#site-support

he has another machine open

simple fix

no i dont

i close all

machine

You clearly haven't

but it wont open

Uh-oh! As a free user, you can only deploy 2 machines at a time (terminate the instance in linuxfundamentalspart1 first). Subscribe to remove this limit.
this

That error message is telling you have a machine active.

in this error message it states you can only deploy 2 machines at a time

1*

It doesn't appear if you don't have any running

yes

@marsh magnet does the server have a media channel for normal members?

ok wait can we call?

than you can see

You need to verify, by going to #bot-commands and typing !docs verify

No we cannot, you can terminate all machines if you wish to.

bro i have only 1 hour a day

LOL

Uh-oh! Non-subscribed user can only deploy the free AttackBox for 1 hour a day. Subscribe for unlimited access.

You only have one hour on the attackbox.

why

thanks mate got it

Gave +1 Rep to @marsh magnet

You need to subscribe to have unlimited access to the AttackBox

Because it's hosted on amazons servers and this costs money. If you subscribe you can use it as much as you want.

If you want to access without it, make your own VM and connect via OpenVPN

no i dont buy it

if you want a work around use your own VM and connect to THMs openVPN network

ok whatever

?

is there something wrong

what

bro i only have 1 hour

but its ok

we have given you a work around

its simple

i go guys

If you are gonna be rude, no one will help you.

We are volunteers here, we aren't paid

ok

cool

^

is there anything else?

if not i go

Now if you wish to terminate all machines.
Press F12 on TryHackMe's page.

Paste this script in and press enter (this will terminate all active room machines)

  .then((r) => r.json())
  .then((vms) =>
    vms.forEach((vm) => {
      if (vm.roomId === "kali") {
        return;
      }
      fetch("/api/vm/terminate", {
        method: "POST",
        body: JSON.stringify({ code: vm.roomId }),
        headers: {
          "csrf-token": csrfToken,
          "Content-Type": "application/json",
        },
      });
    })
  );```

ok waitz

wait*

hi all, is there a problem with caseb4dm755 - the room VM says failed to connect to server, has done for couple of days

I am also having a problem with the B4DM755 VM, it's connecting to a linux box and doesn't have the file

Just lost all my 240++ days streaks, submitted ticket with support this morning and I felt like THM should implement a warning/alerts system as well as pause function (limited days). Good run but at this point I felt like not probably not worth continuing anymore, lol 🙃

it takes up to 3 days. so be patient 🙂

Hello, I would like to know where I can find the AttackBox root password when I do not use browser AttackBox but OpenVPN connection. I get the IP, but no other info. I need this to scp files from machines I am attacking.

When you have the attackbox started in split view, at the bottom of the screen there should be an info button, there you can get the password

Hello question for your legends - can anyone create a free room that has an AD network? Or is it limited to a single box? Such as a single vulnerable Linux machine.

Networks can only be created by THM staff

If you're using OpenVPN then you'd be using your own machine, you would know your password

Great thanks.

Gave +1 Rep to @dense bramble

Can I upload multiple non-connected linux boxes in one room?

Hi thanks for the answer, but I do not use my browser, but a Kali VM with VPN connection. There is no info button there. Is there a way to get the password ? Thanks

Gave +1 Rep to @crystal marlin

Man!!! you are right 😛

sorry for the silly question....

no worries, I can understand the confusion

Hey. I am new to tryhackme and I have a Redeem valid code from my THM notification, but when trying to use it, it says invalid ? @tryhac

Why does the verification bot does not show up in the users collumn in order to verify?

Discord being buggy atm :/

But you should still be able to interact with the bot I think @sharp bison

Awesome. Works now, gave me an error 10m ago.

Appreciated Font

!vpn

!vpnscript

Any help ?

Best to reach out via email in that regards

!email

Getting this error when running thm-troublehsoot script

i just ran openvpn after running the script and it says it worked. It reads "Initialization Sequence Completed"

Update: didn't seem to be working after connecting and running nmap on a target machine

Can you ping 10.10.10.10?

Hey sorry for the late reply I had stepped away from my machine. I was able to ping my tun0 IP and the target machine and got replies. I didn't try 10.10.10.10

Well if you got reply from target machine means you were successfully connected to vpn

For the nmap scan
Give some time to load server after starting machine

Hi, I don't know if someone has ever had this problem but I can't access rooms through my VPN (tried 3 different networks)... Tryhackme say that I am connected

Thanks. I'll give this a try once I'm back to my machine

Gave +1 Rep to @finite aurora

Same thing
Can you ping 10.10.10.10 after connecting to vpn?

nope

can you post a screenshot of the terminal you use to connect?

the ping?

OVPN

So you're connecting to the THM network on your phone? can you browse to http://10.10.10.10/whoami

hello

anyone having issues connecting to machines after VPN connection was made?

!vpnscript

use the script above to troubleshoot your VPN issue

I'm still unable to connect

getting this error while on a machine

Troubleshooting was successful but still facing issue

Try sudo ip link set dev tun0 mtu 1500 then check again if you still have that issue
otherwise it might be from the machine itself, try to restart it

If you're using the VPN, why are you using the attackbox?

Because with vpn I’m unable to connect to machines

how do i stop a machine

on the website it doesnt dislpay the machine running

ok going to the website on a diff device somehow worked

not my phone, it's macOS

Question regarding firmware encryption: I wanted to do some testing on one of my home cameras to see if I could get its firmware. I managed to find the firmware online, however after running it through binwalk, the contents are fully encrypted, additionally the linux 'file' command can't seem to figure out their file types. Tried running it through a few different programs but to no luck.

I suspect it might be a custom / obscure encoding method, tried doing research on this and I can't figure out how I should move forwards.

It's been two + weeks since I emailed THM support about verifying my student email. Haven't gotten any response. What's going on with you guys?

red team capstone has been during this last few weeks.. meaning lots of prices and handling of that for the entire tryhackme staff team

So normal, yet important, inquiries are put off? When will they respond? I think making an announcement explaining the delay would be most appropriate. I get messages from Jabba who offers help but consistently fails to follow up when I respond.

shadow dunno they are just relaying the info that shadow has

Do you work for THM?

no shadow is not an employee of tryhackme and does not get paid by them... though shadow helps test some of the newer rooms as a room tester... but that is a voluntary postition and task

I don't think an event would explain why they're not responding. Let's hear from THM staff directly.

Hiya, I am the spokesperson for TryHackMe support.
We recently held the Red Team Capstone event which led to an influx of queries.

This has resulted in support delay being between 5-7 days.

Please avoid being rude to community members. It may not be intentional on your part but Shadow was trying to help and you shrugged them off.

Furthermore, all users receive the same level of support.
Although we may prioritise certain queries, 90% of queries are kept in the same queue order.

If you continue to email, you will be pushed to the end of the queue. This is not a choice we have made, it is how the ticketing system is setup:)

thanks for your input @bronze vale

Gave +1 Rep to @bronze vale

was not sure how far the backlog was and felt like shadow could do nothing more then wait for thm staff to respond

Hmm. It seems that I've been "shrugged off" as my query has been delayed by 2 weeks. Would be happy to hear why that's the case.

DM me your email Address and I’ll take a look when I wake up

Just sent

Can anybody point me to a reference, either docs or YouTube or anything, to show me how to get a box to work with VNC in-browser when creating a room?

this is happening for the past 3 days!

Are you pressing enter 2 times after entering the host header?

You can't, that's only available for in-house rooms 🙂

has anyone else been having issues with connecting to the active directory networks? i keep getting a repeated connection reset. restarting... error. tried running the troubleshooting script but that didn't seem to fix it

Nope. Let me do that.

Hi guys, im trying to use pritunl and start my openvpn connection but getting a "connecting" and nothing else, could someone help me please?

Fixed, Pritunl was the issue

I am trying to connect to my machine using openvpn but I keep getting "ERR_CONNECTION_TIMED_OUT". How to fix this? (Win 11, openvpn v3)

Anyone know what's the issue, why every program inside my VM give me message as "not responding" and give me two choices whether to "quit" or "wait" but some programs open without this message but take a lot of time to open.

is anybody else experiencing disconnects from boxes?

it worked, thanks!

Gave +1 Rep to @crystal marlin

Yeah, that's just the format HTTP request are sent in

Two new lines at the end

Site Support 👏

I was unable to subscribe tryhackme, transaction is keep getting declined from India any solution?

India usually block subscriptions, please contact your bank to confirm

interesting... did not know that

I contacted them and it keeps getting declined even though international transactions are on. I also tried using PayPal but no positive result.

Yes, it will keep on declining if automatic collection is blocked

What did they say when you contacted them?

guys

is anyone having problem with the machines?

Hi, could you please be more specific? What problem are you having? WIth which machines? Thanks

Gave +1 Rep to @magic vortex

i have tried diffrent rooms

the machine web page is just keep loading

iam in owasp 2021 room

Can you share URL, the task/question and screenshots? I will have a look

its just keep loading

the machines were working fine today early

but now they are like this

By they, do you mean multiple VMs in different rooms?

yeap

i have tried another room

i had the same

Can you share another example? Are you using the Attackbox or your VM with OpenVPN?

main os

kali linux

Hi, I keep getting this error whenever i try to connect any idea how to fix it?
I'm using linux mint.
Options error: Unrecognized option or missing or extra parameter(s) in SamSem.ovpn:14: data-ciphers (2.4.7)

sed -i 's/cipher AES-256-CBC/data-ciphers AES-256-CBC/' *.ovpn
i think this will solve ur problem

i will run bounty hacker room machine

Have you tried restarting the machine? Also, is your OpenVPN connection stable?

yes its

yes i have done a reboot

nothing changed

i even deleted ovpn files and downloaded diffrent ones

but still same

this for bounty hacker page

this sounds like you are using an ancient version of the openvpn binary... as current branch is on 2.6 but yours seem to be 2.4

should i add the quote as it is in my ovpn file?

just copy paste on ur terminal

in the same directory location of your ovpn file

I can open the website for the OWASP room without any issues, so the machine doesn't seem to be the problem. I can also access it with the IP in your screenshot. Is there anything that could be messing with your connection? Another VPN? Or multiple Openvpn connections

i have no idea

i will check if there is multiple vpns

only tun0

no others

i will try to connect as hotspot from my mobile data

Ah, Scrubz might know ^^

This isn't great advice, you should advise them to use the troubleshoot script instead

I reinstalled openvpn but i'm still getting the same error

What's up?

didn't worked 😦

i have used this on this error on my time and it worked thats why i gave it to him

@glacial hound it seems iam having something wrong with my connection

thank you for help anyway

just to confirm.. if you run openvpn --version what is the output???

Is it working with your hotspot?

yeah thank you for ur time

Gave +1 Rep to @glacial hound

2.4.7

No problemo, happy hacking

Yeah, it it will change all the openvpn files in that directory.

the entire output please....

it was working on my wifi connection and now its not i wonder why

yeah that if he had other files

I did some changes last time when i had the same error
but now i don't remember what exactly i changed last time

data-chiphers to cipher

i think if u just update ur openvpn it will fix it

it sounds like said mint install does not have the newest version in the repos

yeah 😦

which fair but still weird when kali has it updated to the 2.6 branch

eeeeeee 😦

Could be since mint uses Synaptic?

cant just download the deb file from the open vpn site?

yes but generally you should not circumvent your package manager as it tends to cause breakages down the line

ohh

¯_(ツ)_/¯

iam not that much familiar with mint so its nice to know some stuff about it

but yeah if you can't update openvpn... which seems like you can't samsem
you should be able to replace data-chiphers with cipher in your openvpn file to make it work again

data-ciphers AES-256-CBC

my ovpn has this cipher
that's the issue

i.e doing the reverse of what is commonly needed

oi

already tried
used ciphers data-ciphers
data-ciphers-fallback as well

just cipher

cipher not ciphers

i,.e no s at the end

why the meeps does shadow remember this syntax????

last time I commented out the given ciphers and changed it another cipher
that's what i couldnt remember

Okay, but can you try what Shadow just recommended?

Finally worked lol
just an s was giving me all the headache damn !!!!

no problem and glad we could get it working

oor well big problem technically

maybe this is a nice bit of learning that using a kali linux vm might give you less headaches in the future

THanks alot

I'm using mint as main OS running directly on my system.
Sometimes it do gives me error so i spend time to figure that out
But i take it as a way of learning and still keep using mint

Hey i'm unable to connect to the Breachingad VPN network , Please help

regenerate

already tried

still same

Anyone please help

support team

I tried connecting via Attack Box as well and still not able to ping the machine IPs

Hay.

For the breaching VPN.

You need to nano the file and change the file from

dev breachad to dev tun

This worked Thnx

so weird that is not needed for everyone to get it to work

but for the people that need to change it for it to work it works nearly always

Any admin here ?

What do you need?

As only a small % of Discord mods are site staff.

I am new to THM, my friend invited me, and upon registration I have got a REDEEM code that is valid only for 7 days; However, its not valid !

That looks a question for support.

!email

Already sent an email about 4 days ago, but no response

Were you using a VPN while registering?

No

Hello am beginning the first module in tryhack me but any reponse i give it refused anyone can help me?

We will get back to you, might need to be a bit patient 🙂

Take your time. I'll be waiting for you

Thanks for your patience, we should be able to fix the link 🙂

Gave +1 Rep to @woeful pulsar

I hope it will fixed ASAP

tp> passive
Passive mode: off; fallback to active mode: off.
ftp> ls
500 Illegal PORT command

any updates

No, as I said we will get back to your email when we can. Our tickets work with a queue system.
This Discord isn't a live support channel.

no problem

@staff, I'm not sure if this is the right channel to post to but I’m having trouble contacting support@tryhackme.com. I sent an email over 6 days ago relating to my streak and have yet to receive a response. Any suggestions?

Support wait time is 5 days

Ok, thanks.

Gave +1 Rep to @bronze vale

could anyone help me figure out why the linux machine isn't popping up anymore? windows works just fine though

Hi everyone,
I have registed for try hack me, and can log in on my mobile device but am unable to log in via my PC. first i kept getting capcha failed messages, eventually it said i was locked out for 5 minutes and despite it being over 24 hours, resetting browser, and resetting computer, that message won't go away and I am unable to log in. I really would love to get started learning about cyber security, perhaps this is a good lesson for me to learn? why is this happening and how do I get past it?

try to delete browser auto-fill entries or edit so that it inserts your email as the login username

For captcha check network.http.sendRefererHeader and privacy.trackingprotection.enabled in about:config if firefox-based, turn first one on and second one off and see if problem still happens

How do you become a volunteer room tester?

You're approached by QA.

AFAIK, they're not looking for anybody else right now.

hello people. It seems like the disable 2FA button in the profile is not working. Is there a workaround?

Not at the moment, it's a #1092490706385383524

ERR_CONNECTION_REFUSED while connecting via openVPN. Can somebody help?

hey found an error with my token stuff, says other used. Please can verify?

Did you have a second discord account?

Hello , so ive been doing a learning path, and after im done using it. i terminate and when i try to do it for another lesson, it just shows me that. Am i supposed to like keep it open until the 1hr runs out?

Yes, keep it open

oh alright, thanks

yeah i was thinking bout that, maybe an old one had the token but i deleted it, is there a way to fix?

You'll need a mod.

thx fontaene is taking care

Gave +1 Rep to @weary spindle

Right

I signed up for a THM subscription a couple of weeks ago but never got an invoice in my email. How can I obtain a copy of it?

Hello

Someone knows where I can find the VPN script checker

The script which checks the vpn file

!vpnscript

Ty buddy

Gave +1 Rep to @dense bramble

You're welcome

is it possible to se windows remote desktop to access the windows vm's on THM? I have tried connecting with the username and the machine ip with openvpn running and still can't access it through rdp. Any help would be greatly appreciated!

Yes, you need to put the VPN on the Windows device though, if this is your host, I don't suggest thing, however.

Do I have to wait for my month-to-month subscription to run out before I can input a subscription voucher?

Hello! I have a problem with my full name on tryhackme. I cannot add the “-“ character, and the certificates appear wrong. Can someone help me please?

Yes.

You can't change your name on certs you've generated.

Then how do I add the - character in my name? It is not saving it

The - can't be used in the name.

I have changed my discord account and now when i try to verify with my new discord account it say's :** Sorry this token is already used by someone.**

have you ever registered your thm token with a different discord account?

Yup , but I delete the account

is it possible at all to DM me from that account? Failing that, please DM me the THM token

The machine in Mobile Malware Analysis room is lagging. I tried both RDP and Attackbox, both ways it's the same. Pls help...

is there a way to reset all rooms for an account ?

i did some rooms but never took notes... so i want to start from scratch

but not create an account

No, you'll need to do it single room at a time.

That makes it harder 😂

it's part of the challenge

you could probably speed it up with burp.

You can do it as you redo each room; you will need to manually go into each room anyways, so it isn't that hard ^^

Hey How many of the THM Network contains certificate on completion ?

But then i wont know if i reset the room already once or not , id rather get a clean slate and work from there

Pretty sure it's just Throwback, the others get you badges

The room still marks as completed if you reset it.

You could use the save feature or keep track on a spreadsheet. Or you can create a new account?

Is there a possibility of having a certificate name reset? I generated a certificate some time ago with the wrong name and would like to use my government name there if possible.

There isn't.

You can't regen certs to change name.

Was hoping it might've been possible with the assistance of a staff member, welp, guess it is what it is.

Could always use photoshop

Well, don't really like that "solution". Just gonna have to deal with the different name there.

anyone having issues w/ THM boxes today? i've been disconnected / having to start over several times

Need a bit of vpn related assistance. Using OpenVPN on Win 11 Home. Installed the config file, started VPN, Access page indicates I am conntected and i the ip info with the IP address is shown in my cmd-> ipconfig list. When I try to open the target box in a browser, nothing happens. My postman queries, through & without burp, have been timing out. Not sure what troubleshooting step to take next. Any thoughts/suggestions?

Hi I have a ticket open from a couple days ago and was wondering how long it usually takes for someone to respond?

due to many people messaging support the wait time is sadly bumped up to around 5 days now

@glacial hound Dear, my REDEEM code is about to expire and I have received no reponse yet!

Hi Everyone, The tasks and learning material of any room is not appearing on the screen.

I am also having the same issue

Hi guys.Who should I get contact with if i have an account Issue.

!email

These guys.

I had send the email 5 days ago and raise the ticket through website But no one respond

Please be patient, the current wait time is 5-6 days.

DM me the referral code

Hello, All connection to web rooms time out even after running the scripts and other help options listed in chat are there any know fixes to this issue?

check your DM

hey i have a question to ask, its told that there are 10 columns, when there is only 2 ?

I think it refers to this part.

oh alright, i just watched a video and found this and thought it was something like this lol

I'm sure that's rows.

oh god, i messed stuff up. im sorry

also the box kinda stopped working

any way to restart it without terminating

No, you'll need to terminate it.

okay i have a question

"add 1 hour"

is something being cut to add an hour into?

No, it will add an hour, but it can be bugged and you'll need to refresh to see the "true" time.

oh i see

because i mistakenly pressed it and it added an hour

thanks

3 weeks since I sent an email to Tryhackme support and haven't received a response.

It's very rare support misses an E-mail.

Have you tried sending a follow up?

Multiple times. They sent an email saying they would respond about a 2 weeks ago, but they never followed up.

All I can suggest is another follow up

Well, I'm posting here in hopes someone from THM/support will notice. @bronze vale said he'd follow up. 🤷‍♂️

DM me your email Address please

I'll DM it to you again.

Alright, please be nice :)

It seems that there are issues with the GUI versions of OpenVPN connecting to the TryHackMe infrastructure.

MacOS/ Linux

Please ensure you are not using the OpenVPN GUI or Network Manager.
Use the command-line interface to connect to the OpenVPN service.

If you are on MacOS, you may need to use Homebrew to install OpenVPN; brew install openvpn

If you are on Linux, please use your default package manager. For Ubuntu it is apt, sudo apt install openvpn.

Windows

If you are on Windows, you unfortunately do not have any options on Windows itself. All I can suggest is:

• Install a Linux Virtual Machine and connect that way
• Use the AttackBox

WSL/2

Support usually will not help with WSL as it is known for having routing issues. We will ask you to install a Virtual Machine properly through VMware or Virtual Box.

Although it does work, it is not something support can advise on and is not recommended for beginners.

We also cannot say whether the issue with WSL is related to the current OpenVPN problems or just normal WSL routing issues.

Hi, I never received my streak after 3 rooms

plz plz plz plz plz plz plz plz plz plz plz plz plz plz

make the directory "tools" in this room https://tryhackme.com/room/basicdynamicanalysis

availeble to community

Please use the appropriate channels^
#feedback-and-ideas

thanks

Gave +1 Rep to @bronze vale

Question: I am trying to start a machine butting getting the rror that I can only have three machines open. I don't see any open machines? How do I check or close open machines?

https://tryhackme.com/api/vm/running

Use this API link. 🙂

@weary spindle Thanks, that worked.

Gave +1 Rep to @weary spindle

Guys how do I renew my current subscription with the older THM pricing

im a subscriber atm and it ends in 2 months

I want to get another year with the old price

Hi. I tried to disable 2FA on the site but when i press ''yes i'm sure'' button it doesn't do anything.

#1092490706385383524 message

I've finished the Web Fundamentals path. Can anyone help me choose my next path? I'm leaning towards Jr Pen Tester cause there's a lot of overlap with Web Fundamentals, or Red Teaming cause I like to pretend I'm the villain. I could complete more beginner stuff, but much of that stuff I already know. Google couldn't help me with this one.

hi, i just signed up but every room i enter/join i cant see the questions. what should i do?

my machines get no ip, it says shown in 00s and nothing

and if i refresh the page

it's locked

like i can't terminate it, i don't see it running but it says it is

i cant see the questiions

my room have problem as well

anyone can help?

Ctrl + Shift + R is hard refresh. might help

darn it site breaks on a friday evening of all the times it could break

doesn't work

:/

it's not from my pov i think

same here doesnt work

hmm.. try log out of site. clear cookies and cash and log in back

the frontend just doesn't show me the thing saying the machine is running

ctrl + F5???

nope

it's not from my pov lol

i already tried everything

did you try another browser might?

when i open the room with our login i can see the questions when i login questions are gone

yes chrome and brave

that is strange.

last case thing. try restart pc 🙂

site broke

sike

also, i deleted my previous account

the one my discord is linked with actually

to make another one

how do i unlink and relink ?

would be by asking a moderator

I'm having trouble opening labs via my Kali VM. It shows I'm connected on the access page and ifconfig shows that the IP of tun1 matches the internal virtual IP address. When I run sudo openvpn [filename] it stops at a process called Protocol options: explicit-exit-notify 3 - is this normal? Any help would be appreciated.

that shouldn't matter - if it's not returning to terminal when you run the command, it shouldn't be erroring out

what's the response when you run curl http://10.10.10.10/whoami ?

When I run that it doesn't return a response

after sometime, it returned the IP that matches the internal virtual IP

is it normal to take so long?

It appears that I'm able to connect to labs if I don't receive a 'time-out' message, but the loading time is very slow compared to when I access it on my normal computer browser.

Also, is it possible to access the labs outside THM browser?

you can use local Kali Linux. if that is what you refer to

k

Still struggling to connect to labs and the 'access' page shows I'm connected.

if you use THM browser kali linux thne you do not need to use .ovpn file to connect. if i understand you issue. .ovpn file is used when you using local kali linux

!docs verify

so that you can send pics

I'd like to use a local kali linux machine since it seems it'll be easier for some labs/tasks.

if you use local kali then you need .ovpn file that you download from thm site. if you use in browser kali that thm provide as attacking machine then you don't

I'm aware. I'm connected via ovpn atm, but the labs are loading in my local machine and/or they load very slowly.

you sub or using free? subs have a bit more resources

Sub

you using kali linux in VM locally ?

yup

how much resources you did give to that VM?

8 gb ram, enough space

8gb to kali VM? and how much is you host machine ?

It's not a cpu, ram issue. The connection to the labs via my local kali machine is what's wrong. If I open the labs in THM's attack box it's fine.

!vpnscript

might help

ok

just a quick question to consider.. does your country block vpn:s as that would make it impossible to use your own local kali instance

no

Can someone please help me connect OPENVPN with tryhackme

Did you download the file yet ?

From thm ?

What error do you have?

Yes i downloaded it on my VM

Wait I'll show you

You need to verify first, to send a screenshot.

!docs verify

Can you pls help

#site-support please help

try this

thank you

it worked 🙂

Hey, so I’m doing the walking an application room and the acme it support site is broken 🤔 unless I’m doing something wrong. Can anyone help me with this please

The site is lab_web_url.p.thmlabs.com

You need to start the machine in task one

I’ve tried that. I’ve been having the issue since Thursday. I just tried it again and no luck still

The IP of the machine will populate when you start the machine, it's not lab_web_url

I'm doing vulnversity room and trying to acces the ip adress from the room and seems down, i'm connected to openvpn

You don't get anything like this?

Thank you… it just work when I realized what you said. Thank you

Gave +1 Rep to @dense bramble

You're welcome, glad it's working now

What's the response when you run curl http://10.10.10.10/whoami in your terminal?

An ip

What's the IP of the website, I'll try to see if it's up on my side

10.10.252.92

@dense bramble that's the generated website

website is up on my side

have you entered the port as well?

Ou... thanks

all good now?

Yes

Hello, I have a problem with displaying whole application. After entering the room there are no tasks displayed. Below the graph there is no content. I try with a lot of browsers' types, on Windows or Linux, with 2 internet providers, and there is the same.

Can someone explain how do i fix the last two lines

I don't think you need to?

but you can try to regen?

I tried other vpn files

This issue seems new and I think because of this, I m not being able to 'get' files from ftp servers

stuck on 0 for forever

try and type passive

same case

Hi i need help reset a room

i think i broke it

Terminate the box.

how do i do that?

im doing holo-network

or holo

i cant rly terminate it

You'll need to vote to reset it then.

Hey someone please tell me if throwback is more like a walkthru or attack and flag kind of lab ??

It can be both

You dont need to read the stuff and just pwn all of it straight

Good morning!

I'm having trouble with the vpn connection when using my phone.

I have nethunter installed and would like to complete some ctfs using it. I have downloaded the same exact vpn file that I use on my laptop to connect to tryhackme, and the connection seems to work, even my connection status is green and active on tryhackme.

But in reality, I can't access any machine on the network

I tried to access http://10.10.10.10 and it didn't work also

Would really appreciate if anybody could help

Not sure if VPN problems such as that are within scope

How come?

Where can i find a solution to such an issue?

Try running this script in your NetHunter

!vpnscript

Sorry but don't know what you're talking about. What script is this? Simply running that as a command doesn't work

Are you referring to the script below?

Tryhackme troubleshooting script?

If so I will run it, just give me a min

Yes, that is what I am referring to

How can I resolve this?

[+] Stable internet connection
[+] OpenVPN is installed
[-] tun0 interface does not exist
Would you like the script to attempt a connection automatically (Y/n)? y
[+] Connecting....
[Warning!] Connection process is taking longer than expected to complete
[-] Failed to connect
Failure to connect to the VPN can usually be solved by one of the following options:
-Regenerating your OpenVPN config on the TryHackMe access page (https://tryhackme.com/access)
-Switching servers, then regenerating your OpenVPN config
-Checking your system time. If your system time is incorrect then this can cause issues with the authentication process
If none of these methods work, please ask for further assistance in the TryHackMe Discord server, subreddit or forums.
[-] Exiting

i got my results back, sorry for the delay:

[+] Connecting....
[+] Connection Process completed successfully!
[+] tun0 IP is in the correct range
[+] Only one instance of OpenVPN is running
[+] Confirming connectivity
[-] MTU value failed at 1000, aborting MTU check
[-] Something went wrong -- please ask for further assistance in the TryHackMe Discord server, subreddit, or forum

?????

That wasn't for you. I was continuing my conversation for support to my issue

Set MTU value to 1200 or 1500

Try changing your server to a different region and download new configuration. And make sure to check there is no other vpn running background. By using
ps aux | grep ovpn and run sudo killall ovpn and try to reconnect again.

That it says it failed at 1000 so 1200 would be too high

Oh okay 👍. Got it

true, i tried changing it to that value but it didnt work either

the way I found to change it is by adding the line: "mssfix 1160" to my configuration file

is that correct?

Set it on the adapter maybe?
Can you show the output from the openvpn command where you're connecting/connected please?

of course:

2023-06-18 13:36:47 Note: --cipher is not set. OpenVPN versions before 2.5 defaulted to BF-CBC as fallback when cipher negotiation failed in this case. If you need this fallback please add '--data-ciphers-fallback BF-CBC' to your configuration and/or add BF-CBC to --data-ciphers.
2023-06-18 13:36:47 Note: cipher 'AES-256-CBC' in --data-ciphers is not supported by ovpn-dco, disabling data channel offload.
2023-06-18 13:36:47 OpenVPN 2.6.3 aarch64-unknown-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] [DCO]
2023-06-18 13:36:47 library versions: OpenSSL 3.0.9 30 May 2023, LZO 2.10
2023-06-18 13:36:47 DCO version: N/A
2023-06-18 13:36:47 TCP/UDP: Preserving recently used remote address: [AF_INET]63.35.110.70:1194
2023-06-18 13:36:47 Socket Buffers: R=[229376->229376] S=[229376->229376]
2023-06-18 13:36:47 UDPv4 link local: (not bound)

2023-06-18 13:36:47 UDPv4 link remote: [AF_INET]63.35.110.70:1194
2023-06-18 13:36:48 TLS: Initial packet from [AF_INET]63.35.110.70:1194, sid=4dec8378 9292906f
2023-06-18 13:36:48 VERIFY OK: depth=1, CN=ChangeMe
2023-06-18 13:36:48 VERIFY KU OK
2023-06-18 13:36:48 Validating certificate extended key usage
2023-06-18 13:36:48 ++ Certificate has EKU (str) TLS Web Server Authentication, expects TLS Web Server Authentication
2023-06-18 13:36:48 VERIFY EKU OK
2023-06-18 13:36:48 VERIFY OK: depth=0, CN=server
2023-06-18 13:36:48 Control Channel: TLSv1.3, cipher TLSv1.3 TLS_AES_256_GCM_SHA384, peer certificate: 2048 bit RSA, signature: RSA-SHA256
2023-06-18 13:36:48 [server] Peer Connection Initiated with [AF_INET]63.35.110.70:1194
2023-06-18 13:36:48 TLS: move_session: dest=TM_ACTIVE src=TM_INITIAL reinit_src=1
2023-06-18 13:36:48 TLS: tls_multi_process: initial untrusted session promoted to trusted
2023-06-18 13:36:49 SENT CONTROL [server]: 'PUSH_REQUEST' (status=1)
2023-06-18 13:36:49 PUSH: Received control message: 'PUSH_REPLY,route 10.10.0.0 255.255.0.0,route-metric 1000,route-gateway 10.14.0.1,topology subnet,ping 5,ping-restart 120,ifconfig 10.14.44.236 255.255.128.0,peer-id 31'
2023-06-18 13:36:49 OPTIONS IMPORT: --ifconfig/up options modified
2023-06-18 13:36:49 OPTIONS IMPORT: route options modified

2023-06-18 13:36:49 OPTIONS IMPORT: route-related options modified
2023-06-18 13:36:49 Using peer cipher 'AES-256-CBC'
2023-06-18 13:36:49 net_route_v4_best_gw query: dst 0.0.0.0
2023-06-18 13:36:49 net_route_v4_best_gw result: via 0.0.0.0 dev
2023-06-18 13:36:49 ROUTE_GATEWAY 0.0.0.0
2023-06-18 13:36:49 TUN/TAP device tun0 opened
2023-06-18 13:36:49 net_iface_mtu_set: mtu 1200 for tun0
2023-06-18 13:36:49 net_iface_up: set tun0 up
2023-06-18 13:36:49 net_addr_v4_add: 10.14.44.236/17 dev tun0
2023-06-18 13:36:49 net_route_v4_add: 10.10.0.0/16 via 10.14.0.1 dev [NULL] table 0 metric 1000
2023-06-18 13:36:49 Initialization Sequence Completed
2023-06-18 13:36:49 Data Channel: cipher 'AES-256-CBC', auth 'SHA512', peer-id: 31
2023-06-18 13:36:49 Timers: ping 5, ping-restart 120
2023-06-18 13:36:49 Protocol options: explicit-exit-notify 3

!docs verify

If you follow those steps it'll let you post images

oh, sorry, i sent you the actual text

I'll follow those steps the next time

No that's fine, it just may help in future

I can't see anything pbviously wrong aside from the MTU on tun0 which apparently fails at below 1000
Are you connected on another device also?

nope... I also tried to ping google using "ping -M do -s 1200 -c 1 google.com" and I received a packet back successfully

so it seems an mtu of 1200 would work fine

don't know why its failing

The MTU it has a problem with is the tun0 MTU

Could it be a server side issue possibly?

I have an issue

when I hit 'OK' the font does not change ever

even I hit Apply also.

hey is it possible to unlink my discord from my old tryhackme account and connect to my new one?

[0x36ft] <--- old user
[sil324] <--- new user

@eager fulcrum

is there any way I can change the name on an already generated certificate?

no, once it's generated, it cannot be changed, you could edit it with an image editor if it's important

I get what this is asking but I can’t help but thinking “error certificate mismatch” after a change like this lol

wrong kind of certificates lol

That would be funny/silly if there was a CA for THM course certificates who validated valid hashes vs complete courses

hey everyone

i was tryong to verify myself with !verify <my-token> , but i am getting an error that says Sorry this token is already used by someone.

what can i do for it ?

Do you have a second discord account?

ah yes.

There you go.

You'll need to ask a mod to remove it from your old account.

okay

can i ping mod or what do i do

Probably you can but email support ticket might be better

!email

Emailing support over this would be not be a good idea.

Website issues are done over support.

Discord issues are done on Discord.

Yes, you can ping a mod.

Or if you see one in chat ask them.

Just done DM about it.

Good to know, I was checking an old answer by a mod and they mentioned that it can be solved by email support

@crystal marlin hello there

I need help : ) , sry for ping

DM me your token please

Okay

@placid mango

anyone online?

trying to complete the task of inspecting webpage source . i fired up the virtual machine but when i try to goto the website that the course listed (https://10-10-80-64.p.thmlabs.com) it times out... in fact i cant goto any site

its like theres no internet connection on the virtual machine

If you're on the attackbox just use 10.10.80.64

Free users dont have an external network connection.

ok but what do u mean use 10.10.80.64 are you saying open that IP in the browser?

[solved]
Hi. I started getting this error when trying to connect via OpenVPN:

2023-06-19 20:23:43 OPTIONS ERROR: failed to negotiate cipher with server.  Add the server's cipher ('AES-256-CBC') to --data-ciphers (currently 'AES-256-GCM:AES-128-GCM:CHACHA20-POLY1305') if you want to connect to this server.

Should I just edit the .ovpn file and add the missing cipher? Just asking to make sure everything's fine on the server side

I just noticed there's cipher AES-256-CBC in the .ovpn file. I wonder what's wrong then

sorry man ium not sure

found this THM forum thread with a fix:
https://tryhackme.com/forum/thread/62bad83cf1848200429736f3
tldr: change cipher AES-256-CBC to data-ciphers AES-256-CBC

i cant get any of the pages from the "walking an application" module to load. im connecting using VPN which was working before. but all the sudden ii cant connect to any page now. i looked back on the dashboard and theres a new URL listed (which says is updated every 2 mins) so i even tried that https://lab_web_url.p.thmlabs.com/ still not working so i tried to generate a new .ovpn file and connecte to a new vpn session.... doesnt seem to help.... any ideas?

u pdate i figured it out. i let the virtual machine session expire. ( i didnt realize you needed to keep virtual machine running if connectuing to vpn.) makes sense now

I have been trying to reach you through my different mail accounts for 2 weeks. Although I forgot my password, your site does not send me an e-mail about it and I cannot reset my password. Despite all this, my money was taken yesterday because I was premium from my debit card. If you don't contact me for a while, I want to close my account.Please help me!

What's your username?

ARNING: Compression for receiving enabled. Compression has been used in the past to break encryption. Sent packets are not compressed unless "allow-compression yes" is also set.
2023-06-19 21:10:47 Note: --cipher is not set. OpenVPN versions before 2.5 defaulted to BF-CBC as fallback when cipher negotiation failed in this case. If you need this fallback please add '--data-ciphers-fallback BF-CBC' to your configuration and/or add BF-CBC to --data-ciphers.
help me

https://tryhackme.com/forum/thread/62bc5fb1fcafa700618f25f0

Google

Trying to access breachad but

Can't access it from the attack box either

have you joined the network?

yeah

the room you mean?

Try leaving the room, re entering amd refreshnig the network VPN

also why do I only have 3 days of access?

wilco

i'll do AD basics first, see if that helps

I have the same problem as @glacial bone

The DC IP is not reachable from AttackBox

@pastel tinsel : What do i do? I've left and rejoined multiple times

Please make sure you have set up what it says in the room

I created an attack box and it says just ping the DCs IP. That is not reachable from the attack box

The attack box does not seem to have the network adapter 'breachad'

How do I refresh the network VPN?

Ctrl and F5.

That wasn't for you.

However are you on a VM or the attackbox?

I created an attackbox

Is confusing me slightly.

I;ve tried both

AttackBox cannot connect to DC IP

If you used the VPN way.

You might need to edit your VPN

nano the vpn.

change

dev breachad to dev tun

If you're using a VM.

Attackbox

cat /etc/resolv.conf and see if the nameserver for THMDC is at the top.

I'm not able to download the VPN package for the room
In the access page, I don't get the breached VPN openvpn

i don't understand something on tryhackme
i dowload the vpn
so i have access to tryhackme on my kali linux VM

Do you have two discord accounts?

you need to use the CLI

!vpn

nameserver 127.0.0.53
options edns0

nope

but how can i recover the files on the the attack machine?

like all the password files?

Recover?

no but have access to

Why do you need that? to SSH in?

how can i do the activities if i have not the file to?

sorry its maybe stupid but i am lost ahaha

Some of the target machines don't need extra resources, if you do need resources, you can open an attackbox and set up a python server or scp a file to your VM over the VPN.

This seems like a bug, I'll let staff know.

ok i'm lost ahaha

h

Ok, lol.

What room are you doing?

You get kicked out after x amount of days, people don't leave rooms and if you're in the network rooms you're using up resources.

ohh makes sense

cheers

Also there seems to be an issue with downloading the VPN for brached, I've let staff know.

so, i want to practice on my lab so i download the vpn but for exemple if i want to do the hydra challenge i need to have rokyou.txt but on my lab i have not this file, but this file is on the attackbox so how can i do because without this i can not complete the challenge?

https://github.com/brannondorsey/naive-hashcat/releases/download/data/rockyou.txt

mhhh ok thx

Are you on the attackbox trying to do breachad?

yes

started the attack box from the room

it's interface is called tun0

I'll check again in a bit got an interview

will let you know though, thanks

Hey, I want to do the Active Directory Networks from my VM, however only 2 openvpn files are available for me to download. Is there any way to solve this issue?

The AttackBox also only lists the same 2 Networks

Hey! What network are you trying to do specifically? 🙂

Enumerating AD, and I have access to Lateral Movement and Pivoting, as well as Breaching AD

Ah okay. What happens if you were to leave and re-join the room (Using the grey cog at the top-right of the room -> leave room and trying again)?

It still seems to be the same

I left both of the once I had access to as well

Understood. Before I forward this on internally:

1. Just to double-check, it is only Enumerating AD that isn't showing on /access? or is it Lateral Movement & Breaching AD as well?
2. Can you share the network map (or an ip address of a machine) of the rooms that aren't providing a VPN file?

1. Any Network doesn't show up besides Breaching AD and Lateral Movement
2. The DC? 10.200.89.101

Alright. Thanks for your help. I'll forward this onto the appropriate people internally 🙂

Thank you

Would you mind sharing your THM username/profile please? You can DM me if you'd prefer to keep it private

Numina is my username

https://tryhackme.com/p/Numina ? 🙂

Yes

Alright! Thank you!

hey there, would you mind sharing your THM username/profile with me so I can forward this internally? You can DM me if you'd prefer to keep it private

Hello I am new here so if I make a mistake with rules please dont ban me, just tell me I am not following them. That being said, I have an issue with foxyproxy on the attackbox's firefox, I active burp proxy for intercept on burpsuite but the second I switch on the proxy webpages no longer load, in any way shape or form, not external pages or the ones linked to the machine, I have sent 6 tickets on THMs messenger and they insist its a Pebcak error, I am at a loss because I cant do any rooms that require burpsuite, which is a fair number of them. Please advise this has been going on a week now

Hey 🙂 no one is going to ban you for this don't worry (if it were wrong we'd just point you in the right direction). Okay, so, the problem here is that you've told Firefox on the AB to use Burp Suite as the proxy via Foxyproxy. You need to manually allow every single request in Burp Suite's interceptor once you have enabled this.

My advice would be either adding whitelists, or turning the interceptor on/off when you want to capture very specific requests (i.e. a POST to a login form)

For example, when I'm doinga room, I'd tell Foxyproxy to use Burp Suite, I'd navigate around the site of the MACHINE_IP with interceptor off. Once I come across something interesting such as a login form or w/e I'd turn interceptor on then and then start analysing the requests

When inteceptor is on, you have to manually allow every single request to continue - this could be loading a font, image, page, styling, etc. So it's best to only intercept when you actually need to. If that makes sense?

Thank you I see it now, I will play arround with whitelisting to make my life easier.

Yup 🙂 you can do that. Or just only turn on Burp Suite's Interceptor mode / Only tell foxyproxy to use Burp Suite when you actually want to inspect a request 🙂

Can you leave and re-join the room please? This should be resolved now cc @weary spindle @pastel tinsel

got access now!

Works 👍

hi
I may have misunderstood something, but how do I connect to a running machine in a room? Normally by clicking on Start machine I could see the running machine immediately on the right side of the screen, or I could click on Split view at the top of the page. However, in the Investigating with ELK 101 room (https://tryhackme.com/room/investigatingwithelk101) I get the IP of the machine when I start up, the room itself has the login/password to connect, but how exactly do I access the machine?

Hello i have a problem connecting on a room i need help please

im connected but i cant ping the machine

How are you connected to OpenVPN @patent lily

via my kali linux machine

openvpn

But how?

What are you using?

openvpn eu3

Nono, I mean, I don't see OpenVPN in your terminal

!multivpn

Ignore step 1 & 2

Make sure not to close the terminal after running sudo openvpn <path-to-config>, you need to keep it open for as long as you are using tryhackme

on top of that do not use & or background the process as it may kill your connection

still not working even with killall

Send a screenshot of your OpenVPN output?

You backgrounded the application

^

Furthermore, you didn't kill the OpenVPN processes, there are now four* running

sudo killall openvpn

like this ?

Yes

Now type sudo openvpn <config>

Afterwards, keep the terminal running, right click -> new tab

Send a screenshot of your openvpn output after running the command so I can check

i think killall is not working

when i ifconfig i have 4 connections

even if i let the terminal on

try sudo pkill openvpn

same thing

omg

wdym same thing?

Kill the processes manually

pgrep openvpn
sudo kill <PID>

sorry whats the command to kill ?

^

y but when im sudo kill it is not working as u can see

sudo kill -9 <PID>

done

okay now make sure not to background your openvpn process.
Once finished with THM, just CTRL+c on the terminal that is running openvpn

Hello there, I have a quick question about subscription types. I am a student and I am able to get my student discount right now. I want to take the annual subs to get the discount but I want to change my email address in couple weeks too. Is it possible for me to get student discount then change email address from my educational one to personal one?

ty very much it is working now

Gave +1 Rep to @bronze vale

https://help.tryhackme.com/en/articles/6494960-student-discount

np, happy hacking

Thank you for the response but this article does not exactly answer my question, or am I missing something?

Gave +1 Rep to @bronze vale

What should I do if I do not have a student email or if my email address is not recognised?

I have an email address and it is recognised. I am asking, after getting the annual sub, what happens if I change my email address? Can I continue as a educational for that one year (already paid)

Oh, it might push you off the discount on your renewal date

Renewal date would be one year later if I subscribe now, right? Sorry for being an edge case but my institution is going to change my email address in couple months to another one because of masters programs. Thats why I am trying to do this kind of thing.

Yes, you won't be charged more if you change your email address after paying for your subscription

Thank you Jason

Gave +1 Rep to @bronze vale

Thank you!

Gave +1 Rep to @pastel tinsel

no, thank you!

Gave +1 Rep to @zealous yoke

cesevval

hello! i can't access (dvwa room) through vpn

Hi,
I was wondering if it was possible to get a 100% discount on the site because I am a university student and I do not work yet. I live in Syria and the living and economic situation is very bad, in addition to the fact that there are no electronic payment methods at all.
I hope to get this discount because I have confidence that I will benefit greatly from it.

Question, I had to delete my old discord name due to my email addy not being able to be recovered so I created a new one. Trying to verify with my discord token in my thm profile but it's already in use. Is there a way to remove it from my old username(discord) and add it to this new one?

you'll need to ping a mod.

figured as much, I appreicate it

@torn citrus You able to help with this? or someone from thm staff?

how do i connect vm on ma wlan ?

Moderators are not employees, please see #rules

I don't see what you are trying to get at here. I have read the rules, just following what "scrubz" said as I was unsure

without any insight, im going to take a wild guess here and make an assumption you want me to ping THM staff?

What Jabba meant is that THM staff can't help with Discord admin tasks (unless they are also a mod ) 🙂

Appreciate the clarification ole Jabba being short lol

In that case, would you or another tryhackme staff be able to associate my discord token with my new name. Bot won’t let me do it

Staff can't (cannot) help :p

Only mods can

But some mods are also staff, not me though

the seems backwards, I asked for help from a mod. Jabba made it sound like mos(discord mods) are not the THM staff

think we got each other confused for a second

so im assuming I would need some assistance from someone who is THM staff (for the site)

He was explaining that staff can't help because of your second question "or someone from thm staff?"

Still not, discord mods can help you.

roger that

Sorry for the confusion

nah no worries, I get what your saying. just seemed like jabba was pushing me towards thm staff since I already pinged a mod and that was clearly not correct. You are saying go to mod not thm staff lol

so I await in limbo

foo000rreva

im missing some of the icons on the site

Hello,I have created tickets to change username with no response for days and tried to create multiple tickets but to no avail. Can anything be done so the username on certificate appears as I want it to be?

once a certificate has been generated, it can no longer be changed, as for changing your username - as far as I'm aware, wait time for email support is currently 5-6 days, they will get to your ticket, they're just swamped at the moment

where can I get the email?

!email

Thank you sir

Gave +1 Rep to @dense bramble

Hi, creating multiple tickets and/or sending emails won't help speed things up. Each time you send another email, our ticketing system will bump you to the end of the queue.
We will get back to you eventually, thanks for your patience 🙂

Gave +1 Rep to @tired adder

DM me your token please

I'm working on the breachingad room but I can't connect to the network and don't get an openvpn configuration file. I get the message on the access page 'you don't have access to any networks', while the room page says '3 days left'.
Any help?
Kind regards.

Leave and rejoin the room please

I have the same issue as YeTiKroPs, my previous account has been deleted however my current token is still in use. Can I activate it again on this account?

Ping a mod

||ping Jabba ||

I'm having issue on connecting to tryhackme with ssh.

When I try then I get "tryhackme@10.2.42.23: Permission denied (publickey,password)." message at the end.

Which machine are you trying to ssh into ?

Please post screenshots, I'm on mobile and can't help troubleshoot

maybe password would be "tryhackme" 😉

Which room are you trying to ssh in to?

Because rooms start with 10.10.xxx.xxx for their ip.

room --> https://tryhackme.com/room/networkservices2

Which task?

I tried it but it didn't work.

understanding NFS

You don't need to ssh in to that machine.

But can you take a screenshot of the active machine information?

you mean attackbox?

I think, you should use the attack-machine

No.

You need to start the machine with the green start machine button.

They're on their vm.

With that note, are you on the vpn?

yes

OK

On Task 2 (Understanding NFS), you don't need to ssh any attackbox

You should see this at the top when you press the green start machine button

yes

What's the ip?

can you click on "?"

then you could get attackbox login and pass to connect to

That's not the attackbox box information.

Sorry 😉

With that task, follow along with the room.

Use the ip on the red box

10.10.36.100

ok