired. Please go back and try again."

You will have to reach out to support on the email below

So....I got 8/10 flags. 4/4 on network, 2/2 on AD, 2/4 on Web App.

Made a very detailed report.

Still failed. What a terrible experience, if I didn't have the free voucher I wouldn't touch this with a ten foot pole.

Absolutely no help from support, since last 2 days, during the exam. I mailed them asking about something specific, that I wasn't sure if I'm supposed to include in the report, could have saved some points if they had replied. AI grader just made up some reasons for deducting marks from my report, somethings that I already implemented, others that don't even make sense.

Unfortunately, we are quite backlogged atm due to being short staffed and we will get to your ticket when we can. If you put a ticket in 2 days ago there would have been no support wither due to it being a holiday in the UK. We can always request a manual review

As someone who is taking it in 12 hours from a voucher ur worrying me

I use mostly screenshots in the report tho did u do the same?

There's no option to include screenshots in the report. You cannot upload images. Yeah, this isn't even the most painful part of the exam experience, brace yourself.

What if the screenshots r in my pdf?

Is my report in pdf format atleast

The exam portal provides the reporting section. There are text fields where you enter what you want to write. You cannot upload images, pdfs or anything else.

strange decision certainly thanks for the heads up

Thank you for the reply. But don't you think its slightly unfair to the people taking the exam? I don't think everyone would be aware that all the employees are based in UK, and they would get no responses during the public holidays. I'm pretty sure many of the students would have chosen to delay starting their test if they knew about that.

Anyways, I'll go for the manual review and see how it goes.

Gave +1 Rep to @plush vector (current: #56 - 181)

how you failed?

if you got all that

Yeah I'm wondering the same thing. Turns out people consistently fail after getting 8/10 or even 9/10 flags.

Some of them only pass after requesting a manual review, which in my opinion just points to the fact that there are severe issues with the AI grader. That coupled with the limitations of there being no option to upload screenshots, or markdown for code blocks.....and I don't even know if I want to put myself through this misery again.

I understand it’s annoying/frustrating but its states it on the bot we are UK and work Mon-Fri 9am-5PM. Even through email there is an automated response that states as well. Good to hear you want the manual review only thing is it can take up to 2-3 weeks due to the amount of them requested

you got 1 more free retake right?

Yeah I'm wondering the same thing buddy

Yep

i was thinking about taking this exam

now i am not sure

take it even if you fail you ll still learn sth new

Yeah I figured. Thanks anyway, I'll go for that. Regardless, at this point I'm not too concerned if I get the "badge" or not. I know how I performed and that's enough for me.

Gave +1 Rep to @plush vector (current: #55 - 182)

maybe let's see. I have certs like eJPT and PNPT, and few others.... so compared to PNPT for example, the reporting section was just not up to the mark for me, it seems like a way to speed up the certification process in terms of numbers, without actually wanting to invest the time and effort it takes from THM's side.

in PNPT for example, we have to make a professional report, a pdf with screenshots and right format, which is reviewed by a real person, and then have to make a live debrief in front of one of their staff members. That was a very realistic experience and taught me a lot on where to focus, how to write the report, how to present, etc.

@tired ether same situation as you. Failed yesterday 8 flags
not sure if I will bother with retaking. Lost a lot of points on reporting. An example of a full report would have helped

may i ask you one question ?

another case

I'm sorry to hear that @north plank

Its your decision but imo:

Even if you don't get the cert, just know what you're capable of. We don't always need the validation of a virtual badge, if you truly know that you put in the effort (which I'm sure you did, 2/4 flags on web app cannot have been easy, i know), then you can rest easy and focus on the next challenge.

Sure, if i can answer it while respecting exam's ethical boundaries, I'll try

and one more: https://www.linkedin.com/posts/hock-lai-liew_pentesting-cybersecurity-tryhackme-activity-7361333318509907968-MP2C/

how long have you prepared for it ? just asking so i know how much should i prepare for it and how did you learn how to write a report

thanks. Already have oscp and osep but wanted to see what was offered by tryhackme. The training rooms were good, but I think they need to launch a web pen test room comparable to exam - unless I missed it

Gave +1 Rep to @tired ether (current: #3108 - 1)

It really depends on your background, as I mentioend I have epjpt, pnpt and working on oscp. So network and AD part were relatively doable for me.

For the exam direclty, I prepared for a few weeks, but my practice for oscp definitely helped.

For the web app part, you should take better people's advice then me. It wasn't my strongest suit but I tried to prepare from their official learning path (which is not nearly enough, sorry to say) so maybe you can ask people who passed for advice. Good luck.

if this dude with all this certs fail i am failing 100 percent

i have used hackthebox and tryhackme everyday for a year and a half , have couple of certs did some prep for eJPT but never took it

All these certs and this person still said that the "AI didn't grade the flags". I'd expect more common sense from someone that, I'd like to believe, legitely passed all these certs tbh.

It takes 2 brain cells to know that AI cannot grade flags, it's hardcoded string matches.

Plus calling himself "Ethical" hacker with ethical between quotation marks. Not trying to hate, just looks like this person is here to sound cool and not actually think before providing any feedback. Profile speaks for itself.

Wow. OSCP and OSEP is impressive! I'm hoping to get oscp done in next month or so.

And yeah I totally agree about the web app portion. I have no idea what they were thinking in terms of difficulty level for a "junior" level cert. Even professional pentesters like Tyler Rambsey are finding it to be overly challenging: https://www.youtube.com/watch?v=3Jy0oC3kF_o

The probem is not just the diffculty level of course, its the lack of right training resources to prepare you for it. The least they could do is provide better prep material in their official learning path for the exam so that students are atleast mentally prepared for it

guy is a youtuber

I personally underestimated what for an entry level cert what was required for reporting. Other certs required 50 to 100pages of reporting

Yeah bro I don't know the dude personally, I was looking for other people's experience and that was one of the posts that showed up.

You could be right, or wrong. Also english doesn't seem to be his first language, but anyway I don't wanna defend anybody.

Yeah, he has been a professional pentester in past, if you check his linkedin.

Anyway, I wasn't talking about just him. I just shared the video as a reference

I think you maybe in a good spot here, you get two attempts anyway so....

how did you get free voucher?

THM promotion that was going on some time ago for people who hold other certs like some compTIA, eJPT, PNPT, and few more I think

I will retake tomorrow.Should I verify my ID again or not?

or I can start exam wwithout verify ID

Yes.

as the first exam?

@ebon creek i mailed them in the support@tryhackme.com but theres no response yet.

expiration date is very near anything we can do about it ?

Please do not ping mods or staff members. Check the pinned message.

got two IPs in AD pentest exam.
Workstation is not pinging and unable to perform nmap scan.
Anyone ??

How can i get support, i cant check my identity for do the exam

I have expired token error

You need to use the bubble in the bottom corner of the screen on the site

Im having issues connecting to the vpn file for taking pt1

Any known issues that i should look for?

@stig check to see if your vm is in the same ip range as the exam ip. Had that problem on another (offsec) exam!

Check pinned messages and why are you pinging the CEO which has nothing to do with support?

Hi I need a clarification about my PT1 exam voucher expiry date On my account it shows "Expires on August 31, 2025", but in the email with the voucher it says "You have until August 30th to take the exam." Im from wroclaw poland, idk what exact last day I can start the exam with the voucher, and THM support isnt responding

Hi, anyone can help me? i am doing PT1 examn and i cant connect with the AttackBox, i try to reset, regenerate VPN, change VPN server, but it doesnt works

august 29 th

it lasts 2 days (48 hours)

sa actually before august 30 you must start it

i'm having issue on my exam, anyone there to help?

@ebon creek

@keen sleet

@humble minnow

Then what ?
I sent an email for the support but they did not reply 🙁
I have only two days before voucher ends

Did you solve the problem ?

Contact support on the email below

already opened a ticket but no update

Hey watch you language please

Only support can help you with machine issues , mods don't have access to machine configuration

@floral yarrow

got it

It’s saying SDK token provided in the verification process has expired when I try to check in

but can i get help now?

can i DM you @ebon creek

Contact support on the email below

..

@ebon creek

You can but I doubt that I can help you if you have machine related problems

whats the response time like for the email?

kindly check please

should i go do other shit?

damn i was kinda expecting to start the exam will they answer within the hour

I told you already that I don't have access to machine configuration

You have the support email below

is there anyway i can start these r the only 2 days i can take it before my voucher expires

Im still facing that SDK session issue on ID verification can anyone help??

Send an email to support@tryhackme.com

They will help you

i already did that 22 hours ago

no help yet

🙁

I'm waiting also for their response , I got an automatic response

yeah same. Whats the issue you facing?

Same Expired SDK Token

awesome im sitting here annoyed they didnt answer me in a hour haha

lol. bro if we dont give by 1 or 2 days we will lose the voucher

This is the huge problem I'm worry about 🙁

should i ping some staff? Maybe they can help since lots of us are facing the same issye

issue*

Do they will give us more time to be able to start the exam ?

i dont think so...

That’s what I’m saying I was trynna go down the shore for Labor Day fuckin up my weekend

I hope they don't do that

bro..... you cant do anything just wait for the response, i guess they will fix the issue of all of us altogether.

@heavy cape Hi sir, can you please look onto the SDK session expire token issue. Many of us are facing it and i havent got any response to my mail which i mailed to support@tryhackme.com 22 hours earlier. Only 2-3 days are left otherwise the voucher will expire.

Please look onto it if possible.

Sorry for pinging i dont even know what to do anymore

I have forwarded the above query to the team and they will respond asap. Thanks for the ping 🙂

Gave +1 Rep to @olive bone (current: #3109 - 1)

Also, as per rules avoid pinging staff and mods and go through the email support. A lot of other people are also waiting and giving shortcuts just because you're spam pinging everyone is unfair.

Rules are in the pinned message and they will be enforced.

I am also having the SDK session token expired issue. I have opened a support ticket as well. I don't mind waiting for support but it would be nice if they could extend the time before voucher expires because of this issue :/

You're definitely not responsible for the multiple problems the exam has, but as a general (and logic) rule of thumb, it is always a bad idea to take an exam last second.

That's fair, was just trying to be prepared as possible but I should have tried earlier since we get a free retake anyway.

For everyone having a verification issue. Please can you send me your username, can be either here or DM 🙂

Edgy123

Please check again. May need to refresh your tab

Looks like it's working for me now, thanks 🙂

Gave +1 Rep to @plush vector (current: #53 - 183)

They'll get back to you and rectify the issue with you

youssefedress

Please refresh

It worked thanks 🙂

I sent an email for exam review

hi, i have a question about PT1 Voucher, it expires on 31st, my question is if it's okay to start the retake on 31st August, and if I do, will i get to finish the exam since it will be past the expiration date?

I guess the question would be if your 31 August match thm 31 August based on the timezone.

Who know THM 31 August might be few hr ahead of your timezone.

I would not plan the exam at the last day.

ii3bx8

Any tips for the web section before starting the exam

reach out to support via mail. They can extend that time by a week

Using the attack box during the exam and in the last 90 minutes fell over 6 times, forcing me to restart it and set it up again. Anyone else having the same issue?

Its now just not starting 😭 😵

Use your own kali. ¯_(ツ)_/¯

What if they don't have access to their own Kali?

i buy PT1 , how i start learning

Download one. We're tech people we need to find ways.

Problems are gonna be everywhere, we need to learn to adapt.

You should have gotten 3 months of premium, you can start by taking the recommend path.

Have you considered they may not have the resources to be able to run one?

Also yes problems exist, but if you're paying a fair ammount of money for this certification, you'd expect that the resources provided to you would at least work 🤷‍♂️

Welcome to real life, this happens everywhere.

¯_(ツ)_/¯

You are paying money for a product

Personally always have backup plans, but hey, I guess not everyone thinks like that.

Hello, i don't know if I'm in the good Chanel. I Just started the pt1 exam, when i first go to identity verication, it says "session expired". I try to Logout, but same error

cc @plush vector

Not wishing to upset anybody, but i worry about some people passing the exam, somehow get a job in the field and being allowed on a customers network. Probably 70% of the job is problem solving and if its a technical question that you can't fix knowing how to ask the question detailing what you have tried before asking

Thanks !

Gave +1 Rep to @floral yarrow (current: #6 - 1757)

I won the PT1 and also got 3 months for training, do I have to take the PT1 exam within those 3 months?

I think the expiry date of your voucher is mentioned somewhere. Should be around a year.

Wait the reset is 3 days after the first try? So if I do it today and finish on the 31st (my cert expires on that day) I can’t retake the exam?

?

You probably won't have the time.

This 100%. I agree that it is unfair to provide a platform for the exam that's 24/7/365 but THM's support for it is only on Mon-Fri 9-5 excluding holidays. This might be in a "beta/test" phase but should be reconsidered to match support availability with exam availability in the future. If nothing will be done about it, lock the exam platform to Mon-Fri 9-5 UK time that way the test timing matches the support availability. My 2 cents.

I saw people requesting role if they pass..may I know what is that

How long does the ID verification lasts for??

@keen sleet in the reporting do we provide the commands we used or just in theory

like description only

Anyone plz let me know

My voucher expires today. If I don't pass the exam today can I use the free retake later? Or should I use the retake within the voucher expiry time?

I get certification this morning, very good exam!

@main jay hello bro, congrats on attaining that cert. I'm truly happy for you. Any advice for new takers? You know, where to focus on or anything like that?

Congrats great job 🙂 🚀 🔥

➕ Gave the role PT1 to sxmpl3dev

Thx 😋

Gave +1 Rep to @ebon creek (current: #1 - 5889)

If u do the path, u will be fine

If u stuck on X part, go to other part..

Tbh I don't think the learning path by itself is enough (except for AD, those rooms are excellent). But make sure to do all the recommended challenges, that should indicate readiness for the exam

if I were to take the exam on aug 31 do I have the 48 hours up until sept 2? or I only have the whole day of 31 to complete the exam? since exam voucher ends on sept 1

Not sure, but don't take it last minute.

¯_(ツ)_/¯

hey is there any mod i can talk with regarding my score, i got a complete 0 for a vulnerability that i had found

and my AD flag despite being correct got invalidated

sent support@tryhackme.com a mail

#pt1 message

i get that the flag is hardcoded maytbe, but i literally got one of my flags not graded just like him

I failed my Pt1 twice

There are too many gliches in the exam 🥲

Even after capturing 8 flags out of 10. AI failed me.

I see each one of network, ad and web sections have a "submit report" option. Can I submit them separately as well or one submit is for everything?

Report is also evaluated for the exam score not only the flags

hi anyone can support me I am taking the exam and the targets are inaccessible

my time is running reset is 45 min

@normal wadi

One of the weirdest bug I have ever encountered. Upon submitting the final section which is web section. I made sure it’s that specific vulnerability category selected. Upon Final submitting I failed because somehow that specific vulnerability was changed. and I failed because of 15 points difference. Immediately shadowplay it. And Yes it is bug

For such cases, make sure to have your shadowplay active for final submission.Hopefully, the support email responds fast

In fact, many people have said that their flags were not scored. The reason is unknown, but I think there may be a problem with the scoring system or the UI.
I also failed the first exam because one flag was not scored. I requested manual review, but I haven't received a reply for over 3 weeks. It was too late, so I took the exam again and passed.

I’m gonna use the other voucher. hopefully, I can in time before the 31 august.

Contact support through email and wait like everyone else. Also read the pinned message. Pinging staff members or mods for help is forbidden.

No discussing the exam.

Sorry.

qusai.althaqfi

how long does support usually take to reply?, i failed the exam with 9 flags, where the AD WRK flag got marked as 0 and a whole vulnerabiltiy got 0/95

faild by 25 points, stressing so much rn because it was my retake

9 flags should have been a straight pass unless you have a horrible report or totally wrong CVSS and Vuln IDs. What happened exactly?

The waiting time is 1-5 days for regular answers and up to 2 weeks for manual PT1 review.

My CVSS scores are right, my AD work flag got 0/74 , and for a vulnerability I had found( the 10th vulnerability which was xss but no flag, I was expecting atleast half marks ) I got a complete 0 for that section

I had compromised DC as well with DC flag so it doesn't make sense that I wouldn't get the WRK, waiting for that manual review now

SO, after rambling and all i'm taking the retake for PT1, after having failed because of the vpn. Generated a new vpn connection, starting the exam and... vpn connection not working. Seriously???

mine failed after 50 minutes, had to regen and reboot kali box - working fine now

Hey @keen sleet @ebon creek spoiler here

email sent, and it says to ask on discord so is any mod around to help please?

it's the second time, at some point can this be adressed?

or any staff?

or any random user that had the same issue and solutioned it?

That won't work for the PT1 VPN

at this point anything that'll work, a sacrifice of some kind? a prayer to an old god?

@plush vector Can you support here please?

What is your username on TryHackMe?

anyone attempting PT1 here?

trying to connect to vpn ye's

I passed the exam
https://assets.tryhackme.com/certification-certificate/68aed5770d0d3a33ed6d9bae.pdf

well, thanks anyway for whatever, i'm done with pt1 for sure now, i'm fed up with all the hassle that it is to just have a bribe of support, good luck to whomever tries the exam and godspeed to everyone else!

Gave +1 Rep to @floral yarrow (current: #6 - 1765)

If there is a bug with your environment, your time will be extended 🙂

nah it's fine, i've already been failed on the last exam, lost 14hours because of this same error whereas i had done almost 70% of the exam so nop i'm really over it now. It was a struggle to have a ressemblance of support last time, ithought it fixed for this session but there's definitely the same issues.

can give me PT1 role @keen sleet

I find it really disturbing that you managed to roll an exam like this without a proper working environment, that might be just a hiccup for sure, but the amount of complaints here is insane. Everyday there's an issue with PT1

I'm not gonna give it another go to find myself in front of a wall on sunday again with the ending line too near yet far because something does not work on your side

thanks again, but i'm done and over it

i would've prefered failing because a lack of knowledge than technical issues and no one to answer to them or with a days delay

I'm incredibly sorry that you haven't had a great experience within PT1, I've forwarded your feedback to our team and I'll look to getting your complaints addressed ASAP.

Verify your account. /verify

verifed

What should i take pt1 or ejpt?

I won’t be kicked out of the exam if my voucher’s expiry date hits while I’m taking it, will I?

Shouldn't be

@karmic bay thank you!

Gave +1 Rep to @karmic bay (current: #14 - 641)

#verify

well that was not what I was looking for

Yes... But the thing is my report is very well written. I now pray that they pass me in manual review.

@0xcuses hoping this isn't the case, mine went for .manual review a while back

Hello

the items are unaccessible my exam is running.

its been around 1 hour and im not able to access any item.

can someone help?

Unfortunately you can only contact support

support@tryhackme.com

@karmic bay bro their responses are very slow i dont think they will reply back on time or when i would have enough time to complete the exam

What do u mean by items?

the IP

trybankme

is not accessible

Check the pinned message, there's no support through this channel.

A lot of people are waiting, you can't skip the line.

@keen sleet can you please tell me what should i do then? My exam is running

one hour is already over.

You wait like everyone else did.

so should i just text here that im facing the issue and i wait?

or do i mail them?

Nope, you mail them. However it's the week-end, doubt you'll get an answer before monday unless someone is working overtime.

@keen sleet this is the last time and i think voucher will expire after that. Will tryhackme increase time for voucher or will do something about it ?

what should i do ? i m really worried about it

Are u on attack box?

Usually they do it if it's their fault.

Go to tryhackme profile > access and check if ur connected to the pt1-network

If it'd not then terminate and try launching the attackbox again

yeah im on attackbox

• use tryconnectme

When asked to specify the ip ovpn,type pt1-network-4 or whatever it showed in the access page

sorry there's nothing else you can do at the moment, many other people are experiencing exam issues and THM support don't work much if at all on the weekend, on top of them dealing with the other users as well ¯_(ツ)_/¯

Hi, i have a question regarding the PT1 exam. i have a voucher witch expires on 31.8.2025. what if i start the exam 31.8, do i have still the 48 hours to complete with the exam, or is the access then revoked after this time frame? thanks your your help

hello there is there any admin online right now I want to ask about my attempt for pt1 it is saying that it will expire on AUG 31 so can I start my exam on the same date (last date) will the machine will be up for 48 hrs or should I start today itself?

lmao

same exact question

and only 1 minute difference 😄

it depends on their answer should I start it now or do some more notes before diving

thats also my question. hope that i can start on sunday and then have the time afterwarts 😄 then i can do it in my work time 🙂

same dude and best of luck for your exam

@keen sleet perhaps its worth adding this to the pinned faq

not sure why it's such a common question

thanks.. also best of luck for your exam

Gave +1 Rep to @radiant shell (current: #3112 - 1)

you can start your exam at any point in your access

once the 48hrs has started, thats what you get

Surprises me even more that people have waited last minute, and quite literally.

yeah i know, but i had some bad time management this month. 😄 ]

I already have OSCP and I was so busy with job work load 😥 but finally weekend is by my side

so is there any admin around I checked the FAQ but there is no clue about it

yes

the answer to your question is that yes you can take it at the very last minute

Awesome

I can sleep now thanks everyone

sounds good, then i can take care of my kids this weekend 😄 and start then 🙂 Thanks @karmic bay

Gave +1 Rep to @karmic bay (current: #14 - 642)

https://tenor.com/view/obama-barack-why-shrug-gif-13540987034857193291

How do I put in my exam for manual review

What happened? Send mail to tryhackmesupport

Failed with 9 flags awesome exam guys

Same 😭

What actually happened in your case though?

Am stupid and suck at reporting I guess they didn’t like a lot of my cvss and one of my vulnerability classification

For some reason the exam gave me a zero for every flag I submitted lol

If an otherwise-exploitable service appears to be broken (I can see the stacktraces), should I assume that's intended, or keep resetting the environment and hope for the best?

Guys i have a question about the second attemp , is it will be expired also 31 aug ?
My first attempt will end soon , I got 3 flags only due to the environmet i reset it every hour 🙁 and to have the second attemp you have to wait 48 hours
So i ask about the second attempt expire date

I have tried harder. Second attempt, 815 points. 9 flags.

Congrats! Make sure to /verify

Hello TryHackMe Team,

I am experiencing a recurring issue during the PT1 exam.

Web Section: I am able to identify the vulnerabilities and send payloads (XSS, SQL Injection, Mass Assignment), but I am not receiving the corresponding flags.

Active Directory Section: The domain controller only has a single port open (port 53) after multiple analyses and verifications, which prevents any exploitation and progression in this section.

This same issue caused my failure during my first attempt, and it is happening again. I am concerned that this may prevent me from passing the exam once more.

Could you please let me know if this is a known technical issue or if there is a specific procedure I should follow to resolve it?

Thank you in advance for your assistance.

hello team,
i wanted to ask that around 12 hours have passed and trybankme isnt accessible yet i have tried everything and i also mailed to support@tryhackme.com. Should i just wait for their response?

patiently waiting for pt2

I pass PT1 can u give mr role? @keen sleet

https://assets.tryhackme.com/certification-certificate/68aed5770d0d3a33ed6d9bae.pdf

That user already has that role

thank you

Maybe none. That's how it really works on the web and AD.

i have question have can I get physical cert?

i dont know how to sent request

I don't understand why some instances in PT1 exam doesn't have flag

I've seen the same issues. So I don't understand what should I do.

Maybe THM team should seriously to consider about this problem

I have the same question, hoping the best even if I start Sunday 😅

Can any one help me with Docuemtn Verification it shows Error : "Your session has expired

The SDK token provided in this verification process has expired. Please go back and try again."

Please help @normal wadi

Please can someone help

Exam is running and trybankme is still inaccessible

I haven't got response from tryhackme support

Ur able to access other machines?

It's the only ip its showing wait I will show you in dms

Hey Please any one help me with this

I had this issue

Ull have to wait for support to refresh it

Yeah I faced it earlier too. Staff will fix it

support@tryhackme.com

first you need to contact them

Sorry for ping @plush vector but can you maybe help us with this 🙂 ? Thanks in advance

Gave +1 Rep to @vast shore (current: #3112 - 1)

what was that ?

reputation

thats good

@ebon creek can you look into my issue as well? Thanks in advance

Gave +1 Rep to @ebon creek (current: #1 - 5897)

only 34 hours are left can someone help me with it i think its still possible to do the rooms if the issue gets fixed.

I am also having issues logging in into the trybankme

What's your username

Anyone test envromnet lagging? I keep losing connections to targets for like 30-60 seconds at a time.

Have you tried resetting the network and wait for about 10 mins?

I will give it a try

Nope still happening

Same here, every 5 to 10 minutes I get logged out

I am doing a ping test to see how long I can access the target.

same my enviroment dies every few minutes too

haha Everyone decided to take the test right before it expired and their backend can't handle it.

Hahaha

not even enviroment even my machines feels bugged

lol

I am going for a walk, I will try again when I come back. Honestly this is a bad experience for me

same

Yeah this is unusable

lets not give too much opinion maybe we get banned

hahahahahaha

still not responding

omg

still unresponsive

will someone look into it please

faced the same and this time machines are behaving weird for me (like i have x perms which allows me to do y thing) but i still cant lol

@ebon creek

still unresponsive

This is really weird, I'm going to fail again stupidly because of these same problems

still not 🥲

i think i should just submit and chilll at this point lmao

why stress over it ; )

Hey guys, I was womdering how partial credits really work. There are 2 web vulns that I am 100% sure of but couldnt exploit them. Will I be eligible for a partial credit?

accord. to my exp. if you dont submit flag it will give you 0 points most prolly

🤕

i last time too submitted partial stuff i got 0 lol

@keen sleet @ebon creek

Or any of the staff please enlighten us

I submitted the web with 0 flags and yet I was on vulnerabilities and I had a total of 66 points

You didnt submit any flags just explanation?

I received no flags even though the payloads worked fine.

yup only specific technique works (readed in some review articles too)

i am feeling like lab rat of PT1 lmao

So you got 66/240

Did you pay for the voucher?

fortunately, no. nor i will ever xD now

Yeah so we are lab rats. It just sucks that the environment is this unstable.

• machine are buggy

and cherry on top no1 assisting us now : D

If those are the vulns that actually give you flags (note that there are vulns in the webapp section that do not actually have any flags) if you set the CVSS and vuln id correctly then yes you should receive partial points

I believe it's only for a partial vuln. I'll double check on that

@plush vectorcan you please look into the issue exam lab being unresponsive

its been more than 30mins now

Yea I'm gonna see if I can get someone to look into it

ok

someone ping me please. when exam labs work

@white geode @tired grove I'm not a staff member , I don't have access to machine configuration and I don't manually review exam reports , sorry but I can't help you with your issues , please use the official support channel on the email below

Yeah I did that last weekend. They never got back to me.

Atleast last weekend the environment was usable.

@left helmplease ping me if the labs works

This is too funny. I don't think it will let me submit another ticket because I currently have a ticket in for last weeks bug report.

I sent an email to see if that will help

same

I've picked up your ticket. For now we will keep the conversation here. I'm waiting for one of the engineers to look into the networks

@bold loom I can pick up your ticket if you let me know your username

Hritikarya

Ok they're in my queue. not too sure on ETA when someone can check but I will ping you when I get an update

I had already given you the role.

Can i know how to get physical cert

My co-worker is trying to take it too but with the AttachBox. Bless his soul.

im sorry bro 😂

It's working and I have submitted 3 flags on web. Thanks a lot @plush vector

Gave +1 Rep to @plush vector (current: #52 - 184)

I'm giving the exam right now and I just want to confirm that there are no errors or something right?

To me it's working fine.

But yeah it can be buggy

I can't seem to access the scope

Which one?

If you talking about network and AD machine there's a option on top left click on it

trybankme

Oh I tried from openvpn it's working. Was having issue with AB

Regenerate VPN and try

the problem is I'm getting errors with the vpn

oh

@bold loom @left helm Are you on the VPN or attackbox?

yeah same, I can't access it with the AB

vpn

Try with openvpn

Contact blackout he helped me I was having issues too

An hour has already been wasted. I wonder how much more time it will take..

Got it, thanks

Try regenerate your config file wait for 3 mins and try again

Yeah I was having that too I regenerated and tried and it worked 😭😭

Sorry for spamming your dms @plush vector

It was fault from my side.

Thanks a lot @olive bone

Gave +1 Rep to @olive bone (current: #2046 - 2)

It's working?

Yeah it worked now

Let's go

Good luck mate

You guys should really do something about it. I tried the openvpn first and then the attackbox and then trying to debug from my side thinking I made some mistake and now over an hour has been wasted

You too 🙂

❤️

Our team are looking into it

I am using my VM with the VPN connection. My coworker is using the AttackBox and is needed to reboot it over and over.

Do they have a VM by any chance they could use the VPN on?

Hello there, I have found a bug on the network section which is not working because of server side issue. Whom should I approach?

I have already created a ticket and sent it. But exam is going on and I need a solution asap

No they didn't prep one as they used the AttackBox in the past.

@plush vector

I tried the regenerated and redownload the vpn file. Now I can't access any of the targets.

I am gonna give my who vm a reboot

@plush vector I cant go further if you dont solve this issue.

You can dm me and i’ll try and see if not might have to get somewhen else to look

is it working? sorry i was away

Regenerate your vpn for 3 mins and try again when connecting

Hi everyone, I have a question, I’m starting the exam today (August 30) at 8:00 AM. It says in the attempt that the exam deadline is August 31; does that mean that August 31 is included? Also, if I started the exam today at 8:00 AM, will it end on September 1 at 8:00 AM or on the 31st? Especially since the deadline stated August 31?

I think the deadline means like until when your voucher is valid for. So if you take it Aug. 31, its still valid and you can take the exam. But after Aug. 31 like Sep. 1, it is now invalid because its expired.

So if you start on Aug. 31 8:00 AM, it should end Sep. 2 8:00 AM ideally since the exam is 48 hours

Ok, thank you very much. My worry was that I would have less time to finish it.

No worries mate, good luck on the exam 👍

No one has had success with using the VPN & WSL, correct?

Mine seems to have worked after the regen, redownload, and reboot.

Thanks Blackout for the help.

No, we don't recommend WSL as it doesn't connect well and can cause issues with connecting

Tryhackme needs more support guys 🥲

Really Really slow service.

Which issue you having?

Submitted pt1 for manual review.

No one looked at my request 😔🥲

When did you put the ticket it in?

On Monday

25th Aug 2025

OK, I'll get it raised but there is an approximately a 3 week wait for a manual review due to the amount of requests that have been raised

Yes please. Thank you 🙏

Gave +1 Rep to @plush vector (current: #52 - 185)

I am using the AttackBox. I just reset TryBankMe due to it not being accessible, however, I am still unable to access it. I was accessing it fine last night.

why not using VPN ?

I have been having issues with it all yesterday, I could not connect to it through WSL or Kali. So I switched to the AttackBox due to it just working...that is, until now.

@plush vector if having some minor issues will reset work?

yes

Hi could someone redirect me if this is the correct place to receive support?
I cant seem to reach the box at all since 2 hours ago. After a reset of the box, restart my kali and regenerate the vpn file. i could do a scan and see ports live. then when i continued it couldnt reach again.

Am abit panicked cos the counter is still ongoing

Yeah happened with me too you using AB? @raven swift

im using my own kali but saw the thread of people using attackbox

is this the workaround?

@raven swift

Official PT1 support is through TryHackMe support email only

thank you i will reach through support and look for a workaround for now

How long did you wait before regenerating the VPN file?

Should do

Did you regenerate your config file and wait for 3 mins?

@plush vector I am about to be attempting this...just to be clear, are there any other steps that I need to do other than the regeneration of the config file?

No, just regenerate the file for 3 mins and then download. I would highly recommend using your Kali VM rather than WSL

Yes. I have switched to my Kali VM, I will update you in a bit.

Over an hour

I used the AB and it worked for like 2 mins then after there is no connection too 🙁 @plush vector

@plush vector Still nothing. I was able to connect to the subnet that the VPN is on (this in-range IP address is showing on my kali box, but I am still unable to hit the boxes and 10.10.10.10.

I would like to piggyback on this question and ask, would the second attempt be valid if attempting after the 31st, say the 1st after the deadline has been passed?

No both takes expire on 31st of august (or whatever the date is in your PT1 dashbaord)

I might be wrong but IIRC the subnets are different and I don't think you can use the exam VPN to ping 10.10.10.10

This might not be applicable to you but just note that some machines might have ICMP blocked so verify connectivity across the scope.

Just connected to the Attackbox and can now access the webapp

and 10.10.10.10 heh

I don't think so but its better to confirm this with TryHackMe support

check ifconfig. The last time I used attack box it had multiple VPNs connected one for each network room I was in

Hi everyone, I was planning to start the exam just now but for verification its redirecting me to onfido website where it says:
"Your session has expired.The SDK token provided in this verification process has expired. Please go back and try again."
I have tried on mobile also and same issue.

Is there a way I can appeal the exam?

@plush vector

#pt1 message

The Vuln ID is the flag right? I submitted one flag and i go a ZERO on it

No, Flag has 40 points and looks something like THM{....} while vuln id is vulnerability type eg: sqli or xss

oooh

how long would support take to reach out? 🙁
Have sent email to support and done all I can. Even the AB doesnt work for me either.
Not sure how to continue from here and the clock is just ticking for me 😢

Its the weekend so most likely that you're only going to get a response on Monday. (Unless they're working over the weekend due to the number of issues reported)

My personnel suggestion is that try some steps to see if you can fix it yourself.

• Disconnect from all the VPN sessions (kill openvnpn), including attackbox instances
• select the PT1 network and regenerate VPN config. Wait for few minutes and download the config
• connect using the newly downloaded VPN config
• Try to reach port 80 for the Webapp IP and see if it works
• If not reset the PT1 env (Just the web section)
• wait for the machines to reset
• try to access the webapp once more

If none of these work try documenting everything you tried and email support so they can be sure if it was indeed a issue on their side.

Thank you for the advice and really appreciate it. Will do the steps

Gave +1 Rep to @grizzled torrent (current: #281 - 31)

Guys do the flags exist for all vulnerabilities?

or are there only 4 flags for only the 4 vulnerabilities (whatever they might be)

Hello, I don't think I got any answer for my question last time, I would really appreciate if someone could help clarify this...

When I take the exam, for the report, do I have to include actual commands too? If so, how? Because as far as I know, there's only text input and no markdown...

I think a few other people also have doubts about this, it would be nice if someone could shed some light on it.

everything you need to know is in the "Writing Pentest Reports" room. Go through that and write the report structed in a similar way to what asked there and you should be good

Whats your username?

tryhackme username is zoronske

Refresh your browser should now work

Thanks a lot

Gave +1 Rep to @plush vector (current: #52 - 187)

Hi guys, a question. If during the exam in the WEB section I find a vulnerability but don’t have the actual flag, can I put a fictitious flag in the report to have the vulnerability evaluated? Obviously, I won’t get the points for the flag, but do you think I could still get the points for the report?

What is with this test I found half of them in no time and the other half I couldn't even understand what they wanted lol.This is definitely tougher than ejpt

Probably the web part right?

Ya like 2/4 I found in 15min of starting than the other 2 I searched for like 15hrs and no clue .there was also one on network which I didn't understand and the second machine in AD

I found miss configs but they didn't lead to any flags on web

I don't know if this is a appropriate question to ask but are the flags distributed equally on all the machines?

Why am I encountering vulnerabilities on the website but the flag doesn't show up? Has anyone else had this issue? I've been trying to fix it for so long.

shitt

What do you mean?

2 AD
4 NetSec
4 Web

Like there are 2 machines on netsec is it like 2 flags on one and two on other?

yeah same broi found 2 flags in web in few mins but other took time

still need to find one

in network got inital access found some way to get system access but cant do it lol

Hi guys. Is it normal that the verification of identity takes almost 1 hour? It is still loading... 🙁

Nope, contact support.

Are support working weekends yet..?

Doubt so.

Pay overtime?

Just getting started, does the training path prep you enough to pass the cert or is additional training recommended ?

Totally convinced that one of the netsec machines is broken - last attempt so much easier

Heh, you worked for THM more recently than I did. What do you think?

They worked fine for me today. For me one of the web vulns is broken and I lost complete access to the web section of the exam

Nope, we don't work weekends

We did a few months back for SAL1

I'm going through the recommended learning materials & and I was curious.
How good should I feel about the recommended CTFs like Reset, Ledger, Billing, Rabbit store etc?

I find that while I did the pre security/cybersecurity 101/jr penetration tester paths beforehand, I feel like I hardly have the ability to easily beat the CTFs without any help or guide.
Because of this im quite worried on how I'd perform on the test.

I can only speak for myself

For me, money is a big motivator

The more you pay, the more above and beyond I will go

Their difficulty is above than what I saw in the exam but you can take this with a grain of salt as everyone’s level of difficulty is different

well this is massively relieving to hear.
tysm.

I logged in tonight to begin the PT1, and my voucher is gone. It said I had until August 30th.

Same

It suppose to end at the end of the of August 31th

Before submitting the exam make sure you double check and have a shadowplay on. In case, the website somehow wanted to change your answers or not accept your flags for some unknown reasons

Be mindful, you'll have 48 hours from the time you finish your first attempt not at the start of it to take the retake !

Anyone else refreshing mail box everyday to see if their result got manually checked? 😭😭😭 the wait is killing ms

my user have privilege to do x thing i still cant lmao. the machines are weird in this lab
last lab machines was finely working

Sorry for the repetition. If during the exam in the WEB section I find a vulnerability but don’t have the actual flag, can I put a fictitious flag in the report to have the vulnerability evaluated? Obviously, I won’t get the points for the flag, but do you think I could still get the points for the report?

i dont think its a good idea. and no you wont get any points for flags or maybe 0 for the rememdiation and stuff you wrote coz most points are for flags

readed in some reviews not too sure

Ok, thanks a lot. Ugh, because in my opinion it's a vulnerability 😭

Gave +1 Rep to @bold loom (current: #1546 - 3)

not for them. ;v this exam is weird

I agree!

does anyone have issues with the vpn? I am using it and it cannot access the web 🙁

Same here, the exam environment is so unstable

I think I am going to ask for an extension of the date

It happened 10 hours and I wasn't able to do anything

@ebon creek can we copy paste the request and response in attack details? or should we just summarize it ?

Copy and paste

it seems there's still issue with the vpn. filed a ticket last thursday and checked my mail it still says 'We'll pick up your ticket soon'

but we need to describe it right? i was thinking of just giving path where the vulnerability exists

In the web Section there is this paragraph: "In the event that you have identified a vulnerability but are unable to gather the flag, you can still submit the vulnerability to receive partial points.". Does this mean that I can submit the vulnerability without a flag? But I noticed that the flag is mandatory, so if I put a fake one could it work?

gamble it bro (if you got it for free) haha

You can leave the flag part out if you are submitting…. You will get points for the report on it but partial…. It’s a gamble

Ok, I'll let you know lol

For the web section, will the same vulnerability type elsewhere produce the same flag? Or a new flag? I found 4 flags and they are unique.

who had an issue with with webserver in network section?

with FastAPI?

I am stuck here since yesterday

Congrats if you found 4, I’ve been stuck at 3 for hours.

Hello Admin, I am currently taking PT1. Previously, the VPN was working fine, but for some reason, it suddenly stopped working. I've already tried restarting, and I also tried using the AttackBox, but it's still not working.

My first attempt I only got 2 and failed. I am happy I was able to get 4/4 this time.

can try ps aux | grep openvpn

you should see multiple openvpn running

if yes, run sudo pkill -f openvpn

It works for me at least

hope it helped you

it still not work

Mine:
Reset machine -> regenerate new openvpn -> ps aux | grep openvpn -> sudo pkill -f openvpn
and it works.

I guess i have no idea alr

oke let me try

2 here, every other vulnerability doesn’t bring out a flag🫠

btw it cannot regenerate the vpn haha

why?

ahhh

you using attack box

Then ill just restart the attack box

okeh let me try to restart tjhe attack box

My bad not realising it is on attackbox

it still not working

The attackbox simply pulls your VPN profile. So if regenerate your VPN profile, the attackbox will pull the latest one. The attackbox should also automatically run the VPN profile for you. If you are running it yourself on the attackbox most likely there is a conflict with the VPN profile running twice.

You can use ps aux | grep "pt1" and you should only see a single openvpn line. If you see multiple, your VPN profile is running more than once and thus de-authing you. Simplest solution is either kill all instance and run a single one or terminate the attackbox, regen your profile, and then restart the attackbox. The tryconnectme script on the attackbox just does these steps for you via cloud-init

It has to be actual vulnerabilities with actual risk. The RoE should be getting an update this week to provide more details. But we get an insane amount of submissions about things like self-XSS or arbitrary file upload without any tangible impact.

Once you identify a vulnerability, you should automatically get the flag with it as well. The flag is there for when you exploit the issue. So when you show actual impact like reading another user's account or being able to cross-infect a different user's session. But that last exploitation step may still be difficult and hence we say that you can submit for potential partial points. But only if it is an actual vulnerability that has impact. If the issue cannot be exploited, and exploitation means that something User A does WILL affect User B, then you won't receive points for it.

Actually, even though I’ve already restarted the AttackBox, I still can’t access the network. Also, regenerating the VPN doesn’t work — it always shows a failure.

+1

Mmm, I've not seen that before. Will ask the team. But if the VPN doesn't regen there is a good chance there is something happening on the VPN server that shouldn't

okeh thank you, iw ill waiting for the answer

Gave +1 Rep to @safe musk (current: #34 - 326)

What time did you start your exam?

i forgot, but i think around 11.30 AM +7

Easier maybe for you to tell me how many hours ago? And did the network work and then stop working or didn't work right from the start?

So would a self XSS where u can set a cookie but no flag still yield partial points?

in 5 hours and 30 minutes ago, it work for around 4 hours, an then stop working

Hey everyone, I’m doing the PT1 exam right now but I’ve run into a problem. The network lab is showing as down and I can’t reach the machine at 10.200.150.152. My timer is still running, so I’m losing time.

Can someone from the team please help me out? Ideally, I’d need the lab access restored and some extra time added since I can’t progress at the moment. Thanks a lot!

How would you practically exploit self-XSS to infect other users?

👍 Thanks, team will check what is happening. Do please also log a support ticket so there is one to follow-up on

Gave +1 Rep to @fair escarp (current: #3115 - 1)

Please log a support ticket. But i ran a check and your network is running as it should? All hosts are accessible?

Host is responding to pings and I was able to access it directly and via VPN:

64 bytes from 10.200.150.152: icmp_seq=1 ttl=64 time=0.363 ms```

nmap -p22 10.200.150.152 -Pn

Starting Nmap 7.60 ( https://nmap.org ) at 2025-08-31 09:43 UTC
Nmap scan report for ip-10-200-150-152.eu-west-1.compute.internal (10.200.150.152)
Host is up (0.0046s latency).

PORT STATE SERVICE
22/tcp open ssh

@safe musk can you look my issue as well?

okeh thank you sir, i already make the ticket

Gave +1 Rep to @safe musk (current: #34 - 327)

Have responded. It wasn't an issue with the host. Please refocus enumeration efforts

I've raised internally. There is an issue with the network instance. It will take the team some time to find the issue and fix it. Should have an answer in about 2 hours. More time will be allocated for the exam attempt.

okeh thank you fo the support, i will waiting for the answer

Gave +1 Rep to @safe musk (current: #34 - 328)

Hi, I saw this and on the pinned message. but, if i found a vuln and able to exploit it, like maybe able to view other user account, why it do not provide any flags?

I've been stuck in web for about 8 hours!! I got almost all the network flags and I completed all the active directory

i think something might be bugged idk

If there is actual impact, you can submit it. But is has been 3 months since I've seen a submission that had actual impact. Submit, if you get zero, raise a support ticket with your justification.

Were the folks affected yesterday going to be given additional time? Blackout was trouble shooting a few of our issues (me included) dealing with losing access to the targets every 100 seconds or so for about 1-2 mins each time.

For about the first four hours of the test, the enivorment was unusable.

Some were, but turns out the network was working fine 🤷‍♂️

"dealing with losing access to the targets every 100 seconds are so for about 1-2 mins" - Usually means one of two things:

• Running two VPN profiles at the same time.
• Enumeration and processes for infecting machines needs to be expanded on

For the first one, you need to check your network connectivity and what is actually happing. Like is the VPN connection die-ing and coming back? If so, either double VPN execution or the internet isn't stable enough for the VPN connecting.

The issue I battle with is I haven't ever been able to reproduce. When I test the VPN server, it remains stable. Have executed this for 48 hours at a time and no disconnects nor targets not reporting back. It isn't rocket science or magic in the background, things tend to work like they should unless there is an actual issue. And actual issue means it stays dead. Not "instable". But it is AWS. They don't just switch off machines for fun, neither do we. So incredibly hard when users tell us "something wrong" and we can't find anything wrong when we test it. The thing is either working or isn't, but we haven't been able to reproduce the "it struggles" event

Ahh ok thank you

Gave +1 Rep to @safe musk (current: #34 - 329)

Can you please try to regenerate your VPN profile now?

@safe musk can you please check my ticket

I am not on support and don't have access to the support queue. If you have network access issues, you can send here. If it is VM issues, we don't provide support for that apart from ensuring all hosts are running as they should

okeh, now it can be regenerate an d can be connect to the server

Network and web machines are failing. Tried resetting multiple times plus the VPN config file too

Perfect, checks on my side seems to be good as well. They are adding 4 hours to the timer

That isn't descriptive in the issue. "Failing" can mean a wide range of things You can send your THM username and I'll ask the system to check health

V3cn4
Failing to be specific machines keeps disconnecting failing to connect like its offline

okeh sir

Ran checks on all 5 hosts. All are reporting healthy and are reporting their flag values and working as expected.

If something keeps disconnecting, check your VPN log. If the VPN is disconnecting, it is either your internet stability or more likely that you are running 2 VPN profiles at the same time (remember the AttackBox counts as a VPN profile). Best is to regen the VPN profile to disconnect all other running VPNs. If it is an internet issue, AttackBox works better since then the latency sits in the browser and not the VPN connecting.

More resets of the network isn't going to help here as everything is working as expected.

Okay thank you very much

Gave +1 Rep to @safe musk (current: #34 - 330)

I've been stuck for about 10 hours now 💀

I didn’t sleep in all night

But if I performed two escalations on a machine, the first as a higher-privileged user and the second as administrator, which one should I report in the ‘security issue’: the first or the second?

For example, if the first was due to a service and the second to a privilege, what should I do? Please, if there’s an admin around, I don’t want to lose points for this. It’s very ambiguous

just completed my exam... its insane .😭

@safe musk

For the Network section the those would be two things to report. If its the AD then you can only report one flag per box.

Did you pass?

Hmmm... I think you only have to report the ones who gave u the flag, but the network and AD vulns are not the same that the web pentest vulns

I’m talking about the Network section. On the machine I found two flags: the breach flag and the escalation flag. To perform the escalation, I first went through an intermediate user and from there I escalated to administrator. Which one should I report as the escalation?

You mean in the text box?

I mean in the section where you indicate which privilege escalation I found and exploited. For example: Insecure Crontab/service, etc.

Oh that actually is a good question. I'm not sure about that.

Usually the priv esc is direct: User from which you got initial access -> Admin

Can I explain here at a high level what I did, or would that violate some policy?

Or is there someone here who might know?

You can DM me.

Ok, Thanks!

you should have a user flag and the root flag, there are 4 flags on the network section

Hi, I’m currently taking the PT1 exam and experiencing technical issues. The attackbox keeps lagging or freezing, and I’m also unable to access the target website through it. Could you please help me resolve this?

Try using vpn

Yes, I know, in fact I found two on the machine. What I’m saying is that I had to perform two escalation steps to get the root flag, and I’m not sure which one to report as the escalation in the dropdown menu.

cc @plush vector Not sure if you can help, but the user DMed me and the concern is valid. User to root requires multiple hops which are in different categories.

I would hope the AI has all the vulnerabilities recorded and any of them would count.

Unfortunately I am not too sure on this

Oh ok, thanks! Appreciate the reply on a sunday!

Gave +1 Rep to @plush vector (current: #52 - 190)

Yeah

@dreamy bobcat Worst case, request a manual review if it gives you 0 points for it.

Ok, thank you very much for the support!

Gave +1 Rep to @keen sleet (current: #29 - 374)

Some mods online? From the beginning of the week I don't have any feedback on my request for manual review of the PT1 exam. Who do I need to contact in order for my request to be processed?

Takes up to 3 weeks.

Hey, weekend support is slightly slower. You can DM me the details and I can check. Personally for me it would be what you did to perform the first escalation. But worse case submit ticket to support to manually review as well.

We are currently behind on manual reviews given other priorities for support on the exam, but should be clearing that backlog early this week

Finally exam over one network machine made me cry 😢
And I passed pt1 🎉

They just passed the PT1 exam so congrats to them! They did get 0 on the vuln ID so I think it did not count. The multiple hops made it confusing.
Not sure if @dreamy bobcat still wants a manual review for a higher score, but they passed regardless. Congrats!

Make sure to verify your account by using /verify so I can crown you with the PT1 role!

This also applies to you @alpine hemlock.

Okay

👍 happy. If we have the info can review it.

Congrats to the exam passers!

➕ Gave the role PT1 to big_notation

Hello how can I get the role since I have already passed pt1?

https://assets.tryhackme.com/certification-certificate/68b2a05d26c96e119266efc1.pdf

/verify

ok

➕ Gave the role PT1 to harshvardhan0394

Congrats!

@alpine hemlock Congrats!

thanks 🙂

Thank you very much

Gave +1 Rep to @keen sleet (current: #29 - 375)

Shouldnt we get a free retake if failed on the first attempt?

Some of the web attacks are working for me in the exam but somehow I don't get any flag

Is it intended or could it be an issue with the network considering I am seeing similar messages in this chat

yes but if you got the voucher using their giveaway then the voucher would be expired by now

#pt1 message
#pt1 message

TDLR: there are vulns that don't yield flags and only 4 that do.

Just finished the exam, I failed but I was not half prepared like everyone else here it seems.. I also took it last minute cos of the free voucher.

my thoughts on it though especially for someone that doesn't have much experience is I learnt a lot. Take away the issue with the network and vpn I also had issues with and I would say it is a really well rounded certification for Juniors. Had to figure some things out on the spot, but I suck at web stuff; even more than I suck at net and AD cos atleast I got flags for net and AD and had a route mapped to finish those I documented if I did it again.

for web though I have a lot to work on it seems. Focusing too much on Netsec and AD these days though and so this will be something more to add in my to-do.

Grateful to the THM team for the free voucher and the opportunity to discover these flaws early in my career 🙏 .

also, way harder than ejpt 🥲

Hi im hard stuck in pt1 i have multiple vulns but 1 flag ac anone help me?

Sorry, we can’t give out hints/tips

Same

I'm so thankful ChatGPT is allowed to create reports. After hours my brain has been fried

yeah bro good tho

i just completed the exam glad that i got passed

got 799 points

https://assets.tryhackme.com/certification-certificate/68441c1a316ab66f1ea7f808.pdf

@ebon creek i passed pt1 can i get badge for it ?

You have to verify first , follow instructions from the link below

oh oki

letsgoo super happy that i passed

tht last AD flag really messed up my mind

Congrats on your achievement btw 🙂 🚀

thanks a lot brother love you

@ebon creek verified

➕ Gave the role PT1 to 0xminato.

omg my level is low tho cuz i made new acc for thm PT1. Had another account with 0xMinato

well good luck guys whoever is attempting PT1

@olive bone I just failed...any resources that you would recommend?

i would say go to recommended path

the linux privelege escalation it came from there only

focus on sudo priveleges/suid and whatever they tell in their room

same for windows

Yea, I def didn't have enough study time. Did a decent amount of studying, but mainly just wanted to give it a go b4 my voucher ran out.

@olive bone congrats on the pass btw!!

also work on credential harvesting room and AD enumeration and youre good to go

oh yeah sorry that your voucher ran out

but yeah good luck with that and thanks a lot

Hello everyone, i just finished my attempt of the pt1 and i unfortunately failed. I got 7/10 flags and struggled the most in the web section (finding 1 flag only) can anyone recommend any extra learning i can do or challenge boxes so i can feel more comfortable or be able to find more flags in the next attempt? Im new here so would appreciate any help. Thanks

For reference: i completed the learning paths that are suggested for the pt1 in addition to most rooms suggested as well

Then do the practice rooms recommended. Honestly if you did those rooms by yourself you don't need any other help you can do on your own.

Hello, my vouch has expired for the cert. I thought I was allought to start the exam today for the last day, but it seems not. My vip subscription which you gave me with the giveaway it steels current there's no sense. Please help.

ive recently done eJPT , can i apply for free pt1 voucher? how?

There’s no current promotion running at this time this promotion for free voucher wqs a few months ago

how can i contract them?

You won’t be able to get a free voucher as the promotion ended

Hey guys 20 hours to go and I have 9 flags with 1 web flag missing . Would 9 flags be sufficient considering I’m following pentests report standard from tryhackme . What you think ? This web part is melting my brain

Is anyone else having issues saving their report? Keep getting "Uh-oh! There was a problem, please try again later.