#site-support

!email

@final dragon You will need to email: support@tryhackme.com

Beat me to it @weary spindle 😛

You were already answered on this question on another channel I'm sure.

But no, vouchers do not expire.

unless it's a giveaway bot one, in which case they will be re-given away after 6 months of non redemption.

Conversing with James and giving advice when he's around has taught me to type even faster than what I already did 😂

Haha

thank you

Gave +1 Rep to @burnt hazel

thanks to you too

anyways will I get the response within 31st aug?

I need to resolve it before then😐

It is possible to reset all progress in the platform? not 1 by 1?

You can make a new account.

Otherwise no.

i just paid the account 2 days ago :). That's the problem

Support is a one man team, but they usually reply within a few days, just take in consideration that they're speed in replying will change depend on how many E-mails they need to go through

Then your only option is to reset 1 by 1

I got the previous one A lot early before I expected.
Money thing so worried

ok thank you i didnt see it

Gave +1 Rep to @weary spindle

I'm facing issue on Types of Telnet Exploit at Network Service room, after generate a reverse shell payload using msfvenom and start a netcat listener , the root Dir does not have the flag.txt file 😦

Would someone be able to tell me what causes this error plz, I've tried searching for the reason though i cannot figure it out;
└──╼ $john -wordlist:~/Documents/Tools/rockyou/rockyou.txt forjohn.txt
Using default input encoding: UTF-8
Loaded 1 password hash (SSH [RSA/DSA/EC/OPENSSH (SSH private keys) 32/64])
Cost 1 (KDF/cipher [0=MD5/AES 1=MD5/3DES 2=Bcrypt/AES]) is 0 for all loaded hashes
Cost 2 (iteration count) is 1 for all loaded hashes
Will run 4 OpenMP threads
Note: This format may emit false positives, so it will keep trying even after
finding a possible candidate.
Crash recovery file is locked: /home/su8z3r0/.john/john.rec

does anyone have a utf-8 rockyou.txt

that is loadable in burpsuite

--wordlist=

ah ok

does it work with pro?

brute force login

yeah thats what i had to do

anyways thank you

+rep

how does this bot work

thank you

weird

+rep @gray loom

Gave +1 Rep to @gray loom

can we even lookup the reps?

@scenic torrent reps

Command=john --wordlist=/usr/share/wordlists/rockyou.txt forjohn.txt

THM dark mode?

ok ty

this is awesome

my eyes are very appreciative

+rep

Darkreader extensions should be compulsory.

Hi @gray loom , how are you ?

So recently my windows 11 laptop was infected with some malware and I’m having issues trying to locate and identify the remaining bits😂 any help is welcome😂

I think there is something wrong with the Overpass machine......

Is it blocked from receiving files on certain ports ?

i have headphone for my pc and my audio work but my mic doesn't can anyone help

can anyone help me w/ changing username?

Hi all... anyone able to help me out with my streak? Been trying for a while to get that 90 day badge and 68 days into it I land in the hospital so I missed a day. Would it be possible to anything about it? Thanks in advance.

hi

Could someone help with troubleshooting MetaSploit plz ??

what is the purpose of the server

The purpose ?

It's for Try Hack Me ............. @rich dust .

@jovial mango Thanks................

Gave +1 Rep to @jovial mango

Thanks @jovial mango

Gave +1 Rep to @jovial mango

Oh thank you😅

Gave +1 Rep to @gray loom

is there such thing as putting your thm yearly subscription on hold?

i think i want to focus on other things for a little while, im doing computer networking and some cloud course stuff. So I want to do all those for awhile then go back to THM

No.

okay no worries, was jw if possible

Am I being stupid or does vmware in Linux lack ability to snapshot? Everything I've read says manage it through vsphere which doesn't support Linux...

I dont know if i did something wrong, but i cant send the TryHackMe bot messages, it gives me the error that i probably not share the same server or he deosnt accept direct messages

I can't get my vpn working . openvpn 2.5.7 (kali ) I am able to connect with htb

You probably haven't allowed direct messages from server members so check your settings

Oh yeah, thanks, i always forget about it😅

Gave +1 Rep to @turbid ferry

Plz help

Have you tried regenerating your thm config file?

Yes

I have tried

finally it worked

Hi there,
I am currently having issues connecting to the VPN server.
I am currently on the free version and the error I get is;
'SIGUSR1[soft,tls-error] received, process restarting'

I have regenerated my .ovpn file and even changed servers, still same issue.

#site-support message

Try following those steps.

only support can help, give them an email

!email

No they can't.

The mods on Discord need to do it.

With the exception of Jabba.

Who is site staff AND a mod.

Discord problems is kept on Discord.
Site problems is kept to support@tryhackme.com or again when Jabba is around.

Jabba is online in #general he might be able do it.

(I don't know if your previous account was deleted or not)

ohh my bad

Then you might need to ask Hydra or a senior mod, but you could always ask Jabba, doesn't hurt to try.

!vpnscript

hellow, little question i am running a debian11 KDE, and i am trying to install neo4j and bloodhound in order to make the
Attacktive Directory box, could somoen help me out i've search on the internet but couldn't fix it

neo4j does install correctly but on most of the website for bloodhound the doc doesn't seems to be up to date, i don't have the file required to run for exemple etc...

I scanned for ports on 2 servers. ssh port is open. but I can't connect to it. Every time I run ssh command it times out. Is the problem in my machine?

yep

Are you sure it's ssh

ip a count the tun.

it's port 22

ssh port can be moved it's a good practice to protect it and also deactivate password auth so you may want to check for any rsa key to connect

It's the right port.

It's the correct port and user.

@naive dust there is only one tun

yep

sudo ip link set dev tun0 mtu 1200 Try that

Does it hang for a few seconds before providing that message?

@eager fulcrum yes

Then try what Scrubz suggested there

can we add this command to the bot cuz i see that it is quite common here

It's in the pins.

It's not a problem for everyone though?

The bot is open source, you can contribute to add it

Wouldn't hurt to add it though.

@weary spindle it works now. Can you explain what was problem?

i would if i know how to code properly

Changing the mtu can help, increasing it can improve performance, decreasing can help with packet loss.

I think by default the vpn is set to 1500.

the openvpn or thm vpn file here?

The config.

I've already discussed this with Ashu and there's little chance of changing the default

Thanks everyone

thank you

Gave +1 Rep to @smoky berry

Why won't they?

¯_(ツ)_/¯

Ah, so you were just flat out told "no"

Apparently it'd break more than it'd fix, but also apparently they were looking at fixing it back in May 2020

I see, what's interesting though is the fact that's it's sporadic.

I did that room with no trouble, I've never had to change my MTU but others have.

It's not a room issue, it's a whole VPN issue

+rep @weary spindle

Gave +1 Rep to @weary spindle

If they decided they were fixing in 20' maybe they aren't now.

Help

pls

i can't find my tun0 ip adress on my attackbox

like it just disappeared all of a sudden

ip a

yeah if i do ifconfig

it doesnt show up

Isn't the tun0 for the attackbox the IP?

is it? :((

think it is yeah

like the machine ip?

as the attackbox is intra

Yeah, it should be eth0.

so i can use the eth0 too?

sorry guys im new to linux

and tryhackme in general

No worries, we were all learners at one point.

when i try to set up a reverse shell i have no idea which ip to use

because when i set up the nc listener

like

idk what ip im supposed to put in

none of the others work, but on all the other yt tutorials they use the Tun0 in the reverse shell ip

etho for attackbox: 10.10.10.11
Targetmachine: 10.10.10.05

it would be

nc 10.10.10.11

tun0 would only apply if you're on the VPN.

Which the attackbox doesn't need to be.

okaaay :'))

i'll try again!

thank you so much T_T

Fwiw, it uses tun0 for networks

So wreath etc

Ye.

Didn't want to complicate for them just now though 😄 cross that bridge when it comes.

so, it is not very clear for me too. Here i can now start neo4j console, and bloodhound but cannot connect the two together. systemctl start neo4j, doesn't

IT WORKED

TANK YOU

THANK YOU

Happy hacking.

systemctl start neo4j doesn't launch the web interface "^^, but if i do /usr/bin/neo4j console, it does. 1st question why doesn't it run ? Cause with systemctl the database on 7687 isn't detected by bloodhound

and when i start in console, blood hound can't connect

It sounds to me like you have not properly configured the system being used to host your db

i've followed this https://bloodhound.readthedocs.io/en/latest/installation/linux.html#install-java

i have problem always in openvpn dont access

Can you explain more, or verify and take a screenshot?

!docs verify

LS: Initial packet from [AF_INET]52.4.198.155:1194, sid=ba740a1c 27d3c7b9

Nope, that's above me, lol.

always didn't access stop here

#site-support message

Try that fix for the cipher issue.

1300 is probably a good fallback number. If you want to read more:
Linux EC2 instances: https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/network_mtu.html
Windows EC2 instances:
https://docs.aws.amazon.com/AWSEC2/latest/WindowsGuide/network_mtu.html

I see. so it's partly related to how AWs works?
I'll check out the resources, thanks.

Gave +1 Rep to @tawdry orbit

use 2,5

and not working

I don't think that's the cipher issue.
Wait a bit longer and show another screenshot of your error please.
If you wait longer I assume it will lead into something like "no reply within 60 sec" which could have multiple reasons for it

okay

So as I said, there could be multiple reasons for that, first I would try to change the network settings of your VM, in case that's a VM you are using.
Other than that, check for these reasons: #site-support message

Can someone help with this strange bug. I haven't found ANY web page about this bug, so that's why I'm here

No, but that's good idea

yeah, attackbox worked, thanks a lot👹

Gave +1 Rep to @gray loom

I am new to THM, I have connected to VPN.
how do I RDP into the machine in the excercise

if the machine has rdp enabled and has given you the credentials for it you can use either remmina or xfreerdp

I am trying to use xfreerdp but dont know the IP address of the machine to connect to

after hitting the green start machine button a box should pop up at the top of the task list with an ip address in it

is that not the address of my tun0 address

no that is another ip

says machine is initialising

but I want use OpenVPN

this box

why does attack box open

when it shows you the ip and you are connected over the vpn you can connect using rdp to that

because it is included with rdp viewing sessiong directly to the machine for that

it is the target rdp without the attackbox but without the vpn too

just press the - exit split view button and connect using the rdp details

Ahh so I close the split screen

why cant I paste screen shots here?

!docs verify

username and passwword is correct

I enter the password but no good

thats what I am doing

Hey guys, maybe a dumb beginner question, but I couldn't google it to my liking.
Is it possible to generate a public key from an ssh-rsa key?
Lets say I got the content of the file /home/user/.ssh/authorized_keys which is ssh-rsa AAAAB3NzaC1yc2EAAA[...]
And SSH requires a public key to authenticate (Permission denied (publickey).
So I thought I could use that private rsa key to generate the pub key and login with it. Or am I on the wrong way here?

Thanks for your help I figured it out, I need to use \\ in username

That directory is holding the pub key, not the private key.

huh, okay good to know. but

is it because of an issue with "error in libcrypto" for whatever reason?

if you see the username in this picture you see it is wrong.... you could have entered the THM\Administrator in there and then type the password and hit enter and it would have connected too.... just for future reference

You are trying to use the pub key to ssh in, but you need the private key to ssh in, which you don't have

I use this now

someone read up on a lot of options it seems

I am about to do my OSCP exam in 3 weeks.

Oh gosh, haha. Dont know what I was thinking there. Thanks for the info/tipp. Somehow messed the error code up. Thanks!

Gave +1 Rep to @crystal marlin

hello! is THM still giving roles for certain cyber certs? I've made some more progress

yeah.... though you would need to contact a moderator to have them applied and verified

@zealous yoke would you happen to be available?

Send me a DM about it, if that cert is available as a role I'll add it for you

allo! recently switched to a manjaro linux main, which is all good. however, the toast/dropdown panels in the tryhackme website don't seem to be functional - for example, can't see the ip addresses of machines ive started (nor can I shut them down)

using firefox 103.0 for manjaro

ill try another browser

yeah works with chromium

Hey anyone knows how can I reset the discord token linked to my username here in the server? i have 2 THM accounts and I wanted the new THM account be linked here in discord instead

I tried the bot but it says I'm already linked , also tried leaving the server

Could someone help me change the payment currency to dollars.

You need a mod to unlink the token from your account 🙂

I think you are being charged in dollar anyway at the checkout, it's just displaying it in pound there

tomorrow I'll see if I buy it or not

Hi, I'm trying to redeem the Pentesting Tools Badge but the site continues ticking 2 rooms as not completed while I did them. What can I do?

Ok, thank you!

Hi I have a problem with discord bot. On Try hack me website im on 0x8 level but here on discord im still 0x7. So bot didn't level up my account here. Can somebody tell me what is the problem?

Thank you❤️

The THM bot does sweeps every day or few days, but you can always force it.

my original discord account had gotten hacked and I was wondering how to get my THM info on to this account

my discord token is no good how can I reinstate it?

i have gone to my profile and changed the full name to my actual name but the certificate won't change it. How can i get it with my name ?

Well , how do I change my name from first name to full name

What is that !?

Oh

but i need to change the link for credential

@gray loom

You can't change your name in certs if you have have generated it.

Therefor, MS paint

Hello everyone. Im trying to access a VM in Sysmon room and when I start the machine I dont get the option to split the screen. I can start the attack box though. Is there a problem with this or am I doing something wrong?

Is it definitely a split screen room?

Im not sure but it says at the end "For this room, we already created an environment with Sysmon and config files for you. Deploy and use this machine for the remainder of this room." But when I click on the green "Start machine" button I just the IP address and nothing else

-warn @rigid prairie Do not spam the same question over multiple channels like that.

⚠ Warned Basayev#0419

Were you told to RDP in?

I figured it out in the meantime, thanks for the help.

Gave +1 Rep to @eager fulcrum

how can i change my username

Contact support, ask nicely.

!email

thanks

Does anyone know what's going on here? Kali defaulted to this lockscreen background. Works fine in generate /home/kali/Desktop has all files etc, xfce seems fine and all the top bars are working.

Can I somehow port forward without using public IP addresses?

Port forwarding is just used to make a port available on the other side of a NAT. If you want your port accessible to people on the public internet, you need to forward it through so it's accessible on your public IP.

If you have a network that uses NAT twice you could port forward from the second, deeper NAT into the first "shallower" one. If that makes sense.

This channel is more for tech support with the THM platform though, you might want to ask in #infosec-general

Hi, I had purchased 3 THM voucher earlier in April 2022. I was sent an email with a special link to THM voucher codes. I had used 2 out 3 voucher codes. I'd like to use the 3rd voucher code but I have lost that email now. Is there a way I can get access to view those voucher codes?

Probably best to send a mail to support about it

!email

Thank you 👍

Gave +1 Rep to @crystal marlin

I know you can change the background. My point is I can't. XFCE thinks icons are enabled and I have my custom background set, but it's locked into this screen. No right click etc. I don't particularly mind per say but the background is ugly haha. I just re-installed.

Hi! I'm doing this room ("hacking your first machine"). I'm not sure if I'm understanding something wrong or if it's a glitch, but I can't follow any of the steps mentioned in the tutorial

And fakebank's website isn't loading either so I can't complete the room

Also I think I asked this in the wrong channel, sorry about that

#room-help is probably better channel, but it looks like you have opened attack box and not the machine from task1 where there is a green button to start machine

i got the proper flag for "Developer tools - Network" Challenge" but when i submit the flag its throwing an error message that answer is wrong kindly ignore this i got it (sorry for the inconvenience)

I clicked on the green button and it showed a new machine starting. Then I clicked the ? and it asked me to either connect to it from my own system or use attackBox

you don't need attack box for that room, you can do everything in the fakebank machine

Where is the fakebank machine? Hold on I'll send a screenshot

I clicked on start machine and this is all I get

Wait I got it, there's a tab on the bottom

Thank you! I didn't notice it at first 😅

Gave +1 Rep to @gray loom

yeah tabs on the bottom let you switch between those

Gave +1 Rep to @turbid ferry

Saying "thank you" automatically gives rep to the other user right?

I don't need to manually write the command?

yes, thanking while replying or pinging the person does it automatically

Sorry, I'm new here 😅

Got it, thanks

it's okay they are just mostly meaningless internet points 😁

Thank you

Points are points haha

Well this didn't work

also there is some delay between how often a person can give rep to others

so you thanking lassi has put your rep to cooldown

How long is the cooldown?

I think it's 5 minutes but not entirely sure

Oh okay

Search for an email from "hello@tryhackme.com" With the title "Vouchers Receipt". Might help you find the email if it's still actually there

Hi all I am having an issue Terminating a room.

The room still thinks it's connected but can't ping the given IP address

What you mean with "still thinks it's connected" ?

Have you refreshed?

yes multiple times. now in minus figures. But I can't ping the box

Can't start a new session with it

Very odd... #site-support message may let you kill the vm?

okay think that has sorted it

Just attempted two rooms and each within about 5 minutes in refused to ping or other type of enumeration. Anyone else having issues or just me? 🙂

How are you connecting/enumerating? Not all machines respond to pings (especially windows machines)

Understand that - my first part is always ping first - Each pinged as expected, then when I was nmap/gobusting - no results and when I tried to ping - nothing. I have just restarted my VM and done the same - looking good with no issues. In my 4/5 years with THM, never had many issues. Looks like the reboot may have just kicked me back in 🙂 - Thanks for helping

Gave +1 Rep to @deep spire

it'd be worth running ip a next time, as that sounds a lot like you might have had multiple openvpn instances running, so you'd see tun0, tun1 etc. That causes connection issues as they connect and disconnect one after another

Possibly - good call - ironic that I tell people it is the first thing they should check 🙂

I did it too, there was a point when a change was made so the attackbox auto-connected to networks you were in (very useful), unless you happen to be using the same vpn profile on another machine... It didn't go well 😄

The last thing I had an issue with was the updating of openvpn, caused quite a fuss here and at HTB. Bloody do-gooders making things better and more secure for us!!

https://tenor.com/view/old-man-yells-at-cloud-yelling-old-man-news-the-simpsons-gif-17741451

Leave my age out of it 😉

I did think about adding "not calling you old", but thought eh 😄

i want to change my thm

how can i?

i lost the previous account i linked with discord

You want to change the THM token?

Ask a mod to unlink you.

Thank you. I tried this and found it in my PST sub folder. 👍

Gave +1 Rep to @deep spire

Is it not possible to add 2FA or am I not seeing it?

We don't currently support it, but I think it's in our roadmap.

systemctl start ntpd.service
failed to start ntpd.service : Unit ntpd.service not found
any solution for this?

oooh thanks for the information.... time to memorise the vpn script command

Gave +1 Rep to @gray loom

hi

why i cant send photos in this chat ?

because you have not verified which you can do following the link in the bots message below

!docs verify

👍

@plush bay do u know how can i change my name in certificate link ? 🥺

ty

Gave +1 Rep to @gray loom

thank you very much

Gave +1 Rep to @gray loom

u need to set your name in your profile name next time cuz currently u can't change it once the certificate is out

SAD life

here next time

Can I use the OpenVPN GUI on windows 11?

it said that I can only use it on windows 10 and below

Hi, I've already finished the Cybersecurity awareness module rooms, yet I did not get the badge 😄

That's great! I'll remember that, I think Ben also has pull request, I could be wrong.

Any chance of getting them back?

Well, from Jabba's answer it doesn't seem so, from what i understand he keeps track of streak resets so that's that...

Move over it, it's just a streak, it doesn't represent anything, if you ask me they should remove it....

It just makes me excited to do more

I thought of that also but it shouldn't influence in any way if you want to learn or not because in the end you can maintain it by resetting a 1 question room every day just to keep it up.

I want to get that 365 badge also for whatever reason but it's very hard to keep up because i have days when i simply don't have time to answer 1 question and had days when had to reset a room to keep it up, and it feels like cheating in a way.

It's useless, just go with it and learn when you can and want without keeping the streak in mind....

I need help please. I'm trying to ssh into a machine and this is my error:
Load key "id_rsa": error in libcrypto
Permission denied (publickey).

Can someone please help me setup DNS?
I am want to do module "Breaching Active Directory" I have connected to Breachingad VPN

I dont know how to setup the DNS as I am using my kali VM

Can someone please help?

i dont exactly understand it

Set your DNS IP here to the IP for THMDC in the network diagram above

which Ip address

ahh I see it they want me to set it to the IP add of Domian Controller

ok I hate GUI, I modified the resolved.conf file in kali

Hello I am from India and wanted to purchase the premium account on the website but it's not accepting the payment via PayPal
Any suggestions will be helpful 🙏

ok, but that might not work properly in kali... Editing the resolv.conf should though (yes they're different files). There's a reason we set the instructions for those rooms as we did.

Hello everyone, can anyone give me idea, i build a room in my local lab on vmware workstation, but when I export the vulnerable machine in .ova format and then import on oracle box for just testing it working or not, so it just showing a blink no login screen coming, any one can give any guidance I am using the ubuntu server CLI based OS
[3:28 PM]
also if i export from vmware work station in .ovf file then it create 3 file .ovf, .iso, and .vmx file
[3:28 PM]
so how should i upload on tryhackme develop room options

Hey guys,
Is there a trick to getting openvpn working?
Vague question I know, but I bought premium and ran
sudo openvpn <vpn.file>
Returns this:

OpenVPN 2.5.7 x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] built on Jul 5 2022
2022-09-01 07:44:54 library versions: OpenSSL 3.0.4 21 Jun 2022, LZO 2.10
2022-09-01 07:44:54 Outgoing Control Channel Authentication: Using 512 bit message hash 'SHA512' for HMAC authentication
2022-09-01 07:44:54 Incoming Control Channel Authentication: Using 512 bit message hash 'SHA512' for HMAC authentication
2022-09-01 07:44:54 TCP/UDP: Preserving recently used remote address: [AF_INET]54.193.147.96:1194
2022-09-01 07:44:54 Socket Buffers: R=[212992->212992] S=[212992->212992]
2022-09-01 07:44:54 UDP link local: (not bound)
2022-09-01 07:44:54 UDP link remote: [AF_INET]54.193.147.96:1194
2022-09-01 07:45:54 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
2022-09-01 07:45:54 TLS Error: TLS handshake failed
2022-09-01 07:45:54 SIGUSR1[soft,tls-error] received, process restarting

do rechange the vpn server and donwload the new openvpn file and then connect it it start working

I'll try, been doing that a few times now, but shall try again

thanks 🙂

Gave +1 Rep to @clever plank

Did it solve the issue ?

nope, been trying 10 times now (as in swapping servers, re-download file, connect fail)

If you are using a VM, try changing the network settings to see if that helps.
If not, most likely one of these reasons apply: #site-support message

shall try the network settings
wouldn't think firewall, HTB works fine (same VM) - sorry not comparing just stating

I think HTB uses TCP while THM uses UDP

Yes thats correct so protocol clash will not be their

ah, righto
will try a few things and update.
If it works, will share 🙂
If not, google\posts

Haii.. I need help My question is
How to allocate the bandwidth for connecting 30 users?

Did a:
iptables -A INPUT -p udp --dport 1194 -j ACCEPT
iptables -A OUTPUT -p udp --dport 1194 -j ACCEPT

Still same issue:
TLS Error: TLS handshake failed
SIGUSR1[soft,tls-error] received, process restarting
Restart pause, 5 second(s)

Ran the 'thm-troubleshoot' script
returns, you are not connected to the internet.
Which is interesting since I can browse the web fine.

How do you change so that open windows dont go outside the screen on windows, like on Ubuntu it stops it on the walls of the frame but then you can force it past.

I havent found anything on this anywhere so im hoping one of you might know

does anyone know how to connect via open vpn in Egypt ?
it used to work but it doesn't anymore

Answered in #general , Unfortunately your goverment blocks this, and you'll have to use the attackbox in this case.

Can I use the OpenVPN GUI on windows 11?

it said that I can only use it on windows 10 and below

Already generated certs can't be changed to have new names currently just like Aries said... Maybe in the future they can... But in the mean time use a image editor program like paint to change it

hi apologies if I've posted this in the wrong area, I have been working my way through the network services section of the complete beginner path. I'm at the enumerating telnet stage and one of the questions asks to find out how many ports are opened on the target machine. So I've done the following {nmap -p- ip address} so I can scan all ports but it has been going for an hour now, is this normal? How long could this take?

Thanks for that tip, I can get the answer from a google search but I want to see what comes up with the scan I run and what it looks like etc just for my own learning purposes too

Give the machine 10 mins to be fully booted.
Also you can add -T4 --min-rate 10000 which will speed up your scan and shouldn't be an issue for thm machines 🙂

thank you for sharing

Gave +1 Rep to @crystal marlin

Hi i unable to install ffuf tool in my kali virtual attack machine

Do we need to run apt update&&apt upgrade every time we load up attackbox?

no and for the most part you should not do that at all

Oh ok the reason I ask is because I was doing a CTf yesterday and kept getting an error with python3 but after I ran the command it was working

as the versions of the tools on the attackobx are just the right version to work with most rooms

It is throwing an error message

So I’m trying from my virtual machine

hi there ! i got stuck in hydra lab because the site which gonna be cracked is not displaying
i checked my proxy and the firewall but i didn't find anything
need help please

!docs verify

then send a screenshot of your command

and browser

sorry i'm new here i don't know what you mean with that

Follow the above link on how to verify, as you need to verify first to be able to send screenshots

see the link in the box under the white text verify your tryhackme profile! click it and read what it says... after a bit in there it tells you how to verify your account which gives you your level role from the website on this discord.... this also lets you post images... which means you can take screenshots of your problem and post them here which will tell us exactly everything we need to figure out what needs to be fixed to get you help....

would this be a good place to ask a theory question regarding a THM challenge room?

maybe better in #room-help but ask your question and we will try and answer it

@plush bay got it just wait me a second

@plush bay when i click on this

i got this

did you wait the extra 3 mins to make it work??

more than 3 mins - _-

hmm

seems that machine might be in a weird state

i checked my proxy and the firewall and got nothing

restart the target machine

something is wrong with the current one

considering the top 1000 most common ports on the machine is giving 0 response something has gone kablooie

i use the free one so if restart it i will lose it

no not restart the attackbox

only the target vm

That only applies to the attackbox, not target machines

you can start unlimited target vms a day.... probably

oooh ok then

same thing

try again now @naive dust

because now it works for shadow

ok

same - _ -

are you connected to the vpn???

or are you trying to access it in the attackbox???

i'm not connected to any vpn nor trying to access it via the attack box

well then that is your problem

you need to be connected to the vpn to be able to connect to that website

or connect to it in the attackbox

as the attackbox is already on the vpn

!vpn

for the room on how to use the vpn if you wanna use your own attacking vm which will have unlimited use time compared to the attackbox

the vpn is needed because hosting random vulnerable machines on the open internet is a very bad idea

thanks very much ❤️

@plush bay

no problem

now you know for the future

really thank you for your time

if you ping shadow with a message that has the words thanks or ty or thank you or reply to them with said words or use +rep @shadow_absorber#1234 shadow will get a nice feel good internet point that does nothing more then feel nice

can someone help im trying to figure out what im doing wrong when executing this reverse shell

Show your listener as well as the rev shell file contents pls

Yes

why not from your own kali linux vm???

Cant connect through ssh on junior PenetrationTester, Network Security, Protocols and Servers 2

Cant ping any machine

are u connected to openvpn?

I don't want to use Linux

linux will help u to learn easier and better

Well, randomly it all worked today.
So it has been fixed (by magic java beans)

Hi, i am having this issue: "Uh-oh! You can only deploy a maximum of 3 machines at a time.", but i don't have any machines deployed, how could it be solved?

That suggests you have them deployed in rooms you've completed (in the last two hours). You can either manually go through those rooms and terminate them, or run this #site-support message

Ok, thanks.

Hello, I finished three rooms couple of months ago: breaching Active Directory, Lateral movement and pivoting and Enumerating Active Directory. Checked and have my notes, screenshots and answers but now the rooms are presented for me to join and results are gone. Can you check what is wrong and can this problem also exist with other rooms that I finished? (I noticed these three because they were mentioned as prerequisite for new Credential Harvesting room.)

Hi, these are network rooms which means there's limited space in them. If you choose to rejoin them all your answers will still be there 🙂

Yes!!! Thanks. I did rejoin and found all answers. Was afraid that my results were gone or a part was missing.

Gave +1 Rep to @deep spire

hello i just downloaded openvpn and tried to m ping my machine

but when i ping it it gives me 2000 m/s

Hello !! I started a room this night, connect back today and i have that

I can't terminate it

when i had my old laptop i used to connect using vr-box

Try Ctrl and F5.

i had the same problem but when i changed my network type in vr-box from nat to bridged it became normal

pleeaaase help me

nope didnt work

Tried killing the room and restarting?

if you speak about the command line i already tried

Hi as you can see vpn is working but i cant connect to machine ? I changed vpn file but its still not working. Can someone help ?

already try killing, resetting, leaving lol

We need some more info.

Bare metal?
Hypervisor?

Which machine are you pinging?

ip a

Count the tun*

advent of cyber 2 but when i try other machines its the same problem high ping , now im not using any virtualization i changed to main os but the problem is still the same

Which machine are you doing?

advent of cyber 2 Web Exploitation Someone stole Santa's gift list!

I couldn't understand. I typed ip a and there is just 1 tun0 ip.

That's good, that's one elimination out the way.

What trouble are you experiencing?

What trouble are you having?

I'm trying to open webpage of machine but it's not responding just "Unable to connect" error

Which room?

Vulnversity the htpp is 3333 port and I am trying <machineip>:3333 its not working

What's your target IP?

very high ping 2000 ms but when i connect to anywhere else it it is very fast

And yours. 🙂

10.10.31.115

none to further help ?
i can't move on in the room as the IP linked to the VM seems done and i can't kill it to launch a new one

How long is left on the timer?

1.50h

It's working for me.

???

It's not responding to me

If I restart my modem and try again is it help ?

Check the output of your VPN script?

which part should i look ?

seems to be blocked in a pending state

Does is still say initialised complete?

@hearty trench how can I help you?

i have a very high ping when connecting to thm

if i dont get help im switching to htb

K

that's not a polite attitude.

i keep writing but no one is helping me

Nobody here needs to give you help...

Maybe nobody knows how to help you.

@weary spindle I reset my modem and it's working now. Thanks for help have a good day

Gave +1 Rep to @weary spindle

Happy Hacking

isnt this tech support ????

Nobody here is paid by THM to provide said help.

With the exception of Site staff, but even then I don't think they're paid to help on Discord, I could be wrong.

But the mods and community mentors are non paid roles.

Volunteers, so to speak.

Try a different VPN server.

One closer to you.

i tried everyone of them

all seem to be slow

Are you running two VPN's?

how can we reach staff to resolve problem ?

no when i download the other vpn server key i cancel the current running vpn

I didn't strictly mean OpenVPN.

@zealous yoke 2 users are having trouble closing target machines.

He may or may not give me in trouble for doing that, it's fine, I'll take it 😄

no im not using any other vpn its only this one

#site-support message

Then I, personally, have no idea how to fix your high ping.

this may help to close target machine

I forgot about that code, but I think they may have already tried it

already tried it

give me status pendingf

ok then im switching to htb thanks for trying 2 help

Gave +1 Rep to @weary spindle

Bye.

what's up?

problem with terminating target machine

what happens or doesn't happen?

why would I give you trouble lol

i have problem with terminating a vm

oh yikes

i tried your script

can you show your browsers console output when you try to press terminate please?

Ping'd lol.

ah idc about those

Believe me

I think i had the same overnight with the attackbox. The script worked for me though when i terminated multiple VM's

output nothing i think as nothing appear

nevermind i have something lol

oh?

saying 200 OK

that is promising

200 should be good then

obviously lol
But the machine is still here
When i refresh the page it is still present

if the ip is shown, can u ping it?

nope time out

already tried

at first all seems good

can u clear cache?

same, i even try from another computer

What about leaving the room?

And hit leave, then re-join.

same problem

while investigating i saw another room where a vm is still seeing running

how many machines have u started already cuz u are a subscriber u should be able to start multiple

2

Irrelevant if they want to start the machine they can't close?

they should have expire

thought kali want to start other machine or something

naah just want to continue the room but can't lol

Other than ping Ben, I don't think there is much any of us could do.

maybe support team can terminate your machine from their end

we can't help any further

thats what i was thinking ^
Anyway thanks for the help

good afternoon, i have a voucher for 6 months but when i put the code into the box it says invalid, just wondering if i am putting it in the wrong place

Where are you entering it?

In your profile?

sec

Don't show the code.

If that's what you're going to do 😂

lol ofc not

oh i cant send pics yet

!docs verify

You need to verify your account.

Did you buy it from THM directly? and this bit?

ah no thats not where i am putting it haha il have a look for that now thanks, gonna verify my account aswell

It's in https://tryhackme.com/profile as Scrubz was saying 🙂

thanks alot guys i appreciate the help

Robert are u able to terminate other people's machine from your end? there is someone having problem with terminating the machine up there ^

I have no powers over that :/ I saw but nowt I can do

Is that a QA sort of thing?

Infact, no, cause you're QA?

ohh staff can't do that too?

I'm assuming it doesn't go away with a CTRL-F5?

Or the kill all VM's script.

It'd be something for the Software team, maaaybe Jabba, or Skidy

I considered pinging Jabba instead of Ben, but Ben was on-line.

I have access to all rooms, but no control over user accounts or anything backend

Ye.

Narp... (Well, not all staff)

or tried both :p

I*

CMN is looking into it 🙂

as i see him typing 😄

It has been escalated

Thx all for the quick support

Gave +1 Rep to @deep spire

+rep @zealous yoke

Gave +1 Rep to @zealous yoke

Hello staff Oliver19827#9590 is scraping member of this server and sending crypto scams

This guy too

-ban 790416287188647958 DM scam

🔨 Banned Oliver19827#9590 indefinitely

Screen of the DM pls

-ban 761979380993359932 DM scam

🔨 Banned ｉｏｒｉ〆#3301 indefinitely

Anyone have a fix for servers that won't terminate and now I am at my max 3 running servers

Says terminated but if I refresh the room says server is running with a negative count down

@deep spire did Ben ever get a fix for this?

I think this is the 3rd or 4th person.

Started yesterday

@sand olive

-ban @surreal mirage dm scam

🔨 Banned neko#3962 indefinitely

Such a cute pfp. So sad to see the account being overtaken

Ye.

What is the best way to contact support for this server not terminating issue I am having?

@bronze vale sorry to tag u but i think u can handle this as Robert can't

Thanks!

Gave +1 Rep to @somber spindle

i'm having this exact same issue. pleasssse help me with terminating machine that wont terminate.

The Tech_Supp0rt: 1 room isn't loading correctly for me. The Active Machine expire time loads with negative numbers and the IP address isn't contactable when I am on the VPN. I've tried terminating the machine, restarting the room, and connecting to other rooms. It's just this one that is giving me trouble

Steel Mountain
Hi, I'm trying this but its not working. Can someone help me ?

You mean . . \PowerUp.ps1 right ?

https://tryhackme.com/api/vm/running - I see I have 3 instances running. I saw a reddit post about using dev-tools to terminate them but it appears that https://tryhackme.com/api/vm/terminate is a 404. Anyone know if there is a new api link to terminate instances

it's not working either

I don't know i just press space for once and it didn't work but i copy ur message and paste it then bum working

anyway thanks for help @gray loom

Gave +1 Rep to @gray loom

fair enough but that is slightly shooting yourself in the foot as a lot of tools are made in linux and for linux.... though you could use the attackbox which is linux if you do not want to set it up yourself....

this has been escalated, i think now we need to wait for a fix

Appreciated! Thanks

Gave +1 Rep to @rain mirage

Howdy- I can't seem to terminate an unresponsive room: relevant

I just tried using a burp request to terminate the one I have running and that isn't working either?

will wait for fix, thanks

Maybe this is new room, Try to terminate running instances ....

I am able to start and terminate other instances. I have also confirmed that this specific room has this issue regardless of which computer I am on

i have 3 stuck instances and cannot terminate any of them.

I'm guessing my issue is related....

👍 Gonna agree. Sounds like its not a one off issue.

i cant resolve any internal hosts aside from the ones in /etc/hosts - lol. I'm in RA 2 room

i think we back to working!

does someone know the answer on this one
How Normal is it fore svhost to gab image,/pngs

Today im going to buy the tryhackme premium

nice.... enjoy all the extra rooms you can do

Noob question, is there a way to change the name on the downloaded certs?

@gray loom Dang ok, ty! I thought about it, gonna do it thanks!

Gave +1 Rep to @gray loom

Don't know if someone did something, but no more VM blocked for me

Thanks a lot

What's your username, what's the IP of the machine?

Haven't spotted one, we shall see

Username is haclabs
I Just checked https://tryhackme.com/api/vm/running the last stuck one has cleared.

Hopefully it stays good. Thanks for looking into it

Thanks!

!vpnscript

Not sure if anyone from TryHackMe is on here. Customer service never responded to my email. It has been since March. I just sent another email with a video of the attack box disconnecting every 10 seconds or so. Same thing, an automated response that "we'll get back to you in 1-3 days". Real shame. If another email goes into the void, I will be discontinuing my paid membership. It shouldn't be too much to ask for a reply on a trouble ticket.

Currently in XSS room trying to create an alert popup box appear on the page with document cookies but popup doesn't occur in the browser at all. How can I fix this?

Hi, I'm in https://tryhackme.com/room/activerecon, and I can't terminate the first VM to load the second VM. I've tried logging out of TryHackMe then back in again. The machine will not terminate. Please help.

There are a few of us encountering this. Is it a specific room that is doing this to you?

Yeah, it was the Active Recon room. I've since skipped to the next room.

Well i am having a normal problem in my public profile i need help

plz state your problem when u ask for help

i am setting my profile as Indian nation but later on it getting changed to US

i tryed many times but still its like that

#site-support message

resolved now thank you

Gave +1 Rep to @crystal marlin

What's your syntax?

hey i was in hospital for 2 days and i couldn't keep my streak im 14 days away from 365 day badge 😢 any chance i can recover my streak .. i got pics and hospital papers

Don't worry about the pics & papers.

Just E-mail support and they will reset your streak 🙂

Hope you feel better.

!email

thank you, im ok now , i did sent an email already + pics

Hello, I am currently attempting Relevant room now. I left my laptop asleep for some time while I was away. After I returned, I could not establish any form of connection with the box. I couldn't terminate the box too. I tried logging out, clearing all my browser cache, and even restarting my kali. The issue persists. Does this mean I have to wait until the box expires by itself?
When I terminate the box, the IP address disappeared. But I couldn't deploy another machine as error saying that I already have a machine running. When I refreshed the page, the "terminated" machine returns..

Okay, so i have my own website and the access logs keep growing, even though noone should be visiting it other than me myself and my study buddies.
The queries often contain the word admin and http 1.1 and theres usually 40 or 50 of them, is this dangerous?

Hi there! could any moderator help me to remove my Discord token from an account I lost access to?. CTemplar left me without email and I didn't know about it. I had to create another Discord account.

This channel is for TryHackMe related tech support. Please use #infosec-general for that sort of question

Send me a DM about it please

Hi, I can't, I got an automatic reply from Clyde the bot telling me that you can only receive direct messages from friends.

Change your privacy settings for that server to allow direct messages
Clicking on the arrow on the top left corner next to the server name TryHackMe

Direct messages between members of the same server was already enabled.

The bot is called Clyde?

Where did you check, in your general settings or specifically for the server settings in here?

I just checked in both, it is enabled, I don't understand what is going on.

I was able to link the Discord token with this new account, thank you very much for your time.

Gave +1 Rep to @crystal marlin

"Walking An Application" in the attackbox, my website is not loading

Should I use my own machine with the VPN instead?

What's the URL you are using ?

It was the URL given https://10-10... but now I've switched to my machine with the VPN and it works fine

Don't shorten the URL pls, since it's hard to tell which one you are using, but I assume the one that's just able to connect via the internet, rather than via the VPN or their internal network.
If you are not a subscriber, you have no internet access on the attackbox, thus you need to use the machine IP rather than those URLs

https://10-10-212-139.p.thmlabs.com Oh, I see now why it wasn't working. Thanks for the info!

Gave +1 Rep to @crystal marlin

hi, is there anyone who can explain why i can't connect to the linuxprivesc server?

Things to consider when looking at ssh connections: Is this a modern version of ssh? What algorithms are configured for that connection? How to request a deprecated algorithm from the client command?

Also, if you are having trouble with a room, #room-help or #room-hints may be more appropriate.

My ssh should be up to date...
How can i check what algorithms are configured for the connection?
Is this the wrong chat for this Problem?

It is the wrong channel - I could see why you'd ask here instead though. The key to the problem you are having is the error code you are getting back. Is there anything odd about either ssh-rsa or ssh-dss?

oh sorry.
I don't need to use a key. I have a username and a password given.

actually i have not done this yet 🤦‍♂️

I have given you a couple of major hints as to what the problem is - one common aspect of security work is potentially out of date systems.

Im doing the Root me CTF and i am coming accross this error when trying to get a reverse shell

oh so it should be my IP?

I feel dumb now lol it worked thankyou

ok now im getting this error

yes

am i supposed to do it a different way?

https://tenor.com/view/kopfschütteln-an-kopf-fassen-oh-no-facepalm-gif-14989627

lmao i got it

when i put in my find command im not getting anything back

nvm i put (type -f )instead of type f

Cheers!

hi
so the layer that checks received packets to make sure that they haven't been corrupted is data link right?

osi models

Any update on this?

is the room still running now?

#site-support message

can u try this one?

What layer are packets?
Bur #room-hints inappropriate, not #site-support

Hello. I cannot reach the DC on https://tryhackme.com/room/adenumeration anymore. Used to work fine until I forgot to extend the network. The Client I was RDP'd to did shut down.

Here is what I have already tried:

• let the network time out and start it again
• restart the VPN
• use another PC
• use another PC on another Network

Still no response from the DC.
Could you please have a look at it?

Maybe I am doing something wrong.

Have you

1. started the network
2. changed the /etc/systemd/resolved.conf
3. changed /etc/resolv.conf

Hey, need some help. I can't recover my account THM password . I try w/ forgot password section but i dont receive the mail. Any suggestion ? Btw, i use my university mail

Does your uni use Sophos or something?

You could always ask support.

!email

I'm searching. Btw i can receive the code for subscription management, thats weird

i am in rank #34 but dont see my name in leaderboard. any welp?

Yes. I have changed /etc/resolv.conf and chattr'ed it. (sorry for beeing lazy)

It used to work fine until the network expired.

I can also not manually dig thmdc.za.tryhackme.com@<DC IP>

Seems like the DC is unreachable for me.

I just realized that I can use the attack box to figure out if the problem is on my end. Brb.

I can reach the DC again over the VPN

need help verifying with the bot please. I'm not seeing an "other" option to acquire discord token on the profile page (per instructions) and all the googles say don't share token

@tiny pagoda so does not look like this???

nope, and I must be looking in the wrong place, I'm looking at settings->profile

https://tryhackme.com/profile @tiny pagoda

ah, yep wrong place lol

got it, thanks

@gray loom shadow seems to have a fun problem with the troubleshoot script.... after ```
[+] Connection Process completed successfully!
[+] tun0 IP is in the correct range
[+] Only one instance of OpenVPN is running

the script gets stuck and does nothing for basicly forever

1500

$ sudo ./thm-troubleshoot.sh
[sudo] password for user: 


    _____           _   _            _    __  __        
    |_   _| __ _   _| | | | __ _  ___| | _|  \/  | ___
     | || '__| | | | |_| |/ _` |/ __| |/ / |\/| |/ _ \
     | || |  | |_| |  _  | (_| | (__|   <| |  | |  __/
     |_||_|   \__, |_| |_|\__,_|\___|_|\_\_|  |_|\___|
              |___/

                        @MuirlandOracle


[+] Stable internet connection
[+] OpenVPN is installed
[-] tun0 interface does not exist
Would you like the script to attempt a connection automatically (Y/n)? Y
[+] Connecting....
[+] Connection Process completed successfully!
[+] tun0 IP is in the correct range
[+] Only one instance of OpenVPN is running
``` is basicly all the output

$ ping -M do -s 1450 -W 0.1 -c 1 10.10.10.10; echo $?
ping: bad linger time: 0.1
2

yuups

ubuntu 20.04

so it that the cause of the script hanging then???

$ ping -M do -s 1450 -W 1s -c 1 10.10.10.10; echo $?
ping: bad linger time: 1s
2

$ ping -M do -s 1450 -W 1 -c 1 10.10.10.10; echo $? 
PING 10.10.10.10 (10.10.10.10) 1450(1478) bytes of data.
1458 bytes from 10.10.10.10: icmp_seq=1 ttl=63 time=36.9 ms

--- 10.10.10.10 ping statistics ---
1 packets transmitted, 1 received, 0% packet loss, time 0ms
rtt min/avg/max/mdev = 36.923/36.923/36.923/0.000 ms
0

thought you would ask that so ran it too already

yuup now we know that

shadow could send a pull request themselves otherwise

uuuum okay how???

Won't let me mount the NFS share?

why are you offloading all the work on shadow

they have near 0 experience writing scripts

though they know how to change a 0.1 to 1

That's what i thought at first too. Not receiving a syntax error though

and pull request for the ping fix has been done @gray loom

No change :/

Network Services 2, Task 3

Included the export list for all the shares

Weird

I wonder if OpenVPN is messing with it

maybe

Locally

Kali is in a VM that is using bridged networking

MacOS host, but yes

Good to know

I'm guessing it references the host's private IP and uses that for permissions

Connected to OpenVPN within Kali, fixed!

hi i would like to get started ctf but i don't know how to do it in tryhackme

you wanna play a ctf???
or do you wanna make a ctf???

its for play

okay pre requsits that can help you:
https://tryhackme.com/room/tutorial
https://tryhackme.com/room/openvpn

after going through those 2 rooms shadow would recommend doing the paths in this order:
#pre-security-legacy-path 
#974406074444685322 
#junior-pentester-path 
#pentest-plus-path
#web-fundamentals-path 
#offensive-pentesting-path 
#791764435991658556