#site-support

yes, it used to work fine, even for the few times I access via my host machine (most of the time I use my kali VM dw)

when I regenerate a new vpn configuration file, is it normal that the IP stays the same?

Yes, your tun0 is tied to your account.

its always loading

just noticed that connection is not displayed in my access page on thm, yet I can ping room machine

ip a | grep "tun"

For me please.

OK you're connected.

yes, it changed now in access page after refreshing multiple times

Can you add the ip and botsvtwo.thm

To your hosts file?

Which room are you doing?

Can you try now?

it is splunk2, same problem :/ i'll try another room rn

Wait

Too late, you closed it.

Can you re-try deploying the room, and if it doesn't work.

sudo ip link set dev tun0 mtu 1200

Use that command with your VPN active.

no

No?

Just avoid the gui all together?

I agree.

https://openvpn.net/community-downloads/

1. To connect to OpenVPN on Windows, you will need to use the OpenVPN connect software provided on their website.
   https://openvpn.net/community-downloads/
   Open the above link, select the most recent release and download the version that is supported on your machine (x64, x32, ARM).
2. After installing and running through the setup wizard, head to the access page and download your configuration.

If your region does not appear on the list, select the one closest to you.
3. In the bottom right of your screen, on the task bar, press the click the icon that looks like an up arrow (^). There should be an icon within the new window that looks like a monitor with a plug, right-click. This is where you will manage your OpenVPN connections.
4. Next hover over “Import”, select “Import file” and navigate to your OpenVPN profile.
5. Finally, right-click on the OpenVPN icon again, select “connect” and wait for it to notify you that you have been connected successfully.

the MTU trick worked 😄 thank you!!

Gave +1 Rep to @weary spindle

Ah great!

Happy hacking!

i already have the "burpe'd" badge that means i've completed the rooms of burp suit. then why am i still getting this? I know that the course on this topic is updated but still.

When rooms are updated, your progress is removed

📌

Soon™️

@ivory spruce Thank you for the help I do see it is 25% of the first 9 spots when I do the math. Just bad luck I didn't answer in the first first 4 months (April May June July) for those max points. The page does say the month it's so it being multiple did throw me off. I'll try and close my ticket on the site as well

Gave +1 Rep to @ivory spruce

Hello everyone 👋

Thank you for all of the help reporting bugs and issues with the site. We've had a surge in requests over the weekend and it'll take a little longer to respond - I'm really sorry for the inconvenience!

We're working our way through the backlog and will respond to all open tickets. Just in case, make sure not to submit multiple requests for the same issue as it'll push delays back further.

Thanks for your understanding - we'll be back to normal very soon!!

Hello, I sent an email about a streak replacement on the 22nd as I lost my 568 day streak due to a drunk driver knocking the pole down and causing the internet to go out. Just looking for an update whether support is backed up at the moment. Thanks! 🙏

Give it a few more days, if they haven't replied by Wed/Thurs, I'd send a new mail.

(Staff won't work weekends)

I keep receiving the same email ("your streak is about to end") even though I unsubscribed from it a few times already, I guess I should contact support?

Hey, I've finished "Cyber Defence Frameworks" but some rooms are not checked as done. Any idea? Is it a THM bug?

Thanks!

Gave +1 Rep to @weary spindle

Hello,
Just for information, the 3rd link UAC bypass techniques detection strategies in the Conclusion of Bypassing UAC (https://tryhackme.com/room/bypassinguac) needs to be updated
from: https://elastic.github.io/security-research/whitepapers/2022/02/03.exploring-windows-uac-bypass-techniques-detection-strategies/article/
to (I believe): https://www.elastic.co/de/blog/exploring-windows-uac-bypasses-techniques-and-detection-strategies or https://www.elastic.co/security-labs/exploring-windows-uac-bypasses-techniques-and-detection-strategies

What happens when you refresh the module page?

Can anyone help me connect vpn to my vm it will just not connect at all

Waiting for an answer from support since the 13nd already 😅

What sort of error are you getting?

Which server?

Which country do you live in?

some reason I cannot send a screenshot but it says for error that connection timeout

na east I tried others and same thing

I line in the caribbean

!docs verify l

i try the sudo /path/file

!docs verify l

!docs verify

whats this for?

To verify your account to post screenshots

I tried verifying it aint working

Did you get a reply?

after sending my token no

pm u share my screen?

No thanks,

Besides, I'm on my mobile.

sigh

Hi all

Yes, the verification process isn't working

I'm trying the same thing

I've pinged staff, hang tight please. 🙂

No worries, thanks for the help nonetheless

Can you try now?

Yup, 1 sec

Done

Works

There we go 🙂

You should be able to verify now.

Do roles update automatically?

(level wise)

Never mind, got it

Not always, there is a daily sweep by the bot, you might need to force verify each time you rank up.

cant get my certifications . username "baranihor2000"

all moduls are completed

thnks for your help guys

and It's not working?

no 😦

!eamil

!email

Please contact suppport. 🙂

You’re not doing too well with commands this morning are you? 🤣

No 😦 haha

send it

thnks @weary spindle

hey folks having problem joining this room, it redirects to my rooms >> https://tryhackme.com/room/breachingad

Do you have a streak of 7 or more?

whoops

ha sorry 😉

cant find that info tho 😦

If you have a streak more than 7?

to join room,yes

cant find

It's there.

Subs get access.
Non subs need a streak of 7 or greater.

oh, to reach this room?

To access.

If you try to access it will forward you to on /r/rooms if you don't meet the criteria.

oh

(staff are looking to change this AFAIK)

this is new stuff?

ok

thx bro :/

hey i need to complete a chat bot python so any one here can help me

@weary spindle

Not too sure what I'm looking at.

this is what happens when I try to connect to the vpn

MacOs?

kali

on VM

Are you using the CLI to start the VPN?

and not the network GUI ?

I dont know what u mean but I download the file and impported the configs then tried to connect

you need to use the openvpn application. Not Kali's in-built VPN app. It doesn't know how to use OpenVPN files.

Just need to simply sudo apt update and then sudo apt install openvpn

i used sude /pth/file it connect but it would not connect that weay, kind of worries me

cause it fails

I did the update and install already

okay cool. so yup just need to sudo openvpn /path/to/vpn.ovpn

it connected but it connected weirdly

how so?

so why connect like that but not the standard way?

Which server are you using?

@zealous yoke I meant to ping Jabba, some people are still having issues with Eu-reg-3

what is "weirdly"? and it's because the Kali VPN manager doesn't know what to do with OpenVPN files

"Initalization Sequence Completed" means it has connected perfect. You're good to go. Just make sure you don't stop that or close the tab (I usually just minimise)

Yes I realized, I use another tab for working time

timing out or is it another issue?

Timing out I think.

kk. I need to try and find out what server that is exactly

got it. This file I just generated connects fine. Have they re-generated their config since 27th of october?

@weary spindle

I've asked them and they said yes, but I'm not sure if they've just downloaded a ne wone, or properly regened it

Mhhm okay. There were some fixes for the server on the 27th but it means having to regenerate VPN files. Good first solution would be to tell them to regenerate and then download. If that doesn't work, give me a ping 🙂

Another issue I have is not getting my certificate

and its been two weeks and 3 days no word from support

certificate for what?

Oh, another one.

Or same person... 🤔

I'm soon about to complete pre security as well I hope it is not the same when I am done

i've been trying to get help two weeks now on discord man the email thing aint working

emailed once and waited patiently

Can you expand the modules on the left please

Support are really busy at the moment unfortunately

mhhm that's odd. I'll forward this on internally

thanks for the screenshots 🙂

#site-support message It's not an isolated one.

I posted in the other channel and Jabba tagged Gonzo. (incase you didn't know)

ah okay yes now I see

no thank you bro

Gave +1 Rep to @zealous yoke

I am facing a problem in room "Linux fundamentals" where the terminal opened in attackbox is not related to the room. because of this i cant find the answer.

I believe for that room you do not use the attackbox, but instead you just launch the machine within the room which will open up in split-view

for linux fundamentals 1 you should not launch the attackbox.... if you did check the split view of the attackbox and there is a tab at the bottom to switch to the terminal for linux fundamentals 1

for linux fundamentals 2 and 3 the first task tells you how to connect to them using ssh in the attackbox to get the correct user and be able to find the correct files

Hi all, have you considered a dark mode for the site?

For those of us who stay up late learning

I obviously use extensions that help with the process but I mean something more native

It's in production.

Awesome

Thank you =)

Hey guys, I've been using THM for a week now and the first few days I was having no issues. But the last 2 days, when attempting to load up a machines IP through firefox while connected to openvpn in KALI, I have been stuck continuously connecting. I have tried changing VPN servers to no avail. the rooms I am getting this issue are OWASP top 10 and OWASP juice shop, but I assume it is for all machines.

Do you have foxyproxy running that could be preventing it from loading?

It is disabled

What is the output of the openvpn?

I sent you a DM as it was too long

You should also before dming people in this server as it is part of the rules, but I'll take a look

Hmm, what VPN server is this?

oh sorry

its us-west-vip

You can send screenshots here you know, seems like the VPN is working though. Still can't access the rooms? Are you sure you have the right victim IP?

Still can't

It says im connected in the screenshot, but doesn't give me my IP

And yes, I'm sure it's the right victim ip

When you do ip a what do you see?

loads forever, continuously transferring data

@slate comet please run the command ip addr show from the bash shell

this will show you all the active interfaces, and help us troubleshoot why you can't connect

ok, that looks good

you have the vpn running in a another terminal or are you using the gnome-network-manager GUI?

in another terminal

thanks

Gave +1 Rep to @gleaming flume

Done!

Hi people ! I'm tryin to connect to THM via openvpn but i got an error :
2023-11-01 11:30:35 Note: --cipher is not set. OpenVPN versions before 2.5 defaulted to BF-CBC as fallback when cipher negotiation failed in this case. If you need this fallback please add '--data-ciphers-fallback BF-CBC' to your configuration and/or add BF-CBC to --data-ciphers.
2023-11-01 11:30:35 Note: cipher 'AES-256-CBC' in --data-ciphers is not supported by ovpn-dco, disabling data channel offload.
did anyone had the same issue ?

Which server are you using?

EU-Regular-3

Can you try to regen it again?

If that fails, try Eu-reg-1

@zealous yoke

Im on it ! Thanks for fast reply

Gave +1 Rep to @weary spindle

No problemo!

Tried to regen config but the same error persisted so i moved to another server and now everything works fine ! Thanks again

this can't be right... right????

an ip ending in 0

not really.... if it was 10.10.0.0, then it would be odd; it's unlikely that the subnet is a /24

ah

Yeah, I've had 0's in mine before,

still feels whack but apparently it is valid

Hello everyone)
I've bough voucher, but forgot to write down...
I know that I can view it somewhere, but I can't find this info, so can somebody lend me a hand, please? (I'll be grateful for help)

Did you get a dashboard in your emails?

If not, you'll need to contact support.

!email

Hello guys, i connected the vpn properly but i cant connect to machines can someone help me please?

Which machine are you trying to connect to?

its a THM machine

That narrows it down to over 500.

Which one specifically...

ah sorry, linux fundamentals part3

Are you doing

ssh tryhackme@machine_ip ?

yes i tried many times

What is the ip?

10.10.216.221

I just logged in.

Are you in the attackbox or vm?

it was working for me on attackbox

but i m trying to use openVpn on kali

Ah!

ip a | grep "tun"

Can you run that command for me please, this will list your interfaces, but grep will pull out all the tun* interfaces, those are the ones I'm interested in.

If you get no output, you're not connected.

i have an output, and i m already connected on vpn i can see it

When you do the ssh command, do you get a response?

nothing

sudo ip link set dev tun0 mtu 1200

Use that command with your VPN active.

and then re-try

it worked thank you very much!!, what problem i had?

I think the packets were just slightly too large, so the MTU 1200 lowered the packet sizes that were getting sent in each transaction, if you know what I mean.

Best way to picture it, you're trying to put a 7cm cube in a slot of 5cm.

ah okay understood, thank you again!

is the server down or something i am not able to open the rooms as it keeps loading. but never finishes.

same here

Yeah looks like a server issue for sure

I wasn't able to get it to load regardless of being logged in or having any browser extenstions running. I even tried a no cors browser because I saw some sort of cors error in the dev tools.

is there anyway to notify anyone about this?

I posted about it #site-bugs, but I am unsure if pinging staff is allowed for this, oh hey Scrubz

@crystal marlin

Some users aren't getting machines deployed.

For me the rooms aren't even loading in -_-

same

same for me

no flags today gents lol

Hi there !

I've pinged Fontaene, and posted in another chanel, someone will pick it up sooner or later guys.

Yes, it seems the site is down. Every page I try is just stuck at loading.

we have some problem with THM ? , i cant charge my page

Hi all, we are aware and looking into the issue.

hi Odacavo ! thx you 😉

ya man thx

Oh 👋 odacavo

Is someone around who has permission to post on #announcements ?

its working thanks

The issue should be resolved now, thanks everyone!

@scrubs i'm curious was my issue with the certificate was looked into? I just completed another and can't receive it

@weary spindle

So.... Does it rewrite the name?

It's been a week and no answer

Noob Question: Is it possible to pop out the browser based AttackBox to a different window?

In the bottom-left of the AttackBox iframe, there's an icon to move it to a separate tab.

Thanks, you have revolutionized my THM experience

Gave +1 Rep to @tawdry orbit

@weary spindle is not a member of THM Staff. Do give them some time as they are swamped with tickets and the average response time is around ~6 working days if I read it correctly a few days ago.

Give them sometime to respond. THM Staff will get to it as soon as they reasonably can.

its been 3 weeks

hi,
To change my CB card, do I have to wait until the end of my account subscription?

No, check the pinned posts for a charge bee url that you can use to change your card.

Thank you @weary spindle

Gave +1 Rep to @weary spindle

test

Hey, I got stuck on a box "ustoun:Windows Active Directory Challenge :)"
I dont like to use the writeups as i dont think they help me to learn so much... however eventually i gave up on this 1.

All the write ups say to take SVC-Kerb password (smb enum) and use it to log into mssql

unfortunatly no matter how much i try i cannot find any evidence of an mssql server running nmap 1433 closed nmap --top-ports 20000 doest list mssql
and currently im running nmap -p-
but going by the screenshots in the write ups it should be on 1433

does anybody know is this box broken? am I doing something wrong?

Hello there. I won 7 days streak saver in the security engineering pathway, and my streak was more than 60 days. Today it became zero. Can you help me with that issue?

!email

You'll need to E-mail support.

Thank you

Hello,
I am trying to solve the Active Directory Basics room (https://tryhackme.com/room/winadbasics), and I have to connect with RDP. Yesterday, I managed to connect for a while, and then I could not get it to connect to the VM. Today, I still cannot at all.
I observed that the VPN IP I have is 10.9.x.x, while the VM is on 10.10.x.x, but both netmask are 255.255.0.0. Is that expected, or could that be the reason?

those ip ranges wont matter and it should still work just fine

!vpnscript

check that to see if there are any obvious problems

All right, thanks. I was wondering if the route was an issue

I checked that the website sees my VPN IP, and it does. I tried EU-regular-1 and EU-regular-2 (EU-regular-3 is still not working)

it could be other issues hence check the vpn script

as that one will find nearly all issues related to the vpn

That is for Linux though, and I am using Windows this time

hello, I'm trying to do the intro to offensive security but the attackbox does not have the wordlist that I'm supposed to use for the exercise. what do?

root@ip-[REDACTED]:~# gobuster -u http://fakebank.com -w wordlist.txt dir
Error: error on parsing arguments: wordlist file "wordlist.txt" does not exist: stat wordlist.txt: no such file or directory

that room opens it in split view

I restarted the VM after connecting to the VPN and it seems better. Fingers crossed!
... and the time to say that, the RDP connection just dropped 😦

use said split view and don't use the attackbox

I think i am in both

I clicked start machine* and it made me open attackbox which opened split view

at the bottom of the split view window there are basically browser tabs if you opened both

ahhhhh thank you

no problem

Well, I use RDP from the virtual machine itself... 😆

wait you are running the vpn on your host and using a vm to connect???

because if yes that could cause issues

No, I had issues last time with that, that is why I am using Windows directly 😦

Thanks for the help @plush bay

Gave +1 Rep to @plush bay

I will use the RDP inside the room VM

Can I get any free cupon to use attack box as free
[3:49 PM]
I cant pay 14 USD per month but wanna learn

Tried to work on this room again and surprisingly, this payload worked and successfully rooted it. However, when I read other write ups and tried their payload, the 'Internal Server Error' still comes up.

Do you have a device you can use to run a kali VM on?

I've been working through the Compromising Active Directory rooms and having terrible issues with the Networking Stopping and then not coming back up properly when restarting. It happens while I'm actively working via SSH or RDP session, so there's clearly network traffic going. I'm using AttackBox.

Just now it went down, I was able to restart and get reconnected to one VM, but one of the servers is down so i can't proceed. Any recommendations here? (also, is this the right channel for this?)

What are the differences between ext4 and ext3 file systems from a forensic perspective guys ?

Hey there! ...Im trying to subscription. can i change the subscription currency to Euros?..or do i have to use the GBP option

subscribe*

Hello where can i get ticket or any room that can get ticket ?

Ticket event is over now

Hello!
Could you please help me? I want to connect from a Kali Linux virtual machine to TryHackMe using OpenVPN, but when I try, I get this error.

2023-11-03 17:04:03 Note: --cipher is not set. OpenVPN versions before 2.5 defaulted to BF-CBC as fallback when cipher negotiation failed in this case. If you need this fallback please add '--data-ciphers-fallback BF-CBC' to your configuration and/or add BF-CBC to --data-ciphers.
2023-11-03 17:04:03 Note: cipher 'AES-256-CBC' in --data-ciphers is not supported by ovpn-dco, disabling data channel offload.
2023-11-03 17:04:03 OpenVPN 2.6.3 x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] [DCO]
2023-11-03 17:04:03 library versions: OpenSSL 3.0.11 19 Sep 2023, LZO 2.10
2023-11-03 17:04:03 DCO version: N/A
2023-11-03 17:04:03 OpenSSL: error:0480006C:PEM routines::no start line
2023-11-03 17:04:03 OpenSSL: error:0A080009:SSL routines::PEM lib
2023-11-03 17:04:03 Cannot load inline certificate file
2023-11-03 17:04:03 Exiting due to fatal error

which VPN are you trying to use?

Which server?

Did you sudo?

Server:EU_Regular_3

Yes, I executed this command using sudo.

Yeah, that server has been having problems, please use 1 or 2.

it got fixed, but you'll have to regen the file

Still didn't work for the last few people I asked to do that.

oh ok, carry on

Thank you!
I have connected to the first server.

Gave +1 Rep to @weary spindle

Can someone pls help me with a easy DDOS programm. Only for educational! i tried to code a programm that can DDOs an IP adress or an URL pls somebody help me with this I tried it probably like a year now to fix all the problems with my programms so I wnat to start all over again.

Somebody will get to you, please be patient. 🙂

help me, pls!! “Permission denied (publickey)” Linux 2

When trying to join a room, when I click the Join button, it jus takes me to my joined rooms screen and doesn't actually join me to the room.

Have you tried to clear you cache and logging in again?

Can you link the room and the task please?

https://tryhackme.com/room/linuxfundamentalspart2

Task 2

Tried to login just now and was able to successfully with no issues.

Hello! I'm on task #4 in the Pre Security - What is Networking? room and I can't complete the task because the website header is covering the IP address input at the top of the virtual site. Is there a way around this?

How long does it take to hear a response back from support THM email?

It's been a couple days and I haven't heard anything back yet and it's a pretty serious problem as I can't use my THM

Support is really busy, and they don't work on Weekends.

how can i extend my subscription ? when the bf discounts are out

You can't, you need to wait for it to expire.

can i cancel it and resubscribe ?

I think you'd need to E-mail support, but I don't know if there will be a BF sale, more than likely in December if there as AoC.

Hi guys I just have a question about File Inclusion Challenge 3.In this challenge Web server filters GET Requests and because of this reason we use POST requests to escape from filtering .But when we send our filename path in a form using POST request our data is encoded by the browser before sending process and is sent in request body to the server. So when ı write the path of the /etc/flag3 with the necessary null byte(%00) the file path is sent in an encoded style.When ı get my response which ie sent by the web server ı cannot get /etc/flag3 file the (../) parts are working and is not filtered by the web server but %00 part is filtered and ı cannot get rid of (.php) part. So If you can help me about this issue i will be grateful .

I can't connect to any of the machines. I can't even ping 10.10.10.10, but on the site it shows, that I'm connected. I have tried to change location and to regenerate config. I have also tried to run tryhackme script, but it has redirected me to discord. I have also tried to reboot my kali and all the services. Nothing has helped me 😦

What server are you trying?

Which country do you reside in?

I'm trying EU Regular 1, I'm from Russia

Laso tried through my own vpn - didn't work

Laso?

throwback url redirects 404 not found right now for me

Also

Permission Denied (publickey,password).

Which IP are you logging in to?

10.10.241.5

but I've already tried with different machines (AttackBox)

What machine is it?

I use only AttackBox

Are you trying to ssh in to the attackbox from the attackbox?

sorry if the answer seemed rude

i just start machine

.

….

I'm too stupid

Realised your error?

Please forgive me for taking up part of your time. I got it now

Due to the fact that my English is bad, I didn't watch the video, and after what you said, I took a look at the video and realized

Hi. I was trying to ssh into the deployable machine for basic penetration testing room. So I was asked to input password and I typed "tryhackme" and it kept on saying incorrect password. Is there a new password for the room?
Pls @sharp bison answer it's very urgent

are you 100% sure you are meant to ssh into the basic pentesting room??? there is no tryhackme user on that target machine and you are not provided a password... you are meant to figure those out yourself and get access from there

But how pls 🥺

can you link to the room... can probably help a bit then

I can access the room

the https link

like https://tryhackme.com/room/example

https://tryhackme.com/room/basicpentestingjt

yuup that was the one shadow thought you were talking about... watch the video on top of the tasks list to completion... it will teach you all the steps to take.... this is a ctf room and most of those won't give you ssh access imidatly

Thank you so much for your time... I'll watch the video

Yes I did

What room? Sometimes that happens when you try to join a room that you do not have the required streak for.

Any of the active directory ones

Do you have a streak of at least 7 days?

No

You need a 7-day streak for Breaching AD and Enumerating AD if you are a free user

The other AD rooms are subscriber only

Aaaah ok. I thought it was just broken lol

i am able to use the openvpn connect just fine on my ubuntu laptop.. but i am trying to setup a VM kali to use as an attack box. logged in to my account on the VM machine and downloaded the token but it is erroring out
https://termbin.com/9dbt

Are you connected to OpenVPN in your ubuntu when trying to connect to OpenVPN using your kali VM?

no[

figured it would not run 2x etc etc @ivory spruce

found the link for the troubleshooting file some reason chmod -x is not chaning its mods .. 8/ trying to figure out what else to look at

im a moron i did -x not +x lol

aaa that script updated a cypher apparently..
without that how would one of fixed this issue?? not that I am glad it isnt' fixed but no clue other then run'n a script to identify and correct the problem didn't teach me anything etc..

@weary spindle few days ago you tell me that run a particular script in target machine not in my environment

Now here I try to run that script in target machine

Here error shows gcc not found

And I also try to compile script in my environment and run script in target it's showing GLBIC error

What should I do?

Which room and task is this?

Prev esc

Nfs?

Now I get the idea behind it

Yup

We have to specify static flag for this when we compile

Where are you compiling your exploit?

Hi, AttackBox seems to can't connect for me today, any ideas?

Tried reconnecting?

Yeah 😄

For the last 10 minutes

Fixed

After reconecting 30 times

Thank you for your support

The majority of the time, this is a network issue on your side.

As there isn't x number of people in here complaning all at once

Any news about Throwbacks room ? Is there any chance for being available this week ? Still error 404 at time

Staff are aware, will be fixed asap.

Hmm, the link does not fully answer the question. As cognizable in the screenshot, there is [+250 Points] bonus in Task 4; is this the extra reward given when answered within the first month of release?

Yes, the points system changed at some point.

I want to use ssh and vnc to access my attackbox, which was never a problem for me in the past, but lately for the past few days I am stuck with "Password: N/a". (Clearing Cookies and Cache didn't resolve the issue)
Is there a fix for this, or another way to get the password other than resetting it manually?

Web-Based Machine Information

Use the web-based machine to attack other target machines you start on TryHackMe.

    Public IP: REDACTED
    Private IP: 10.REDACTED (Use this for your reverse shells)
    Username: N/a
    Password: N/a
    Protocol: vnc

Trying to download vpn config for Wreath and just get "loading". Has anyone else solved this issue?

#bot-commands

Any specific help you need? You'll need to verify your account to retrieve it via the bot.

!docs verify

So....

Should I just contact support or something?

I don't think it does.

can anyone help me i don´t have access into my email account anymore 😦 can someone hack into it and give me the password

I don't think this is permitted here.

pls

I need a important email

We can't do that for you for a number of reasons unfortunately.

I can give you all my information that this is my account

Please ping a moderator^ 🙂

You know that's illegal right?

does the my machine page exist? I'm trying to find the user/pass for a kali instance but keep getting the page doesn't exist.

it got removed a long time ago

the i button here is the replacement

ahh ok thanks @plush bay , there's a few places that page is linked. thanks again!

Gave +1 Rep to @plush bay

report all of those in #room-bugs or #site-bugs so those can be fixed please

will do thanks

So, I demanded how to change my account username on the support mail and they responded with "We changed your username..." but my account got reset. I was a subscriber and this is a devastating news. Is there any way I can restore it, any backup ? Did I do something wrong because I loved this website and did not wanted to leave.
Ps : my username has not changed by the way so...

I have a feeling that the email address you sent the email from is not the same one on your account

Hey guys, having some technical issues with the site. I am new to using it, but it seems that any time I try to use one of the hands on activities the controls the manipulate the split screen are not open to me. Any clue on why this may be?

Unfortunately, it's the same mail address, I have received multiple email about the badges I got.

HI there, THM has charged me a lot of money for a yearly subscription without any warning email of renewal, I have not used THM for almost a year and did not want this. They say if there is any issue contact us but give no contact details on their site or in the email, replying directly the email is bounced. So unprofessional. I would like my subscription cancelled and a refund issued, who can I contact?

Never thought the only means available to me would be discord.

Account support can only be given over email, they're very busy, so please be patient.

!email

Why can't they put "support@tryhackme.com" clearly on their own website

#feedback-and-ideas would be a good place for that suggestiong.

Thank you.

Hi guys , My username got changed today and i completed a path today and the cert got generated with my old username . Can anyone help me because AFAIK after changing name cert should be generated with new name or i am missing something ?

And certificate was generated today after changing the name because i completed that path today itself after name change .

Nevermind pinned message here solved my issue Xd

how do i connect to vm after connecting to vpn using openvpn

Which target machine?

linuxfundpart1v1

You don't connect to that room via the VPN, it's split screen only.

Uh-oh! You can only deploy a maximum of 3 machines at a time.

i dont have any others open

https://tryhackme.com/api/vm/running

Press that link.

yes

then

Can you show me the output?

check dms

No thanks.

Just post it here.

Also Rule 8

#rules

ok

[{"roomId":"inacave","expires":"2023-11-07T19:05:53.494Z","created":"2023-11-07T17:05:53.494Z","internalIP":"10.10.53.128","instanceId":"i-04a3f29eecc2206c5","title":"Cave","timeInSeconds":4955.893,"remote":{"active":false},"waitTime":null},{"roomId":"kali","expires":"2023-11-07T19:06:26.649Z","created":"2023-11-07T17:06:26.649Z","internalIP":"3.249.17.32","instanceId":"i-07fc37f1cb349448a","title":"THM AttackBox","timeInSeconds":4989.047,"remote":{"active":true,"bootTime":2,"privateIp":"10.10.211.185","remoteUrl":"https://vnc.tryhackme.tech/index.html?host=proxy-3.tryhackme.tech&password=203b129e4c5e7787&proxyIP=10.10.211.185&resize=remote","protocol":"vnc"},"waitTime":null,"credentials":{"username":"root","password":"203b129e4c5e7787"}},{"roomId":"linuxfundamentalspart1","expires":"2023-11-07T19:11:44.906Z","created":"2023-11-07T17:11:47.268Z","internalIP":"10.10.185.103","instanceId":"i-03eb8e3a01ef336c6","title":"linuxfundpart1v1","timeInSeconds":5307.303,"remote":{"active":true,"bootTime":2,"privateIp":"10.10.185.103","remoteUrl":"https://remote-eu-03.tryhackme.tech/#/client/Mjg3MTk5MQBjAG15c3Fs?token=2467FCDB9217437ED325B99751E97878903CE3DA11CAB928F4665BD09C79CF96","protocol":"ssh"},"waitTime":null}]

They're all machines you have open.

so how do i close them

You need to go to the rooms and close them.

1 You're in a cave
2 Attackbox
3 Linux Fundemental part 1

im not in those rooms

According to that link, those are 3 vm's that you're running.

thanks for help

Gave +1 Rep to @weary spindle

Its been sometime since I logged in to my account. After logging in I noticed all my previous badges and learnings were gone. Whom should I reach out to regarding this

!email

!email

Waiting for my support question to be answered since 13 October, can anyone have a look at it ?

Could you send me your username and email via DM?
I can forward it then

Yes me to

Hello everyone,
I am facing issue while joining this room does anyone else also face the same issue?
https://tryhackme.com/room/breachingad
https://tryhackme.com/room/adenumeration

Do you have at least a 7-day streak?

No,I don't currently have a streak of 7 days

Is that the reason i am facing this issue?

@heavy plover

Thankyou for your help!!

Guys, I need help. I can't connect through openvpn. It says, that I.m connected, shows my IP on the Access page and tells, that everithing is OK. But, firstly, I can't ping anything (neither 10.10.10.10, nor any machine), I can't reach ant WEB-app from machines, I can't nmap them, etc. This problem is solved by regenerating the Configuration File plenty of times. However, on the next day the problem appears again. I'm really tired of it. In the past weeks it was ok, I didn't have any troubles with it. I also tried to change location many times. Nothing really helped. And there is nothing helpful on the internet. In addition, I tried to change MTU of the tun0 to 1200 - didn't help. Has anyone encountered such a problem? Will the official support be able to help me?

Which os are you using

kali

the last version

Which country are you in?>

Russia

Russia may be blocking the VPN connection, I read somewhere they were going to at some point.

oh, yes, I forgot about this 😦

maybe, this is the real problem

If it, there is nothing we can do to help, except advise you to use the Attackbox.

because I also don't have any problem or warning message in openvpn connection message

it's a good one, but there is only one hour of it per day and there is no any possibility for me to buy subscriprion 😭

btw, thank you for answer

oh, in addition, I don't have any problems with connection through vpn on HackTheBox

Different protocols.

so, I can't really be sure that the problem is with my location

they also use openvpn

HTB uses TCP
THM uses UDP.

oh, okay

it can't be changed?

Not at the moment.

thank you

Windows machine doesn't open on attack box only Kali opens why?

Help me with openvpn connection

read UDPv4 [ECONNREFUSED]: Connection refused (fd=3,code=111)

🫤

can you post a screenshot of the log please

ok

.

Which server are you using?

Uh...

Which machine?
What are you doing?

eu regular

what do you mean

..Which one?

1

That wasn't for you, that was for another user.

Which country are you in?

india

Can you try regen?

yes i did

also did killall openvpn

but nothing happend

sorry for time wasting i am stupid

its only not working in my college ethernet but it working on personal hotspot

Yeah, that will do it 😅

but can you tell me why

this is happning

Easy.

Your college has blacklisted the port or VPN's

it was working earlier

Yeah, and the ICT would have caught the traffic, and went 🤷 and then blocked it.

yep they have restricted all vpn websites

ok thanks

Gave +1 Rep to @weary spindle

@bronze vale

That is legit, yes

Okay lol, the return address just looked really wonky 😂

No problem 🤘

Support are really busy, they will get back to you.

Listen, I've heard of some questions going rogue so I just want to see if there is someone here who can reach the support

That's all

Support can only be reached via E-mail, and work on a queue.

I'm saying that I have seen some individuals have their request being marked as completed when it's not

so I just want to double check, that's all

I know what you're saying

That doesn't change my answer...

then I'm talking to someone who can reach support

and asking if they can help me

boy I was intending to buy the premium package, I'm valid but are there any discounts?

The support team aren't on discord.

You'll need to wait until a member of staff has a look an contacts you

Only discount I know of is student.

ok

I am also a college student

italy

Then change you're email over to your college E-mail and get 20% off.

oh, automatically?

not always.

But sometimes it does.

who should I contact?

Does anyone know which are the possible solutions to the attackbox window not showing up?

Hi Steve, I can have a look for you. What's up?

Could you verify your account and send a screenshot?

!docs verify

sure thank tyou

sorry guys is it normal that i lost my streak because i'm not premium anymore?

Being a premium or free member shouldn't effect your streaks as long as you still answer at least one question a day

Hi
I have the following problem with openvpn
Wed Nov 08 23:14:07 2023 VERIFY ERROR: depth=1, error=self signed certificate in certificate chain: CN=ChangeMe
Wed Nov 08 23:14:07 2023 OpenSSL: error:1416F086:SSL routines:tls_process_server_certificate:certificate verify failed
Wed Nov 08 23:14:07 2023 TLS_ERROR: BIO read tls_read_plaintext error
Wed Nov 08 23:14:07 2023 TLS Error: TLS object -> incoming plaintext read error
Wed Nov 08 23:14:07 2023 TLS Error: TLS handshake failed
any advice plz

What country are you in and what VPN server are you using?

openvpn

I am from egypt using adguardvpn to germany (connected with no problem ) then using openvpn with this account give me the error

Stacking VPNs is probably not going to work

however with the same setup I have another profile

working perfect

connecting to one profile fails the other works fine

hmm, iirc Egypt tries to block VPNs

Running multiple VPNs at the same time is less than optimal

As in, it causes the network stack to have a monkey knife fight about what gets routed where.

I use the first vpn only for openvpn to start

then I disable it

It was working for me with no problem but the other profile gave me this verification error

If you're in Egypt, it's illegal for us to help bypass the laws there to connect to THM

IIRC they block a specific kind of VPN traffic

I am already using thm working with no problem

however a friend of mine is facing the problem

You can just use the browser based attackbox

sure but my friend has a free account it is available for one hour per day

I am subscribed

It's true that the attackbox is limited for free users but as Juun said we can't you bypass your country's VPN restrictions

I dont need any help to bypass my country laws

I just ask about the verification issue

how to solve it

Yes, but that error is probably occurring because of the multiple VPNs being ran / the weird setup you have or because of the limitations in your area

can someonehelp me

hell

hello

how do I link my subscription to discord?

!docs verify

thanks

bot is not letting me send him message

open up your DMs to send a message to the bot

I did

bot is blocking my dms

Check your current server settings if you allow DMs

Hi there. I could not complete some of my tasks (dns detail room for example) due to unable to type in the text boxes above the terminal windows. I have tried Safari, Chrome, Edge on both Ipad and Macbook. On the Ipad I can scroll down to see the text, but I can not type in. On Mac, the text box is nit visible. It’s very annoying to not able to complete tasks. Please fix it soon.

You mean that you can't type in the little box that says "subdomain" here?

That’s right

hmm, strange, don't think I have ever seen that issue before

Does it work if you go here? https://static-labs.tryhackme.cloud/sites/howdnsworks/

It works

That's good, you can open similar tabs in other rooms that you may have an issue with by right-clicking on the text box then going to "This Frame" then "Open Frame in New Tab"

Not possible as the black header cover the textbox, so if I scroll down I can see the text box for a moment, but unable to click on it

It should also work wherever you click on the window as long as it is on that half of the split screen where you are suppose to interact with

Hello,
why is this answer not correct?

Answer the questions below
What do you need to access a web application?
standard web browser

Try browser

thanks

so i started the attack box, and i navigate away from it. how do i get back to it?

!docs verify

hello

did the site reset the streak freezes?

suddenly all my streak freezes dont show up

They don't stack

Is there any way to verify the certificates that I have gotten from completing a path?

What do you mean verify?

They're just for participating

I mean if i add them to my application. Is there any way that the interviewer can see if it's fake or not?

There is a code on the bottor right hand corner that can be used to view the original file, if that's what you're asking.

Ah, okay. And can I use it to view the original file? Just with tryhackme.com/...?

Hello, I am facing a problem, suddenly I cant find my streak freezes ... any idea?

Any way to see what the IP is of the machine you spawned if it doesn't show up? I've been having this issue where the target machine spawns, then counts down to zero, and doesn't show an IP. Refreshing the page and restarting firefox doesn't help either, and it always tells me "You already have a machine running"

It's also saying I'm not connected, even though I can confirm tun0 is active, and I know openvpn is running....

https://tryhackme.com/api/vm/running

Try that link.

hmmm, nada....

Does it have anything ?

JSON file is completely empty

link exists, but there's nothing there

Ah, I wonder if that means the VM hasn't actually spawned.

Yeah, maybe it's just being super slow?

Gonz0 is typing, let's see what they say.

I did have this issue yesterday, but then it went away, so maybe I just need to wait longer....

Is this happening in every room or just one? If one, which one? are there any errors on your console tab? (dev tools)?

If you can share a screenshot, that might help 🙂

One sec

Room is "Linux Privilege Escalation" as part of the Jr Penetration Tester Pathway

It DOES look like I may need to update a few things, but I haven't had to in the past...

Have you tried clearing your browsers cache or from an incognito tab?

I haven't, let me do that real quick

Also I'm not incognito right now

Can you also check in the network tab and see what response you get for this request?

Looking right now, just want to make sure I have the correct network request

Looks like I'm getting a 200 response....

Unless you see something I don't lol

Can you check the second response request too? And check the response tab (not the header tab) with the JSON.

Could you test out another room too? Have you installed any new browser extensions recently?

No new browser extensions, the second response looked the same (but I'll screenshot it), and I will definitely try another room

Also, I apologize, but could you clarify what you mean by "the response tab (not the header tab) with the JSON"?

this tab

Got it, sorry about that

no problem 🙂

Response for both are completely empty...

So here's an example of another room:

Machine spawns, timer counts down, get's to zero, then sits there...

I've got a head out now; can you try with a different computer if possible? Have there been any changes on your browser or computer recently?

No problem, I appreciate the help. I can't try with a different computer ATM, but that's okay, I will try to figure this one out (or I won't be productive today and do something fun lol).

Thanks @glacial hound

Gave +1 Rep to @glacial hound

Hi team. Love the site so far. Wanted to note something I found in the “Windows fundamentals 1” room, task 6; last question. The answer is “account is disabled” but on my VM the users account was enabled (account is disabled box was unchecked by default). No stress at all and this is probably a know issue, but thought it would be worth noting. Thanks for the amazing playground to learn in!

Sorry I couldn't help, enjoy your day or evening 🙂

Hey, I learned something, so even if the problem wasn't solved, I'd stil say you helped. Have a great evening to you as well!

@glacial hound Updating my distro fixed the issue.

Hmmm, good to know. Kali?

Yep. Kali Purple (why not?)

Do you know which packages were updated? It would be interesting to pinpoint what could've caused this issue🧐

I had about 1GB of updates, so I can't say that I saw EVERYTHING that updated --BUT, I'm willing to bet a small amount of money that the "firefox" update may have fixed the issue...

Yeah, that's what I was thinking. I'm gonna try replicate it if I can

hello

I still cannot talk with the bot to confirm my subscription

any ideas?

I'm not blocking direct messages

There is certainly no issues with the bot so it must be on your end. You are trying to DM the TryHackMe bot and not the TryModerateMe bot right?

correct

can I open a support ticket somehow

And you have gone into the settings for this server specifically and enabled DMs?

This server is the best place to get support for Discord related issues, the support email is for the TryHackMe site

hold on

I was missing that!

was looking to my server profile settings but not where you just showed me

thanks a lot

let me talk to the bot

Np, glad you got it figured out

test

@tight ice

Hmm, it does not seem to have worked

does it get activated isntant?

If you sent the message with the token then yeah it should have happened right away

I would expect that

but it is not the case

Hi! I'm new on the site and trying to connect to the VPN but it just errors. I tried regenerate my config file but no change. When running the trubleshooting-script it's says that i'm not connected to internet. Any ideas?

it doesnt find my token it says

I was confused during a lab why I couldn't access the console to ping an ip. I watched a video supplied and it shows there is a text area to enter the ip, above the console. However, this isn't displayed for me. Any advice would be appricated? Thanks

Is this on one of the tasks where you hit a view site button and it opens up a split screen view?

Yes

#room-help message

Try that

Ok thanks

Hi, I have an issue with OpenVPN network and Metasploit. I run openvpn with my config, I am able to access machine`s websites etc. but whenever I try to run msf exploit I got an error sending payload. Automatically msf sets up LHOST at my private ip, I of course set it to the OpenVpn one, other options are fine, cause on AttackBox everything works fine.

hello, is it possible to make a suggestion ? about the site/levels

yeah, use the survey in #feedback-and-ideas

actually perhaps its better to use your priv ip, i dont remember which one i think blue worked with priv ip

ive already sent them there, but i dont think its gonna get answered

thanks a lot tho

it's where they look when they need to go through ideas 😄

Hi, there seems to be an issue with the ItsyBitsy, room (ELK) I don’t know if it’s on my side or yours? After starting the machine and opening the attackbox, I don’t get a login dialog, there seems to be no other way to login and I don’t see any data to analyse, can you help me please?

oh wait, Apparantly it a bit longer to startup, nevermind 😉

Good morning, I earned one day and seven day streaks from the Security engineer pathway, but applied both which resulted in me only having a one day freeze and losing a 335+ day streak. Where can I submit a ticket to have someone look into this?

!email

Thank you!

Gave +1 Rep to @tribal mason

They don't stack.

I know, I didn’t use up the other seven days is my point.

Hopefully the support team can see that 🤞

Hi, does anyone know how to get an invoice/receipt for vouchers that have been purchased?

They might get some sent automatically...

But you can request from support.

Email support, supply the last4 digits in the card used to make the purchase, date of purchase and name on card

Dear Support Team,
could a support member please pm me?

The support team aren't on Discord.

You will need to E-mail.

And depending on the situation, the E-mail could be the default communication used.

ok thanks!

!email

could someone guide me how i can use my 2fa backup codes after i lost access to authenticator app. i still do have the 2fa backup codes.

then enter them instead of the code that you get from the authenticator app..

omg i feel dumb ...

thanks

i'm in

i was thinking i have to enter the entire string and failed..

thanks!

Hello all. I seem to have an issue with the split view in some rooms. I can't see the buttons that should be on top of a website address bar. For example in room HTTP in detail, at task 4, i should see some buttons to click on to view the http status messages, but no matter how i zoom in and out i can't make them to appear. Tried Chrome and Firefox as well, no luck. Did anyone else stumbled upon this? i can upload a snip to show the exact issue if that's helpful. Thx and sorry for the long post.

Hi, no worries. Can you see these codes in the HTML content of the page? (Inspect element -> CTRL + F -> show_error)

Yes, i can see them when using inspect. It's a bit troublesome to do it like that, but nevertheless - might help me understand source codes better. Thx

Can you post a screenshot of what it looks like?

!docs verify

(You must verify in order to send images)

Yup. Will upload now. Moved on to Task 7, and can't access the address bar or the buttons.

Just below the green 4 for the streak, i can'\t see that part.

Weird, does it close when you click X ?

Or when you resize the window

it turns the 4 to a 3 when i click X :))

tried resizing several times. no luck

also, tried on 2 different computers. same issue on both.

Pretty odd, can you send link for the room?

https://tryhackme.com/room/httpindetail

Yeah you are like the 4th person to have this issue lately, staff are aware of it, for now this is a work around #room-help message

(Works on firefox, not sure if all browsers have this option or not)

You can inspect and pull the link that way

That is also true

Copy. Thank you.

I'm experiencing exactly the same issue.

I've created a ticket for it.

thanks i fixed the connection issue in eu2 🙂

Gave +1 Rep to @plush bay

is there any way to change name on certificate?

Not after it is generated, no

#site-support message

dats so sad

Could photoshop it yourself if you really wanted to, but that is the only option

i would get in trouble if i do that

In trouble with who?

cuz they will think it's fake

prolly i'll do another course

Like employers?

ye

Tryhackme admins have said that it is fine, doubt employers would notice, but to each their own

hmmmmmmmmmmmmmmmm

aight

I don't think any one will take it against you so long as you can demonstrate that you have really learned something. However, if you will be using it for CPE purposes for active certifications (like Sec+), that would be a different case as THM wouldn't be able to verify that if and when you are subjected to audit.

Ah yeah, don't use it on official certifications or things that you haven't actually earned, but for tryhackme certificates specifically I think it is alright

ok

I'm working through the https://tryhackme.com/room/wiresharkthebasics room, but the web-based machine you're required to use is incredibly slow. I am a premium member and double checked that my internet speeds were fast (1-2Gbps). It's pretty much unusable still.

Is there a way to get the pcaps to my machine locally so I can progress through the tasks at a reasonable rate?

If I remember it correctly, in the Attackbox, there is a root folder in the Desktop. If you navigate within it, there should be a rooms folder and within it, and there is a further Wireshark folder. I haven't done the room myself so I'm not certain if those are the files that you need.

If it is, you can then setup a python http.server where you can wget or curl it from.

🙏 Thank you! I'll try that out.

Gave +1 Rep to @ivory spruce

I'm having issues connecting to openvpn getting the bellow error. anyone knows why?

Reg-3?

you mean if I'm registered as a premius user? no. not at the moment.

No?

I'm asking you're using eu-reg-3 seever

ah. yes!

changed server and it works now. thank you

I am facing a problem connect tryhackme server with openvpn,my installed open vpn version is 2.6.3 and error is shown as Restart pause, 1 second(s)

You'll have to change to another EU server as the EU-3 VPN server has certiticate-related issues at the moment.

didn't think about changing that ever until now :). thanks

Having Issues With openvpn Connction, Help!!

Can you post a screenshot of the issue you are having

?

@ivory spruce

#site-support message

What About This?

hiee, so I bought the annual premium subscription around 8 days ago but was billed twice. I'd like to request a refund for the second time the payment was taken. I emailed support 8 days ago but I haven't heard back from anyone sadly

Hello,
is there anyway to connect over openvpn using TCP instead of UDP?

If I remember correctly, there was a user who reviewed the THM documentation if there was such an option but did not find any.

Please don’t suggest this^ 🙂

Only support can help with support problems, and employees are quite busy, it’s hard to know if you’re pinging the right department 🙂

Ohh. Sorry..

If someone is able to help, I’m sure they will :)

THM Support doesn't work on weekends.

Please be patient as submitting another one would result in your previously submitted ticket being pushed down the queue.

Hey can anyone help me I cant seem to login into my account when i do it’s asking for authentication code but the code is not generating in the app i emailed support no response

Hello I'm trying to get my openvpn running but I always get this error message: 2023-11-11 05:44:22 Note: --cipher is not set. OpenVPN versions before 2.5 defaulted to BF-CBC as fallback when cipher negotiation failed in this case. If you need this fallback please add '--data-ciphers-fallback BF-CBC' to your configuration and/or add BF-CBC to --data-ciphers

Does anyone have a solution for this?

Can you show us the whole output?

!docs verify

(You must verify in order to send images)

Same issue I had. Change the server you are connecting to. You are probably on EU-REG-3 and it has a certicate issues

thanks this worked for me!

Gave +1 Rep to @supple obsidian

nice to meet you. "View Site" does not start properly in Pre Security's network basics packet and frame exercise.
What do you need?

Can you elaborate?