to VPN, but I cant connect to the machine

tryhackme@10.10.90.76: Permission denied (publickey).

it is keep giving me a ----Permission denied-------

I'm still experiencing issues with this, I've set up a ping to figure out when it comes back up but it's still pretty irritating

Hi everyone, is anyone else having issues with their "hacking streak" (Complete a question every day to build your hacking streak, earn badges and streak freezes) on the dashboard? I have answered 20+ questions but the graph shows that I have answered 0. Ive tried exiting out of browser, logging out, shutting down PC, but no luck... I'll probably try again later tonight but thought I'd reach out. Thanks guys

@vast prairie did you resolve the issue?!

does anyone has this problem too "Linux Fundamentals Part 1" after you machine has loaded there is just a gray blank page the attackbox is working with no problems but the linuxfundpar... not working properly i used diffrent computers/browsers/OS

which room are you doing?

not yest

yet

now I can't connect to VPN

do I have to use the script every time

tryhackme@10.10.227.195: Permission denied (publickey).

No

!docs verify

@vast prairie Verify please and send a screenshot of the output of the troubleshooting script.

I will do the verifying

What room are you doing?

I did that the verification

Jr Penetration Tester - introduction to Web Hacking (Walking an Application)

Post a screenshot of the troubleshooting script output which you use in your Kali Linux VM. Put your ovpn configuration file in the same directory where the script is.

you don't need to ssh in to that machine.

You just need to work with the static website.

No matter the room, he should have VPN up and running.

Not for that link you don't.

.p.thmlabs can be accessed without the VPN.

And right now, they're asking why they can't ssh in to the machine.

I am trying to access it throught my Linux Machine

The question is I can get the VPN connected but the
Warning: Permanently added '10.10.227.195' (ED25519) to the list of known hosts.
tryhackme@10.10.227.195: Permission denied (publickey).

so why I am having this warning ?

Because you can't SSH in.

You're right.

I misread that.

Thank you

Gave +1 Rep to @weary spindle

For the machine, all you need to do is interact with the website.

Hi,
I am trying to do the adventofcyber4(2022) room Task 14 [Day 9] Pivoting Dock the halls: MetasploitNetworkPivotingV1. I launched the target machine and am trying to interact with it from within vpn. I dont get any response from the machine even after restarting the machine and vpn multiple times. I guess it should respond to http://IP:80? Can there be something wrong with the machine/image/container?

Are you on the attackbox or VM?

I'm on my vm

Do you have one open now?

yes i do

can i share the ip here?

Yup

it should be on 10.10.137.171

what syntax are you using on your nmap search?

I tried "nmap -T4 -A -Pn 10.10.137.171 -v" and "sudo nmap -sC -sV -O -Pn 10.10.137.171 -v"

but cant i get to it through browser on port 80?

Hm, I'm not sure why it's not working now.

I remember this room getting asked about a few months ago.

Infact nah

i just wanted to be sure the fault is not on my side

I just booted a machine up and it's working now.

As is yours.

@odd orbit

so i guess its related to the vpn then

Hello

I am having an issue with hacking the shipping list in web app security. I have found the person that hacked the system but cannot rearrange the shipping order. I move the item and it moves back. What is wrong please

@weary spindle https://tryhackme.com/access says im connected though

Can you have a look at your VPN output please.

i switched to EU-Regular-1 with a new vpn configuration file and now i get to the target

how would i check the VPN output of openvpn?

How did you connect to the VPN?

@weary spindle sudo openvpn --config /.../myVPNConfig.ovpn --daemon [TryHackMe_OpenVPN_Daemon]

Ah, you shoved it in the daemon.

ah yes okay
but as it works now ill proceed with the room, thanks for your help!

Happy Hacking!

└─$ cat /etc/resolv.conf

Dynamic resolv.conf(5) file for glibc resolver(3) generated by resolvconf(8)

DO NOT EDIT THIS FILE BY HAND -- YOUR CHANGES WILL BE OVERWRITTEN

127.0.0.53 is the systemd-resolved stub resolver.

run "resolvectl status" to see details about the actual nameservers.

nameserver 10.200.78.101
nameserver 192.168.1.254
search 1.1.1.1

nameserver 10.200.78.101
nameserver 8.8.8.8
search za.tryhackme.com

Hello, I am stuck in web app security. I cant seem to rearrange the shipment as it moves back

unable to understand how to clear 192.168.1.254 nameserver

I have 10 as the only employee to find, however, shows no recent activity

therefore cant rearrange items

You don't need to clear it.

when i do nslookup it is not working

Are you on the VPN of that network?

nslookup thmdc.za.tryhackme.com
;; Got recursion not available from 10.200.78.101, trying next server
Server: 192.168.1.254
Address: 192.168.1.254#53

** server can't find thmdc.za.tryhackme.com: NXDOMAIN

And not the regular VPN, or are you on the attackbox?

ya i am on lateralmovement vpn

regular vpn file, i have deleted from my laptop

Did you sudo nano /etc/resolv.conf ?

ip also matching with lateral movement vpn

when i do nano /etc/resolv.conf

nameserver 10.200.78.101
nameserver 192.168.1.254
search 1.1.1.1

nameserver 10.200.78.101
nameserver 8.8.8.8
search za.tryhackme.com

Unless you're already root, you'll need to use sudo.

where i need to sudo ?

for which command

when you nano the /etc/resolv.conf

nameserver 10.200.78.101
nameserver 192.168.1.254
search 1.1.1.1

nameserver 10.200.78.101
nameserver 8.8.8.8
search za.tryhackme.com

output is same with sudo and without sudo

Make it so it looks just like this

bro how you shared screenshot here, iam unable to share

You need to verify

!docs verify

Follow the above link.

Hello, I am stuck in web app security. I can't seem to rearrange the shipment as it moves back. I have 10 as the only employee to find, however, shows no recent activity, therefore cant rearrange items

if i edit /etc/resolv.conf, it is erasing automatically. So i have created /tail file as above and it worked for previous like breaching AD, Enumerating AD. Only for lateral movement, it is not working.

Strange, it worked for me

Do you know what IDOR is?

it worked for me in other rooms, only for lateral movement not working.

unable to understand where is the problem

restarted service also

sounds familiar, but not sure

under advance network configuration, IPV4, added DNS IP address also

Ok, If you go to use, and enter a different number, what happens?

i get another person

#10

Ok, can you revert their changes?

I get Anton

I move them but the change goes back

and shows me i

its not allowed

i get a circle w/line through it

therefore change wont stay

Anton doesn't have any changes to make.

Search another user.

I used 5-10 and Anton is only one coming up

Are you sure?

yet he has no activity

yes

can you see my history in there?

Nope, I've loaded up the satic website.

did not get her

I'm going to assume you're using a 0 infront of numbers between 1-9?

So you're trying user_id=05 ?

yes

says user not found

05, 06, 07, 08, 09, then 10 hits Anton, but no activity

just tried again, got the same thing

Try removing the 0.

ok

5=no user found

OK.

Try a different number.

Keep trying then all.

Start from 5, work your way up.

I tried 05-10, Anton is 10

Don't put the 0

no "0" ?

Just try

6
7
8

Etc

ok

7=Margriet, no activity

8=Willi, no activity

ok, 9=Alya, Data admin

trying to move inventory now

IT WORKED!!

Thank you so much

Have a great day

Your Awesome!

you had the correct idea, you just went about it wrong, if in doubt, use 01 and 1 etc.

DNS working now, removed 8.8.8.8

Ah good.

I tried to load the room, and couldn't as I'm not a sub.

Thanks for your support

ok, ty

Gave +1 Rep to @weary spindle

I am trying to stop the open VPN
I tried the following :

• Ctrl + c (Not working)
• sudo killall openvpn (Not working)

can anyone help

thank you , and sorry I am new

Can you please verify your account, so I can assist you easier by going to the following link.

!docs verify

I just did

Ok, can you send a screenshot of your error please?

I am trying to disconnect from openVPN

Does sudo killall -9 openvpn ?

I will try

it is work,

Can you please tell me what is -9 in the code
sudo killall -9 openvpn

-9 is the signal for SIGKILL.

Which will pretty much tell it to close without doing anything else.

Thank you for your help and reply

No problem friend, 🙂

Happy hacking.

every thing is ok now

Am I the only one who finds it weird, how I am supposed to be in the top 6% as a level 7 guy with 1 badge and 29 rooms complete?

lots of users only doing private rooms or school workgroup specific things which does not give points

Aha, I thought I was missing something. Thanks!

Gave +1 Rep to @plush bay

no problem

trying to install bloodhound and neo4j but I dont use kali so im trying to add the neo4j.list to my /etc/apt/sources.list.d but getting permission denied specifically this command echo 'deb https://debian.neo4j.com stable latest' > /etc/apt/sources.list.d/neo4j.list

yeah rerouting using echo without being root and trying to do it using sudo will fail

and thats because the > part is not being run as sudo right?

so just switch to root user?

I thought I was doing something wrong cuz its in the official documentation

Yes, do sudo su

Hey. So I may be late on this, busy couple of weeks at work, but I can't get the vpn connection up. I genersted a new ovpn to use and it still isn't connecting.

The error I keep getting is the "failed to negotiate cipher with server" message.

Never mind, looks like I got it. I had to add the line "data-ciphers AES-256-CBC" to the ovpn file right after the "ciper AES-256-CBC" line. Odd, but works.

workspaces is empty, do you need to enter early in the month, or is there some other reason it is empty when i enter?

!vpnscript

Run that code please.

Only people on the same domain, can get on workspaces.

So if you and a few students/colleagues share the same domain.

For example @naive dustample.com.

Only people who have that Em
-mail will enter your workspace.

Oops! Sorry for the ping.

How do you have a domain? I used to enter a workspace with plenty of people, now there is nobody?

I've signed up with my student email, so I'm in a workspace with students.

I'm with proton.me

Yeah, that's the domain of your mail provider. That will most likely not work because proton.me is not exclusive to any group but available to all customers of proton.

!vpnscript

can anyone help me with my openvpn, Whenever I try to connect I get this error

Is it cipher?

failed to negotiate cipher with server. Add the server's cipher ('AES-256-CBC') to --data-ciphers (currently 'AES-256-GCM:AES-128-GCM:CHACHA20-POLY1305') if you want to connect to this server.

Do you know how to open the vpn in text?

no

!vpnscript

Get the code from github and run it.

but why do i have this error.I've never had him

Right click your script and open with mousepad

You'll see this line, change it from cipher to data-ciphers

the troubleshooting script?

i have downloaded

ok, it works thanks

Hello, how can I contact an administrator?

Site or discord admin?

Site

To ask you something about membership

Well whats the question?

Somebody might be able to help from here, if they can't you can contact them via

hey there, i have this weird thing going with both my network ovpn's aswell as my normal ovpns... what information should i need to provide to you ?

And by the way, another question to see if you can help me, suddenly my kali linux machine has stopped having an internet connection and it does not connect to me, do you know how to solve it?

!vpnscript

Run this please

When you mean internet connection, is that to the THM network or the whole internet?

oki i'll keep you posted if that's not a problem for you?

sure

whole internet

i cant connect to the THM network because i dont have internet in my machine

thanks btw jay, (yes i know it gives you rep but it's well deserved :))

ah dangit

thanks

nvm

this on a VM?

yes

vmware or vbox?

vmware

Okay, in the VM run ip a

TryHackMe doesn't route through OpenVPN so this is likely an issue with your VM drivers.
Are you using Bridged or a NAT connection?

Nat connection

@glad oyster it worked! thank you

Gave +1 Rep to @glad oyster

i do it

you want sc?

just post the output

i have 2 lo: and eth0:

What makes you think you don't have an internet connection?

Because I open google and it tells me that I have no connection and I do any ping and it doesn't respond

ping 1.1.1.1

does it reach?

wat

now i have network conecction

idk

It has been put ip a and I have returned the connection

thanks man

hello, I'm trying to connect via OpenVPN but I get errors while executing my config file :
OPTIONS ERROR: failed to negotiate cipher with server
ERROR: Failed to apply push options

then it keeps retrying but fails every time

!vpnscript

it won't find my config even though they're in the same directory...

Hello support team - I've just updated my Kali VM and after that I cannot connect to THM VPN

!vpnscript

Can you take a screenshot?

Run that and it should work.

Sure, here it is:

here

ok - let me try the scrip - thank you 🙂

Try inputing the directory path manually?

what exactly do you mean ?

can't you enter anything here?

after the : is what I typed

here's a different idea,

nano RAH3RI.ovpn

what should I edit ?

cipher

Change that to data-ciphers

This is the result of running the script:

Run that script while you're trying to connect to the VPN.

(Run them both together)

oh I see

let me try again

that fixed the issue, thank you :)

Gave +1 Rep to @weary spindle

anytime.

I run openvn first

then run the script

Yes.

this is the result

sudo killall -9 openvpn

then try again?

Yes.

ok will do

This is result

The other screenshot of openvpn

Nano the Ovpn script.

you mean the thm_wreath.ovpn file?

Yeah

ok hold on

Here it is

Change cipher to data-ciphers

ok let me try

Awesome - that fixes the issue - thank you so much Scrubz 👍👍👍

Have a nice day ❤

Happy hacking!

Hi I am having trouble connecting to openvpn. I have run the script and the Initialization sequence is completed and on the top right I can see my openvpn ip but I can not connect to 10.10.10.10.
PRETTY_NAME="Kali GNU/Linux Rolling" NAME="Kali GNU/Linux" VERSION="2023.1" VERSION_ID="2023.1" VERSION_CODENAME="kali-rolling" ID=kali ID_LIKE=debian HOME_URL="https://www.kali.org/" SUPPORT_URL="https://forums.kali.org/" BUG_REPORT_URL="https://bugs.kali.org/" ANSI_COLOR="1;31"

ip a s

What am I looking for? Or did you want me to paste the output

Do you have any tun*?

yea a tun0

What happens when you go to the CLI and

curl 10.10.10.10/whoami ?

Just hangs

sudo ip link set dev tun0 mtu 1200

Try doing that command, and then re-try.

should I kill the process first?

No.

done

Now try the curl command again

Works now

🙂 great, happy hacking

What did that do?

Thank you!

MTU is packet size, you're just changing the size of packets sent

okay cool preciate the help today

No problem, 🙂

+rep @weary spindle

Gave +1 Rep to @weary spindle

It has stopped working again lmaoo

curl hangs

Do you only have one tun?

Yea

1 lo 2 eth0 3 tun0

ok, what are you trying to do?

I was sshed into the target machine and went to run the command showmount -e targetip it hung

Ah,that one always hangs.

and when I went to ssh window it was frozen too

I than tried running the curl command and it hung

ahh okay I just restarted everything and it appears to working again\

Ah good, lol

Shouldn't this be done automatically?

(from the THM script)

#site-support message

for some reason it wasn't.

I might have a feeling why

@remote stratus Hey, can you do ls in your home directory where you ran that script?

hello guys ive been facing a problem since yesterday when i start a machine after a minute or so the connection drops from the machine but it doesnt terminate it any solutions for this?

Which machine?

library and this happened in king of the hill

also

its dropping and connecting again does this have to do with the vpn connection?

if you are playing king of the hill the other players can kick you off the machine by killing your pty instance or connection

nah the problem i faced was the same as the one im facing in a normal machine im pretty sure i wassnt getting kicked off the machine

!vpnscript

did you try this as solution ?

seems like i had a duplicate connection

also stacking vpn might be issue

but i runned it while i was still connected to the vpn

that can be issue yes

i dont know if that was why it showed as a duplicate

if you do THM only thm vpm need to be active

i think i wasnt clear i had thm vpn on only and ran the script

you can check if you are connected to thm vpn on THM site

it says im connected in the access profile but the access machine is still on red

try to refresh site ?

did that

gave it a minute or so and did it again

ok now its connected

if you type ip a in terminal and you have line that starts, mostly, tun0 that might be indicate that you are connected on thm

but still this doesnt solve the main problem where it keeps dropping the connection in the room need to check again with it after

you might try regenerate vpn file

hi,all i am trying to get openvpn working on my kali vm, i have it installed but how do i use my configuraion file?

!vpn

here is a room, that will show you what to do. 🙂

ty👍👍

Hello how do i verify I have dm'ed the bot nothing is happening

Kindly if someone can dm me..

there is some problems with verify bot. will be fixed bit later

Ohk thanks for the info

I installed a Kali purple VM, but managed to get an old version of burpsuite running on my Raspberry pi kali, now it has pretty much all i need

Not having burpsuit on kali pi was a real bummer, but i had to downgrade java to v11 and then go into the archives and get a 32bit version of burpsuite, which at first didnt run either, but after some apt-get messing around it finally did

imagine having a pentest specific system but no burpsuite, when there's a url involved it's one of the first things to boot up, check out the cookies and whatever

Do you close the vpn tab after activating it?

If you do so it will stay connected for a few sec but it will go down

hello, im stuck again in Operating Systems Security. I can get through it all till I get to finding password for Johnny. I get nothing once I get there. Can you help please
going into history does not provide any user passwords to locate
we are suppose to figure out his password

going into history does not provide any user passwords to locate
we are suppose to figure out his password

anyone here?

OK, I worked my way to # 3 question and I can't get it to work

Suppose to look at root system, under johnny, and look at the flag.txt

I have forgotten my username. I also want to cancel my automatic subscription ( I was just charged on my cc) but I want to refund that if possible.

cant you use a "authorization code" to get in

I dont think anyone has been in here in quiet awhile

i started around 2.....then deleted and reposted my question around 4....still waiting for someone to reply

can you use an "suthorization code" to login?

hello I am currently having issues with the openvpn network connection with Holo. I can connect to stand along machines perfectly fine ran the script and here is the output. [+] Stable internet connection
[+] OpenVPN is installed
[-] tun0 interface does not exist
Would you like the script to attempt a connection automatically (Y/n)? Y'
[+] Connecting....
[+] Connection Process completed successfully!
[+] tun0 IP is in the correct range
[+] Only one instance of OpenVPN is running
[+] Confirming connectivity
[-] MTU value failed at 1000, aborting MTU check
[-] Something went wrong -- please ask for further assistance in the TryHackMe Discord server, subreddit, or forum

scratch that now I can not connect to normal machines as well

nevermind found a fix that worked

Open your VPN configuration file in a text editor and change 'cipher AES-256-CBC' to 'data-ciphers AES-256-CBC' this fixed it

!email

You'll need to contact support.

Excuse me, where can I download the certificate, or is it just a badge now?

cant connect using rdp in the stupid powershell room w my kali pi pfff I'll try with another computer some other time. If that doesnt work either, guess i'll have to type every powershell command by hand in the browser cuz copy paste doesnt work there

Which certificate?

Tried remmina?

i looked for it but my kali-pi doesnt have it installed it seems

OWASP10 or anothers certificate

Those are just badges, the only certificates you can download is certificate of completion for the different paths tryhackme has

YES I want download certificate of completion

Kali pi might run the minimal version of Kali, so there's some tools that aren't installed

but i don not find it

Then on the paths that you have cleared 100% like Jr pentester path, that's where you can download certificate of completion, some rooms have badges, but it's only the paths that have the certificates

yeah, and it was a pain to get burpsuite installed on it. I'll just try that room some other time on my laptop, kali-pi is fun when it works but when it doesn't you better have some backup plan

I find it !!! very thank you for help

Gave +1 Rep to @pastel tinsel

there was also a room where you have to compile and upload something, but kali-pi compiled it for the arm architecture and the room machine was x86, so you had to compile it on something else or ur stuck

Yeah, that's the problem with using different architecture

and linear room design, if you could solve the problem another way, then you wouldnt need another machine to finish it

It also happens in real life, sometimes having two different architectures brings problems like this too

yeah i guess, best to have some options, a laptop, some VMs, a desktop, ... just a kali pi is cute but it really shows its limitations sometimes

and then you waste an hour trying to get around the problem, until you give up, and leave it for later to try on something else lol

I'm having trouble with the openCTI machine. The page never loads, I've tried it with the attack box and openvpn too.

Hi there, not sure of best channel for this question, and I am not sure if it counts as tech support. I am a plan paying user on tryhackme, and I noticed recently that you offer AWS learning path for business/education plans. Just wondering if there is any roadmap to offer that on other plans as well? I am a professional AWS user, but my team at work is very small (startup), and id prefer to just have access to that on my single account and get reimbursed for learning/development

Hey 👋 currently it is for Business/Education plans. There may be options to open this up to individuals in the future, but I don't know/wouldn't be for me to say how and when at the moment i'm afraid

Thanks for the reply, Ben. Ill keep an eye out in the future

Gave +1 Rep to @zealous yoke

Sure thing 🙂 sorry I can't give more of a concrete answer

Unfortunately, we do not reset streaks that have been lost for more than 7 days.
After looking at your account, there is a large gap in activity.

rip

I did not know this.

I had a 100+ day streak but lost it due to picoCTF and other CTFs all in the same week.

It's still good to know that THM team cares about streak restoring, that's nice

Ive taken the RHCSA: the question about ‘contianerfiles’ really confusing me, here is the question;
As a user ‘john’ ( non root user) create an image (from a container) but i don’t know what does it mean

Bc that user dont have permission to perfom the buildah bud command

hello everyone, I am stuck again

Ineed to open a pdf file. Can anyone tell me where I am wrong?

dang, sorry its not letting me copy and paste it here

you need to verify your account to send screenshots.

!docs verify

ok

Hey, how i get 60$ for sharing feedback?

Where did you see that?

It’s a promotion from product

It should all be on the email

Oh man, I never get the cool E-mails.

?

.

So as u can see i cant use the attackbox and the question asks for that

Tried to terminate nothing works..

Hit Reconnect. This is for Linux Fundamentals 1, the target machine deploys automatically in split view and no AttackBox (which is a separate machine) is needed for this room.

Nothing happens

It probably expired (expires after 2 hours unless you extend the timer). Refresh the room page and redeploy the target machine.

Did this too nothing happend

Click the View in full screen button (bottom-left of the right screen in your image). What is the remote-eu-xx in the url?

09

Change it to 03.

Confusing : )

Terminate the target machine, redeploy it, and see which remote-eu-xx you get.

Got 06

oh good catch that this is in here too... was just about to ping you tim to look at .peters problem in #subs-room-help

Does it work?

Nope

Sry for that

Check if you're blocking tryhackme.tech with a blocker add-on in your browser.

nah it is okay peter

this is definitely more tech support related then room help related

Nothing to block .

Check https://tryhackme.com/api/vm/running and DM me the output.

Sent

I'll forward this one to the team to look at.

Thx

I'll get back to you when I have better news. 😄

Hi Tim, can you help me with an issue of a custom room I have since the last week?

A ticket was created for this but it seems to be far from being fixed since I haven't had an effective response from support team.

hello, here is my room, Practical Example of SOC, and trying to stop attack. However, the IP choices and ports arent in the list. What now?

My room seems to lagging quite a bit as well

Hello, I'm in the operating room security and it will not allow me to type in the section to enter the password. when I exit the room and go back in fresh, it allows me to type again. only when I get to the point of entering the password will it not allow me to type. i have skipped it and also got to the network security portion, and it is the same situation when i get to a point where i need to enter the password. i took a screenshot of the issue, but i don't know how to upload it to this.

Helo Peter, sorry for the trivial question but how did you upload your screenshot?

you need to verify your account in order to post screenshots

!docs verify

I might be misunderstanding your issue but when typing a password in the terminal it won't show anything that you're typing, just type the password and hit enter even tho the field is empty

Thank you so much!!! it worked

Gave +1 Rep to @faint sequoia

nice👍

I haven't received a reply yet about my Practical Example of SOC not having the appropriate ISP's to stop the intrusion, as well as a lagging system issue. I requested help at 5:33 pm previously. Thank you

My room has been fixed except the port 23 is not listed, thank you

When ever I try to see the split screen it doesn't render anything

Ir's just a blank half of the websiter

*website

hi, can't get openvpn to connect

Hello, I don't know if this is the correct place to share.

I was working on some room and my Attackbox was hosting python http Server over port 9090. Suddenly, i started receiving odd HTTP GET requests that i haven't sent. I recognized it as directory Enumeration, coming from a public IP address.

I've traced the IP and looked around, it seems it belongs to Cynsys, and used as Spider/crawler to Portscan and retrieve Files and identifiers.
That's the first time i see this.
If there's any action from your side and If you want the output/Captures, please let me know

👍

Hi team,
I'm curious how 24h between answers will be calculated to continue the streak if user will change timezone significantly. For example move from USA to Asia.

that's a normal thing that happens on every ip/port, we can't do anything about it as it's "normal" behaviour on the internet, to see if websites are up

!vpnscript

try and download and run this script, this should help you with it

I think that there might become some problems with switching like that, I am not sure about it though, but they recommend doing tasks before 11pm and after 2 am

I did this morning but I'm not sure how 24h calculated. If it's calculated by timezone it can be a problem

thank you

thank you, that helped.

Gave +1 Rep to @pastel tinsel

getting a 404 when trying to obtain my vpn config

try a different server, then go back to the proper server and regenerate the vpn

how would I do that? /vpn/ doesn't work

nvm

https://tryhackme.com/access

😄

yeah just found it lol

nice!

Hey, For this particular room and some others too, the images don't seem to load. Is there some issue on my side?

trying to visit the image URL shows a 403 error
I am pasting the link on the image below
https://lh3.googleusercontent.com/B5adQnf9W9IYvIFLtDLhg5Fe-vg98bSXVMtDGicU8QJfiQqxraG1HTDKhHPy4erMRO-pIBNGbESO-Kqiajn3cBKFuhnAFAh3fr-BUOP8JXeuWNSjC006t7cIOq93H-7kZY99sPx4

no permission to view the image

Yeah, thats my point. The Empire room is not loading images. precisely, the Listeners section

other section have images

I guess @sharp bear there's some image errors on your room?

Room issue

please add it down in #room-bugs

I have tagged the room creator just above, so they'll probably take a look at it, and fix it, but to make sure it goes in the proper room, leave a message down in #room-bugs telling about what room and what bug there is

Okay, done 👍🏻 . Thanks.

Gave +1 Rep to @pastel tinsel

Morning. Not sure if this is the most appropriate place to ask for support on this -- please redirect me if its not.

I completed both the Junior Penetration Tester and Red Teaming pathways but I think somewhere down the line Id used my username as my full name. I have a certificate (Red Teaming) that displays my username instead of my actual name. Is there a way to have that corrected?

There isn't no.

You can either create a new account, and do it all again.
Use photoshop.

Ooof.

Thx.

is there a default password for the attackbox? i'm trying to scp a file from a remote machine onto my local attackbox and i need the password for the attackbox to do it.

Hey 👋 the password is randomly generated. You can find out what it is by pressing the "information button" on the split-screen view in a room (or you change it yourself within the attackbox!)

thx

hi guys, sorry to disturb

i have a problems regarding access to active machines, i already run the script and regenerate the openvpn file, but then still cannot access to them, why is taht happening?

the error whos like this :

An error occurred during a connection to 10.10.186.241.

The site could be temporarily unavailable or too busy. Try again in a few moments.
If you are unable to load any pages, check your computer’s network connection.
If your computer or network is protected by a firewall or proxy, make sure that Firefox is permitted to access the Web.

!docs verify

try follow that and if you post picture might be more helpful

ohh verify sorry for not doign taht

wait

🙂

thank you for remind me!

hii okay

verified!

perfect

if you post a pic might able to help

may i share the picture here?

yes ofc

yous make sure that you hide if there is some details that tyou don't wish to share

here, i already run the script and regenerate the opvn file, yet still i cannot acces to active machine

try remove https

just ip

still same, i use http also cannot access, but i can ping

one sec

okiee

what room is that ?

vulnversity

Hi, is there any admin or mod that can help me go change my discord token. I have change my thm account. Thank you

might be that there is no website to visit 🙂

i can access the room 2 weeks ago, but after i come back, all rooms i cannot access ( rooms that need active machines)

cannot also 😦

is not issue of you connection 🙂

try to run nmap and read the results 🙂

okiee i'll tryy

and i suggest to delete that first pic that you share. since it contains you thm vpn ip

ouh i thought it should be no problem, thank you for you concerns!

Gave +1 Rep to @tribal burrow

@crystal marlin might help

might not be. but is better to keep it private.

FYI, 90% of TryHackMe machines use http not https:)
Although you cannot access the machine for another reason. #room-help

Ohh thank you. Should I DM or wait for the reply here?😅

Gave +1 Rep to @tribal burrow

this jabba might help you also.

just wait a sec to they read it

Ok. Thank you very much

np

thank you for your reply! i havae try to access using http, yet the results still the same 😦

Gave +1 Rep to @bronze vale

go to #room-help

aight! thank you sir for trying to help me and keep positive! may god bless u ❤️

You can DM me about it

Ok, i DM you already. Thank you

Gave +1 Rep to @crystal marlin

If this is still Vulnversity, the site is not running on the default port associated with http.

Getting multiple drop of connection to deployed server. Been happening intermittently.

Able to connect to other sites so not a problem with the vpn as far as I'm aware.

Any ideas? I deployed this box roughly 15 minutes ago and it's dropped like 3 times.

Does your vpn have any "restarts"?

oh it's back

yeah roughly 10 minutes ago. Had a cipher error. Ran the fix script and it resolved it though.

i'm trying to do the https://tryhackme.com/room/rpnessusredux room, but i have to install the app on my own machine first

i'm on a 7 year old pc, and the linux VM i use on it is too slow to do anything with

the app can't be installed on the attackbox

what can i do about this?

It might struggle with nessus.

my vm struggles to open the nessus website

And no, the Attackbox isn't big enough for Nessus.

i can't imagine how much it'd struggle with the actual app

Other than installing on your own vm, there isn't anything else you can do

lol

i plan on getting a new pc soon(ish) so let's hope that solves the problem

Nessus tales up 30GB of HD space

trying to connect to the AD enumeration network fails.... can't access http://distributor.za.tryhackme.com/creds and the nslookup only poops out this:

$ nslookup thmdc.za.tryhackme.com               
;; communications error to 10.200.68.101#53: timed out
;; communications error to 10.200.68.101#53: timed out
;; communications error to 10.200.68.101#53: timed out
Server:        192.168.x.x
Address:    192.168.x.x#53

** server can't find thmdc.za.tryhackme.com: NXDOMAIN

changed the settings using network manager and the /etc/resolv.conf file to look like the following:

# Generated by NetworkManager
nameserver 10.200.68.101
nameserver 192.168.x.x
nameserver 127.0.2.1
nameserver 9.9.9.9

Is your vpn OK

Or attackbox?

vpn.... and yeah seems like.... just for good measure left and rejoined the room and going to regen config now

nope same error after patching the vpn config file to use the new data-ciphers

it even gave shadow the same subnet

is the open vpn output

Looks like it's not connected?

it is connected.. read 3 lines up from bottom

Oh yeah

dunno why it spits 2 new lines after initilzation complete but it does that with the normal vpn too and that has never been a problem so far

I'll try

thanks scrubz

+rep @weary spindle

Gave +1 Rep to @weary spindle

okay then so it might just be bugs with shadows instance(the 68 subnet) or something along shadows path of network traffic

Maybe post in the channel, am03bam4n usually is quick to help out

could always try to go back into the first AD network (breaching ad) and check if that works

yuup will do scrubz

fun fact @weary spindle the breaching AD network works with nslookup no problem

so yeah probably something with the enumerating AD network on subnet 68

Yeah, does leaving the room for 15 min(s) change your subnet?

no idea but could try

back, so I try connecting with my vpn, here is the error message I get :
2023-04-18 14:12:13 DEPRECATED OPTION: --cipher set to 'AES-256-CBC' but missing in --data-ciphers (AES-256-GCM:AES-128-GCM:CHACHA20-POLY1305). OpenVPN ignores --cipher for cipher negotiations. 2023-04-18 14:12:13 Note: Kernel support for ovpn-dco missing, disabling data channel offload. 2023-04-18 14:12:13 OpenVPN 2.6.0 x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] [DCO] 2023-04-18 14:12:13 library versions: OpenSSL 3.0.8 7 Feb 2023, LZO 2.10 2023-04-18 14:12:13 Outgoing Control Channel Authentication: Using 512 bit message hash 'SHA512' for HMAC authentication 2023-04-18 14:12:13 Incoming Control Channel Authentication: Using 512 bit message hash 'SHA512' for HMAC authentication 2023-04-18 14:12:13 TCP/UDP: Preserving recently used remote address: [AF_INET]63.35.110.70:1194 2023-04-18 14:12:13 Socket Buffers: R=[212992->212992] S=[212992->212992] 2023-04-18 14:12:13 UDPv4 link local: (not bound) 2023-04-18 14:12:13 UDPv4 link remote: [AF_INET]63.35.110.70:1194 2023-04-18 14:12:13 TLS: Initial packet from [AF_INET]63.35.110.70:1194, sid=f3c9f7d3 634b5236 2023-04-18 14:12:13 VERIFY OK: depth=1, CN=ChangeMe 2023-04-18 14:12:13 VERIFY KU OK 2023-04-18 14:12:13 Validating certificate extended key usage 2023-04-18 14:12:13 ++ Certificate has EKU (str) TLS Web Server Authentication, expects TLS Web Server Authentication

!vpn-script

Reeeeeeee

!vpnscript

Run this please 🙂

Thanks guys, I have applied the script, it works now

dunno if this counts as 15 mins but just rejoined the room and yeah it is changed now

New subnet work?

don't have time to test it now...

Hi , regarding the breaching active directory path, I spawned the attack box , description says that i should be able to ping the DC, but i can't

am i missing smth ?

the entire first task is on how to connect and check you are connected in said network room

Another question, Tryhackme openvpn provides connection over tcp ?

i.e nslookup

the general vpn for most rooms uses openvpn using udp and not tcp

not sure about the network rooms

Hello, it's seem the password reset fonction don't work

exactly, i read it here's what the first task talking about the attackbox should be auto connected to the network:

If you are using the Web-based AttackBox, you will be connected to the network automatically if you start the AttackBox from the room's page. You can verify this by running the ping command against the IP of the THMDC.za.tryhackme.com host

uum the line about dns and the first picture of a terminal with text just under that???

!docs verify

then post a screenshot of the error you get on trying to password reset... if you don't feel comfortable doing that contact support using this email from the email that you linked to your tryhackme account when making it:

!email

@versed pawn ⬆️

the command results unknown interface breachad : No such device

i tried to contact this email adress yesterday

are you using your own kali vm???

nope

it can take up to 3 days before a response

oky thank you

if you run the command ip addr show what do you get in your terminal on the attackbox

had same issue & followed this and then it worked https://tryhackme.com/forum/thread/62bad83cf1848200429736f3

lo , ens5 , lateralmoment , docker0 , etc

can we please stop refering to a forum thread and instead use the intended troubleshoot vpn script for this kinda problem??? thanks

Gave +1 Rep to @unreal drum

its counting 8 results but it shows only 6

oh huh..... uuum somehow your attackbox is using the wrong network rooms interface

any recommendation

also known as the link that gets provided by the !vpnscript command

sed -i 's/cipher AES-256-CBC/data-ciphers AES-256-CBC/' *.ovpn and then do sudo systemctl restart NetworkManager

well your own kali vm with the network vpn file from the access page should work... rebooting the attackbox might also work.... other then that nope... maybe pinging @cold fog might also help

sigh read the github vpn script... it has a line where it checks for that and fixes it if it needs to.. if people are still using 2.5 or lower of openvpn your tip will just break it

thanks i will see what i can do

Gave +1 Rep to @plush bay

!vpnscript

        elif testCipher; then
            colour red "[-] Using outdated switch for ciper negotiations. Attempting to update..." 1
            sed -i 's/cipher AES-256-CBC/data-ciphers AES-256-CBC/' $ovpn
            colour green "[+] Successfully updated cipher switch! Please connect to the vpn using the following command: "
            colour code "sudo openvpn $ovpn" 2
            
            return 0

@unreal drum does this look like what you are trying to recommend but automated???

because that is part of the vpn script

@silent storm have you tried the vpn script to troubleshoot common problems with openvpn???

still not i will try now and give u feedbaack

it got even worse 😂 at least before it was trying to reconnect.. now it dies immediatly

do you have another vpn active

nopee.. just for testing tried on my windows machine too but didnt work

dp you have this line in vpn file data-ciphers AES-256-CBC

cipher AES-256-CBC

yess

change it as its mine

yeah now its working

🙂

🙂 its was in frontttt of myy eyessss lol

@tribal burrow thanks alee

Gave +1 Rep to @tribal burrow

it happens 🙂 glad to help

it did work in my windows machine but that script broke my linux one hahah now it a hustlee..

Greetings fellow discord Users. I have a question regarding a problem I have. I have duckduckwent and looked in the discord a lot about my issue and I have found nothing that helps, althoguh I am sure others have this problem as well.
I am on a Windows10 Machine, and I have WSL installed (Debian). When I connect with my VPN (sudo openvpn <file>), I do not use the windows application, I can not open the ip in a web browser. Any solutions? Thanks beforehand,
smartcookie

Am I able to change my THM name?

Hi! is there an on-going discount voucher for THM? my subscription is about to end on 12th of May and hope to apply a voucher during renewal

Regarding change of timezone I moved to the East and answer questions ASAP. Seems ok for now

!email

You'll need to contact support.

Using WSL isn't great, the networking isn't great, you're better off with a vm.

I'm not sure I'm which channel one's supposed to report errors. In the room Vulnerabilities 101, task 4, the answer to the second question needs to be updated as the author has rebranded.

#room-bugs

thanks 🙂

🤔

Dear Scrubz, I have had that thought before, and I have had many VMs over the past years, yet I always seem to break them.
I have been using VirtualBox, with a kali, parrot, ubuntu vm, anything you can imagine really. Yet I would always stumble across a problem, such as Shared folders or that it would never be as big as my monitor

To that ofcourse there is the simple solution of downloading the Guest CD ware thingy with one simple command

Or so says the internet and all videos on youtube

I would always get errors

I would walways get frustrated and then just give up

"Why not dualboot then" have said many users in many Discord Servers regarding cybersec

Because that wont work either

I have activated all Processor settings in the BIOS to fit a dualboot configuration

But becasue I can not buy a new drive, using partitions works never like a charm

I have looked for a different VM like VMware but that does not seem to be free and so on

Well I think I should not continue to whine in this server of a masterpiece

I apprecheate the dedication though Sir

can you open up your tryhackme openvpn config?

yes, to change the written chiphers..I tried

the last time it happened to me I solved it with the script ..but now it doesn't work anymore

I have made up my mind, I will follow your wise words and do retry installing a VM for the x time. Wish me luck

Yes, Vm if you enough resources,

IMO dualboot shouldn't be done, but that's just my take on it, I'd hate to lose files (I hate it when I lose VM's, thank god for snapshots)

However, as this is no longer a THM Tech support issue, if you need any help regarding a VM, you should use general, (I'm not a mod, it just keeps this channel for it's dedicated use.)

fair,
sudo ip link set dev tun0 mtu 1200

if you have the vpn running, open up a new terminal and run that command, that will set the mtu to 1200 and should fix the problem

Thank you again. Now I have the same problem but in the VM, is there anything I should do ? Still no connection in a browser in the same VM to the IP from try hack me

Gave +1 Rep to @weary spindle

NVM, 10.10.10.10 works

!vpn

Sorry I pinged you then mate

wow that is a handy command

I guess there is no website to this challenge? Althoguh I am pretty sure I need one

Ayoo it works now

Maybe it needed time

I thank you deeply

Hey guys, I'm getting a 404 trying to download my Hololive OVPN file... any ideas how to troubleshoot?

Leave the room for 15 min(s), rejoin and try to download. 🙂

Okay, will try

hello, i lost my subscription.

can anyone help?

Define.. lost?

yeah, i have subscription voucher for 2 month. but, when i try to access premium feature i can't access it. and I realized when I was asked to re-subscribe. My voucher just redeemed April 1st.

Site username?

Zer00, please check. thankyou sir

Can you DM me the voucher dashboard URL, pleease

okay, wait sir

@bronze vale check our dm sir

Is there some issue with jumpbox? I see some people have already had this issue with the past but only port 22 shows up even 30 minutes in. I've reseted thrice and no dice.

I am facing a problem with loading the learning path. when i click into any learning path is keep loading for ever

can anyone help me please

well dunno what we can do about that... sounds more like a potential site bug

so where can i ask for help

well this is the right place... just most of the people here are volunteers and not affiliated with the dev team of tryhackme

this partially sounds like an issue that would get reported with @zealous yoke or @bronze vale to get debugging steps or figure out what is going wrong

but just for the meeps of it... have you tried pressing ctrl + F5 @waxen niche

yea

i have refresh the web page many times but same

nothing worked

well then we wait

The url path stuck on https://tryhackme.com/paths

i think api is not responding or blocking me

you might also maybe get a different result come to think of it if you wipe your cookies and local storage for https://tryhackme.com/ but doubt it

but as you are clearly seeing shadow is grasping at straws to try and help

same thing happening here, tried different browsers and clearing browser data

for how much time you are facing the problem @late herald

i've only been trying for the past thirty mins or so

allmost same i am facing it from past 1 hour

Any chance someone could help me connect to open VPN ? I'm tryna connect through VMware Kali with my config file on the desktop but every time I run the command I get an "error opening config file"

cat the config file and see if you somehow got an empty file or any obvious errors

it returned with

zsh: unknown file attribute: 1

uuum well that is weird

i refreshed the file on tryhackme thinking that would fix it

if you run cat .zshrc in your home dir does that also fail???

that returned a long list of text similar to a man

okay then the cat command works

could the name of the file cause any issues?

now to try and figure out what made it error with the openvpn config file

yuup if it includes characters like " or $ or ' or spaces

frozen.Booger.ovpn

yeah that should be fine

if you open said file in a graphical text editor notice any obvious problems???

no seems to all be correct

Options error: In [CMD-LINE]:1: Error opening configuration file: /home/jellyjeans/froozen.booger(1).ovpn
Use --help for more information.

this is the error text

i know the path is correct

you sure the file is in that dir and not Downloads??? or vpn

lol now realpath keeps telling me zsh: unknown file attribute

i was trying to confirm but yeah its on my desktop

I keep getting this page every so often
Any suggestiongs?

i think others are having the same issue further up this chat

uh oh

cloudflare errors spoopy

I see that now, thanks for pointing it out .. so is the VPN the suggested workaround for now?

doubt a vpn would help a lot if the cloudflare to tryhackme is having problems

Fair, might if its routing in a different way.

Course, I need to get in to get that configured 😭

Its odd, works intermittently

Like some of the lbs are up and some are not.

Oh well, try again in a couple hours

ty

Should resolve now?

Not resolved for me but could be caching

ctrl + F5 to avoid caching problems

at least in firefox

I did a hard refresh, used random query, and tried incognito. I'll just have to wait a bit

fair

Working now btw. Thank y'all 🙂

Thank you

We are aware of the ongoing platform disconnection issues:)
Sorry for the inconvenience while we handle this.

Cloudflare often has geolocated CDN connections, so you can get 502 from the routing in one part of world, but not another.

i need to continue my streak LOL... hopefully though fixes soon as i only have a few more hours

I’m trying to redeem a voucher bought for the Throwback network (I have the email proof), but when I input the voucher code, I get this error. Any ideas what I should do?

The voucher is copied and pasted from the email so it’s 100% correct, no excess white space either.

I’ve tried submitting it both on the page where you purchase the network access (where it says to), and on my profile… neither work.

Best to send an email to support

!email

hi guys, i had an issue with my openvpn i used the troubleshoot script and it worked but the connection isnt stable

i mean he's disconnecting from the vpn and then it reconnect just after

Do you get an error at all?

Hello, can I ask for help? when I am clicking the learning path it doesn't load the room. It just like in the picture. Thank you

@crystal marlin ?

don't know if there's any bugs with tryhackme's website

have you tried clearing cookies?

yes i already tried but it doesn't work

oh well, it's a known bug, my bad

check down in #1092490706385383524

ohh thank you

they are probably in the middle of fixing it, so it's not known when it'll be fixed yet, best I can help with is telling that you can do individual rooms instead, and steer off the paths for now

ok ok. thank you

Same wtih me

yeah, it's a known issue, they are trying to fix it, steer away from the paths and create your own by just doing random rooms instead

Thanks bro

Gave +1 Rep to @pastel tinsel

How come support isn't responding in mail

When did you E-mail

?

April 5 and April 11

I talked to a moderator here and he said I should reach out to support, I was selected as a prize winner in Advent of Cyber 2022 but haven't gotten a response

There is a slight chance your email was missed, which is unlikely.
Regarding that, you should have been e-mailed, reach out again, but support could be busy,

Just don't e-mail more than once within

7 days

Can some one fix this i checked on multuiple browser and multiple internet and changing every damn thing it still sucks