#site-support

Writing a script with selenium

hi when i click on "join room" the site redirect me to https://tryhackme.com/r/rooms any help to join the room

What room? It may be a room that you do not have access too, i.e. either a private room or maybe a sub only room if you don't have a sub

https://tryhackme.com/room/adenumeration

That room requires a 7 day streak if you are not subscribed

ah ok thank you

Gave +1 Rep to @gleaming flume

Hello, who can I contact if I used wrong payment method for a year subscription. My work is paying for it, but I accidentally ran it on my PayPal

@alpine lodge Hello how can i get that work?

Hey there. I just submitted an email to support

I just used wrong payment. Then found out I can’t do the sub until oct 1 for new quarter.

Just need to cancel payment and sub, the. Start it with company card on the 1st

My mistake

hello, when I try to connect via openvpn I get this error

wait I can't send an image

You need to verify for that

!docs verify

Well as I said when I try to connect to openvpn I get this error

my openvpn version is 2.6.6

update you os and might regenerate cert file

Which cert?

certificate is borked. Change VPN servers, regenerate cert, wait a few minutes before downloading

sorry for the late response, and no I haven't, could give it a shot whenever I can

Is there a way I can use dark mode on website???

darkreader i guess

Darkreader right now, is the only way.

Oksy

for some reason practice part stopped loading for me

tried with different browser

same result

not loading

@weary spindle my saviour

Ctrl and F5?

did it

Tried with safari and chrome not working

Incognito is working tho

But hard resetting the page should be same with incognito aint it?

Try clearing cache and cookies?

Okay it worked after cleaning everything from last hour

I thought I didn't need it since I hard resetted the page and nothing happened

Hi, I'm not sure this is the right area to ask but just looking for some insight 🙂 I've designed a room and uploaded the Windows VM, but I've realized that the room only makes the IP available so that you can attack it with the Parrot VM. I need the Windows VM to be loaded whenever the room starts (instead of the attack VM), so that users can access the learning material on the Win machine. Is that possible?

I've thought about install rdp on the windows machine, but cant unless I rebuild it to use windows pro

For what, exactly?

same here also facing issues with openvpn.

cannot connect

https://lab_web_url.p.thmlabs.com/ gives a gateway error

You need to start the machine.

I want to download task files into the vm . How to do that?

I am not getting a link, otherwise i could have simply used wget

What files?

Hello, I would like your help. I have sent 3 emails to support@tryhackme.com, but no reply.

I believe response time can be around a week. Also if you sent multiple emails you automatically get sent to the back of the queue, so just be patient

Well, I am gonna wait then. Thanks @gleaming flume

Gave +1 Rep to @gleaming flume

Guys
How do I get the "SECURITY WARRIOR" thing off me 😂

Staff will remove it after the event.

This sucks so bad

Every time I need to get a new practice

I have to delete cookies cache everything

Like can't just a web page work?

and same on safari as well

hi, I need help with open vpn

@north compass what kind of help?

i cant connect to the vpn, i have tryed the replaceing the cipher

What system are you on?

kali, virtualbox

Which server are you using?

us-west-regular-1

Can you verify and show a screenshot?

!docs verify

What does it say when you download the config file from tryhackme and run sudo openvpn --config urconfigfile.ovpn ?

so i am stuck at explicit-exit-notify 3

I am not a master in any means but I run it with openvpn --config I am not sure If it's same if you run openvpn urconfig.ovpn

Maybe try --config before the file

whats openvpn --version ?

Initialization Sequence Completed means it's connected (you can ignore the 3 lines after that) . What's not working exactly?

So it stuck in explicit-exit-notify 3

Yup, at this stage, you are connected until you type Ctrl+C, or close the terminal. You can open a new window/terminal to access the machines.

Oh

hello

#site-support

Hello, I'm now level 0xD. How can I access the advanced general chat ?

You need to verify your account.

!docs verify

hey, i am facing trouble with my vpn files
i am unable to connect

Thank you. I thought I already did it when I joined the server but I didn't.

Gave +1 Rep to @weary spindle

But even verified I still don't have access to advanced general chat

can you post a screenshot of the error please?

It's because you have the security warrior role.

How do I change it ?

I can't claim the GOD role

You can't, you need to wait until staff pull the role.

OK thanks

do you know the date ?

After the event, which is today.

So could be this weekend.

Hey yall, are yall having problems with the attack boxes? It disconnects me every minute or less. so im just doing it on my own kali vm. I'm doing a bruteforce discovery for usernames, the rockyou wordlist on kali is just huge and the one on the attackboxes that are meant for pentesting their own systems are smaller. Can't find the wordlists they use online, and the ones on kali take forever cause they're so large. Thanks in advance

it is the original rockyou.txt ... it is part of seclists

.. I'm dumb, didn't realize in the rockyou folder that I had to go deeper in. For some reason I just thought those folders were the wordlists. Thank you

Gave +1 Rep to @plush bay

????

/usr/share/seclists/Password/Leaked-Databases/rockyou.txt

the 140MB file

on the room i'm in it doesn't use the rockyou file. I was wanting to use the files it was wanting me to use, but the one I have in kali is the rockyou file. I was wanting the stuff they were using but in the rockyou file I can just search through for a while and find something

oooh

most wordlists are included in seclists

which is easy to install on kali

sudo apt update && sudo apt upgrade && sudo apt install seclists on kali

this will update the package database then upgrade the system then finally install seclists

oh sick, thanks :)

Gave +1 Rep to @plush bay

asssuming you are using kali linux

yup

after that you will find the wordlists in /usr/share/seclists

if you are lacking something after that you probably need specialised tools

like the ones discussed in crack the hash level 2

Still waiting to hear back on prize from SE event, any ETA on timeline?(amazon gift card)

Hi, I have problems with the room **linuxfundamentalspart3, Task4: **

**-> Downloading Files **
wget https://assets.tryhackme.com/additional/linux-fundamentals/part3/myfile.txt

I get the error code 403: Forbidden and a Connection timed out.

are you using attackbox or local kali OS?

I use ParrotSec on Proxmox.

ah. so local mchine

Yes

them that link might can't be used as it is like that. you need to use target ip. if you can give me target machine ip i might try

Should i send this in to the chat here?

sure

13.224.68.116:443

uh oh. thats not correct

might be ok to delete it

the ip that you get when you click in task2 on start machine

10.10.182.246

hmm. might be the best to use thm attck box in this tasak as shown in beginning

Ich danke Ihnen vielmals.

i don't speak Klingon but thnaks i guess

Thank you very much. 😄

Gave +1 Rep to @tribal burrow

Are you both students or colleague's?

Then you csnt join a workspace

This acces to networks are for non-premium users right?

Some networks need a sub.

@zealous yoke

Hello everyone, I noticed yesterday the email reminder that today is the last day for actual subscribers to get the subscription for the lower price.

My annual subscription will expire in November and right now on my profile it says that I'm currently being charged 90.00 $

How may I subscribe to another annual plan before tomorrow's price change?

You can’t unfortunately

Damn didn't know that

How much is it going to be?

14$ already high for me

@broken bear this is what its showing

looks like you are connected, please open another terminal and run the command curl http://10.10.10.10/whoami

@broken bear

@broken bear i have tried it with every vpn file the result is the same

Please do what I asked.

ok

And, can you show the result of ip a s as well please

didnt quite get it

@broken bear

you should be connected. Have you also run the vpn troubleshooting script that is pinned?

@broken bear still not working

How do I revert back to GOD from security warrior?

You can't

You need to wait until site staff pull it.

All right, thanks

hey any idea when the 1337 will be removed N

:soon"

😦

Hi - I'm connecting to OpenVPN - connection works, I get an IP address, curling curl http://10.10.10.10/whoami and getting my IP back. But tryhackme site says I am not connected. Any advice?

That part can be bugged.

If you get an ip back from the curl you're golden.

Trouble is it's not showing me my room's machine IP?

I started a machine, the "show in XX seconds" went down to 00 and just stayed like that. I refreshed and the bar with that just disappeared completely. If I try to run the machine again it says a VM for that room is already running but because I can't see the bar to get the IP or Terminate I'm kind of stuck.

The connection from your vm won't have any effect on that part.

Ah, OK. I figured because it thought I wasn't connected it wasn't showing me anything.

OK opened the room on a different machine and it shows me the IP - bizarre, it's just a default Firefox instance. Thanks for your help.

getting error in browser when connecting to 10.10.x.x (Error response

Error code: 405
Message: Method Not Allowed.
Error code explanation: 405 - Specified method is invalid for this resource.)

which room are you doing???

not all rooms have a web server running and some takes about 5-7 mins to fully load up the web server if they have one

Network Services

which task

Enumerating and Exploring SMB

Exploiting

brb RR break

yuup the target machine for those tasks don't have a website on them

you use nmap and smbclient to handle everything for those two tasks

ok im bk

ok

ok ill try that again, last time I tried using nmap it wouldn't find any host info

but let me run it again

ty

are you supposed to run nmap -A -p- 10.10.x.x ? or some other ip?

sorry im not clear on which ip to use for these tasks.

you hit this button to start the target machine:

then this pops up and you get an ip to attack after around a minute:

after that you scan it with nmap.... most people use sudo nmap -A -p- -T4 10.10.x.x

@wary field ⬆️

thanks!

no problem

ok I put in the command nmap -A -p- 10.10.x.x .........and all it does is display the following "Starting Nmap 7.60 ( https://nmap.org ) at 2023-09-30 23:50 BST" nothing else has happened.

yeah it is running slowly... if you hit any key it will show you how far it has gotten... or hit v to increase verbosity

as you are scanning all 65 535 ports it will take a really long time unless you supply the parametere -T4 or -T5

ok, i was beginning to wonder how long it was going to take. Thanks again.

+rep @plush bay 🙂

Gave +1 Rep to @plush bay

Hey 🙂 I am facing issues while trying to upload a VM

Could someone help me upload it?

hmmm weird

that kernel version and distro version should work according to aws:s documentation

you probably should ping a moderator when one is active to get into #creators-lounge ( creators-lounge ) so you can get help by other room creators and thm staff.... not sure what went wrong here but it looks like it should have worked

Hi. I have a problem with my openvpn
Every time I am connecting it's shows network unreachable sort of thing.
But it's showing me the IP and it shows I am connected on site but unable to access the machine

Is this your first time trying to connect to OpenVPN? Or has it been a long time?
Just in case, have you tried modifying the .ovpn file to make sure it says --cipher set to 'AES-256-CBC' but missing in --data-ciphers (AES-256-GCM:AES-128-GCM:CHACHA20-POLY1305). OpenVPN ignores --cipher for cipher negotiations.

I have an issue, even after connecting to openvpn I am unable to access the box, I can ping it but can't reach or attack it. Please help me fix this issue, I am using EU-VIP1 server

I have been using tryhackme for a long time
But recently from past week I am facing this problem

And I have already modified the settings even though I am facing the problem

Hi, I have now tried again via AttackBox and via the web-based Kali machine.
Unfortunately attempt failed again.
I will contact the support, maybe they can help me.

I'm in the Incident handling with Splunk room and I've started but am unable to see/access the machine in Incident Handling: Scenario. Usually it just shows up in split view or if I scroll to the top it says "show in split view" but it neither did it on its own nor is that option there. So I'm stuck

Hey,
I'm connected to the VPN but it doesnt seem I have network access to the target.

We need context.

What room are you doing?

What are you trying to do?

I'm doing the room Relevant
Spoiler: ||The service SMB is open there, I have opened the folder nt4wrksv then I opened the passwords.txt file and it worked ok. After 5 mins of investigating a bit more, I saw more folders so tried to open them and I didnt have access so i tried to open passwords.txt again and it didnt gave me. tried to ping the target and i get: Request timed out. ||

I think the machine just broke

i terminated it

sounds like something timed out, assuming you didn’t change your approach the second time

OR you may have tripped something, I don’t know the room personally

hey guys need some help

have been using linux for a while

but just stared on try hack me

doing what i know first which is linux fund and when i enter "whoami" in the answer feild for prining the user i am logged in as it is giving me that i am putting in the wrong answer and that i should try it on the machine

nevermind

i am an idiot

read the question wrong

i get this message when i try to connect to an active machine in tryhackme "ssh: connect to host 10.10.164.223 port 22: Connection timed out" i've tried changing mtu values, firewall settings, and using bridged instead of nat in my vm but nothing has worked

i also tried using the attackbox instead of just connecting through the vm and got the same message

Which room is it? There are VMs attached to the room which may not be using the default port 22? Also, you can try playing around with the command such as ssh user@IP or ssh -p XX user@IP.

im new to this so im doing the complete beginner path and am on the nmap section of networking. it was working fine the other day but had to reinstall windows (something unrelated to this) and now i cant connect anymore

Wait... how are you connecting to the THM network?

im using a kali linux vm and i can connect through openvpn fine, it shows tun0 after i connect so i know im connected its when i try to run ssh to the machine that it times out

What task is this? I don't think you use SSH in the nmap room

ngl i kinda just assumed that after connecting to openvpn you then use ssh to connect to tryhackme. either way i just tried it in linux fundamentals where they teach you how to use ssh and its where i first learned it and it gives me the same message

im starting to think its a problem on my end with the network or something but idk

like i said it worked a few days ago perfectly fine but now it doesnt

i hate my life.. ssh wasnt enabled.... its working now

Dose anyone know how to change the contry of your profile?

i'm not able to connect to intro to logs room VM using SSH & RDP. pls help

nvm I regenerated a new VPN file it connects now

Helloo everyone, i have a question, i became really interested in cyber security and i saw people on reddit recommend this website so i thought i'd join here and start this way , now the question would be is the free version of try hack me good (i have been studying css-javascript actively for about 3-4 months if this matters) or at least good enough haha, since i am not 18 yet and cant get full version or maybe i should start with some kind of book, youtube tutorial or something else, this field seems really huge and its not as easy for me to start as it was me when i started learning frontend, thank you for helpp

75-80% of this website is free.

Can your system run a vm?

Is there any way to pop out AttackBox in a new window? I'm running with dual monitors and it'd be helpful to have 2 windows

why it is showing zero progress in burp suite Jr path

i already have the completion certificate

🤔

The module was recently updated meaning it reset progress

oh

There is.. if you look at one of the buttons on the lower leftmost portion of the Attackbox screen, you'll find it.. its an icon of 2 arrows facing each other or something similar.

won't take my answer

Because it is not the right answer? Did you go to shodan.io and search up nginx?

Hi Guys...don't we get a reminder when the streak freeze is about to end?

Hello everyone, friends, before writing to support, please tell me, am I the only one having problems with VPN lately?
I connect to the VPN without any problems, I don't see any errors.
BUT! The machines themselves are unavailable in the tasks of the room.
I can't ping them.

Not all rooms respond to ping requests. What other means have you used to access or check if they are up?

xfreerdp
nmap

Is there an admin I could contact for issues with my account ?

!email

Account can only be discussed over email

okok thanks

my openvpn in kali linux is not working

i download the ovpn file from tryhack.com/access

but when i run it in kali

can you send a screenshot of the problem

just a sec

let me share

here

@pastel tinsel

what does it say if you wait some more?

this

do you have any other vpn running?

on your main machine or how is your network setup?

no, nothing running
kali is on nat network and i use to use this all the time

but i did upgrade the openvpn

maybe that had affected it

what thm vpn server are you using for your config?

There should be a pinned message about this issue

#site-support message

need a help my vpn is not connected any solution ??

I had to do one experiment.
Through a personal VPN (which is in another region), I set up a communication channel for myself.
And after that I connected to the HTM (via openvpn).
Access to the machines appeared.
Consequently, the local provider has some kind of ban on vpn addresses of THM.
Correct me if something is wrong, I think about it.
Previously, everything worked without problems, even through the "bridge", even through NAT.
Without any additional VPNs on virtual machines..🤔

Where do you live?

Doubling up on vpns can have some implications.

I live in Russia
I agree, I don't like the idea of a dual vpn myself, that's why I asked this question.

I do not observe this at other sites for hacking machines.
the only thing was that there was a similar problem with connecting to a vpn to OSCP machines, I also did a vpn for myself, but then something was fixed and it worked as usual.
And then I came across it again.
It would be nice to also find out from the guys who live in my region, how things are going with the connection.

that issue that the pinned message is talking about is different and has been fixed for a good bit

Aren't Russie banning vpn soon?

https://www.cloudwards.net/russian-vpn-ban/

Hey @shrewd trench

you're using EU-reg-3 ?

i don't know what is that

The server you're using when you dropped down the menu

yes by default i have this one

choose another server, regular-3 has some problems

ok thnk it's work

nice, happy hacking!

Ah ok

I got it

Hello guys,
I've logged in after being inactive for a while and I found that my completion of the burp suite room was reset, hence I have to redo it to download my certificate.
is that by design? have they changed the room? or is it a bug?

Brand new module.

It's updated.

ahh I see, thank youu

Hello! Trying to generate a OpenVPN config file for the "Wreath" network, however does not want to generate.

Hello Team! I had reviewed badges under my profile and noticed that the "Intruder Alert" badge did not apply. According to the room, it was completed. Do I need to do anything extra?

Try writing down the answers. Reseting the room and doing it again

That worked! Thank you!

Gave +1 Rep to @weary spindle

hello team, ihello everyone, I'm having a problem in the Buffer Overflow Prep room, when I run xfreerdp /u:admin /p:password /cert:ignore /v:IP-MACHINE /workarea on the kali virtual machine I get an error "[ 13:37:09:512] [32976:32985] [ERROR][com.freerdp.core] - freerdp_tcp_connect:freerdp_set_last_error_ex ERRCONNECT_CONNECT_FAILED [0x00020006]
[13:37:09:512] [32976:32985] [ERROR][com.freerdp.core] - failed to connect to IP-MACHINE", can you tell me the reason? Thanks

Are you using an ip?

Or "IP-MACHINE"

yes, IP-Machine of room lab create

OK, you need to start the machine by pressing the green start machine button.

I can't insert an image here, it would be easier to visualize

Okay, the problem is that when I run it and have an IP, it cannot connect to that machine

You need to verify

!docs verify

please help me

Use Reminna

thank you for your support, i fixed it, ssh my service not running

Gave +1 Rep to @weary spindle

Hello everyone, i'm currently facing a problem.
I want to start on "active directory module", and when I click on join room in the "Breaching Active Directory room", I got redirected to My Rooms. Can anyone help me, please ?

The breaching active directory room requires either a subscription to TryHackMe or a 7 day streak to be able to join

Thank you very much. I don't have the Informations displayed on my Tryhackme.

It only shows up on the network rooms section irrc, not the room search or learning paths area of the site https://tryhackme.com/hacktivities#network-rooms

Ohh, thank you for your help 🙏 @gleaming flume

Gave +1 Rep to @gleaming flume

Hello, I signed up today and bought premium but it charged me 5 times. Will support be able to reverse this?

Yes

!email

alright, thanks!

Hey, I'm new to the site, went to take a look at workspaces and ended up creating one with the random name that I put there, is there a way to delete a workspace? Or join another?

Charging email iirc

Hey All,

i'm studying Cyber Security at TAFE QLD (Australia) and a group of my fellow students want to do TryHackME but VPNs are blocked on the TAFE network (ssh is also blocked, so no tunneling). Apart from the AttackBox is there an alternate way to connect to the TryHackMe VPN?

Sorry, we can't help you bypass VPN blocks.

You'll need to use the attackbox. 🙂

https://tenor.com/view/dammit-damn-damn-it-ron-swanson-parks-and-rec-gif-19792726

Why is my 7 day streak saying my streak is going to reset tomorrow? Isn't it supposed to hold it for 7 days?

@weary spindle

That sounds like a typo™️ Let me report that 🙂

thanks i hope so 😄

Gave +1 Rep to @bronze vale

Bringing this to the front. Been a bit and haven't heard back from support here or via email.

Log out and log back in, clear browser cache, try a different browser. Have you tried all of these?

Also make sure you are still in the room, perhaps it bugged out because you either left the room or the 10 day timer ran out

Yes and I am a paid subscriber.

Some people have been having issues with this, and they resolve within a day later

Thanks but I am on day 2. LOL

I signed up with my gmail account, but I am a full time student at WGU. If I wanted the student discount, what would I need to do?

You’ll need to switch your account email to your student email. You should be able to do this in your account settings

Oh ok

In the rare case your edu email isn't recognised, you'll need to contact support

Ok

The badges that were recently added from the new soc lvl2 path don't show as having been completed for previously completed rooms. That is unless you redo the rooms.

Badges aren't awarded retrospectively.

So its not a bug I have to redo rooms?

You can copy the answers and paste them in.

OR message support and ask for them to be awarded.

Is there a tutorial on TryHackMe itself how to run openvpn file becuase mine is not working the way it used to months ago?

its pretty easy to do it all u need is kali

Does it say anything other than that if you wait a little?

Silly me. These the last lines of the command.

2023-10-05 20:03:49 Initialization Sequence Completed
2023-10-05 20:03:49 Data Channel: cipher 'AES-256-CBC', auth 'SHA512', peer-id: 11
2023-10-05 20:03:49 Timers: ping 5, ping-restart 120
2023-10-05 20:03:49 Protocol options: explicit-exit-notify 3```

I didn't see Initialization Sequence Completed.

no worries, have fun hacking

Hi everyone, I had a quick question. I am trying to connet to my first ever HTB machine (Wreath). For the OpenVPN....I am a subscriber, and want to use my own VPN. I downloaded the machine openvpn file and ran it, and it seems to be connected....do I also need to download and connect the wreath openvpn file under the network tab on the access page....or am I ready now that i ran the first openvpn file from the machines tab?

you only need to run the wreath one for that room

Can anyone recommend a way to do Autopsy and Autopsy 2 without the in browser attack box? What's a good program to connect to using RDP with windows? (Autopsy works much better with windows as the app Autopsy in webrowser and text only, So using a VM kali linux with opnvpn is out the question.)

Have you tried Remmina?

Would not stick host on network

If you update autopsy, you'll also have a non browser version on Linux

Not sure if this is the right place to ask but....I am trying to do Wreath on the Attackbox, and when I run the CVE after successfully git cloning, and installing the requirements.txt, I get an error that says "from prompt_toolkit import prompt
ModuleNotFoundError: No module named 'prompt_toolkit' "

Does anyone know what the issue is? I tried attacking from my own Kali VM before....and had a similar issue with a different module, and it made me worried the mistake was with my VM...but now that the attack box is also failing, I am not sure.

I was able to fix my issue by installing prompt_toolkit

i'm doing https://tryhackme.com/room/wgelctf right now and the target seems to be unresponsive and slow. gobuster tells me context deadline exceeded for every endpoint after the first 1000 and becomes extremely slow. manual enumeration of the website also confirms the web pages take ages to load if they load at all.

Are you using attckbox or openvpn?

openvpn

Try using the attckbox

Sometime the attckbox workes better than openvpn

i'm not subscribed, so i only have an hour, plus i'd rather use my own machine :/

Oh i see

Try to genareate a new Openvpn link on a new server

Could do it

will try that, thanks

hello not sure if im in the right place but when i connect to openvpn i still can not reach the room site its owasp top

ok it looks like theres bug on task 7. i moved to task 8 and i can reach the site. id like to report as a bug

There isn't, I completed that room recently

I completed it about a month ago or less

Just wanted to say issue has been resolved. Thank you Support!!!! 🤘🏼 ❤️

When will my level 1337 be reset to pre challenge level

How do I access my 7day streak

I need to delete my account.

Please, email customer support at support@tryhackme.com
with the subject line of:
“Unable to delete my account, because of OAuth”.
In the email, please explain why you are deleting the account in a few sentences and we will help you delete your account.
Thank you.

sigh

Typically, we respond within 48 hours. If that doesn't happen, we apologise for the wait and assure you that we're working hard to get to your message.

Please be patient and avoid submitting multiple tickets, as this can slow down our process. Your request is important, and we're committed to assisting you.

Thanks for your understanding, and we'll get back to you ASAP. Keep up the hacking, and remember, we're here to help!

So I can't sign up for a subscription for another few days. Brilliant.

Is there anyone around that can help me?

hi, why search room is not working ?

this is done for every room, even when you type the exact name of the room

It's Friday morning, and they're like, we'll be back on Monday.

Has anyone had trouble logging into their account?

is that not normally how businesses work?

Usually businesses close on Friday evening.

they are a UK based business

not US

Ok

I signed up to TryHackMe with edu account. Then I thought over the years I might lose the edu account, so I signed up with my main account on gmail. Now I need that duplicate .edu account deleted.

ok, so be patient and wait 🙂 If you’ve already emailed support, that’s all that can be done

anyone happen to know the average time a ctf takes to get reviewed?

i wanna post more about it but dont wanna just throw the answers out there before its even public lol

Hy ,

I dont receive email for reset my password beacuse i left my last password.

Thank

check ur spam folder?

thats where mine usually go lol

You can sign in with your username of you lose access to your education email.

There is over 200 rooms to be reviewed

shitttttt okay lol

I didn't lose access to it. I need the duplicate account deleted. Then I can change my main account's email to my .edu email. That's what I'm trying to do.

It does, but I suppose its looking for exact keywords, not simply parts of it.

I show in spam i dont receive email

I'm telling you for future reference.

Are yoynalso deleting the THM account that is linked to your discord?

Hy ,

I dont receive email for reset my password beacuse i left my last password.

Thank

I show in spam i dont receive email

please don't make these big messages, it clogs up the channel, please contact support email and they'll help you reset the password

!email

help

with what?

with proplem

in openvpn

when i try to connect to the openvpn using the file configer from the tryhackme site

i get this message

023-10-07 07:50:38 Note: --data-cipher-fallback with cipher 'BF-CBC' disables data channel offload.
2023-10-07 07:50:38 OpenVPN 2.6.3 x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] [DCO]
2023-10-07 07:50:38 library versions: OpenSSL 3.0.10 1 Aug 2023, LZO 2.10
2023-10-07 07:50:38 DCO version: N/A
2023-10-07 07:50:38 OpenSSL: error:0480006C:PEM routines::no start line
2023-10-07 07:50:38 OpenSSL: error:0A080009:SSL routines::PEM lib
2023-10-07 07:50:38 Cannot load inline certificate file
2023-10-07 07:50:38 Exiting due to fatal error

go to the vpn page on tryhackme and choose a different server than "EU-Regular-3"

then regen your vpn config and download a new one

okay give me a sec

second

yep yep thanks its works

Gave +1 Rep to @pastel tinsel

thankssss

😎

happy hacking

you are smart

there is another proplem😀

that's when i start the ssh tryhackme@(and the machine ip) It then stops and does not execute the command and enter me to the machine

I would try sudo ip link set dev tun0 mtu 1200

In a separate terminal with the vpn running

does not work too

Which room are you doing?

nmap

You don't ssh in to that machine?

Just use nmap

oh

right

but also i need to fix this proplem

for another rooms

Perhaps the problem is only a problem for that room, as you don't use ssh

i use it always man

Not all rooms have SSH login so... 🤷

thanks a lot

Still waiting on an email back from SE ticket event about winning an amazon voucher. Are they still working/confirming them or should I send a follow-up email

I believe they said they get back to those around mid October

^ correct.

Thanks @shrewd trench @weary spindle

Gave +1 Rep to @shrewd trench

No problem!

love to help out 🙂

I need help with private room

I clicked false for this

.
Locked
True | False
Locking a room is where room-users can join your room, but can't see any content (no tasks, chart, scoreboard etc..). Useful for running assessments or having users join a room before an event.

Are you creating the room?

yupp

private room

Somebody will come along to help you soon, I have little to no knowledge on creatign rooms on TryHackMe (possibly for the moment)

Alright
Thanks a lot

Please can you ask them to dm me
Cause I dont want to share the link here

Somebody will ping you.

Not sure if this is for Site-support or Room-help. I am trying to do: 'Burp Suite: The Basics' - and have spun up the attack box. I have burp running, I have firefox foxyproxy going. I turned intercept off so that the page should load, but I get a 405 error. When reviewing the forums I see a single post mention this from 6 days ago saying they also are encountering this. I have looked up a youtube video on how to do the room, and in the video the get to a page called 'bastion hosting' and can play around on that page. Thoughts? Specifically I feel like the room may be bugged, hence my asking in site-support and not room-help.

Which IP are you using?

Can I have the IP please?

http://10.10.72.201

That's the wrong IP, you're using the attackbox IP.

You need to start the machine in Task 1 or 2

I don't see a 'start machine' option in tasks 1 or 2?

It's in Task 9, sorry

Ah, okay, I think I understand now, thank you!

This is a better image*

That looks horrible... haha

But that's a general what's what.

I really appreciate your reply, and so fast! I'll get there eventually 🙂

It's a small thing over looked by a lot of members, don't sweat it. 🙂

You always tell me things I don't need to know. Like the other day. I am now asking about having my duplicate account deleted, and you're telling me about how I can login with my username. The two are completely unrelated.

You said you created a new account incase you got locked out of your Edu Email?

I did not.

#site-support message

So I suppose this is wrong?

Your understanding of it is wrong, yes.

If you say so.

Where did I say I was locked out of any accounts?

Nowhere, but you said you might

Can we be friendly with each other?
They are trying to help you on a volunteer basis, so no need to get unfriendly for such a minor issue 🙂

Sometime in the future, in years to come, I will not be a student forever, and I may over the years lose my .edu email.

I'm not unfriendly. I'm being precise. Why do you guys always jump to friendliness and all this. No one is being unfriendly. Stop publicly accusing people of that.

The other day I told his gentleman, that he didn't understand me, and he instantly said, I'm being patronizing. Other people can't tell you that you didn't understand them? How is that rude?

A man can't tell another man that he didn't understand him?

You seem pretty upset for no reason, just be calm and we are good 😄

You're aggravating me. Yesterday I said, you didn't understand my question, and he said I was being patronizing. Today I said you didn't understand me, your understanding of what I said was incorrect, and you're telling me I'm being unfriendly.

Please stop.

You are aggravating yourself. I was being very polite with you.

If someone doesn't understand me and I think they didn't understand me, it's quite normal to tell someone they didn't understand something. Nothing unfriendly or rude about it.

I didn't do anything to anyone. Stop making it seem as I'm some kind of a problem. You are purposefully poking me and then watching me react. This is horrible to do to anyone.

This is not the place to be so upset, of course I'll leave you, don't worry.
Just calm down and we are done.

You accusing me of unfriendliness when I simply told someone they didn't understand me is causing me to be upset.

👀

Why are you making eyes and faces at me. Just leave me alone.

I can't download the files for Overpass 2 room...

Do you get an error?

Yeah

you're using the blue Download task files?

Yes

interesting, it works on my end ok

same works on shadows end

did you left click it or did you right click to open in new tab????

Left click

Doesn't work either way

I tried both now

I tried flushing DNS cache

Still doesn't work

I reassigned my IP address and it still doesn't work

That looks like it's browser contolled.

Can you try a different browser?

I am refreshing my cache right now

To see whether it works

I refreshed my cache that doesn't work

Tried a different browser and that doensn't work either

@wheat cedar This is a slight;y better pic of the three differents you may need to do, depending on the task.

I tried TryHackMe on my phone and it works

Well the download does

Are you doing this on a VM?

I was downloading it on my PC

But I might need to start a VM up

That's true

Well, do you have wireshark on your host?

Nope 🤣

Looool

Then yeah, vm/

(You can install wireshark on windows) all you're doing it loading a pcap file.

(for task 1)

Should I use Attackbox or my own VM for this?

Either or.

Alright

Thanks :D

Gave +1 Rep to @weary spindle

Tasl 2 will probably need an attackbox/VM

Alright

heyaa, wanted to know if this was normal? level hasn't updated since I got the sec engineer tag

Security Engineer has priority over 0xDGOD, once they (finally) get rid of the Security Engineer your rank will show again.

thanks for the quick response!

would be nice to have a toggle option

where can I get help with connecting to thm rooms

ssh tryhackme@10.10.241.158
ssh: connect to host 10.10.241.158 port 22: Connection refused

What room and task is this? Is your VPN running & are you supposed to SSH into the given room?

attacktive directory

it isnt just that one room. in any room if i try to ssh to that room's machine i get similar error

and my vpn is running

it says permission denied

or connection refused

Not all rooms are supposed to be SSH'd into, including attacktive directory iirc

It probably says that because SSH is not running, or because your VPN isn't setup properly

This would mean wrong creds, connection refused probably means it is not running SSH

tryhackme is the password right?

For attacktive directory? All rooms have different credentials and I don't think attacktive directory uses SSH at all

is it not possible to do the rooms on seperate machines?

You can do the rooms on your own machine, but you may not need to SSH into them. SSH is not the only way to communicate with a remote machine

how do I do rooms on my own machine?

You setup the VPN as it seems you have already done and then enumerate and exploit the machine. Perhaps if you are unfamiliar with what to do for a challenge room like attacktive directory then it is not the best place to start. Going through one of the learning paths like Complete Beginner or Introduction to Cyber Security may be better for you. https://tryhackme.com/hacktivities

Many rooms will hold your hand and tell you step by step what to do, others will be more CTF style and just give you a machine to hack with little guidance, you should start with the former if you are new

!vpn

thanks

hello

there is someone here who could help me with something ?

What do you need help with?

is the first time im trying to use my own console and not the attack box and i want to run the nmap but this happend: Host seems down. If it is really up, but blocking our ping probes, try -Pn

i already try -Pn still the same

and im connect it withn openvpn too

You're sure you have the vpn setup correctly? Does it show it is working on the TryHackMe Access page?

yep

it is green on the page

And you are sure you are scanning the right IP?

yes, i copied from the machine

hmm, what room is this?

Network Services , task 9 Enumerating FTP

it does scan it from the attack box

Could you send a screenshot of your openvpn and your nmap command? You'd need to verify first to do that.

!docs verify

oh wait , i think its working now lmao

i dont know why

it wasnt working before

lol, well I am glad it is working for ya

thanks anyways

for trying to help me

np

hmm

Even when you type the exact room’s name, search bar is not working

yea happened to me a few times

You could use double quotes, e.g. "Room name"

hi

Which of the following options better represents the process by which you simulate the actions a hacker takes to find vulnerabilities in the system?

Task 1 What is Offensive Security?

I am new in this field can you help me?

#subs-room-help message

any comment from the room admin?

Hi, I want to start doing some writeups. What are the rules surrounding writeups, like what you can include, how old the room should be before you release the writeup, etc...
Thanks

I'm facing an issue with THM labs on my Mac. While ifconfig indicates that openvpn is connected, I'm unable to interact with any THM machines. Interestingly, everything works perfectly on my Kali-Pi. I do have WireGuard installed on the Mac but ensured it's turned off to avoid interference. Has anyone encountered this or has suggestions to resolve it?

Mainly a good writeup does not include the answers to the questions outright. Write-ups, when submitted to the site for a room are approved/denied at the discretion of the room creator. 🙂

Nice one, cheers mate

How are you connecting to the vpn?

I've been using OpenVPN Connect, which I downloaded from the THM website. I connect using the provided .ovpn config file. It used to work flawlessly, but for some reason, it stopped functioning a few days ago. I wonder if the issue might be with my computer itself. I recently set up some Raspberry Pi units as VPN servers. Could I have misconfigured something inadvertently? It's strange, as OpenVPN always worked seamlessly before this.

The GUI app for MacOs can be buggy, it's best to use brew to install openvpn and use the CLI.

#site-support message

Thank you for the suggestion! I appreciate your insight. I'll give the CLI approach a shot using brew to install openvpn. If I encounter any further issues, I hope it's okay to touch base with you again. Thanks again for your guidance!

Gave +1 Rep to @weary spindle

yeah we will be here to help if there are more problems

scrubz is generally here and helpful

I've definitely noticed scrubz's helpfulness. Thank you all for being so knowledgeable and supportive. I'll reach out if I encounter any more issues. Thanks again!

Yeah, that's fine.

If I'm not here, the good thing about this server is someone will be.

2023-10-08 11:49:30 Note: --cipher is not set. OpenVPN versions before 2.5 defaulted to BF-CBC as fallback when cipher negotiation failed in this case. If you need this fallback please add '--data-ciphers-fallback BF-CBC' to your configuration and/or add BF-CBC to --data-ciphers.
2023-10-08 11:49:30 Note: cipher 'AES-256-CBC' in --data-ciphers is not supported by ovpn-dco, disabling data channel offload.
2023-10-08 11:49:30 OpenVPN 2.6.3 x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] [DCO]
2023-10-08 11:49:30 library versions: OpenSSL 3.0.10 1 Aug 2023, LZO 2.10
2023-10-08 11:49:30 DCO version: N/A
2023-10-08 11:49:30 OpenSSL: error:0480006C:PEM routines::no start line
2023-10-08 11:49:30 OpenSSL: error:0A080009:SSL routines::PEM lib
2023-10-08 11:49:30 Cannot load inline certificate file
2023-10-08 11:49:30 Exiting due to fatal error

how i solve this?

Change to server Eu Reg 1

Hello! I'v been using OPENVPN, but today I can connect with OPENVPN but nothing works even when I want to scan the ctf machine with nmap and I can't ping 10.10.10.10 ?? could anyone please give me some solution ??? Thank you

and I changed several times the servers

Which os?

Parrot OS

virtual machine is Parrot OS

#soc-level-1-path message

hi , there is someone who could help me with something?

Im doing Network Services rn , im at task10 exploiting ftp and i need to use Hydra for the first time, and i have to use this command "hydra -t 4 -l dale -P /usr/share/wordlists/rockyou.txt -vV 10.10.10.6 ftp", i already install hydra on my kali linux, the problem is that i dont have the rockyou.txt, i just download it from internet but when i tried to put it on the wordlists file it says that i do not have the permissions, maybe im dowloading the rockyou file wrong or something

@elder grove hey, with your question generally rockyou.txt is already installed in kali, are you connected via the vpn on your own machine or a Kali THM Machine,

did you place the rockyou.txt to the specified wordlists folder?

hydra -l dale -P /usr/share/wordlists/rockyou.txt ftp://<FTP_SERVER_IP>

Hi all,

Is there a person here which could help me with account issues?

Depends.. what's up?

I changed my username, and I just logged-in with the new one and my account has been resetted, streak, level, etc.

Is there any way to fix this?

Ask support to reset your streak.

!email

Yea I found that, but what about the levels? There is not related ticket for that.

Level should be the same, did you create a brand new account?

Or did support change your name?

No, I changed the name through ticket submission. So support changed it.

Everything should have been the same, the only thing that would/should have changed is the username.

Yea, that was what I was expecting, but it seems that the acc was reset all together. Well, it is not problem in reality so I can live with that, but just wondering if it could be fixed or not as the ticket I found was only about the streak.

And I can only submit tickets, not speak to a live agent etc.

Support might be able to.

Can you veridu your account?

!docs verify

!docs verify

Yea gimme a sec

done

Looks like your level on the account isn't reset?

Sorry, I was afk, they just put back the streak and everything came along I guess?

Anyway, thanks a lot for your help, the accounts seems as it was now! Have a great day!

You too!

Happy Hacking

Hello! I'v been using OPENVPN, but today I can connect with OPENVPN but nothing works even when I want to scan the ctf machine with nmap and I can't ping 10.10.10.10 ?? could anyone please give me some solution ??? Thank you

Which os?

Parrot OS

my virtual machine is Parrot OS

Can you do, ip a s?

yes, but I see the tunnel on Terminal but the ping and nmap scan do no work

Which room are you doing?

https://tryhackme.com/room/rrootme

the problem is openvpn

not the room

Do you just have one tunnel?

yeah I do have only one tunnel

Is your eth0 also in the 10.xxx.xxx.xxx range?

yeah. Whenever I connect to openvpn it shows me IP add in 10.xx.xx.xx and the ctf machine is in 10.xx.xx.xx but the nmap scan does not work and ping does not work also

No, I'm not asking about your tun0

I'm asking about your own eth0 address.

enp0s3

not etho

Same difference.

what's the solution now ???

Is the enp0s3 in a 10.10 range?

yes

is that the problem ??

More than likely.

I changed it now

let me check once if it works

tun0: flags=4305<UP,POINTOPOINT,RUNNING,NOARP,MULTICAST> mtu 1500
inet 10.8.146.51 netmask 255.255.0.0 destination 10.8.146.51
inet6 fe80::23f2:c969:1b5a:aae4 prefixlen 64 scopeid 0x20<link>
unspec 00-00-00-00-00-00-00-00-00-00-00-00-00-00-00-00 txqueuelen 500 (UNSPEC)
RX packets 0 bytes 0 (0.0 B)
RX errors 0 dropped 0 overruns 0 frame 0
TX packets 2 bytes 96 (96.0 B)
TX errors 0 dropped 0 overruns 0 carrier 0 collisions 0

┌─[parrot@parrot]─[~/Music]
└──╼ $nmap -sV 10.10.34.62 -T5
Starting Nmap 7.93 ( https://nmap.org ) at 2023-10-09 16:09 BST
Note: Host seems down. If it is really up, but blocking our ping probes, try -Pn
Nmap done: 1 IP address (0 hosts up) scanned in 1.73 seconds

the same problem

it does not work

the enps is now 192.x.x.x

did you try adding -Pn ?

└──╼ $nmap -sV 10.10.34.62 -T5 -Pn
Starting Nmap 7.93 ( https://nmap.org ) at 2023-10-09 16:12 BST
Nmap scan report for 10.10.34.62
Host is up.
All 1000 scanned ports on 10.10.34.62 are in ignored states.
Not shown: 1000 filtered tcp ports (no-response)

Service detection performed. Please report any incorrect results at https://nmap.org/submit/ .
Nmap done: 1 IP address (1 host up) scanned in 52.69 seconds

this ctf port 80 is open

but here it says this

Which country are you in?

Also can you give me the output of your VPN.

2023-10-09 16:21:13 WARNING: Compression for receiving enabled. Compression has been used in the past to break encryption. Sent packets are not compressed unless "allow-compression yes" is also set.
2023-10-09 16:21:13 --cipher is not set. Previous OpenVPN version defaulted to BF-CBC as fallback when cipher negotiation failed in this case. If you need this fallback please add '--data-ciphers-fallback BF-CBC' to your configuration and/or add BF-CBC to --data-ciphers.
2023-10-09 16:21:13 OpenVPN 2.5.1 x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] built on May 14 2021

023-10-09 16:21:13 library versions: OpenSSL 1.1.1w 11 Sep 2023, LZO 2.10
2023-10-09 16:21:13 Outgoing Control Channel Authentication: Using 512 bit message hash 'SHA512' for HMAC authentication
2023-10-09 16:21:13 Incoming Control Channel Authentication: Using 512 bit message hash 'SHA512' for HMAC authentication
2023-10-09 16:21:13 TCP/UDP: Preserving recently used remote address: [AF_INET]18.202.129.195:1194
2023-10-09 16:21:13 Socket Buffers: R=[212992->212992] S=[212992->212992]
2023-10-09 16:21:13 UDP link local: (not bound)
2023-10-09 16:21:13 UDP link remote: [AF_INET]18.202.129.195:1194
2023-10-09 16:21:14 TLS: Initial packet from [AF_INET]18.202.129.195:1194, sid=0577508a 502ac911
2023-10-09 16:21:14 VERIFY OK: depth=1, CN=ChangeMe
2023-10-09 16:21:14 VERIFY KU OK
2023-10-09 16:21:14 Validating certificate extended key usage
2023-10-09 16:21:14 ++ Certificate has EKU (str) TLS Web Server Authentication, expects TLS Web Server Authentication
2023-10-09 16:21:14 VERIFY EKU OK

2023-10-09 16:21:14 VERIFY OK: depth=0, CN=server
2023-10-09 16:21:14 WARNING: 'link-mtu' is used inconsistently, local='link-mtu 1586', remote='link-mtu 1602'
2023-10-09 16:21:14 WARNING: 'keysize' is used inconsistently, local='keysize 128', remote='keysize 256'
2023-10-09 16:21:14 Control Channel: TLSv1.3, cipher TLSv1.3 TLS_AES_256_GCM_SHA384, 2048 bit RSA
2023-10-09 16:21:14 [server] Peer Connection Initiated with [AF_INET]18.202.129.195:1194

I'm in France

Is that the full script?

You don't have anything like that?

2023-10-09 16:29:10 Using peer cipher 'AES-256-CBC'
2023-10-09 16:29:10 Data Channel: using negotiated cipher 'AES-256-CBC'
2023-10-09 16:29:10 Outgoing Data Channel: Cipher 'AES-256-CBC' initialized with 256 bit key
2023-10-09 16:29:10 Outgoing Data Channel: Using 512 bit message hash 'SHA512' for HMAC authentication
2023-10-09 16:29:10 Incoming Data Channel: Cipher 'AES-256-CBC' initialized with 256 bit key
2023-10-09 16:29:10 Incoming Data Channel: Using 512 bit message hash 'SHA512' for HMAC authentication
2023-10-09 16:29:10 net_route_v4_best_gw query: dst 0.0.0.0
2023-10-09 16:29:10 net_route_v4_best_gw result: via 192.168.0.1 dev enp0s3
2023-10-09 16:29:10 ROUTE_GATEWAY 192.168.0.1/255.255.255.0 IFACE=enp0s3 HWADDR=08:00:27:89:8a:6f
2023-10-09 16:29:10 TUN/TAP device tun1 opened
2023-10-09 16:29:10 net_iface_mtu_set: mtu 1500 for tun1
2023-10-09 16:29:10 net_iface_up: set tun1 up
2023-10-09 16:29:10 net_addr_v4_add: 10.8.146.51/16 dev tun1
2023-10-09 16:29:10 net_route_v4_add: 10.10.0.0/16 via 10.8.0.1 dev [NULL] table 0 metric 1000
2023-10-09 16:29:10 WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this
2023-10-09 16:29:10 Initialization Sequence Completed

You have two tunnels.

how could I disable the second one ???

sudo killall openvpn -9

I killed them, but now do I connect to openvpn again??

Yes.

but on the website it's connected

the green sign with the IPaddress

Yeah, that's bugged.

You just kill all the connections on your vm

Connect once. 🙂

tun0: flags=4305<UP,POINTOPOINT,RUNNING,NOARP,MULTICAST> mtu 1500
inet 10.8.146.51 netmask 255.255.0.0 destination 10.8.146.51
inet6 fe80::c0e5:a765:1a8b:4ac6 prefixlen 64 scopeid 0x20<link>
unspec 00-00-00-00-00-00-00-00-00-00-00-00-00-00-00-00 txqueuelen 500 (UNSPEC)
RX packets 0 bytes 0 (0.0 B)
RX errors 0 dropped 0 overruns 0 frame 0
TX packets 1 bytes 48 (48.0 B)
TX errors 0 dropped 0 overruns 0 carrier 0 collisions 0

┌─[parrot@parrot]─[~]
└──╼ $nmap -sV 10.10.73.233 -T5
Starting Nmap 7.93 ( https://nmap.org ) at 2023-10-09 16:50 BST
Note: Host seems down. If it is really up, but blocking our ping probes, try -Pn
Nmap done: 1 IP address (0 hosts up) scanned in 1.74 seconds
┌─[parrot@parrot]─[~]
└──╼ $nmap -sV 10.10.73.233 -T5 -Pn
Starting Nmap 7.93 ( https://nmap.org ) at 2023-10-09 16:51 BST
Nmap scan report for 10.10.73.233
Host is up.
All 1000 scanned ports on 10.10.73.233 are in ignored states.
Not shown: 1000 filtered tcp ports (no-response)

Service detection performed. Please report any incorrect results at https://nmap.org/submit/ .
Nmap done: 1 IP address (1 host up) scanned in 52.62 seconds

the same problem

is inet your tun0 ?

tun0: flags=4305<UP,POINTOPOINT,RUNNING,NOARP,MULTICAST> mtu 1500
inet 10.8.146.51 netmask 255.255.0.0 destination 10.8.146.51
inet6 fe80::915a:3658:5522:300b prefixlen 64 scopeid 0x20<link>
unspec 00-00-00-00-00-00-00-00-00-00-00-00-00-00-00-00 txqueuelen 500 (UNSPEC)
RX packets 0 bytes 0 (0.0 B)
RX errors 0 dropped 0 overruns 0 frame 0
TX packets 4 bytes 192 (192.0 B)
TX errors 0 dropped 0 overruns 0 carrier 0 collisions 0

yes inet

And just tun0?

yeah

2023-10-09 14:27:34 ERROR: Failed to apply push options 2023-10-09 14:27:34 Failed to open tun/tap interface 2023-10-09 14:27:34 SIGUSR*1*[soft,process-push-msg-failed] received, process restarting 2023-10-09 14:27:34 Restart pause, 1 second(s) ^C2023-10-09 14:27:35 SIGINT[hard,init_instance] received, process exiting

Keep getting that when i try to connect to the ovpn thm file

I'm on linux running on sudo, no vm

i tried to see the solutions on this channel but doesn't seem to help me

OpenVPN 2.6.3 x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] [DCO]
library versions: OpenSSL 3.0.10 1 Aug 2023, LZO 2.10

Here's my ovpn version ( up to date )

And yes, i've seen the pinned message

also updated the cipher

Nevermind, i'm autistic

hm

I think thats where I need to ask questions

when I try to ssh a tryhackme room I get Permission Denied (publickey) problem

Hi I tried changing from cipher AES-256-CBC to data-ciphers AES-256-CBC but still openvpn won't connect

here's the error log

Note: --cipher is not set. OpenVPN versions before 2.5 defaulted to BF-CBC as fallback when cipher negotiaton failed in this case. If you need this fallback please add '--data-ciphers-fallback BF-CBC' to your configuration and/or add BF-CBC to --data-ciphers.

Note: cipher 'AES-256-CBC' in --data-ciphers is not suported by ovpn-dco, disabling data channel offload

If anyone knows how to solve this I would really appreciate it

Ok no EU Reg 3 is just done for

For anyone reading just switch to EU Reg 1 and you're fine

Does someone know why I can't login, in the Simple CTF machine? I tried using these two commands:

ssh -oHostKeyAlgorithms=+ssh-rsa THM@10.10.61.254
ssh THM@10.10.61.254

but they dont work. I'm using openvpn server EU-Regular-3

Use number 1

hello guys i have a question im not able to log in a specific class made by my teacher but other people have access trough the link any idea?

Hello can someone help me with payment options

Hey THM team, can I get help with merging a THM account associated with an email address that no longer exists? I cant access the account and all my progress was on that one.

tbh my question might need to go in here but i would like a dm

I hadn't had the chance to address the issue until now, but following your advice to install OpenVPN through Homebrew did the trick. Thank you for the guidance; my VPN connects seamlessly now.

Gave +1 Rep to @weary spindle

Good evening, I'm taking the introductory cybersecurity course but I can't hack the bank, does anyone know if there's an error?

Hi Support team, I want to host my own lab in the THM. I have emailed education@tryhackme.com. however, i have not received any response. Can you please help me.

Just be patient, someone will reply back to you in due time.

Are you referring to the site where you have to click the 'Split View' button?

Were you able to connect to the THM OpenVPN?

Are you using the correct email address?

Yes it works now 🙂

Waited 2 months. Just emailed them again.

I have changed my discord account due to being terminated and now when I tried to verify with my new discord account it said :** Sorry this token is already used by someone.**
No longer have access to previous account though I do have my discord token.

You'll need to ask a mod politely.

Ok, sure, can I ping them though?

I wouldn't, they may be busy.

Just when you see one in passing.

Alright ty

terminated?

discord disabled it, though I've appealed no response yet.

How can I vouch you?

Sorry?

Ban evading is against discord tos, you know that right?

like the rep thing

I've appealed. though do it is still counts like that?

Oh don't worry about it. 🙂

No, it’s still against discord terms of service.

Are you banned from discord itself or this server?

discord itself I've a ongoing appeal

Yeah so you can’t use the service until the appeal has been approved, you just being here puts that in jeopardy

oops, alright

:hammer: intelplayz1337#0 has been banned.

Now they know

Hi, im having issues connecting to tryhackme's network via openvpn.

I have it installed on windows 11, and when I try to connect using my .ovpn file I get this error

Tue Oct 10 11:08:34 2023 OpenSSL: error:0480006C:PEM routines::no start line
Tue Oct 10 11:08:34 2023 OpenSSL: error:0A080009:SSL routines::PEM lib Tue Oct 10 11:08:34 2023
Cannot load inline certificate file

Regenerate your OpenVPN configuration

Please make sure you’re installing OpenVPN for Window 10/11 from here

https://openvpn.net/community-downloads/

i did regenerate it several times. and im using the EU-Regular-3 server

Use Eu-1

I am Connected

Im guessing my Account is linked to the older vpn I used to use?

but maybe not, how do I fix this

now im getting this:

Tue Oct 10 11:50:09 2023 WARNING: Compression for receiving enabled. Compression has been used in the past to break encryption. Sent packets are not compressed unless "allow-compression yes" is also set.
Tue Oct 10 11:50:09 2023 Note: --cipher is not set. OpenVPN versions before 2.5 defaulted to BF-CBC as fallback when cipher negotiation failed in this case. If you need this fallback please add '--data-ciphers-fallback BF-CBC' to your configuration and/or add BF-CBC to --data-ciphers.
Tue Oct 10 11:50:09 2023 Note: '--allow-compression' is not set to 'no', disabling data channel offload.
Tue Oct 10 11:50:09 2023 OpenVPN 2.6.6 [git:v2.6.6/c9540130121bfc21] Windows-MSVC [SSL (OpenSSL)] [LZO] [LZ4] [PKCS11] [AEAD] [DCO] built on Aug 15 2023
Tue Oct 10 11:50:09 2023 Windows version 10.0 (Windows 10 or greater), amd64 executable
Tue Oct 10 11:50:09 2023 library versions: OpenSSL 3.1.2 1 Aug 2023, LZO 2.10
Tue Oct 10 11:50:09 2023 DCO version: v0
Tue Oct 10 11:50:09 2023 MANAGEMENT: TCP Socket listening on [AF_INET]127.0.0.1:25340
Tue Oct 10 11:50:09 2023 Need hold release from management interface, waiting...
Tue Oct 10 11:50:10 2023 MANAGEMENT: Client connected from [AF_INET]127.0.0.1:59514
Tue Oct 10 11:50:10 2023 MANAGEMENT: CMD 'state on'
Tue Oct 10 11:50:10 2023 MANAGEMENT: CMD 'log on all'
Tue Oct 10 11:50:10 2023 MANAGEMENT: CMD 'echo on all'
Tue Oct 10 11:50:10 2023 MANAGEMENT: CMD 'bytecount 5'
Tue Oct 10 11:50:10 2023 MANAGEMENT: CMD 'state'
Tue Oct 10 11:50:10 2023 MANAGEMENT: CMD 'hold off'
Tue Oct 10 11:50:10 2023 MANAGEMENT: CMD 'hold release'
Tue Oct 10 11:50:10 2023 TCP/UDP: Preserving recently used remote address: [AF_INET]18.202.129.195:1194
Tue Oct 10 11:50:10 2023 Socket Buffers: R=[65536->65536] S=[64512->64512]
Tue Oct 10 11:50:10 2023 UDPv4 link local: (not bound)
Tue Oct 10 11:50:10 2023 UDPv4 link remote: [AF_INET]18.202.129.195:1194
Tue Oct 10 11:50:10 2023 MANAGEMENT: >STATE:1696935010,WAIT,,,,,,

Are you using the GUI or the version I sent?

I downloaded it from the link you sent

and its also a gui

it was not email restrited idk why but it was working after 10min of verifying the email.

Ah. You haven't done the email verification previously.

Im new to the platforme i did not see the confirmation email at first x)

it happens haha

welcome to TryHackMe

@limber spindle please don’t post answers here

Sorry

Hey I'm having problems connecting with openvpn, can someone help me?

please verify your account and send a picture of the problem you're having

!docs verify

!docs verify

This is my error @pastel tinsel :

2023-10-10 19:50:21 Note: --cipher is not set. OpenVPN versions before 2.5 defaulted to BF-CBC as fallback when cipher negotiation failed in this ca se. If you need this fallback please add --data-ciphers-fallback BF-CBC' to your configuration and/or add BF-CBC to --data-ciphers. 2023-10-10 19:50:21 Note: cipher AES-256-CBC' in --data-ciphers is not supported by ovpn-dco, disabling data channel offload. 2023-10-10 19:50:21 OpenVPN 2.6.3 x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] [DCO]
2023-10-10 19:50:21 library versions: OpenSSL 3.0.10 1 Aug 2023, LZO 2.10
2023-10-10 19:50:21 DCO version: N/A
2023-10-10 19:50:21 OpenSSL: error: 0480006C: PEM routines :: no start line 2023-10-10 19:50:21 OpenSSL: error: 0A080009:SSL routines :: PEM lib 2023-10-10 19:50:21 Cannot load inline certificate file
2023-10-10 19:50:21 Exiting due to fatal error

go to https://tryhackme.com/access
and choose a different server than the EU-Regular-3

then press regenerate and download your new config

Thank u verry much

is eu-reg-3 not generating configs properly? 👀

it hasn't for like months

oh rofl

it can't generate proper certs

first I'm hearing of it

I have pinged you about it!

you probably have and I've missed it in the countless other pings hahaha

I'll make a note

alrighty, everything works but the certificate

I probs know the problem will look tomorrow

is Steel Mountain room down? my nmap scan all ports shows nothing

shouldn't be a problem. You probably just need to wait a bit longer for the machine to start up - it's windows IIRC

Hi!

I am doing "Walking An Application" room (or whatever it is called - https://tryhackme.com/room/walkinganapplication#) and under "Developer Tools - Network" the flag is not being accepted.

Am I entering something wrong or is it a bug? (Also tried "X-FLAG: THM{HEADER_FLAG}", "THM{HEADER-FLAG}", "THM{HEADER_FLAG}")

That's because it's not the correct flag.

Oh damn it... Appearantly I can't read 😄 Thank you!

Hi I was directed to this support group

I tried connecting my virtual machine with Kali Linux but I'm getting this error message

ssh: connect to host 10.10.71.118 port 22: software caused connection abort

Pls how do I solve this?

Which room are you trying to ssh in to?

@weary spindle Linux fundamental part 2 & 3

Are you on the vpn?

Or attackbox?

OpenVPN

I have a problem related to the Nessus room when the IP is generated by the attack box and I use it in Nessus performing a scan and no vulnerability is identified, they can help me in any way please?

You don't scan the attackbox

which IP should I use to perform a scan to discover information related to the activity?

You need to start the machine in Task 1.

hello guys iam facing problem to coonect to any vpn server. ervery time the error says " tls key negotation failed to occur within 60 seconds." when i run the troupleshooting script this what it says " [+] Stable internet connection
[+] OpenVPN is installed
[+] tun0 exists
[+] tun0 IP is in the correct range
[+] Only one instance of OpenVPN is running
[+] Confirming connectivity
[-] MTU value failed at 1000, aborting MTU check
[-] Something went wrong -- please ask for further assistance in the TryHackMe Discord server, subreddit, or forum
" any one has solution please

I'm doing this

When I start the machine an IP is generated but this IP when scanned does not generate vulnerabilities, how should it be done? Is there any other way

What VPN server is this? Have you tried to change server and then redownload your config file?

i have tried all servers. is it because iam not subscribed ?

It should work even if you are not subscribed

Are you also running a VPN on your host machine?

no i have shut it all "sudo kill all openvpn"

I meant on your base OS, not the VM, but alright. You could try sudo ip link set dev tun0 mtu 1200 and see if it helps

Would also be helpful if you sent the output of openvpn itself

same output sadly

ok 1min

2023-10-11 11:21:46 WARNING: Compression for receiving enabled. Compression has been used in the past to break encryption. Sent packets are not compressed unless "allow-compression yes" is also set.
2023-10-11 11:21:48 Note: --cipher is not set. OpenVPN versions before 2.5 defaulted to BF-CBC as fallback when cipher negotiation failed in this case. If you need this fallback please add '--data-ciphers-fallback BF-CBC' to your configuration and/or add BF-CBC to --data-ciphers.
2023-10-11 11:21:48 Note: '--allow-compression' is not set to 'no', disabling data channel offload.
2023-10-11 11:21:48 OpenVPN 2.6.3 x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] [DCO]
2023-10-11 11:21:48 library versions: OpenSSL 3.0.8 7 Feb 2023, LZO 2.10
2023-10-11 11:21:48 DCO version: N/A
2023-10-11 11:21:48 TCP/UDP: Preserving recently used remote address: [AF_INET]18.202.129.195:1194
2023-10-11 11:21:48 Socket Buffers: R=[212992->212992] S=[212992->212992]
2023-10-11 11:21:48 UDPv4 link local: (not bound)
2023-10-11 11:21:48 UDPv4 link remote: [AF_INET]18.202.129.195:1194
2023-10-11 11:21:48 TLS: Initial packet from [AF_INET]18.202.129.195:1194, sid=8dcc7a5f a7fb211b
2023-10-11 11:22:49 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network
connectivity)
2023-10-11 11:22:49 TLS Error: TLS handshake failed
2023-10-11 11:22:49 SIGUSR1[soft,tls-error] received, process restarting
2023-10-11 11:22:49 Restart pause, 1 second(s)
2023-10-11 11:22:50 TCP/UDP: Preserving recently used remote address: [AF_INET]18.202.129.195:1194
2023-10-11 11:22:50 Socket Buffers: R=[212992->212992] S=[212992->212992]
2023-10-11 11:22:50 UDPv4 link local: (not bound)
2023-10-11 11:22:50 UDPv4 link remote: [AF_INET]18.202.129.195:1194

when did this start happening?