Hey guys, anybody can help to with an AttackBox problem?

Cant really connect to the link, to be accurate

Depending on the link, free users don't have an external network connection.

is it common for beginner rooms to require commands that aren't covered at all in the room you're in or the ones before? I've gotten stumped a couple times in the Network Services room and had to refer to external walkthroughs that use commands I otherwise haven't learned yet :{

Which command?

I got stuck around the chmod command the first time while looking for that flag then again during the telnet exercise/reverse shell. It's probably just on me. I got confused too easily I suppose :c

Idk at this point I’m questioning whether or not I was even conscious for the NMAP room 🫠

holo's web page seems downed, please vote for reset

I got a feeling that htb robbed a lot of thm staffs

hi can some mods check with my e-mail, its been 15 days :(

Guys when I create a room
It takes ages for me to upload an image in the room
Can anyone help

Not all mods are THM Staff, I suggest you wait it out a bit more and avoid submitting a new ticket as it would lead to yours being pushed a couple more days.

Let me bump that for you

Done!

[BANSPAM] I cannot DM fabricio0289#0!

sure, tnx for your response

thank you :D

Gave +1 Rep to @bronze vale

@bronze vale what does ban spam do?

Boots, bans the user and should delete all their messages posted on the server.

ah, that makes sense

No, it sends them a message to help them get unbanned when they have recovered their account

It’s for users who have had their account hijacked @shrewd trench

Forgot that part.

oh awesome, that’s kinda nice!

I am unable to subscribe to premium on the website. When I hit the "subscribe now" button, it loads forever. I have cleared cookies and tried both firefox and google chrome. I have disabled ad block as well. Has anyone else ran into this issue? Last month I had to gift myself a voucher to get around this.

Are you logged in

I am, yes

You shouldn’t be able to see those buttons if you’re subscribed

I am not subscribed, I got a voucher for 1 month which expired last night to get around not be able to subscribe, and I am still running into the same issue of not being able to subcribe.

Are you sure? I’m looking at your account and it says you’re subscribed

I ended up buying another 2 month voucher since I was unable to subscibe. I don't want to have to go through the voucher process every time I want to give my money though.

Voucher for 2 months was bought 1:50pm est

so 10 minutes ago

Have you activated it?

I did, yes

Not much I can do now that you’ve activated it, sorry :(

As this has happened twice (a month apart), with multiple browers, with/without ad block. I was hoping someone else has run into the issue.

I am good to go now.

We can investigate the problem when you’re not subscribed, email support if it happens again, try not to purchase a voucher to get around it so we can troubleshoot :)

I have an issue with Bandit room. I cannot join the room and it instead it redirects me to https://tryhackme.com/r/rooms
I tried logging off and logging back in, different browsers, disable browser plugins, clear cache but nothing helped.
For some reason I have a problem only with that room, I can join other rooms without problems

please help

Do you have a streak of 7?

0

That's why, you need a streak of 7 or higher.

didn't realized it's a premium room

is it just for first few days?

No, that's the requirement.

nah the 7 day streak requirement is for all free network rooms

As it's a network room.

ahh makes sense

thanks

are you having also a problem for accessing to this room also : https://tryhackme.com/jr/breachingad ?

That also requires a streak of 7 or more.

yeah but they told me subscribers can access to it directly without having these streaks

They can yeah

ok thanks bro 👍

Please don't post your email address here 🙂

I’ve submitted a few tickets on the site. What would cause the attackbox not to match the section? Fresh box loaded once starting a new part.

Hello, I had the 7 series streakfreeze and it was redeemed and now my streak was cancelled, where can I get help for this?

i am not able to access the room Anthem (https://tryhackme.com/room/anthem#) i tried regenreating VPNs and even tried on attack box still not working

Can't access the room, or the VM?

Fixed, it was windows so i was not able to ping it firewall ig

pls check 😔 sorry for the tag

I am not in support, I bumped your email but that's all I can do, sorry:(

oh itz ok :D
thanks for doin that

Gave +1 Rep to @bronze vale

I need assistance with IAM Permissions. I have click Generate Environment but Access Key ID, Secret Access Key, and Default Console Password are all undefined. I can't continue without this information.

Is this for the AWS path?

Yes it is.

You might not get help with this in here, as the path is only for business customers.

What is your exact problem?

The password and secret key is undefined. Without those I can't login to the console.

Which room are you doing?

IAM Permissions

I was trying to have a quick scan on my AWS notes, but I can't find anything to help

Do you have a button anywhere that shows credentials?

Nope, did reset enviroment and event did a generation later in the course and still no passwords.

What about on the module page?

Nothing there?

Not sure what you are talking about Module page.

Up beside the Start attackbox etc.

I got Start AttackBox, Cloud Details, help, Gear and favorite. So I click on Cloud Details and it doen't have credentials.

Do you see Enviorement, inside the cloud details?

Yup Enviroment State is Active and have the ability to Reset Environment. If I click on Credentials the password is undefined.

I'm not too sure then.

Hello, please report this to your Customer Success THM contact. 🙂 They will be able to get it resolved for you.

👍

It's an AWS account initialization issue. 🙂

Ah, thanks @tawdry orbit

Gave +1 Rep to @tawdry orbit

Hey I'm just wondering if there is any problems with the attackbox atm, because it is super slow for me rn, I have tried and closed it and so on, but it doesn't work...

I'm doing the Metasploit: Exploitation module with a Kali VM in Virtualbox. However when I ran the eternal blue exploit with the reverse tcp payload, the LHOST variable was set by default to my VMs eth0 ip address, and not the tun0 ip address. Do I need to worry about it?

Hi, I am having trouble connecting to the network via VPN, keep getting this response about compression.

2023-10-16 18:46:15 WARNING: Compression for receiving enabled. Compression has been used in the past to break encryption. Sent packets are not compressed unless "allow-compression yes" is also set.
2023-10-16 18:46:15 Note: '--allow-compression' is not set to 'no', disabling data channel offload.
2023-10-16 18:46:15 OpenVPN 2.6.3 x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] [DCO]
2023-10-16 18:46:15 library versions: OpenSSL 3.0.10 1 Aug 2023, LZO 2.10
2023-10-16 18:46:15 DCO version: N/A
2023-10-16 18:46:15 WARNING: Your certificate is not yet valid!
2023-10-16 18:46:15 TCP/UDP: Preserving recently used remote address: [AF_INET]54.193.240.194:1194
2023-10-16 18:46:15 Socket Buffers: R=[212992->212992] S=[212992->212992]
2023-10-16 18:46:15 UDPv4 link local: (not bound)
2023-10-16 18:46:15 UDPv4 link remote: [AF_INET]54.193.240.194:1194

does it usually take awhile for cert to be given? it has been awhile i still didnt receive mine

For the VPN? It shouldn't take long at all. What VPN server are you on?

i mean the certificates

i did finished the path

but it says i havent earned it yet

i was wondering if it normally takes this long

ohhhh, can you send a screenshot? Normally you are just able to click the get certificate button right upon completing the path

huh that is odd, I'd try the basic stuff like logging out and logging back in, clearing browser cache, trying different browser, etc. If that doesn't work it may be something support has to help you with as that seems like a bug perhaps

!email

^ you can contact support with that if needed

i tried logging in and out it didnt work

thank you

Gave +1 Rep to @gleaming flume

np, hope you can get it resolved

thanks bro

Hi, does anyone know how to troubleshoot this?

Which server are you using?

Which country do you live in?

I tried both US-West and US-East and I kive in the US

Is the 10.200.126.100 server down?

Which room are you doing.

?

Persisting Active Directory

Any way I'll try tomorrow.

Does anyone know why when I try to down the Wreath Network VPN server it just gives me a a "loading" status after clicking the green download button. i've tried clearing history, cache, cookies but it still gives me the same result. At one point I've waited 25 mins with no results. I've tried installing new VMs but also no success. I've tried using attackbox to complete this room but nmap keeps gives me a response saying "host is not up". I've tried the nmap swith -Pn for step 5 and i've waited over 30 mins with no results. My Wreath room lab network ip is 10.200.81.200. I've been at this for almost 24 hrs.

have you tried leaving the wreath network room waiting 15 mins then rejoining then regenerating the vpn file and then trying to download the new one???

well i slept for 6 hours and tried again this morning and it gave me same results.

yes but the leaving the network room and waiting 15 mins is key here

as it should swap your subnet for the network

which could solve this issue potentially

well...in that case to that specification i have'n t tried

Are subscriptions expiration dates listed month/day/year or day/month/year

Mine says 01/06/2024, super unintuitive

I think the date format might have something to do with currency, can @bronze vale confirm?

Day/Month/Year on the website

I keep having issues with the windows boxes. It just says connection error and retries over and over but never connects. I have tried different lessons but all do the same that are connecting to windows machines. Linux ones work fine

Should label it better. Even looking at the code there's absolutely no notation on what field is which, yes it's Day,month, year, finally found the receipt. Which is a format we never use in the US

It should also be listed on your invoice if that helps 🙂

Your feedback has been noted

Does it keep the same price for renewals?

It usually does, but THM recently (or a couple of months back) announced that they will be increasing their fees (THM hasn't increased their fees for quite some time).

I also don't seem to see a way to update billing information

Or even see the current method

Checck pinned post

hey guys, need help with Kali Linux, I am trying to run a command "systemctl enable --now snapd apparmor" now when i hit eneter i get this popup asking for a code. Which i assume is what what the password for switching to root. Ive changed mine but the password i use to switch to root isnt he password for it . Ive also tried "toor, root, kali" ive have done the sudo passwd root changed the passwd and it still wont let me. Ive tried installing the VM and i still cant get the password. I can swap to root but the moment i log out i still get an error that the service isnt running and i need to use "systemctl enable --now snapd apparmor" any ideas?

Not familiar with this error, but when you tried to start the service as root you do seem to have typed "snapd apparmor" instead of "snapd.apparmor".

idk why it worked but i jsut kept restarting the machine and after restarting typing that line it all seems to wof worked

still cant get the password though? but it seems to all be working now

Not sure what the password would be besides your root password, so idk if I can help there

how does one contact someone from try hack me? Therre isnt a customer support email i can find

!email

Is this the Kali Web box?

hi, I cannot find the active machine info anymore. I am looking for my machines isp

I am not getting any emails when i do forget password but i definitely have an account and putting the correct email in

Checked other/spam/junk

etc

Already have

Made sure i havent blockec them aswell

You might need to contact support now.

!email

Have the deleted accounts or something because ive been gone for like 5month

No, THM don't delete games.

Hii, need help on vm creation, I just uploaded my vm on tryhackme somehow user cant ping the machine and even connect to it

My first time doing this btw

Have you gave the room the correct resources?

Quick one. Had issues using nordvpn while trying to access a box for enumeration. (even though I was connected and could ping it) Once I switched nordvpn off - I could see the website. Is this normal?

It's not a good idea to double up on VPN's, for this exact issue.

Many thanks.

Hello, I've won the amazon 50 dollar voucher and I've sent an email to tickets@tryhackme.com, in the faq in the tickets guide room is said that they will get back to me to verify by mid-october, but nobody has responded to my email, so how should I proceed?

Still is mid October.

Just wait patiently. 🙂

Oh ok thanks for the fast response! ^^

Hello, does the 3 month free trial for annually is the first three and will I still get charged?

There is no 3 month trial.

You pay for a year subscription by paying the monthly price * 9

Which gives 3 month free.

ty

So you pay for 9, but you get 12.

Understood

If I cancel the subscription would I lose access to to my benifits immidiately or when the month finishes?

Whenever the subscription is supposed to renew is when the subscription will end if you chose to cancel it. So whenever the month you last paid for finishes

Hello i hope you are all doing good , Does someone know the solution ?

What VPN server is this?

EU regular 3

Try EU Regular 1

Okey

It worked thanks

Gave +1 Rep to @gleaming flume

np

Hey everyone

I don’t know if this is the right place to ask, but any recommendations for AI sites that can help with ppt presentations?

It's the wrong place to ask.

Sorry, can you redirect me to where I could find some info?

Google.

Lol thanks

hello i have a problem with cipher and openvpn 2.6.3 that's normal for my own attackbox?

2023-10-19 17:12:57 Note: --cipher is not set. OpenVPN versions before 2.5 defaulted to BF-CBC as fallback when cipher negotiation failed in this case. If you need this fallback please add '--data-ciphers-fallback BF-CBC' to your configuration and/or add BF-CBC to --data-ciphers.
2023-10-19 17:12:57 Note: cipher 'AES-256-CBC' in --data-ciphers is not supported by ovpn-dco, disabling data channel offload.
2023-10-19 17:12:57 OpenVPN 2.6.3 x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] [DCO]
2023-10-19 17:12:57 library versions: OpenSSL 3.0.11 19 Sep 2023, LZO 2.10
2023-10-19 17:12:57 DCO version: N/A
2023-10-19 17:12:57 OpenSSL: error:0480006C:PEM routines::no start line
2023-10-19 17:12:57 OpenSSL: error:0A080009:SSL routines::PEM lib
2023-10-19 17:12:57 Cannot load inline certificate file
2023-10-19 17:12:57 Exiting due to fatal error

What VPN server is this?

eu

3

Try EU 1. EU 3 seems to be having cert issues as of late

ok thanks i will try 2

i have the same problem with 1 and 2

ah strange, did you make sure to regenerate the config file before downloading? Also make sure it is ran as root

yes

same problem for us east 1

ok my network block VPN i change in 4G and it works...

Greetings, My attack box has being roaming all day trying to open. I tried on my phone and it works, but not my computer. Please assist...

Hello i need help with running the VPN

Can someone helpme?

sure

can you provide the output of the terminal where you are running the command to use the vpn???

!vpn

^ this room explains how to set it up to connect

!vpnscript

^ and this troubleshoots the vpn connection on linux

@buoyant valley ⬆️

I already sended onto your dm

headdesk no dm:s please as it is against the rules

Okay

2023-10-20 13:50:50 Note: --data-cipher-fallback with cipher 'AES-256-CBC' disables data channel offload.
2023-10-20 13:50:50 OpenVPN 2.6.3 x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] [DCO]
2023-10-20 13:50:50 library versions: OpenSSL 3.0.11 19 Sep 2023, LZO 2.10
2023-10-20 13:50:50 DCO version: N/A
2023-10-20 13:50:50 OpenSSL: error:0480006C:PEM routines::no start line
2023-10-20 13:50:50 OpenSSL: error:0A080009:SSL routines::PEM lib
2023-10-20 13:50:50 Cannot load inline certificate file
2023-10-20 13:50:50 Exiting due to fatal error

This is the error im getting

are you using the eu3 vpn server????

as there are some issues with that currently... try the eu1 or eu2

I'm already modified the ovpn from data-ciphers to data-ciphers-fallback

Okay

you should not do that

generally you should never need to edit the .ovpn file that tryhackme provides

changing vpn server and regenerating the ovpn file and waiting 3-5 mins then hitting to download it again should fix the issue

Oh

Thanks

That was it

it working now??? if so great

Ty

Attackbox?

this vnc[.]tryhackme[.]tech

I don't know if I'm on the right channel, but the machine (AttackBox) is slow as...

https://tenor.com/view/funny-very-sloth-slow-gif-15401812

heya team
I'm trying to connect to ovpn Aus regular 1 and US west regular
on windows via open vpn ver 3.4.2

i'm getting this error

⏎[Oct 21, 2023, 16:15:07] Connected via TUN_WIN
⏎[Oct 21, 2023, 16:15:07] Per-Key Data Limit: 48000000/48000000
⏎[Oct 21, 2023, 16:15:07] Client exception in transport_recv: crypto_alg: SHA512: bad digest for data channel use
⏎[Oct 21, 2023, 16:15:07] Client terminated, restarting in 2000 ms...
⏎[Oct 21, 2023, 16:15:07] SetupClient: signaling tun destroy event
⏎[Oct 21, 2023, 16:15:09] EVENT: RECONNECTING ⏎[Oct 21, 2023, 16:15:09] EVENT: RESOLVE ⏎[Oct 21, 2023, 16:15:09] Contacting 3.104.196.208:1194 via UDP
⏎[Oct 21, 2023, 16:15:09] EVENT: WAIT ⏎[Oct 21, 2023, 16:15:09] WinCommandAgent: transmitting bypass route to 3.104.196.208

i have been playing around with it over a couple of days, tried
https://tryhackme.com/forum/thread/62bc5fb1fcafa700618f25f0
and
https://www.reddit.com/r/tryhackme/comments/vjwvlm/openvpn_connection_issues_ciphers_issue/

Do you plan to use your Windows host to connect to THM or Windows is your VM?

windows is my main pc
going to be using kali in VM
but havent got a bridged connection worked out yet, so connecting to OVPN on windows then into the VM

Oh.. its not really advised to use your host to connect to the THM network plus connecting to OVPN via Windows are a frequent issue (as I've seen posting their queries).

Is there away so I can unlink my tryhackme account with my old discord account

You'll need to ask a mod politely

If you seem them in chat.

Hello guys, I'm facing an issue with the site where the progress I've made in TryHackMe rooms sometimes automatically resets back randomly, after I complete them. I was recently going through the burp suite module, I finished the 1st and 2nd room on that module yesterday, today the 1st room's progress was reset to zero and the second room was still marked as being done with.

is there anybody else facing this issue?

Hello all, I have registered in THM with an invite a friend code, I have received the mail with the code with which I have to buy the subscription in less than 7 days, and this code I have to use it, the problem is that when I apply the quota in the window where I write the credit card, it tells me that the code is not valid.

You might need to email support or chance upon a THM Staff.

!email

hi** x) is there only me how have really sssslooooww rooms like for a week ? that's like impossible to do rooms without waiting like 0.5/1 min response time for each request/cmd

I guess it depends on your ISP and the VPN server you are using?

I can't connect with openvpn all of a sudden for the life of me. Tried rebooting..turning off firewall...reinstalling openvpn and making sure it's updated...regenerated the config file and tried different servers. Tried manually removing all the tunnels.

2023-10-21 09:47:24 /sbin/ifconfig utun12 delete
ifconfig: ioctl (SIOCDIFADDR): Can't assign requested address
2023-10-21 09:47:24 NOTE: Tried to delete pre-existing tun/tap instance -- No Problem if failure
2023-10-21 09:47:24 /sbin/ifconfig utun12 10.6.105.165 10.6.105.165 netmask 255.255.128.0 mtu 1500 up
2023-10-21 09:47:24 /sbin/route add -net 10.6.0.0 10.6.105.165 255.255.128.0
route: writing to routing socket: File exists
add net 10.6.0.0: gateway 10.6.105.165: File exists
2023-10-21 09:47:24 /sbin/route add -net 10.10.0.0 10.6.0.1 255.255.0.0
route: writing to routing socket: File exists
add net 10.10.0.0: gateway 10.6.0.1: File exists
2023-10-21 09:47:24 Initialization Sequence Completed
2023-10-21 09:47:24 Data Channel: cipher 'AES-256-CBC', auth 'SHA512', peer-id: 44
2023-10-21 09:47:24 Timers: ping 5, ping-restart 120
2023-10-21 09:47:24 Protocol options: explicit-exit-notify 3

Maybe it's not adding the routes?

It did create the new tunnel interface

ip a ?

but Initialization Sequence Completed is being reported... does curl 10.10.10.10/whoami not work???

Yea it's not the route. One sec I'll try

and yes check ip a?`too

Do you mean literally type curl 10.10.10.10/whoami? It's giving no output like it's going to time out

errr wait one sec. Let me start over. I turned on another VPN to test if that was working. Turning that off

yuup literal

it will output your vpn ip if it works

and nothing otherwise

Don't hate me but this is Mac OS

So I can only do ifconfig

Curl is looking like it's going to time out

It's odd as it's been working for months without issue

Nothing changed recently

curl: (28) Failed to connect to 10.10.10.10 port 80 after 75007 ms: Couldn't connect to server```

2023-10-21 10:01:51 Note: --cipher is not set. OpenVPN versions before 2.5 defaulted to BF-CBC as fallback when cipher negotiation failed in this case. If you need this fallback please add '--data-ciphers-fallback BF-CBC' to your configuration and/or add BF-CBC to --data-ciphers.
2023-10-21 10:01:51 OpenVPN 2.6.6 aarch64-apple-darwin23.0.0 [SSL (OpenSSL)] [LZO] [LZ4] [PKCS11] [MH/RECVDA] [AEAD]
2023-10-21 10:01:51 library versions: OpenSSL 3.1.3 19 Sep 2023, LZO 2.10
2023-10-21 10:01:51 TCP/UDP: Preserving recently used remote address: [AF_INET]52.4.198.155:1194
2023-10-21 10:01:51 Socket Buffers: R=[786896->786896] S=[9216->9216]
2023-10-21 10:01:51 UDPv4 link local: (not bound)
2023-10-21 10:01:51 UDPv4 link remote: [AF_INET]52.4.198.155:1194
2023-10-21 10:01:51 TLS: Initial packet from [AF_INET]52.4.198.155:1194, sid=fab9b1e3 d4ffc174
2023-10-21 10:01:51 VERIFY OK: depth=1, CN=ChangeMe
2023-10-21 10:01:51 VERIFY KU OK
2023-10-21 10:01:51 Validating certificate extended key usage
2023-10-21 10:01:51 ++ Certificate has EKU (str) TLS Web Server Authentication, expects TLS Web Server Authentication```

2023-10-21 10:01:51 VERIFY OK: depth=0, CN=server
2023-10-21 10:01:51 Control Channel: TLSv1.3, cipher TLSv1.3 TLS_AES_256_GCM_SHA384, peer certificate: 2048 bit RSA, signature: RSA-SHA256
2023-10-21 10:01:51 [server] Peer Connection Initiated with [AF_INET]52.4.198.155:1194
2023-10-21 10:01:51 TLS: move_session: dest=TM_ACTIVE src=TM_INITIAL reinit_src=1
2023-10-21 10:01:51 TLS: tls_multi_process: initial untrusted session promoted to trusted
2023-10-21 10:01:52 SENT CONTROL [server]: 'PUSH_REQUEST' (status=1)
2023-10-21 10:01:52 PUSH: Received control message: 'PUSH_REPLY,route 10.10.0.0 255.255.0.0,route-metric 1000,route-gateway 10.6.0.1,topology subnet,ping 5,ping-restart 120,ifconfig 10.6.105.165 255.255.128.0,peer-id 97'
2023-10-21 10:01:52 OPTIONS IMPORT: --ifconfig/up options modified
2023-10-21 10:01:52 OPTIONS IMPORT: route options modified
2023-10-21 10:01:52 OPTIONS IMPORT: route-related options modified
2023-10-21 10:01:52 Using peer cipher 'AES-256-CBC'
2023-10-21 10:01:52 Opened utun device utun17
2023-10-21 10:01:52 /sbin/ifconfig utun17 delete
ifconfig: ioctl (SIOCDIFADDR): Can't assign requested address
2023-10-21 10:01:52 NOTE: Tried to delete pre-existing tun/tap instance -- No Problem if failure
2023-10-21 10:01:52 /sbin/ifconfig utun17 10.6.105.165 10.6.105.165 netmask 255.255.128.0 mtu 1500 up
2023-10-21 10:01:52 /sbin/route add -net 10.6.0.0 10.6.105.165 255.255.128.0
route: writing to routing socket: File exists
add net 10.6.0.0: gateway 10.6.105.165: File exists
2023-10-21 10:01:52 /sbin/route add -net 10.10.0.0 10.6.0.1 255.255.0.0
route: writing to routing socket: File exists
add net 10.10.0.0: gateway 10.6.0.1: File exists
2023-10-21 10:01:52 Initialization Sequence Completed
2023-10-21 10:01:52 Data Channel: cipher 'AES-256-CBC', auth 'SHA512', peer-id: 97
2023-10-21 10:01:52 Timers: ping 5, ping-restart 120
2023-10-21 10:01:52 Protocol options: explicit-exit-notify 3```

that is a way to long list of ethernet and tunnel devices

something is going bonkers

Should I start deleting interfaces I know I don't need?

The tunnels started appearing after I kept regenerating new config files out of frustration lol.

(And trying new servers)

I can clean them up and I'll try the openVPN GUI

yeah you should definitely somehow clean them up without breaking your system

I know which interfaces I do need at least

as currently it looks like you are connected to 17 vpns at the same time which would definitely cause problems

lol omg

For some reason it doesn't remove the interface when I disconnect

sudo killall openvpn

-9

and you somehow have 7 ethernet devices at the same time too

what kinda franken mac are you running???

@weary spindle K thanks

Gave +1 Rep to @weary spindle

lol. It's a 2023 MBP 17" M2

I almost never even use Ethernet..it doesn't even have a port

I have to use a dongle

sorry correction 8 ethernet devices

haha that's no better

maybe those are from a docker container running

but doubt it

Oh I do have docker

I messed something up

Oh and I think a lot of them are from VMs

Are you running the VPN on your host, then using a VM?

But even after deleting openvpn created a new tunnel interface, says connected, but can't connect to any of the room ips

@weary spindleYes the host

But are then using a VM for THM?

nope

I have MacOS setup with every tool I use

God this is annoying

I say blame MacOs

Ugh I knew that would be the answer. lol

It's WORKING

But yea..I don't know why my deleted VMs...VPN tunnels, Docker interfaces..everytime I plug in an ethernet, etc it creates a new interface!

I think I need to reinstall the OS but ugh...I have hundreds of compiled programs and scripts making it the perfect AttackBox to my liking

Why it started working out of nowhere is weird though.

Can't you take the stuff off on a USB etc?

Yea it will take a ton of time. Let's just hope openvpn keeps working

I think I might be having the same issue as you

but I am using a vm

weird thing is that I can't even connect to anything on AttackBox either

Are you sure you launched the target machine then?

launched it? How do you do that?

I had connected to it last week but now all of a sudden today I cannot connect to it

Im in the Wreath room

Oh yea. you need to connect from the Attack box as well. It's a network room

is it running?

last week when I had my vm and attackbox running at the same time they would conflict with each other, so I had to turn off attackbox and then my vm connected properly

But now I can't even get attackbox to connect to the devices on the wreath network

yes the network state shows that it is running

Can you show me the openvpn output?

!docs verify

(to send images)

I think it looks normal

Hi guys I have just finished my Cyber Careers Fundamentals and it says I have not earned my certificate, can I get some help please

i finished the intro to cybersecurity path and it wont let me download certif

Don't you need to re-join or re-connect to it after a certain number of days as you'll be forcefully removed or was it another room?

Are you at 100% completion or are there rooms you already completed but isn't showing as such?

@true dove

completed all rooms

You can drop THM Staff an email to submit a ticket or issue.

!email

thanks

not sure if this is a site support issue as such, but I'm getting weird external connections to listening ports and http servers I am using on the attackbox for rooms. The IPs come up to random data centres. I think someone is playing funny buggers with the site.

It's something that happens to all ips of the world, it is scanners that map out active IPs and connects to ports to see if they are open, basically a world wide nmap scan

Who do I need to contact if i've lost my authenticator app and cant log into the site?

!email

Hello, I have another problem, when i use a host file on mac os and use openvpn, the adress i use is insanely slow, in my case for example: shell.uploadvulns.thm

when i only use the ip its quite normal

have you added the domain to the /etc/hosts?

Password:

UW PICO 5.09 File: /etc/hosts

Host Database

localhost is used to configure the loopback interface

when the system is booting. Do not change this entry.

127.0.0.1 localhost
255.255.255.255 broadcasthost
::1 localhost

10.10.143.113 overwrite.uploadvulns.thm shell.uploadvulns.thm java.uploadvul$

u mean like this?

yes

ok?

so what do i do now?

is it normal that only like 1 of the ovpn files load?

as far as i can see all of the ovpn files now gives me timeout

Mac OS Latest Version
OpenVPN 3.4

helo

i need help with my room

i holo room S-SRV01 IP -10.200.108-31 don't work another ips is work

i now have a connection but the overwrite.uploadvulns.thm still wont load

The IP address of the computer on THM hasn’t changed yet so I don’t think anything has been reset

Did you define this as a single line?

no

It has to be in a single line with a space in between the sites mapped to it

this is how it looks light right now

Via the browser, right?

yep

firefox and safari

both only load but nothing happens

Safari?? You're doing this on your host?

on my macbook pro 2018 (i guess)

If its purely for educational or training purposes, its fine, but if you have personal stuff in it. It isn't recommended to use your host.

Can you access 10.10.10.10 when connected to THM OpenVPN?

yep

it stays like this

Http only?

i tried http, loads like hell nothing happens

Are you using OpenVPN gui or the command line?

gui right now

cant manage to make openvpn cli working in mac os for some reason, i am new to macbooks

Use command line one

brew install openvpn

If you haven't installed brew https://brew.sh/

okay will try

nope, no difference,

http://shell.uploadvulns.thm/

still loads and lods, but nothing happens

is this related to my macbook? I dont think its on ThM's end

can you try the troubleshooting script

Wait uhh

It does not support mac

what? 😮

I’m using mac too, after install openvpn using brew try to run it with sudo permission and all running well

it does indeed run well and i can open the ip of the room but shell.uploadvulns.thm wont load

I'm also using mac

Did you add the hosts yeah?

yeh they did #site-support message

Holy markdown.

Vul$ looks sus.

probably end of the line

Or they've copied it wrong.

they copied it from UW PICO

and not cat

i need help

What do you need help with?

Hi, I'm trying to connect to deployed machine with OpenVPN. I'm connected to vpn, can access 10.10.10.10. Machine is deployed - can ping it. But after providing credentials I'm all the time getting "Permission denied, please try again." response. Same with all rooms. Yesterday it worked well. Tried every possible vpn server

I have a 7-day streak pass and 1-day streak pass, why is MY streak at ZERO??

please respond, thank you

#site-support

i got my 7-day streak and 1-day streak from the security engineering path. And have not used my 1-day streak from my first 30-day streak! Please return my streak to what it was, thank you!

Did you redeem your ticket streak freezes? Also streak freezes do not stack

If you need help restoring a lost streak you should probably talk to support via email

i dont even know how to redeem my streaks

You click on them in the ticket page

what is their email

!email

thank you @gleaming flume

Gave +1 Rep to @gleaming flume

Thank you for helping. 😎

Gave +1 Rep to @gleaming flume

Hi guys, I just started tryhackme but the free version only allows 1 hr a day

!vpn

You can use OpenVPN and your own Kali box instead of the attackbox to be able to learn for longer each day

im trying to connect to the openvpn with my windows

its just stuck on connecting until it gets timed out

and on the site it shows im connected even though it timed out

works on my linux vm tho..

(I disconnected there)

The windows GUI can be really buggy.

any suggestions what to do?

Is windows your host?

yes

its my pc OS

I have kali on a VM

Don't use your host.

You're exposing the host to the network which isn't a good idea from a security PoV.

How do you suggest to connect to a windows machine on THM using my kali?

Use a vm for Kali.

Sorry what do you mean? I am using kali on a VM

I am just asking how you would connect to a windows machine using kali

Then that's fine, just stick with that.

You can use Reminna to RDP from the kali box if you need to.

Okay I'll check it out ty

Gave +1 Rep to @weary spindle

The THM attackbox for windows did not work great at all lol

Is there a known issue with the LazyAdmin box? It works for like 5 minutes then goes down for 2 minutes and comes back. It is very annoying

I connected to openvpn on my kali and it shows me as connected on the site. I am trying to use reminna to connect to the windows box and it gives me "lost connection" after trying to connect

I could not connect to this machine using the windows attack box too, I wonder if its broken or something at this point

Hello guys, I have issues with openvpn v2 on mac, after connecting to server it keeps reconnecting

❯ curl 10.10.10.10/whoami
curl: (28) Failed to connect to 10.10.10.10 port 80 after 75002 ms: Couldn't connect to server

But openvpn accesswebsite says that I am connected and on network interface I can see assigned IP

any ides?

Log files says nothing interesing.. Mon Oct 23 11:15:51 2023 '18_202_129_195_p7571' -> {'timestamp': 1698048951, 'state': 'CONNECTED', 'vpn_ip': '10.8.198.24', 'server_ip': '18.202.129.195', 'reason': 'SUCCESS', 'type': 'STATE'}
Mon Oct 23 11:15:51 2023 '18_202_129_195_p7571' -> {'proto': 'UDP', 'timestamp': 1698048951, 'server': '18.202.129.195', 'vpn_ip': '10.8.198.24', 'server_ip': '18.202.129.195', 'type': 'CONNECTED_USER'}
Mon Oct 23 11:17:53 2023 '18_202_129_195_p7571' -> {'timestamp': 1698049073, 'state': 'RECONNECTING', 'type': 'STATE'}
Mon Oct 23 11:17:53 2023 '18_202_129_195_p7571' -> {'timestamp': 1698049073, 'state': 'WAIT', 'type': 'STATE'}
Mon Oct 23 11:17:53 2023 '18_202_129_195_p7571' -> {'timestamp': 1698049073, 'state': 'CONNECTING', 'type': 'STATE'}
Mon Oct 23 11:17:54 2023 '18_202_129_195_p7571' -> {'timestamp': 1698049074, 'state': 'GET_CONFIG', 'type': 'STATE'}
Mon Oct 23 11:17:54 2023 '18_202_129_195_p7571' -> {'timestamp': 1698049074, 'state': 'CONNECTED', 'vpn_ip': '10.8.198.24', 'server_ip': '18.202.129.195', 'reason': 'SUCCESS', 'type': 'STATE'}
Mon Oct 23 11:17:54 2023 '18_202_129_195_p7571' -> {'proto': 'UDP', 'timestamp': 1698049074, 'server': '18.202.129.195', 'vpn_ip': '10.8.198.24', 'server_ip': '18.202.129.195', 'type': 'CONNECTED_USER'}

@tender igloo try using xfreerdp to connect

xfreerdp /v:IP /u:USER /p:PASSWORD /dynamic-resolution +clipboard

I don't know if this is the right place to report this, but the link to the OSSTMM Manual in the Pentesting Fundamentals room is dead.
It gives a 404, so the staff should look into that.
That is all. Good day.

So, I used EU-VIP2 as a ovpn file. If I download it and use it with openvpn 3.4 (doesnt matter which Operating system) it wont connect at all to the ThM network

If I change the "data-ciphers <etc>" stuff to

cipher AES-256-CBC

It will at least connect to the thm nework but i am unacble to acces sites like:

http://shell.uploadvulns.thm/

It only takes forever to load

Here is for example my (now) windows hosts file

Copyright (c) 1993-2009 Microsoft Corp.

This is a sample HOSTS file used by Microsoft TCP/IP for Windows.

This file contains the mappings of IP addresses to host names. Each

entry should be kept on an individual line. The IP address should

be placed in the first column followed by the corresponding host name.

The IP address and the host name should be separated by at least one

space.

Additionally, comments (such as these) may be inserted on individual

lines or following the machine name denoted by a '#' symbol.

For example:

102.54.94.97 rhino.acme.com # source server

38.25.63.10 x.acme.com # x client host

localhost name resolution is handled within DNS itself.

127.0.0.1 localhost

::1 localhost

127.0.0.1 view-localhost # view localhost server

10.10.203.61 overwrite.uploadvulns.thm shell.uploadvulns.thm java.uploadvulns.thm annex.uploadvulns.thm magic.uploadvulns.thm jewel.uploadvulns.thm demo.uploadvulns.thm

should i email this to the ThM support or is there a simple solution for this

Have you tried a different VPN server?

I'm going to boot up a machine.

all of them, same result

i only tested the "upload vulnerabilites" room yet so

Is yours still open?

nope, i just started it 🙂

when i give you the ip, could you pls try it?

I am completley sure the error is on my end

I already think I know what it is.

I opened a box and got it.

so....? 🙂

Does it work for you?

nope, still loads to infinity and back, do I have to change something in my hosts file? 🙂

Yes, the ip.

What is your new target ip?

10.10.155.233

Yup.

Works for me.

okay thats good to know but what is the error then? 😮

How do you type it in your hosts file?

DO you do

10.10.xxx.xxx [**tab**] then overwrite.uploadvulns.thm shell.uploadvulns.thm java.uploadvulns.thm annex.uploadvulns.thm magic.uploadvulns.thm jewel.uploadvulns.thm demo.uploadvulns.thm

[tab] is the tab button, not space.

i used tab now, still loads but nothing happens :/

Ok,

Try this

sudo ip link set dev tun0 mtu 1200

In a seperate terminal with VPN active.

currently i am on windows ^^ where do i set the mtu there?

Oh.

Windows is horrible, it may be the OpenVPN GUI that is giving you issues.

same on mac and kali linux but i will try this later on mac

Man I completed Cyber Careers Fundamentals and no certificates, I emailed them and also no response... what is this.

Support can take a little while to respond via email, how long ago did you message them? Also know that if you send multiple emails you get sent to the back of the line due to how their system works.

since friday

I think response time is around 5-6 days right now? I'd just be patient, they will respond eventually

The title security warrios is temporary?

Hello, was a temporary event title for the Security Engineer path. 🙂

not an actual issue but the digital forensics machines on windows been kinda slow ngl

Hello, I lost access to my OKTA application (I lost my recovery codes too...), so I can no longer log in and it's been more than a week since I wrote several emails to support but no response from them !
Do you know how I could proceed to recover my access please ?

Support will reply, they may just be over loaded with emails.

They also don't work weekends.

OK, thnx for the answer

Web Enumeration room, introduction to Nikto, link is pointing to 404 page

Guess i will use the attackbox now for a while Till i found the error. Thank u for your help!

Gave +1 Rep to @weary spindle

I suppose you can use this one instead -

https://www.cirt.net/Nikto-Installing_and_Updating

!docs verify

@polar escarp ^

Oh ok. Thank you

I am verified now

Now you can share a screenshot 🙂

This is what keeps happening. I can make it more verbose if needed:

Which VPN server did you choose when downloading your configuration file?

It did connect earlier but was extremely slow so I disconnected and tried to reconnect and this is the result

When I tried to use the attack box it was also terribly slow to the point it was completely unusable

Did you do the tab or space?

Are you using a VPN outside of the tryhackme one?

No

When I try to connect to other platforms like htb I can connect that vpn just fine

I am also unable to connect with my default ovpn file now haha

The site thinks I am connected

Is your Attackbox running?

It wasnt until I just clicked Start AttackBox

Can you type "curl 10.10.10.10/whoami" in your VM terminal?

Attackbox terminal?

No, VM that uses OpenVPN

After running the connection command*

Ok so you want me to try to connect to the vpn and then run curl?

Yes, just to confirm if the IP you saw was coming from the VPN connection or not

The problem with that is that I am unable to establish the vpn connection

It's just strange that you would see that IP without being connected through the Attackbox

The attackbox is almost up now and the ip up top has changed

Can you share the output of the VPN connection? Also, did you try regenerating the config file?

Hmmmm

10.10.6.35 now. I cant actually control the attackbox though so I guess I will terminate it

Where are you located? Is your internet connection strong?

Yes I have 200 up/down fiber line

Just ran a speedtest too and it is solid

Im going to terminate the attackbox now... its frozen

Now I have no IP up top

Can you try connecting with OpenVPN again, and sending a screenshot of the output?

Sure. One sec

I think the first IP you shared was your OpenVPN IP

Ill regen a new file first

Sometimes the output can be confusing

Which server are you using?

Breachingad

Ah, I thought you said you were trying with your default VPN config.

Same result

I have tried with both

Do you want me to try with my default? I can regen that too

What version of openvpn are you using?

library versions: OpenSSL 3.0.11 19 Sep 2023, LZO 2.10

I regenerated my default ovpn file and used the US-West-VIP-1 server

That one just connected... progress

It also shows the correct IP up top now

Cool!
Can you try leaving the breaching AD room, then rejoining it after a few minutes.
And trying to regenerate the Openvpn file again

Sure

Also give the regeneration 2 mins before donwloading again 🙂

I will disconnect from my default vpn now

It shows me as disconnected up top now (no ip addr)

Just regenerated. I will wait a couple minutes to download

It worked 🙂

Awesome! Thanks for your patience, I should;ve started with that :p

Gave +1 Rep to @polar escarp

All good. I appreciate the assist!

Happy hacking 🙂

Thank you @glacial hound

Gave +1 Rep to @glacial hound

I am experiencing some serious latency when pinging the DC IP in the Breaching AD room

Could you share in #breaching-ad ? I have to go offline for a few hours now, hopefully someone can help you there 🙂

Sure thing

Thanks again

Yeah, i can, but it would be cool to change link in the room

You could try submitting it as a bug in #room-bugs

tab

Strange can you show me your full file?

wait, i will quickly test something 🙂

I just booted up my old kali laptop, loaded the ovpn file, booted up the Box "Upload Vulnerabilites". I got the Ip from the box, copied the Content for the /etc/hosts to paste it in the /etc/hosts and then I tried access the ip, worked. Then i tried to access any of the "shell.uploadvulns.thm" and they only load and load :). I Looked at the /etc/hosts and the tab is in there. Maybe some "copy paste" related issue??

Yeah, I think so, I noticed one of your messages way back, hang on and I'll find it.

GNU nano 7.2 /etc/hosts
127.0.0.1 localhost
127.0.1.1 sn0wf0x-pc
10.10.46.96 overwrite.uploadvulns.thm shell.uploadvulns.thm java.uploadvulns.thm annex.uploadvulns.thm magic.uploadvulns.thm jewel.uploadvulns.thm demo.uploadvuln>

The following lines are desirable for IPv6 capable hosts

::1 localhost ip6-localhost ip6-loopback
ff02::1 ip6-allnodes
ff02::2 ip6-allrouters

This one too.

At the end "vuln>"

where?

In there it looks fine.

I was refering to there.

should I use the attack box now until i found out what the exact problem is? You tested it and it was alright at your end, meaning the problem is on mine 🙂

Is there any other program such as openvpn i can test?

If you're getting a white screen you should change the MTU

will do so 🙂

After 5(!) Minutes of waiting the Website finally starts to build, I changed the mtu on the adapter to 1200

why does it keep setting the mpu to 1500? 😮

Ahh, I solved the problem (Kinda dumb if you ask me)

"Simply" open the .ovpn file and add :

mssfix 1140
tun-mtu 1140

To it, now reconnect to openvpn with the file and voilla 🙂

thank you @weary spindle

Gave +1 Rep to @weary spindle

Hi, I canceled my subscripton on 18th of october and after 3 days it renewd itself, i have no idea why. I've send email to THM support but they are not responding (4 days ago). Is there any other way to contact them? Thanks in advance
I don't know which channel to post this to so pls correct me if i chose the wrong one.

Heeey, trying to connect to OpenVPN from Kali VM and getting this(screenshot), the data-ciphers is already set in .ovpn file, changing to to just cipher gets the Deprecated message, I saw on the forum that setting both cipher and data-ciphers helped some person, well for me it did not, I'm not really familiar with OpenVPN, but I guessing this has something to do with this line "Note: cipher 'AES-256-CBC' in --data-ciphers is not supported by ovpn-dco, disabling data channel offload"...? Any tips on how to fix it, please?)

Which server are you using?

I've tried the regular eu3 and eu1

The newest vpn packs should the right cipher.

Which version are you using?

(Also which country do you live in)

If by version you mean the OpenVPN one then it appears to be 2.6.3, Ukraine

Hey folks, is there a way to link my current account to my google account for SSO? I had my THM account before they added it, when I try to sign in with the google account I also use for THM, it says I already have an account and must use those credentials.

I tried looking around my profile options but am not seeing anything related

It's been 4 business days and weekends and still no sign of support email or my certificate

I'm running into the same issue, but on Windows with the OpenVPN client. Have tried on 3 different PCs with 3 different files, and tried every server available. Still, the THM site says im connected yet the connection doesn't work.

Support don't work on weekends.

If you are on Windows, have you tried using an older(2.5.x) versions of OpenVPN?

it's still 4 days bro and it says I don't earn my certificate when i completed it

i've gone down to 2.6, ill try 2.5.x and get back to you

Or avoiding Windows.

No thanks

Gave +1 Rep to @weary spindle

I realise it's been 4 days, howover if 1% of the THM was to E-mail in, that would be over 2k E-mails, they are very busy and will get back to you. 🙂

The Openvpn GUI for windows is buggy.

Also, is it your host?

I'm on windows, not switching to any othe rOS just for this minor inconvenience 🤷

So what's the purpose of this support on discord then if I can't get help with it?

Account related issues is dealt with over E-mail.

Yeah, but you could use a VM to use Kali, or the attackbox.

This minor "inconvenience" is creating a small security issue with your network, as you're exposing your host system to a network full of hackers, who can scan your system via your OpenVPN tunnel, it works both ways.

And if you're running a vulnerable service on a port, it will be found.

If OpenVPN is buggy then i rather have them fix it than me having to jump through hoops just to have 1 feature working

It's not an issue in THM's end though, it's OpenVPN.

Okay...

So, any help on how to fix it or just workarounds that dont fix the actual issue

There is nothing we can do it.

It's a gui issue with OpenVPN.

The only thing I can suggest is either running a virtual machine on your host system.

Or using the Attackbox.

Which country are you in, may I ask?

This did indeed work. Strange that any version above 2.5.9 doesn't work

they said that its 2.6 problem

Unfortunate

I just have no idea how to revert my on kali back 2.5.x since the 2.6 is the only one in kali repos

Lol

2.6 is fine in Kali, what issue do you have?

.

True, it does work on Kali for me. Just cba to spin up a VM just so i can work on rooms

EuReg3 is the issue.

I've tried eu1 as well

and eu2

Which country are you in?

I'm feeling Deja vous.

yup

Ukraine

Can you cat your config file please?

Бережи себе, друже.

wait a sec gotta turn the vm on

This server is english only, please; it makes moderation much more difficult if we let people use other languages, unfortunately

Totally understand that, apologies.

Thank you for being understanding!

Gave +1 Rep to @nova stump

#site-support message

Try this.

hey, that looks promising gonna try it out in a bit

checked the pool after this, there is only 2.6.3

how come i can't deploy the virtual machine in tryhackme even though i am connected to openvpn

never mind got it!

😄

good cuz i didnt understand the question at all lmao

lmao ur not the only one

i have this strange thing as well

when i connect to openvpn, it doesn't actually connect yet when i check my access on tryhackme.com/access, it says im connected

Why I can not see complete beginner path in my learning paths?

There are totally 13 paths, and I only have 12

it is because of an A/B test being run for some users... the link to join the path if you still wanna do it is in the channel topic in #878393611929129000 channel

Thank you

Gave +1 Rep to @plush bay

no problem

Hello, where do I go for help with subscription related issues.
I have raised a ticket and it's been 5 days and no response. So any help would be appreciated.

If you've already dropped an email or raised a ticket, simply wait for them to come back. Otherwise, your ticket will be pushed at the bottom of the list. THM Support doesn't work on weekends, but the going response time is around 5 to 6 working days.

I don't know whether this is a bug or not. I already finished the previous ComptTIA Pentest+ path before the update and got the certificate. After the course update it says that I haven't finished the course (well, duh), but I can still download my previously issued certs. If I finished this newly updated ComptTIA Pentest+ will it override the certificate?

The name in the old certificate is not my real name so if I can get a new one it will be great

Good question!

Hopefully someone will answer, or I'll forward it on to staff.

I am unable to connect through ssh in Linux PrivEsc anyone help

@weary spindle

Is the user correct?

Ya everything is correct

Their is some problem in this room I guess because i check the forum their others also face same issue

Can you show the credentials part?

Are you on the vpn?

Hi .. I have a problem with my THM Account I forgot the password, the link isn't working for me, and the email never arrives. 😩

!email

You'll need to E-mail support.

Sorry, not sure if this is the channel to ask the question. Is there a proper way to reedem the price from the recent ticket events? The frist email ticket got closed without any response. The support from second email stating the event ended on 25 Sep. So no one can actually redeem the tickets?

Which tickets?

Laptop..

Oh boy.

What tickets specifically ?

Laptop..

You don't redeem those tickets, you were required to E-mail.

I emailed ticket@tryhackme.com but the first ticket was closed without any response. Second one stating the event ended..

And winners were contacted from mid October on onwards.

They're either still going through the winners, or everyone has been contacted.

But looks like the support team don't know how that works

The support team do, because they need to manually check the tickets to ensure there is no cheating, and AFAIK, it's first come, first served.

I wrote an email but I don't receive an answer 😢

When did you E-mail?

Monday and Tuesday

Ah, well, when you E-mailed on Monday you would have entered the queue, when you E-mailed on Tuesday you would have pushed your ticket further down the line,.

Support are super busy, and they don't work weekends. They'll get back to you ASAP, don't E-mail in too many times, generally wait 7-8 days before sending a follow up E-mail.

Ohh I understand...then I'll wait for the answer next week ..

Hiya! I am having issues purchasing the subscription - the pop-up wouldn't load. I've tried different browsers, vpn, etc but to no avail.

Do you get an error in the browser console.

nope, nothing. it's just keeps spinning. how can i upload pic here?

You need to verify your THM account.

I used to have subscription before. but i don't mind to re-verify

A second discord accout?

oh, i thought you were talking about thm account

No, you have a token you can link

ok I'm going to need more help with that. Where do i get a token from and where do I link it to?

In your profile

ok, got the token. where should I link it here?

Follow the link above.

i can't see it

!docs verify

ok thanks. i think ive done it

Gave +1 Rep to @weary spindle

You're not verified.

should be now

It is.

this is what i am facing

Can you open your console?

opened

Do you have any errors?

Thanks, will wait for a reply

Gave +1 Rep to @weary spindle

Screenshot the whole page please

You’ll need to email support, provide all the same screenshots

I did. Opened a ticket even. No reply so far

When did you send it?

Yesterday

They’ll be with you soon :)

one can only hope (:

I tried it just now and was able to login to the VM. Use the below command:

ssh -p 22 -oHostKeyAlgorithms=+ssh-rsa -vv user@<ip>

I suspect they weren't on the VPN.

Thanks you

Gave +1 Rep to @ivory spruce

It's works

I've been having some connectivity issues with a few rooms today. Is this a known thing? Connecting via openvpn and haven't had any issues this week until now.

No issues on my end

hmpf...I'll try the browser box and see how that works

regenerating openvpn key seemed to work 🙃

hello openvpn don't working loading and loading

webiste

define loading?

i have to get to website in task i i copy ip machine and can't end

Attckbox or vpn?

vpn

!docs verify

can you verify and screenshot plz

attackbox normal work

So it must be an issue with your vpn/connection.

holy moly ):

Hi, is there any site bug, I'm getting a one day streak freeze for each validated question (Holo-network room for now) or is it expected at this very precise task ? 😅

It'sreported. 🙂

how open option headers in Burp im in proxy intercept raw but i should next to raw see headers

Hi, should I be able to enter machine from this room https://tryhackme.com/room/walkinganapplication without vpn?

Is there any problem with support@tryhackme.com I sent two mails (it was 6 days from first mail), but there is no response until now

I checked just now and it seems you do.

THM Support response time is approximately 5 to 6 working days. Please do not submit a new ticket after your previous one as it would result in your ticket being pushed to the bottom of the list.

Can you share a screenshot of the intercepted request? It should display the headers unless you are after the heads of the server response? In which case, you need to send the request from Proxy to Repeater and send the request from there.

Yeah and isn't this a bug? Author of the room is THM so let's hope someone from them is gonna check it

@sharp bear would You be so humble to check this? 😄

Good night, i was wondering if someone could help me with something really quick

Well, always in the tasks when i have to connect to the url of the machine it just doesnt work , like this url : http://10.10.203.182:81/. i tried even in the attack box and doesnt wanna connect neither, i already configure the foxyproxy and everything ,i tried in my mozilla browser too, and its not the first time this happends

Please don't ping staff, there are plenty of members to help out.

Do you have burp enabled?

Yeah, I know but I think that only person that is responsible for this room can answer to this. I mean - all other rooms that I've encountered needed vpn. This one doesn't. But it doesn't seem critical either so maybe that's a proper behaviour? Anyway - I doubt that anyone from out of THM can confirm or deny that

It's not a bug.

Any link resembles https://LAB_WEB_URL.p.thmlabs.com

Can be accessed without a vpn as it's public facing, and not private.

Where as http://10.10.10.10 Is a private IP, so would need a tunnel.

And also the person you tagged, may not have created that room.

But it is (at least in my case this time) 10.10.132.70

Oh wait, it's 10-10-132-70

Are you just accessing http://10.10.132.70 ?

So thats subdomain?

No, that's the private IP.

No, I'm accessing https://10-10-132-70.p.thmlabs.com/

Can you show a screenshot?

I'm not on the VPN and I can connect to it fine.

That's working?

And now it's loading and loading and loading

Read what it's telling you.

So it doesn't work for me with dots

Firefox has blocked it because it thinks it's suspicious.

Yeah, but that's false positive

Yup.

So I've clicked continue aaand now it's loading and loading

Any links that have .p.thmlabs.com are on THM's public domain.

And now

Even if it starts with 10.10.x.y?

https://LAB_WEB_URL.p.thmlabs.com - Public facing. (VPN not needed)

http://10.10.xxx.xxx/ - Private facing (VPN needed)

Ok, I need to study more about web apparently cause I don't get it at all. Anything that makes sense to me in this situation is that 10-10-xxx-yyy was a subdomain but if it works with dots...

Oh wait...

Are they just splitting 10.10.xxx.yyy network into let's say 10.10.0.1 - 10.10.128.255 as private and 10.10.129.0 - 10.10.255.255 as public?

And to public they add .p.thmlabs?

Yes to this one.

No they have public facing IP for a public site

10.10.x.x is a private network

#site-support message

😅

haha yea as scrubz said

many times

But it doesn't make sens... 10.10.10.10.p.thmlabs.com is inside 10.10.x.x so WTF? Because server ip is still just 10.10.x.y right? There aren't any Magic Network Classes that have x.y.z.a.b.c. There are just x.y.z.a

Always 4 octets

not 6

That's a subdomain

As I said there

So is it or not? xD

It's to specify what network yours is

Scrubz said correct

My brain is melting right now xD

http://10.10.132.70/ is a private IP

10-10-132-70.p.thmlabs.com
||
v
This is subdomain

Which part? 10-10-132-70?

Yes

That's exactly what i meant there XD

Yeah but Scrubz was talking about http://10.10.132.70/

Aaah, now i get it... We were typing in the same time. This question was to my own comment there

Yeah

So all good?

And there's the beginning of misunderstanding

Yeah, thanks

Oh wait, no...

I get it that subdomain can be with dashes

But it still works with dots

Do they made subdomain nested 4 times? xD

It is supposed to be dash

perhaps ye

Yes, it should. But as You can see, works with dots

Ok, that's savage XDDD