#site-support

Anyone have any info on the problem I just mentioned about the python script

it's the ntlm_passwordspray.py file

Hey Whisperer can you show me how you did it? When I follow the steps mentioned above i get the following message "data-ciphers AES-256-CBC" cannot be found

Nevermind! it worked!

Thank you so much Shadow_Absorber!

👍You rock it

Does anyone mind trying it and seeing if they get the same error?

Trying to find the username/password I need to use when using OpenVPN to ssh into Network Services 2 room.

If I remember correctly, it's because the code is made in python 2 but I think they wrote something in #breaching-ad

It should still be the same login as it says on the page

Anyone having issues with openvpn in latest kali ?

Try this
sed -i 's/cipher AES-256-CBC/data-ciphers AES-256-CBC/' *.ovpn

Run this command, it will fix your cipher.

So turn off openvpn, run that command and start openvpn again

Awesome.
Worked.

Thanks

Gave +1 Rep to @pastel tinsel

You're welcome

How did you figure this out ?

Hello,
I'm in the "Breaching Active Directory" lab and when I run openvpn or attackbox and configure the dns, then when I run it it ran "nslookup thmdc.za.tryhackme.com" I don't get a response
Are there any additional settings?

After openvpn updated to their version 2.6.0 they have changed up on names for their variables, before 2.6.0 it was called cipher and now it's called data-ciphers for the same variable, so there is this mismatch, it's basically the same variable, just a new name

Hi, people down in #breaching-ad might have had the same problem, please check through there and/or ask your question there, then it's easier for you to get help

thanks

Gave +1 Rep to @pastel tinsel

Got it. Thanks again.

You're welcome

Anybody having trouble with their OpenVPN?

try this
sed -i 's/cipher AES-256-CBC/data-ciphers AES-256-CBC/' *.ovpn

Awesome thanks

Gave +1 Rep to @pastel tinsel

Exploit Vulnerabilities lab not loading

Yeah, that's happened a few times lately, thm are looking in to it.

Okay so next room, thanks tho.

Gave +1 Rep to @weary spindle

Vulnerability Capstone lab not loading too ?

a lot of rooms has problems starting machines the staff is looking into the problem

okay thanks for the information

Gave +1 Rep to @pastel tinsel

@torn citrus How to unlink my tryhackme account from my current discord account? I want to replace !verify my discord account with my another tryhackme account. Thanks

Gave +1 Rep to @torn citrus

is there a roomdeveloper channel?

may sound like a stupid question but I can get VMs to import and assign to tasks, but when I run them I don't get any information on the host, what IP address it's running on, if it's started successfully etc

the room development guidance is incredible limited

incredibly

Hey, what OS/distribution and version are you using?

windows 10 pro

Do you have a subscription?

yea, we have trial going THM for business

Can I DM you?

yes pls

I cant start the Attackbox, anyone now when the problem get fixed?

i am doing itsybitsy room but i investigate the log but didn't got the flag so i read some blog post but in that onether source is there so, i asked that anyone know that why i can't get the other source?

hello, is that a open redirect? login.php?redirect_to=

Hey I can´t download the Config file for Wreath and i have tried all the deferent browsers Google Chrome, Firefox, internet explore, Microsoft Edge and Brave. I have also tried all the pinned guides in here and no one of the worked out.
Ohh btw. the error I get is 404. So what can I do now?

so you have tried the leave room rejoin room hit regenerate wait 2 mins hit downoad??

Yes i have

hmmmm

try and leave the room, join a different network, download that vpn file, leave that network and join wreath 😄

When streaming, how do I check that a room should not be streamed, I just look at the very bottom of the room for any small print. Also is it okay to regenerate the VPN after each Stream? or is it not necessary? Any tips on not revealing information, like maybe one or two set rules cause there's like a million things that should not be shared on stream.

What other room have a network to it?

https://tryhackme.com/room/breachingad

Okay i can download breachingad config file but i can´t still download Wreath config file

I guess you have to leave the room and wait till tomorrow, that might fix it 😄

well okay 😦 I will try that

but now you know the AD networks work, then you can do them instead!

True 🙂

Should I have posted my question in a different channel?

think the rooms that are not allowed to be streamed says so very clearly in the first or last task

I am having issues connecting with openvpn, it is telling me that the ciphers are bad and I need to add one to the --data-ciphers. I regenerated my file and that did not fix it.

Thank you! I will check the room I just streamed and diligently look for that note in any future rooms I stream!

Gave +1 Rep to @plush bay

Out of the 600 or + rooms that there are, is it mostly user created rooms that can not be streamed? or some official THM learning path rooms can not be streamed as well? is it like less than 100 rooms where creators requested privacy?

Hi there, I keep getting error message every time I use the website it says: "Uh-oh! Something went wrong. Your settings could not be updated."

Any idea why is that happening?

hey all, I uploaded a .ova vm yesterday, it's been converting now for over 24 hours - is this normal?

@shy wedge I get the same thing but so far I haven't visibly noticed anything adverse happening... My streak is still going and I have access to everything I know of...

It would be nice to figure out though and get it to stop appearing/happening...

I don't know if I should send an email, but unfortunately I cannot connect with my VM. I checked everything, and attempted to connect to the HTB as an alternative which was fine. I checked that my VM was not running a connection unbeknownst to me, but nothing. I've regenerated my configuration and switched to one server to then switch back. For some reason it's telling me I'm connected on the Access via OpenVPN page. Maybe it still thinks I have an active attack machine, because I was using it all day away from my desktop? I spun up the attack box and then terminated the connection of the attack box though. Still says I'm connected.

!vpnscript

lets start here

Thank you! Unfortunately it failed the MTU check and I said forget and did a roll back. All good now. lol Guess that last full upgrade didn't take too well

hi

my room is bugging

i am in the cybersecurity and when i try to sumit my answer 767.68

it doesnt work

Hey guys,

i'm running to an issue connecting with openvpn. I've regenerated my config file a few times and tried different servers, yet I still can't connect. The output I get is: OPTIONS ERROR: failed to negotiate cipher with server. Add the server's cipher ('AES-256-CBC') to --data-ciphers (currently 'AES-256-GCM:AES-128-GCM:CHACHA20-POLY1305') if you want to connect to this server.
2023-02-09 18:14:21 ERROR: Failed to apply push options
2023-02-09 18:14:21 Failed to open tun/tap interface
2023-02-09 18:14:21 Converting soft SIGUSR1 received during exit notification to SIGTERM
2023-02-09 18:14:21 SIGTERM[soft,exit-with-notification] received, process exiting

Any suggestions?

open your .ovpn file and change the line that says cipher to data-ciphers and keep everything else the same

I ran into the same issue

open your .ovpn file and change the line that says cipher to data-ciphers and keep everything else the same
I ran into the same issue

sorry, forgot to @ you

I just ran through a full upgrade of my Kali VM but now my TryHackMe OpenVPN connection pack doesn't work. I have tried regenerating it as well as switching to a new server and using that pack but neither have made a difference. I also restarted my VM just to check if there were any changes that needed a restart first, but still nothing. Is anyone able to let me know a couple more troubleshooting steps I could try?

ah, im silly, just seen the post right above me! I shall give thsi a go!

@safe kraken I changed cipher to data_ciphers and this is the output i get that keeps looping over:

2023-02-09 19:07:07 WARNING: Compression for receiving enabled. Compression has been used in the past to break encryption. Sent packets are not compressed unless "allow-compression yes" is also set.
2023-02-09 19:07:07 Note: --cipher is not set. OpenVPN versions before 2.5 defaulted to BF-CBC as fallback when cipher negotiation failed in this case. If you need this fallback please add '--data-ciphers-fallback BF-CBC' to your configuration and/or add BF-CBC to --data-ciphers.
2023-02-09 19:07:07 Note: '--allow-compression' is not set to 'no', disabling data channel offload.
2023-02-09 19:07:07 OpenVPN 2.6.0 x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] [DCO]
2023-02-09 19:07:07 library versions: OpenSSL 3.0.7 1 Nov 2022, LZO 2.10
2023-02-09 19:07:07 Outgoing Control Channel Authentication: Using 512 bit message hash 'SHA512' for HMAC authentication
2023-02-09 19:07:07 Incoming Control Channel Authentication: Using 512 bit message hash 'SHA512' for HMAC authentication
2023-02-09 19:07:07 TCP/UDP: Preserving recently used remote address: [AF_INET]54.193.240.194:1194
2023-02-09 19:07:07 Socket Buffers: R=[212992->212992] S=[212992->212992]
2023-02-09 19:07:07 UDPv4 link local: (not bound)
2023-02-09 19:07:07 UDPv4 link remote: [AF_INET]54.193.240.194:1194
2023-02-09 19:07:07 TLS: Initial packet from [AF_INET]54.193.240.194:1194, sid=f8084bac 415ffb9b
2023-02-09 19:07:07 VERIFY OK: depth=1, CN=ChangeMe
2023-02-09 19:07:07 VERIFY KU OK
2023-02-09 19:07:07 Validating certificate extended key usage
2023-02-09 19:07:07 ++ Certificate has EKU (str) TLS Web Server Authentication, expects TLS Web Server Authentication
2023-02-09 19:07:07 VERIFY EKU OK
2023-02-09 19:07:07 VERIFY OK: depth=0, CN=server

@safe kraken @burnt spindle Just performed the same step and it worked for me

I just updated last night and same thing happened to me.

what is your cipher set to

@safe kraken copied and pasted: data-ciphers AES-256-CBC

data-ciphers AES-256-CBC

try that

@safe kraken same same- stalls at 2023-02-09 19:15:58 VERIFY OK: depth=0, CN=server

are you running it as sudo?

Yes, I'm going to look back at some of things I changed earlier trying to troubleshoot. I'll let you know tomorrow if it worked or not. Thank you for the help!

best of luck!

try a network manager restart too

if you changed a lot, it may be eaiser/quicker to just regen the connection file then make the cipher change 🙂

TryHackMe login form is killing me with false "invalid Captcha" failures.
I can check the mark, it turns green. But when I try to login, I get "invalid Captcha".

Repeat the above a few times, and I get a "5 minute logout" banner that will display for HOURS and never clears.

I'm using Win12, Chrome + FireFox, and add blocker is disabled for the domain.

For me the "Sign in with Google" does not work either. I'm logged in with Google, but the button just errors out "account already exists", and does not log me in as expected.

I need to sign off, but if a volunteer with the project could work with me I would appreciate it. This has been happening to me for weeks - I've never successfully used my account.

Please email support support@tryhackme.com - if this is happening as you describe, it's absolutely something that needs to be addressed.

There's nothing I can do^

It's client specific

that's rough

Usually related to ISP, intermittent internet connection or something blocking the CAPTCHa

ok, that makes more sense.

(also accounts that were not originally made via Google cannot use Google to sign in @drowsy bone)

I am not being able to type in the password in the AttackBox terminal, Any idea?

If you're putting in a password for ssh or something.

That's intended, it's so people can look at what you're typing.

• would give a clue to length.

They are working on the VPN issue guys... check the pinned messages.

Btw:

• download the yournickname.ovpn new file from the THM site

• from bash run:
  sed -i 's/cipher AES-256-CBC/data-ciphers AES-256-CBC/' yournickname.ovpn

• start your vpn:
  sudo openvpn --config yournickname.ovpn

• if you want to start the vpn in the background use:
  sudo openvpn --config yournickname.ovpn --daemon

and check your tun ip with:
ip -br -c a

@vague juniper Do you have a lab open just now?

Hello I have problems with the "AttackBox" it doesn't load much, only a very large minus number is displayed for two days now. Anyone else have problems?

Hi, could you try clearing your browser cache?

hi i cant seem to start up an attack box

Loads very slowly and then it says it failed to connect to server

Hi, could you try terminating it, refreshing the page and starting it again?

@glacial hound It works now, thank you

Gave +1 Rep to @glacial hound

I don't know if I can ask here so I am sorry if it isn't allowed.
I have been trying to use noip to make a host to auto update the ip if it's changed but when I try to open the host, it always gives me

Your request has bad syntax or is inherently impossible to satisfy.```
I have tried to restart the router, pc and tried another device and same problem.

Hi, this is tech support for TryHackMe. You can ask in #infosec-general 😉

Ok, sorry.
Thank you.

No worries

Hi
I`m the room Windows Event Logs task 7, and every thing I do in the attackbox, especially the file I get the error

and I need to close the log file and open it again

but it`s every time

after I press ok I get the next message:

then, after I press OK I get that:

I speak about the file merged.evtx

@broken bear @bronze vale Thanks. So I mailed Support, and then I resolved it. Putting resolution here in case it helps someone

TL;DR - When Chrome is automatically prompting the user to save their user/passwd, for some reason Chrome is *actually *stashing the value of Full Name instead of Username or email address. (Maybe a user error but to be fair it's the first such failure I've seen out of 100's).

SOLUTION: Chrome can't tell which field is the Username component. The form HTML needs "hints for Google Smart Lock".

Gave +1 Rep to @broken bear

Quick question.. when you regenerate your ovpn config file shouldn’t you get a new IP address associated with the new config file?? As of right now the only way I can obtain a new IP address is by changing regions..I’ve read the pinned messages and see they are investigating vpn issues ,, was wondering if this is also being looked into..

Hi, no, regenerating the file shouldn't give you a new IP.

Why are you trying to change your IP?

Its fixed now, everything seems to work properly.

Was streaming a video and vpn ip was exposed… so I tried regenerating a new config file on the same server thinking the ip would change..but I guess not so ended up changing regions to get new ip.. is there a way I can get a new ip on the server that I am closest to…

Only by switching VPN region for regular rooms.

Ok…thanks.. in theory if I was playing koth, and ip is exposed to numerous players,, besides the rules what would stop someone from scanning my ip and potentially turning my vm into the new koth game… since the only way to change that ip would be to change regions and there are only a limited amount of regions?

Hey, I have questions about how to use Openvpn, is this the right channel?

I've set up my Openvpn in kali no problem but I am unable to actually access the active machine. putting in the ip of the machine in the browser does not work.

i can see my tunnel interface Ip address as well when i use ifconfig

Are you sure said machine has a webserver running?

no but i cant ping it either

Is it a windows machine?

nmap room in comptia+ learning path

i only tried to put the ip address in the browser because it was a step to verify Openvpn connectivity

Not all machines are the same, some have a webserver, some don't. I'm not on my PC so can't check, but if you send some screenshots, I can have a look 🙂

Which IP address are you putting in the browser?

to post screeenshots, remember to verify

!docs verify

It's not the IP of your VM.

the machine ip address

oops I am not sure on how to verify

I think they meant while streaming they exposed their THM IP

Nevermind I figured it out!

It works fine! 🙂

Guess I was under the assumption that regenerating would generate a new config file along with new ip… thought it was issue/bug or something. Not a big deal tho. Anyways thanks

Gave +1 Rep to @tawdry orbit

And thanks

You can only rep once every 5 min(s)

any idea when vpn issue will get resolved ?

or any workaround ?

+rep @glacial hound

Gave +1 Rep to @glacial hound

+rep @tawdry orbit

Gave +1 Rep to @tawdry orbit

@safe kraken I downloaded a new configuration file and changed the "cipher" to "data-ciphers". Worked like a charm. Thanks again for the help

Gave +1 Rep to @safe kraken

@proud peak as @safe kraken instructed me yesterday, if you open your openvpn.ovpn file (nano openvpn.ovpn) and change cipher to data-ciphers (its like the 7th line down) it fixed mine.

okay I'll try it.

is their something wrong about tryhackme kali becuase dpkg package manager is not working

@bronze vale Can you change my username from CyberThreatWise to M4573Rm1nd please?

Send an email to support

!email

Thanks!

Gave +1 Rep to @pastel tinsel

hello everyone, having some troubles with the OpenVPN, can someone assist? thanks

Thanks man, this worked for me!

Gave +1 Rep to @weary spindle

for some reason it is stuck in loop and still trying to push something

but working

try this on the vpn file :

sed -i 's/cipher AES-256-CBC/data-ciphers AES-256-CBC/' *.ovpn

🤔

noice

thank you a lot @ebon plume

Gave +1 Rep to @ebon plume

apparently i came just in time, haha

thank you a lot @ebon plume

Gave +1 Rep to @ebon plume

I had the same problem with the wreath vpn file

2023-02-11 08:43:02 WARNING: Compression for receiving enabled. Compression has been used in the past to break encryption. Sent packets are not compressed unless "allow-compression yes" is also set.
2023-02-11 08:43:02 --cipher is not set. Previous OpenVPN version defaulted to BF-CBC as fallback when cipher negotiation failed in this case. If you need this fallback please add '--data-ciphers-fallback BF-CBC' to your configuration and/or add BF-CBC to --data-ciphers.

anyone know how i can solve this problem ?

try this
sed -i 's/cipher AES-256-CBC/data-ciphers AES-256-CBC/' *.ovpn

can't help

same problem until yet

Try this at the location of vpn file :

sed -i 's/cipher AES-256-CBC/data-ciphers AES-256-CBC/' *.ovpn

regen a new config from a different server

This is crazy, the breachingad openvpn file is gone

maybe the auto room leave has kicked you from it

try rejoining the room and then check again

I did, it's not the room, it's the file from the access page that's missing

these other four weren't here this whole last week

I know a lot of people have been having issues with the config files

I helped someone yesterday I think

The config file should be called "breachingad"

I've been using this for the past week or so

Nevermind, I just refreshed for the 10th time and it's there

Man, nothing but problems with these AD rooms, lol

Yeah, I regenerated, downloaded again, modified the buggy (data-ciphers) bit, and it's working like a charm now!

anyone else having problems with the room "walking an application" website? i load up attackbox and type it in and all it does is give me a 504 timeout error.

Hello, can someone please help me with an issue? I'm starting my virtual machine in any room, then starting AttackBox via browser, but there is no internet connection on my Attackbox, even pinging google is not possible. Thanks in advance for support! PS: I'm not a premium member yet :/

the attack box is just for accessing the lab you are working on which doesn't require internet access.

hi all on linux, how would i cat an entire directory full of 10 files?

i tried cat -A and cat ...list all file... with no luck

Currently having issues with Open Vpn. I have switched servers twice and downloaded new config files. Any advice?

@naive dust are you opening your file on your kali linux machine?

i had the same problem on KALI. i had to download the file from THM and then open the file itself on my terminal as root

once it opened, i was able to connect to the open VPN

ok, but I cannot access my VM from AttackBox to do the tasks. For example: Start the virtual machine on this task, wait 2 minutes, and visit the following URL: https://10-10-2-150.p.thmlabs.com. The Firefox is trying to connect my VM, but it ends with an error message "The connection has timed out"

I run it through the openvpn troubleshooter but it keeps saying connection process is taking longer than expected

what are you trying to open the file on? your own computer... but is it a linux platform like kali linux?

you got terminal on that?

Parrot. But I haven’t ever had any issues except for today

im not familiar with parrot os. But if its terminal friendly for you i would totally recommend opening your doenload files for your open vpn download. Deleate any previous attempts with the download and reinstall a fresh one with the closest vpn to you as listed on THM website when you are downloading it. find that fresh file on your downloads and open that bad boy up. also check to make sure you dont have any VPN services running in the backround that you may have forgotton about

@naive dust i also had problems before because i didnt download the config file for the closest vpn location before

does anyone has any other suggestions? thnx!

Free users do not have internet access through the attackbox, but can still access room machines that you have to hack

That's not the case right now, that's why I'm asking for support here

At the beginning it was all fine but now i cannot acces my vm via attackbox

Wdym your vm?

Have you tried pinging the ip that tryhackme gives you when you start the rooms machine?

Sure i did, brings me timeout

Can you verify and send screenshots?

!docs verify

Use data-ciphers instead of cipher in your config file

cipher got deprecated

try this
sed -i 's/cipher AES-256-CBC/data-ciphers AES-256-CBC/' *.ovpn

guys did anyone experience not connecting to the thm vpn recently
I am having issues connecting to the thm vpn for the first time
2023-02-12 22:53:42 OPTIONS ERROR: failed to negotiate cipher with server. Add the server's cipher ('AES-256-CBC') to --data-ciphers (currently 'AES-256-GCM:AES-128-GCM:CHACHA20-POLY1305') if you want to connect to this server.
2023-02-12 22:53:42 ERROR: Failed to apply push options
2023-02-12 22:53:42 Failed to open tun/tap interface
2023-02-12 22:53:42 SIGUSR1[soft,process-push-msg-failed] received, process restarting
2023-02-12 22:53:42 Restart pause, 128 second(s)
this is the error I am getting

Use what I just sent

And then connect again

ok let me try that now

Gave +1 Rep to @pastel tinsel

where to add this line sorry

Use it as a command

got it - it worked - thanks a lot

i can't connect on the vpn? is there any issues?

this works for me, thanks

Gave +1 Rep to @ebon plume

Hi there

Need support

What sort of support?

lateral movement and pivoting room for active directory is down

Hey Team what is the difference between the VIP server and a Regular server?

there's more resources meaning that the machines run faster and can handle more thrown at them

Thanks. I don't see an India VIP server (considering I am connecting from India and it's relatively faster this way), and only see VIP for selected regions.

Gave +1 Rep to @pastel tinsel

yeah, they only have a VIP vpn in certain areas, I personally don't know if they are expanding, but you can always leave a #feedback-and-ideas about it 😄

Hello, i have Trouble with connecting my Kali to Tryhackme servers via OpenVpn someone can maybe help me?

try this
sed -i 's/cipher AES-256-CBC/data-ciphers AES-256-CBC/' *.ovpn

and then run the vpn again

Worked! Ty can you maybe give me a little explane why we did that?

Gave +1 Rep to @pastel tinsel

ever since programs has been made, many have thought it's a good idea to change the name of the variables throughout updates, this openvpn has thought so too, they have then since the update 2.6 thought that the variable cipher should be called data-ciphers and is now saying "no thank you" to the old configs using cipher to tell what encryption to encrypt with

Gave +1 Rep to @remote pilot

Ohh okay ty

Does local network ip address of any desktop change automatically in one hour

hello guys

i have changed my kali desktop environment and the tun0 got deleted and now cant connect to the openvpn

i have tried multiple ways to create it but nothing worked with me

can someone help me to create a tun0 interface so i can connect to the openvpn

Have you tried removing OpenVPN and re-installing?

yeap

i did

i was trying to fix the problem using tunctl

but i think iam missing something in command

sudo tunctl tun0

i think iam missing something

its my first time creating a tun0 interface

This isn't really the channel for these sort of questions, you could use #general as this server is only for THM related content,

But you could always ask your Uni if they can pull your logs.

But going forward, I'd suggest you lock your device if you're not using it, regardless if you're in the same room or not, there is no telling what they could/would access, and it would be very hard to determine if it was actually them or you that accessed whatever,

I'm doing the JR Pen testing learning and am having trouble completing the LFI Challenge Flag3, I'm 100% sure I am correct but it will not give me the flag.

Hey, Does anyone know why I can't connect to the vpn servers?

There is a room assigned to my class that's unavailable and marked private. Can you tell me what's going on?
https://tryhackme.com/room/activedirectorybasics

It is not my kali, it is not my Internet, I already changed the server ,but still can't connect

@wind wing What OS are you using to connect?

New version

@wind wing Did you scroll up a little bit? There's a command above people have been running to fix it

Letme check

@wind wing I have experience with the VPN in Windows and Linux, so I can help

are you getting an error?

no anymore

ty

@gilded geyser ty

Gave +1 Rep to @gilded geyser

@left lotus ty

Don't thank me, I was just reading through here lol

it costs me nothing to say thank you

Hi Tech support! I am in the middle of developing a room which uses pwntools, and some features of pwntools cause the error "Could not allocate dynamic translator buffer" and cause the script to fail. I am not really sure what's going on here. I have googled this issue, and I have not found much. The scripts work fine on my own system (and I have previously written a room called Intro to Pwntools which does not have this issue). Does anybody know what I can do?

Edit: some people have said this issue can be solved with more RAM. Still, I don't think this VM should demand that much, it's just an Ubuntu Server 18.04. I can't really tell if this is the issue or not

Hello, i can't connect to my machine with VPN (yes i'm connected and i have a machine IP not working)

Why are you on your host?

Or is that a VM?

i mean a VM

The OpenVPN room VM

Did you press the green button?

Yes sir

And did you go to http://10.10.197.114/ ?

In your web browser?

of course

Ok, are you on Windows or Kali?

i tryed different browser, still not working

Or other Linux system.

I'm on windows

Is Windows your host?

Yup

Ok, I'd suggest you stop that.

And use a VM or the attackbox.

oh i see, kinda buggy ?

Not buggy.

But your exposing your host to the THM network, anyone can grab your tun0 and scan it.

There has been a few very rare cases of people being banned for messing with peoples boxes.

oke it's working on another region

but i'll listen you

thanks !

Gave +1 Rep to @weary spindle

Reposting link to this question
#site-support message

Has been replaced by: https://tryhackme.com/room/winadbasics 🥳

Ah, thank you so very much @tawdry orbit . I will pass this on to my class.

Gave +1 Rep to @tawdry orbit

I took a prep learning path before doing the Jr. Pentester learning path (I'm not yet finished with that one). Where can I see the list of learning paths I've taken already?

on the https://tryhackme.com/hacktivities for the paths there should be bars showing you how much progress you have done on each path

Hi, I was hoping I could get some help regarding my streak

I just lost a 42 (today would be 43) day streak, even though I haven't skipped a day of answering questions yet

Running a fresh install of Kali, downloaded and ran the VPN (as sudo) but it wont connect. Checked ifconfig, tun0 isn't there. Ran the THM-Troubleshoot script off a github, it's not helping. I've made sure my PC's clock is correct and in sync with my time zone. I've regenerated a new VPN and made sure Openvpn is up-to-date. Still not connecting. Tried different regions also
Any suggestions?

run sudo openvpn --config "/path/to/config/file"

Thank you! Found it.

Gave +1 Rep to @plush bay

I'll give it a go

Any staff able to help with my streak 🥲

You're going to need to email support for that.

!email

Thanks

Gave +1 Rep to @woeful hedge

No dice.

Please keep in mind that support is busy and that a response will not be immediate.

does your config have anything in it?

Sometimes it just downloads a blank file

If you verify you can post a screenshot of your issue. You can do so by following the instructions at the link.

!docs verify

Everything looks like it should. Certificates are there, keys, etc..

should work, try without the quotes

I'm seeing this in my terminal when I run the config "2023-02-13 19:15:52 OPTIONS ERROR: failed to negotiate cipher with server."

maybe try to regen the config

I just noticed this. Any clue? Add the server's cipher ('AES-256-CBC') to --data-ciphers (currently 'AES-256-GCM:AES-128-GCM:CHACHA20-POLY1305') if you want to connect to this server.

Did you type yes?

Not necessarily yes, but that's telling you what to do

I"m trying now.. BRB

And follow this

#site-support message

You beautiful son of a bitch!

Thank you!

I don't understand how they haven't fixed this yet. There have been so many people asking on here about this in the last couple of days.

I appreciated the help from the community though to fix mine.

It was also nice helping out a couple of people with what worked for me too.

There should at least have been an email sent out to subscribers with actions to mitigate for the time being!

I was pretty close to throwing my keyboard

https://tenor.com/view/rage-angry-pissed-off-office-throw-gif-17229290

But yes, very grateful for the help!

classic!

Wait until you get to the Active Directory rooms, lol. There are config files for each room.

I just started the Net Sec Challenge, Active Dir is coming up on my list.

Not a big deal though I just have a template for the ovpn stuff and the /etc/resolv.conf that there are no instructions on.

Active Dir is frustrating. So far the quality of rooms and lessons has been pretty good, enough to make me look up a bit outside the curriculum and everything is in logical order. With the AD rooms, just getting connected was a chore, with incomplete instructions, and the lessons seem to be out of order without much context.

I'll keep that in mind.

Feel free to message me if you have issues, I've had to struggle through a lot of it and judging by lack of response on the Discord either I have bad timing or not many people have done it. I would be more than happy to help you not struggle like me.

hello

i have this problem when i try to connect the VPN

#site-support message

Awesome, man! Very appreciated.

@naive dust Try this. Maybe it will help.

Hello, I'm having problems downloading the vpn config file

I'm getting 404 error

switch server and regenerate

How do I switch server? Thanks

Gave +1 Rep to @pastel tinsel

Thanks it worked!

Gave +1 Rep to @pastel tinsel

Forgive me if I have brutally missed anything, is there any way I can terminate all the running VMS in my account? I tried to start a new VM and it showed that I maxed out to 3. Now I cannot find them when I go back to the room.

#site-support message

Hello im having issues resetting my password the email just dosnt come

Hi, did you check your spam folder? If nothing is there, could you please email support@tryhackme.com?

Not spam i will try contacting

#room-help

Hi, could you tell me what's the response for this question?

HTTP in details room, task 2, question N° 2

cannot interact with thm bot to get verified: Clyde
BOT
— Today at 12:00 PM
Your message could not be delivered. This is usually because you don't share a server with the recipient or the recipient is only accepting direct messages from friends.

turn on dms

The Nmap room won't generate a target machine_ip. please help

the target machine_ip wont populate. this is for the nmap room #site-support

You need to launch the machine with the "Start the machine" button. (Check for recent tasks)

Where would I fine recent tasks? because Ive started and restarted the attack box multiple times and still no dice

You need to launch The target Machine. Not Attackbox.

Task 1, the MACHINE_IP is the target machine's IP address.

thx, I couldn't check

I do appreciate the help!

Thank you for your help as well!

Gave +1 Rep to @tribal mason

Hey, i have an issue with openvpn, the website says im connected yet i have disconnected and ended the process on my machine. Im trying to reconnect and getting an error about the servers cipher

Here's where I'm at. I'm running Kali on Virtual Box. Network connection NAT.
I can access THM spin up OpenVPN and get access to some rooms, and partial access to others. In the last room I was working "ToolsRus" made it half way through. Was able to get the login/password, the next step is to connect to open port x.x.x.x:1234
This is where things stop working.
Until I switch over to Bridge network mode. Then I can access the rest of the box.

My questions is why does the room Not work with NAT and only on Bridged?
2nd Is there a way that I can utilize the VPN I'm running on my local system while in Bridge mode?

Hi guys....

I have been using this VPN file for quite some time and suddenly it stopped working. the error say "failed to negotiate cipher with server. Add the server's cipher (AES-256-cbc) to --dataciphers.

So obviously that's what i've been trying to do but every effort I have made to add this cipher has not been successfully. I consulted the configuration file and confirmed that the cipher in question is correct but I cannot get the VPN file to stop behaving this way. I'm sure i'm missing something simple but good lord it's not for lack of trying. please advise.

Hi

I am trying to use open vpn on my own kali machine on bare metal and my VPN profile keeps failing, it worked in the past without any issues, but now seems like I am unable to connect, I already tried the THM trouble shoot script and the output is what i got below

└─$ sudo ./thm-troubleshoot.txt                                                                                 1 ⨯


         _____           _   _            _    __  __
        |_   _| __ _   _| | | | __ _  ___| | _|  \/  | ___
          | || '__| | | | |_| |/ _` |/ __| |/ / |\/| |/ _ \
          | || |  | |_| |  _  | (_| | (__|   <| |  | |  __/
          |_||_|   \__, |_| |_|\__,_|\___|_|\_\_|  |_|\___|
                   |___/

                                                @MuirlandOracle


[+] Stable internet connection
[+] OpenVPN is installed
[-] tun0 interface does not exist
Would you like the script to attempt a connection automatically (Y/n)? y
[+] Connecting....
[Warning!] Connection process is taking longer than expected to complete
[-] Failed to connect
Failure to connect to the VPN can usually be solved by one of the following options:
        -Regenerating your OpenVPN config on the TryHackMe access page (https://tryhackme.com/access)
        -Switching servers, then regenerating your OpenVPN config
        -Checking your system time. If your system time is incorrect then this can cause issues with the authentication process
If none of these methods work, please ask for further assistance in the TryHackMe Discord server, subreddit or forums.
[-] Exiting

would someone be able to help? im now at a loss here, i paid for my subscription and everything worked for the past year but all a sudden now my vpn no longer works

funny thing is it says im connected but i am not

is there anyway that i can be booted from any sessions that may be open, i feel like there is a ghost session that might be open

i already changed servers and when i try to reconnect it then says that its connected but fails over and over when i try to connect

so not sure if i am missing something here

2023-02-14 22:45:35 Failed to open tun/tap interface
2023-02-14 22:45:35 SIGUSR1[soft,process-push-msg-failed] received, process restarting
2023-02-14 22:45:35 Restart pause, 16 second(s)
^C2023-02-14 22:45:36 SIGINT[hard,init_instance] received, process exiting

this is also what i get when i try to start my thm openvpn profile

any help would be appreciated thank you

This sounds like something deeper is going on with your vpn.

Can you pull the logs and output when you try to connect?

yea i think so as well

also, if you verify you can post screenshots

!docs verify

i was thinking that there is something going on with thm on this one

sorry what is this link for?

I haven't had any trouble connecting to the VPN from my VPN

i think it just might be my profile

It's to link your thm account to your discord account

It grants additional permissions, like image posting

i see

it helps with troubleshooting

sounds good thnks

If you can post the logs, even from the journald entries, it helps triaging why it's failing. So far the info you have provided is not enough to diagnose.

that is good to know thank you

yea i just got it verified

where should i look for those logs you would need sorry i am not sure

would it be somewhere in /var/log?

Usually they are somewhere under /var/log/syslog
You can also specify a location to log to, check the man page for that option. You can also check the journald entries as well.

ok give me some min and i can look

The fact that tun0 isn't being created indicates that something is going wrong either prior to or during the auth phase. You should see an entry that logs that error or problem

thing is i am wondering if its because i did not turn off the vpn for like a month and when i rebooted my computer it started to have these issues

That would be extremely doubtful. If you have regenerated and downloaded a fresh copy of the vpn config file, that would take care of any corruption of a local file.

yea i did do that

what does not make sense to me tho is when i try to reconnect the site says im connected but my computer is not connected

So it's extremely unlikely to be file corruption. Seriously, the logs are going to be the only way to diagnose this.

I would send an email to support, explaining that the site thinks you are VPN connected when you are not. It could be something on the server side, but I don't think that's doubtful. If there is another extant connection, that connection should be sharing your tun0 THM network address.

right i would think so as well but this is the only machine that i connect to thm with vpn

alternatives.log.1      boot.log.3       displaylink     kern.log.3.gz         sddm.log
alternatives.log.10.gz  boot.log.4       dpkg.log        kern.log.4.gz         speech-dispatcher
alternatives.log.11.gz  boot.log.5       dpkg.log.1      lastlog               stunnel4
alternatives.log.12.gz  boot.log.6       dpkg.log.10.gz  macchanger.log        syslog
alternatives.log.2.gz   boot.log.7       dpkg.log.11.gz  macchanger.log.1.gz   syslog.1
alternatives.log.3.gz   btmp             dpkg.log.12.gz  macchanger.log.2.gz   syslog.2.gz
alternatives.log.4.gz   btmp.1           dpkg.log.2.gz   macchanger.log.3.gz   syslog.3.gz
alternatives.log.5.gz   cron.log         dpkg.log.3.gz   macchanger.log.4.gz   syslog.4.gz
alternatives.log.6.gz   cron.log.1       dpkg.log.4.gz   messages              sysstat
alternatives.log.7.gz   cron.log.2.gz    dpkg.log.5.gz   messages.1            user.log
alternatives.log.8.gz   cron.log.3.gz    dpkg.log.6.gz   messages.2.gz         user.log.1
alternatives.log.9.gz   cron.log.4.gz    dpkg.log.7.gz   messages.3.gz         user.log.2.gz
apache2                 daemon.log       dpkg.log.8.gz   messages.4.gz         user.log.3.gz
apt                     daemon.log.1     dpkg.log.9.gz   mysql                 user.log.4.gz
auth.log                daemon.log.2.gz  faillog         nginx                 wtmp
auth.log.1              daemon.log.3.gz  fontconfig.log  nvidia-installer.log  Xorg.0.log
auth.log.2.gz           daemon.log.4.gz  inetsim         openvpn               Xorg.0.log.old
auth.log.3.gz           debug            installer       postgresql            Xorg.1.log
auth.log.4.gz           debug.1          journal         private               Xorg.1.log.old
boot.log                debug.2.gz       kern.log        README
boot.log.1              debug.3.gz       kern.log.1      runit

im trying to look thru anything here that can help

but not seeing anything that i can think of that is useful, journal and openvpn files are empty

open the journal in anothter terminal and try to connect

you should be able to follow the journal with new entries as you try to connect

total 36
drwxr-sr-x+  3 root systemd-journal  4096 Feb 17  2022 .
drwxr-xr-x  18 root root             4096 Feb 14 22:21 ..
drwxr-sr-x+  2 root systemd-journal 24576 Feb 12 00:22 acf5e84efc574ed1b36bdb32fa2230a8

that is what i just got if i do the la

that's not what i'm talking about with the journal

sorry if i misunderstand that one

https://wiki.archlinux.org/title/Systemd/Journal

it's the archwiki, but the info about journald and systemd is common to almost all linux distros that have moved to systemd

looking at the link now thank you

that is the other thing too, when i change servers it show that its not connected but once i try to connect it shows connected on the website but on my local computer it is not connecting

still trying to find logs thank you

i think i might be finally getting somewhere but not sure yet

Anybody else having trouble with the vpn?

Just ask dude, you'll get an answer faster. 🙂

It's a problem with the vm not the vpn file, im just working on getting it fixed now xd

Ok, can you give me what issue you're having?

yeah seems like ethernet connection is bye bye

Are you using Vmware by any chance?

yep

I thought so.

I too experience this bug, I've reported it in the Vmware forums.

right now, the only solution I've had with this is rolling back a snapshot, or creating an entire new VM.

Oh my

well thanks.

@weary spindle Just resetting my pc seems to do the job

I'll keep that it mind if/when it happens again.

Hello, is there any other people having this kind of issue with OpenVPN ? 2023-02-15 05:01:10 OPTIONS ERROR: failed to negotiate cipher with server. Add the server's cipher ('AES-256-CBC') to --data-ciphers (currently 'AES-256-GCM:AES-128-GCM:CHACHA20-POLY1305') if you want to connect to this server.

Wow, it works like magic, thank you !

Gave +1 Rep to @weary spindle

When doing the privesc linux room I am stuck on the NFS task. I get an error message when trying to run the "nfs" executable.

./nfs: /lib/x86_64-linux-gnu/libc.so.6: version `GLIBC_2.34' not found (required by ./nfs)

I have triple checked and recompiled the nfs file, but it seems it should work, but maybe the target machine is outdated?

I cannot manage to connect to the open VPN, I tried reconnecting and switching servers, wifi networks, regenerating, re-downloading. But to no avail, the TLS handshake/ key negotiation fails every time.

Maybe you have the same issue as I had previously 🤔

Do you have a cipher error?

one of the links of the brainstorm room writeup leads to a phishing malware site

Brainstorm Writeup by Noxious

I think this is not a save link and should be removed from the writeups

Hello everyone. Can somebody help me please? I would like to have a premium membership with student discount. I wrote an email for THM support 5 days ago, but they didn't reply. Can somebody tell me how to get the discount?

Did you e mail from website?

No, I found an article on the website if the system does not recognise my student email address, then write an email to support THM. Is there an option to write a message directly?

Dm me your email address

Done, thanks

Gave +1 Rep to @bronze vale

Anyone know how this can be fixed?

I tried upgrading my shell...

nice upgrade🙂

i have problem with tryhackme openvpn anyone can help? its only when i try to connect to tryhackme

2023-02-15 16:29:39 OPTIONS IMPORT: peer-id set
2023-02-15 16:29:39 OPTIONS ERROR: failed to negotiate cipher with server. Add the server's cipher ('AES-256-CBC') to --data-ciphers (currently 'AES-256-GCM:AES-128-GCM:CHACHA20-POLY1305') if you want to connect to this server.
2023-02-15 16:29:39 ERROR: Failed to apply push options
2023-02-15 16:29:39 Failed to open tun/tap interface
2023-02-15 16:29:39 SIGUSR1[soft,process-push-msg-failed] received, process restarting
2023-02-15 16:29:39 Restart pause, 256 second(s)

it keep restart pause

anyone?

wait let me try

wow it works i was struggling for a week trying to solve it

ur a life saver @weary spindle ❤️

2023-02-15 16:35:07 Data Channel: using negotiated cipher 'AES-256-CBC'
2023-02-15 16:35:07 Outgoing Data Channel: Cipher 'AES-256-CBC' initialized with 256 bit key
2023-02-15 16:35:07 Outgoing Data Channel: Using 512 bit message hash 'SHA512' for HMAC authentication
2023-02-15 16:35:07 Incoming Data Channel: Cipher 'AES-256-CBC' initialized with 256 bit key
2023-02-15 16:35:07 Incoming Data Channel: Using 512 bit message hash 'SHA512' for HMAC authentication
2023-02-15 16:35:07 Initialization Sequence Completed

Happy Hacking.

Pro ❤️

anyone can help me with this?

xfreerdp /u:admin /p:password /cert:ignore /v:10.10.252.169 /workarea

i am doing bufferoverflow trying to connect to this

┌──(root㉿kali)-[~]
└─# xfreerdp /u:admin /p:password /cert:ignore /v:10.10.252.169 /workarea
[16:52:30:473] [933421:933422] [ERROR][com.freerdp.core.transport] - BIO_should_retry returned a system error 32: Broken pipe
[16:52:30:473] [933421:933422] [ERROR][com.freerdp.core] - transport_write:freerdp_set_last_error_ex ERRCONNECT_CONNECT_TRANSPORT_FAILED [0x0002000D]
[16:52:30:550] [933421:933422] [ERROR][com.freerdp.core.transport] - BIO_should_retry returned a system error 32: Broken pipe
[16:52:30:550] [933421:933422] [ERROR][com.freerdp.core] - transport_write:freerdp_set_last_error_ex ERRCONNECT_CONNECT_TRANSPORT_FAILED [0x0002000D]
[16:52:30:550] [933421:933422] [ERROR][com.freerdp.core] - freerdp_post_connect failed

Use Reminna.

how?

let me check

something wrong i cant connect

Is your vpn still active?

yes active

i am trying to connect to my lab

xfreerdp /u:admin /p:password /cert:ignore /v:10.10.252.169 /workarea

Which room are you doing?

https://tryhackme.com/room/bufferoverflowprep

it worked now but do u know how can i add /cert:ignore ??

[17:09:26:602] [10416:10425] [WARN][com.freerdp.crypto] - CN = oscp-bof-prep
[17:09:26:603] [10416:10425] [ERROR][com.freerdp.crypto] - @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
[17:09:26:603] [10416:10425] [ERROR][com.freerdp.crypto] - @ WARNING: CERTIFICATE NAME MISMATCH! @
[17:09:26:603] [10416:10425] [ERROR][com.freerdp.crypto] - @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
[17:09:26:603] [10416:10425] [ERROR][com.freerdp.crypto] - The hostname used for this connection (10.10.252.169:3389)
[17:09:26:603] [10416:10425] [ERROR][com.freerdp.crypto] - does not match the name given in the certificate:
[17:09:26:603] [10416:10425] [ERROR][com.freerdp.crypto] - Common Name (CN):
[17:09:26:603] [10416:10425] [ERROR][com.freerdp.crypto] - oscp-bof-prep
[17:09:26:603] [10416:10425] [ERROR][com.freerdp.crypto] - A valid certificate for the wrong name should NOT be trusted!
[17:09:33:361] [10416:10425] [INFO][com.freerdp.gdi] - Local framebuffer format PIXEL_FORMAT_BGRA32
[17:09:33:361] [10416:10425] [INFO][com.freerdp.gdi] - Remote framebuffer format PIXEL_FORMAT_BGRA32
[17:09:33:361] [10416:10425] [INFO][com.freerdp.channels.rdpsnd.client] - [static] Loaded fake backend for rdpsnd
[17:09:33:362] [10416:10425] [INFO][com.freerdp.channels.drdynvc.client] - Loading Dynamic Virtual Channel disp
[17:09:33:362] [10416:10425] [INFO][com.freerdp.channels.drdynvc.client] - Loading Dynamic Virtual Channel rdpgfx

scrubz u are monster 😉 ❤️
all respect bro

there is something in resizing remmina

Had the same problem and @weary spindle solution solved. Strange that openvpn was working fine yesterday.

thank u everything working fine now I can continue my labs peace and quit hehe

happy hacking!!

Hi, this channel is a channel for TryHackMe related tech-support, you can use general for these sort of questions.

ok thnx

Hi everyone. I'm creating vulnerable machine with wordpress. I want to add lfi vulnerability. I'm trying to add this vulnerability
https://wpscan.com/vulnerability/0d02b222-e672-4ac0-a1d4-d34e1ecf4a95
So, in first image i have vulnerable version of plugin, but it doesn't work. wpscan doesn't see my plugin. and when i create grid and capture traffic and add payload it doesn't work. Can someone help or have idea where is problem?

hello 👋, I don't know if this is the right place but I have a problem with openvpn
I have a cipher error, I tried resolutions presented on the forum it did not work
I tried to downgrade the OpenVPN version before 2.6 but it didn't work
Is there a solution to solve the vpn problem?
Thanks in advance 👍

Hello guys, i'm in a bit of jam right here, how do I turn off the sandbox ?

have you googled??? if not have you considerd running burp as none root

yes I googled, and i'm running Burp on the THM attackbox

as it is

ah

use firefox on the attackbox then and use foxy proxy in there to use the proxy

Seems to be working, thank you so much

Wonderland box is not responding whenever I try to use vim, nano, enumeration

Is it just me, what can I do to troubleshoot this problem

maybe check into how to stabilse shells

I can't connect to the THM openvpn

#site-support message

@dusty cliff it now says Initialization Sequence Completed but still isolated from the rest of the network

Hi, I'm struggling to access the Phishtool machine (ThreatIntel2). I've got a 405 error, I cannot connect with OpenVPN or my AttackBox. Any clues on what I'm doing wrong ? 🤔

when it says that at the bottom it means it is running... open another terminal and do curl 10.10.10.10/whoami and it should give you back your tun0/attack machine ip

or the close down the connection hit ctrl + c

yeah, I'm connected to the network but my machine is isolated from what I can see, I can't ping my target box or visit it in the browser -- fixed

i forgot to add that I double check I was not trying to access the attack box IP instead of the deployed machine one

wow that worked for me as well thank you

Gave +1 Rep to @weary spindle

i was about to wipe out my system too lol

Hi guys! I recently received my Jr. Pentester path certificate and it turned out that I had the wrong full name in my account. Is there any way to reissue a certificate with a corrected name?

Use paint.

You can't change name, you can't regenerate a new cert.

So guys, is there a way to reset the progress I've made on my account and restart from zero?

you can reset rooms on a room by room basis but there is no way to reset all rooms at once... unless you count making a new account

@plush bay Ah I see, thank you!

Gave +1 Rep to @plush bay

no problem

to reset the progress for a room hit the cog button on top of all the tasks next to the attackbox button and click reset progress

would it be useful if I made a script to reset progress of all joined rooms

maybe but dunno if that would be possible

also sounds like something you should talk with thm staff about if you are going to make said script

🤷‍♂️ I don't think It'd be useful also

I think it would be too heavy on the api and Tim Taylor would ask you to stop.

You see, I had to stop due to the circumstances last year and now that I wanna get back I see that I forgot lots of stuff and thought if there was a button like "Reset Progress" or something like that just to make my life easier xD

You can do manually room to room.

Ah, shadow already advised.

Hello guys its been a while and this is the first time im trying to run openvpn on a parrotOS in raspberrypi4b and i keep getting this error

also let that be the lesson to take notes for each room you do

What does that command do?

Will fix the cipher if that's the problem..

replace chipher with data-chiphers

Aye!

However on the THM website it say im connected and gave me an ip address however when i try to ping a room from my machine i get 100% packet loss and i dont see the ip when i run “ip a”

!vpnscript

How do i know if the cipher is the problem?

most of the time it will tell you quite clearly after an [error] thingy

When was the last time you regened your vpn?

but generally it has to do with what version of the openvpn client binary you are running

I regenerated it today twice and redownloaded it

try the vpn troubleshooting script

it probably will find something

Thank you

Gave +1 Rep to @plush bay

Btw what are data ciphers?

It will say 'using depreciated ciphers' when you start the OpenVPN service using our configuration file

We're going to discuss the cipher issue tomorrow

well to use a vpn you encrypt the data you send through the tunnel to the vpn server... the ciphers is basicly the algorithm used to encrypt and decrypt the data

Okay thank you

Btw this is the result i got

Im going to regen the config file in a diff server and then see if it works

good luck and hopefully it is not a ntp time server issue

Hoepfully

I got the same results, im going to regen the config file in another server to see if it works lol

It worked for the EU-Regular-1 server but idk for how long

I noticed that it said im connected to the vpn server now without me running the openvpn command how do i stop it and restart the vpn on my own

sudo killall openvpn

Thank you

Gave +1 Rep to @plush bay

no problem

Im having a very similar problem ^

I tried to regen a new access token from different servers and all the same.

Gives very similar output. Stable connection, Openvpn is initiated, tun0 doesnt exist, and takes longer than expected to connect to tryhackme. On the access page it says im connected. traceroute stops me at the 2nd hop

I tried using similar ones such as proving ground openvpn and hackthebox and those seem to work as normal. soo idk what im missing here

Im having the same issue

I'm getting "--cipher not set" whenever I run the *.opvn file. I've ran the new code that was mentioned above and it's not fixing it. Any ideas?

I am getting same issue. ??

Thanks ...it works now

Gave +1 Rep to @weary spindle

Hey everyone, looking for some help with tunnels

Currently doing wreath and have a double tunnel, only thing is I can't get a NC through to test the connection

When running NC on the windows machine, It tells me the port which I'm local forwarding through the tunnel is open, then immediately closes. It doesn't try to establish a connection with the NC listener on the other side

Any tips?

#wreath-network please:)

I have the same issues

Do the same?

hey guys, are there still issues with the VPN tunnels in place, I'm not able to connect and also getting the cipher error:

OPTIONS ERROR: failed to negotiate cipher with server. Add the server's cipher ('AES-256-CBC') to --data-ciphers (currently 'AES-256-GCM:AES-128-GCM:CHACHA20-POLY1305') if you want to connect to this server.

I also regenerated the configs and used different servers... any idea?

it worked, thanks!!! 😉 but for sure i removed your placeholder with my specific file to ovoid changes in other files 🙂

Gave +1 Rep to @weary spindle

Could I unlink my tryhackme discord token that linked to this accout please?

Yes, you can ask a mod politely to unlink it for you.

sup guys, I was trying to answer the 'whoami' task in this section and when opening the terminal in the box it shows me as root@ip-xx-xx-xxx-xxx.

This is not the acceptable answer.

You have started the wrong TryHackMe machine. Please terminate the AttackBox and press “Start Machine” when promoted

hello everyone how are you i have a problem my vpn config file is not running satisfactorily so i cant get openvpn ip from tryhackme this happened after i upgrade my os to kali linux can any one help me please favor? I would appreciate.
PS: I already tried to download a new vpn configuration file and/or change the server, but it didn't work.

sed -i 's/cipher AES-256-CBC/data-ciphers AES-256-CBC/' *.ovpn

Run this in your terminal to sort out the cipher error, (this will make the change in your script)

The problem has been solved, thank you very much indeed.

Gave +1 Rep to @pastel tinsel

Ehhh, so the VM in the Threat Intelligence Tools, Task 5, tasks me with doing email analysis using PhisTool. The VM doesn't seem to have internet connection however, and phistool is an online service. The email that needs to be analyzed is on the VM.
Anyone who can help me?

Hi, you don't need Internet to solve that task. You can open the email with Thunderbird, as mentioned in the last sentence of the task (easy to miss) 🙂

Oh, I see. I had understood it as we needed to use PhishTool's online webapp to analyse the mails. Thanks for the answer @glacial hound ❤️

Ah, I see, it even says, "... and using thunderbird", neat

Yeah it can ne misleading, happy hacking 🙂

Hlooo

Any one here

!

hello

i'm fiinding it impossible to download vpn for tryhackme

it keeps on redirecting to page 404

can anyone help ?

Hello, in the room "lateralmovementandpivoting" i can't add have the DC as dns and another DNS i get this error : "Got recursion not available from 10.200.19.101, trying next server"
Anyone know why ?

Bro After Connecting Openvpn In Tryhackme
Http://<ip> Not Working Why Any One Help Me

Plz

Which IP?

Have you changed the nameserver?

@weary spindle

Are You There!

Yes

Can I Dm You?

Why?

.

I Will For Some Pics So That You Can Understand My Doubt

You can verify and seen them here.

!docs verify

Its Not Gonna Clarify My Doubt

My Doubt Is More Than That

Here I Can't Allow To Sent Pics That Why I asked you can I Dm you

!

No YouTube Content Is There In Utube About My Doubt

I'm Asking Here Coz You All Completed Task

You Would Know How To Fix That

I try to run sudo evil-winrm but i get this error ```
internal:/usr/lib/ruby/vendor_ruby/rubygems/core_ext/kernel_require.rb:85:in require': OPENSSL_init_ssl (RuntimeError) from <internal:/usr/lib/ruby/vendor_ruby/rubygems/core_ext/kernel_require.rb>:85:in require'
from /usr/lib/ruby/3.1.0/openssl.rb:13:in <top (required)>' from <internal:/usr/lib/ruby/vendor_ruby/rubygems/core_ext/kernel_require.rb>:85:in require'
from internal:/usr/lib/ruby/vendor_ruby/rubygems/core_ext/kernel_require.rb:85:in require' from /usr/share/rubygems-integration/all/gems/httpclient-2.8.3/lib/httpclient/ssl_config.rb:12:in class:HTTPClient'
from /usr/share/rubygems-integration/all/gems/httpclient-2.8.3/lib/httpclient/ssl_config.rb:9:in <top (required)>' from <internal:/usr/lib/ruby/vendor_ruby/rubygems/core_ext/kernel_require.rb>:85:in require'
from internal:/usr/lib/ruby/vendor_ruby/rubygems/core_ext/kernel_require.rb:85:in require' from /usr/share/rubygems-integration/all/gems/httpclient-2.8.3/lib/httpclient.rb:15:in <top (required)>'
from internal:/usr/lib/ruby/vendor_ruby/rubygems/core_ext/kernel_require.rb:85:in require' from <internal:/usr/lib/ruby/vendor_ruby/rubygems/core_ext/kernel_require.rb>:85:in require'
from /usr/share/rubygems-integration/all/gems/winrm-2.3.6/lib/winrm/http/transport.rb:15:in <top (required)>' from /usr/share/rubygems-integration/all/gems/winrm-2.3.6/lib/winrm/http/transport_factory.rb:15:in require_relative'
from /usr/share/rubygems-integration/all/gems/winrm-2.3.6/lib/winrm/http/transport_factory.rb:15:in <top (required)>' from /usr/share/rubygems-integration/all/gems/winrm-2.3.6/lib/winrm/connection.rb:16:in require_relative'
from /usr/share/rubygems-integration/all/gems/winrm-2.3.6/lib/winrm/connection.rb:16:in `<top (required)>'

        from /usr/share/rubygems-integration/all/gems/winrm-2.3.6/lib/winrm.rb:17:in `require_relative'
        from /usr/share/rubygems-integration/all/gems/winrm-2.3.6/lib/winrm.rb:17:in `<top (required)>'
        from <internal:/usr/lib/ruby/vendor_ruby/rubygems/core_ext/kernel_require.rb>:85:in `require'
        from <internal:/usr/lib/ruby/vendor_ruby/rubygems/core_ext/kernel_require.rb>:85:in `require'
        from /usr/share/rubygems-integration/all/gems/evil-winrm-3.4/bin/evil-winrm:8:in `<top (required)>'
        from /usr/bin/evil-winrm:25:in `load'
        from /usr/bin/evil-winrm:25:in `<main>'```

seems like you are missing the openssl library

hmm okay but when i run the sudo apt update and after that sudo apt install openssl I get this openssl is already the newest version (3.0.8-1).

well it could be looking for an older version of ssl

okay so how can i fix it 🙂 ?

https://github.com/Hackplayers/evil-winrm

hello guys im having trouble connecting to wreath network , PS i can connect to the Machines

You need to set Ciphers.

i did

not like this

ill try

yeah it worked

thanks alot

Gave +1 Rep to @weary spindle

Hlo

@ionic lotus

I doubt you'll have been given the IP 10.10.10.10

If you started the machine in task one, where I have circled you should see an IP.

My Ovpn Ip Is Diff But They Mentioned Use This

Hello. Is there an admin here who could tell me if I’m able to transfer my THM account over to someone else and to that person’s email?

Yes, your tun0 will be exclusive to you.

In Burpsuite Room They Give Download CaCert In Http://Burp That Website Also Not Opened

I Didn't Understand

How many rooms are you trying to do at once?

One By One

Ok, but you're talking about a problem in the vulnersity room, which is the room I was going to discuss with you, then you suddenly jumped to a different room.

Wait I Tell You Clearly

Example :- Http://Burp This Type of Websites
Http://10.10.13.29 (Example) This Type Of Websites Are Working To Me

That Is Problem I'm Facing

Without Answer To That Doubt I Can't Move Forward To Next Rooms

I Want Capture Flags By My Own

Not By Seeing Another People Already Did It And Posted In Their Websites

I'm Feeling Sad About Copy For Others Answers Due To This Websites Are Not Running

@weary spindle

We learning. Try yourself as much as you can but don't stop cause of it. If you think you tried enought and still didn't get it just go get the answer on the internet. It's usually silly mistakes and it's not worth stop your progress.

Hi-Fi 🙌

If I Find Answer To That Question
There Is Nothing Can Stop In This Universe Except Death ⚰

Yesterday I spent almost 2 hours on a question and was getting wrong cause thm informed me to use a link starting with https:// server.com but I should be only using server.com

Dude It's Hits Had After Knowing Answer 😂

What Did The Brain Doing There 😂

I'm facing Openvpn connection troubles on Kali host

Checked my iptables, they are accepting packeets

TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity) TLS Error: TLS handshake failed SIGUSR1[soft,tls-error] received, process restarting

This is the error ^

I regenrated the .ovpn config multiple times to check but no avail. It happened suddenly, all was fine yesterday. I opened a ticket with THM but no response yet

Does your output have a cipher error?

It has this: DEPRECATED OPTION: --cipher set to 'AES-256-CBC' but missing in --data-ciphers (AES-256-GCM:AES-128-GCM:CHACHA20-POLY1305). OpenVPN ignores --cipher for cipher negotiations.

Oooh cool!

Now it has a new error: Note: cipher 'AES-256-CBC' in --data-ciphers is not supported by ovpn-dco, disabling data channel offload.

It's not an error, It's a note

Right but it still wont connect

I’m having trouble downloading the wreath VPN. I get a 404 error. I have unjointed the room and waited two minutes, regenerated the VPN and joined back. Still could not download the vpn. Not sure 🤔 what else I can do. Would be great to get access. Thank you 🙏

Is there a available web path for tryhackme.com that gives the files used in a room? I'm connecting through OpenVPN on my vm to do the tasks and for example I'd want the exact wordlist used in a gobuster scan.

anyone having trouble connecting via openvpn?

check the pins - there is a replacement you need to do in the ovpn connection file

Yes, i'm on kali, so i add the DC's IP and 1.1.1.1 as DNS in the Network Manager, and it appera normally in my resolv.conf

Hi, where can I see which method of payment will be used for the renewal of my subscription? I can't seem to find that information on my profile; only that I'll be charged some dollars in a few weeks. If it is VISA, my card changed so the payment will fail.Thanks

If you look on the payment email, you'll see a chargebee portal you can log in to and change your card.

If you can't, ping me and I'll get the link for you.

https://tryhackme.chargebeeportal.com/portal/v2/login?forward=home

Thanks for the info and the link! Paypal so all good with the payment

Hello
i'm taking this course https://tryhackme.com/room/walkinganapplication
when i lunch my virtul machine and the link they give me https://lab_web_url.p.thmlabs.com/ i get a 504 Time out error message
i did wait the 2 minutes as they recommended i waited even more then 2 minutes

Did you start the machine with the green button?

yes i did

Oups i just did

i'll wait for the 2 minutes

thank you @weary spindle

Gave +1 Rep to @weary spindle

Does this ever end ?

hey there, I'm unable to verify my discord token!

Do you get an error?

"Sorry this token is already used by someone"

I don't know where to ask this kind of question, but I think you will know this. If you order something in the TryHackMe shop and live it in Europe, do you have to pay customs?

It depends on where the camp is, I know. If it's in Europe I wouldn't pay duty, but if it's not then I will. So the question arises from where the things are sent?

Hi. I have my Kali Linux set up on my VMWare on NAT with my OpenVPN running on my host machine. Im trying out the RootMe room trying to achieve a reverse shell. I am able to connect to the webpage but unable to receive the reverse shell. Help please 🙂

Put the vpn on your kali

Not your host

Got this error when trying to vpn on my kali

2023-02-17 10:10:00 DEPRECATED OPTION: --cipher set to 'AES-256-CBC' but missing in --data-ciphers (AES-256-GCM:AES-128-GCM:CHACHA20-POLY1305). OpenVPN ignores --cipher for cipher negotiations.

sed -i 's/cipher AES-256-CBC/data-ciphers AES-256-CBC/' *.ovpn

Run this in your terminal to sort out the cipher error, (this will make the change in your script)

got the vpn up! thanks for the help! should I run the kali in NAT or bridge?

NAT.

Thanks!

Bridged will expose it on your network.

i was solving the volatility Room and i m have trouble with installing it it gives me this error , any solutions>?

Volatility 3 Framework 2.4.1
Traceback (most recent call last):
File "/home/qaisqupti/volatility3/vol.py", line 10, in <module>
volatility3.cli.main()
File "/home/qaisqupti/volatility3/volatility3/cli/init.py", line 797, in main
CommandLine().run()
File "/home/qaisqupti/volatility3/volatility3/cli/init.py", line 293, in run
failures = framework.import_files(
File "/home/qaisqupti/volatility3/volatility3/framework/init.py", line 152, in import_files
failures += import_file(
File "/home/qaisqupti/volatility3/volatility3/framework/init.py", line 184, in import_file
importlib.import_module(module)
File "/usr/lib/python3.10/importlib/init.py", line 126, in import_module
return _bootstrap._gcd_import(name[level:], package, level)
File "<frozen importlib._bootstrap>", line 1050, in _gcd_import
File "<frozen importlib._bootstrap>", line 1027, in _find_and_load
File "<frozen importlib._bootstrap>", line 1006, in _find_and_load_unlocked
File "<frozen importlib._bootstrap>", line 688, in _load_unlocked
File "<frozen importlib._bootstrap_external>", line 883, in exec_module
File "<frozen importlib._bootstrap>", line 241, in _call_with_frames_removed
File "/home/qaisqupti/volatility3/volatility3/framework/plugins/windows/hashdump.py", line 10, in <module>
from Crypto.Cipher import AES, ARC4, DES
File "/home/qaisqupti/.local/lib/python3.10/site-packages/Crypto/Cipher/ARC4.py", line 119, in <module>
key_size = xrange(1,256+1)
NameError: name 'xrange' is not defined. Did you mean: 'range'?

Thanks @weary spindle , it worked for me as well :))

Gave +1 Rep to @weary spindle

hello everyone i'm doing the windows privesc room, and when i connect to the windows machine using RDP, it connects normally, but it cruches after a minute or so, this is the error message that i'm getting

Looking at it, your connection timed out. I don't know what may be the cause, because hopefully any AV/Firewall programs would be down. I guess just try restarting the machine, or working with the time limit. Looking at the error code only yields that the connection was closed, or refused, but due to you saying that it connects normally I can only assume it was closed. You ARE connected to the VPN servers, right?

yes i'm connected to the vpn, and i downloaded another vpn, and tried with it but still the same problem

ok try restarting the machine

i just did that, but the same thing happened

Try Reminna

okey i'll try it

did it work?

yeah it did thank you very much

Gave +1 Rep to @worn aspen

you should really thank @weary spindle

Gave +1 Rep to @weary spindle

thank you @weary spindle

Any idea guys?

The error is caused by the fact that the xrange function is used in the Crypto.Cipher.ARC4 module, which is not available in Python 3.x. The xrange function was available in Python 2.x, but in Python 3.x, it has been replaced by the range function.
To fix the error, you can modify the Crypto.Cipher.ARC4 module to use the range function instead of xrange.
Alternatively, you can try downgrading your Python version to a version lower than Python 3.x, which may still support the xrange function. However, this may not be the best solution since it is always recommended to use the latest version of Python to take advantage of the latest features and security fixes.

use pyenv and a virtualenviroment to run python 2.7.18 to run the script... tada easy profit and low chance of badness happening because of using old python

pyenv is what you use if you wanna handle old python scripts for exploits... it is a really good idea to get familiar with said tool

ty i learned something here 🙂

Gave +1 Rep to @plush bay

no problem

virtualenv or venv is also a good idea to learn for python if you are going to have a lot of tools to not mess with the system instance of python

thank you

Gave +1 Rep to @plush bay

Hlo

Hi

I Started Machine

It Was Given

Are you connected to openvpn

Can I Dm You

I Can Send Pics

Ok

There

You can

to send pictures here do follow the instructions in this bot link

!docs verify

anyways @ionic lotus if you clicked the green start machine button a thingy like this will pop up at the top of the task list that will show an ip after waiting a while... this will also replace the MACHINE_IP part of the task with said ip

Yes I Got That

Http://10.10.166.193

After Clicking It To open in New tab

It Was showing Problem loading page

If you open a terminal and ping -c 2 10.10.166.193 what does it do @ionic lotus ?

are you connected to the vpn???

if yes can you run this

!vpnscript

It's Was Showing Invalid Argument Bro

Wait I'm Going To This Room Now

But In Streaks Beside It Was Showing Diff Ip 10.2.26.253
Machine Ip Is 10.10.166.193

hash a feeling hashcat is trying to connect their windows machine to the tryhackme network

the first of those ips look like an attackbox ip or attack machine ip

Oh

I Made New File After Copied And Pasted That Code

Then What I Need To Do¡

the solution of removing xrange and replace it with range worked but when i try using it --> python3 vol.py -f dumpfile windows.info for example

it gives this error

Unsatisfied requirement plugins.Info.kernel.layer_name:
Unsatisfied requirement plugins.Info.kernel.symbol_table_name:

yeah hence why using pyenv for python 2 might be the best bet

I'm having issues with the exploiting NFS room with downloading the bash executable #site-support

can has screenshot of error

where is mount command???

okay where is the setting of the $ip variable

i set it up in the terminal as export ip=10.10.240.39

i set it up in the terminal as export ip=10.10.240.39
Replying to shadow_absorber[She/Her]
ON

Message #site-support

okay then... did you leave and reenter the dir after mounting the nfs share

maybe even in another terminal window

as mounting to a folder you are currently in tends to cause problems

also can you give a screenshot of the contents of the downloads folder just incase you downloaded the bash file to another dir

hey, is there a way to reset my discord token cause I'm unable to verify it!

that is not the /root/Downloads folder

so i need to download the bash file of my machine into cappucino's user folder/

nah you can just open the link on the attackbox to the download link for said bash file and then place it in the nfs mounted dir

hi, I need to reset my tryhackme password's account, I already sent forget my password request but didn't receive any email, so I contacted the support via email and also no reply.

do you have any hint for finding the password for cappucino?

when i try to ssh in to that user it asks for a password

check the mounted .ssh folder for ssh keys

the id_rsa is still asking me for a password