#site-support

Try linux fundamnetals 3 as there are SSH credentials

on it

damn

works

so server side problem?

Sounds like it could be the room

I was able to ssh in

to buffer overflow?

hmm @stray cove now i am connected but i still cannot connect to the test machine (access page saying connected tho)

Can you ping 10.10.10.10?

Yes, using your ip.

oh nvm it just took some minutes now it works... maybe machine wasnt fully spun up

thanks ❤️

I've since restarted the machine and the ip now is 10.10.137.43, can you try?

is that room a public box?

10.10.10.2 is a very weird IP address 🤣

Yeah

That happens

Meaning, does it have a static machine address?

I don't think so, I've booted a machine up.

Not a satic.

Not sure if this is related but the linux fundamentals 3 is just stuck here https://prnt.sc/myu-P0ksQWOb

Hot take: Restart your Mac and try again

super hot take

nope

same shit

but if scrubz managed to ssh

I can’t see anything wrong with your VPN 🤔

If you can try a VM go for it

identical results in ubuntu VM

just really weird honestly

but I think this is a good point to give up

thanks anyway

Don’t give up!

If it’s happening on both, it might be your internet service provider.

I would try on mobile data if possible, does your country block UDP?

thanks, it seems that the problem was the network I connected to, since now everything works in my home network
I was using some public cafe wifi

although I did switch to another cafe's network to rule that problem out

so I guess both networks were doing something weird

Most public Wi-Fi and educational networks block out THM's vpn.

Thankfully my uni doesn't.

damn

if they block the VPN doesn't that mean I shouldn't be able to connect to the internet at all while connected to the VPN?

No, because the VPN doesn't have any effect on your network browsing wise, it just opens a tunnel.

alright

thanks to both of you (:

hmm dont know if something changed from an hour ago, but it sais im connected in openvpn and also on access page but i cannot ping either 10.10.10.10 nor my machine ip

ip a | grep "tun"

is there a way to cancel it completely now?

I want to use the new subscription discount like my friend

Support would be too long.

There is a 20% off code that works up until the 7th of December.

utun5: flags=8051<UP,POINTOPOINT,RUNNING,MULTICAST> mtu 1500
inet 10.9.146.29 --> 10.9.146.29/16 utun5
utun6: flags=8051<UP,POINTOPOINT,RUNNING,MULTICAST> mtu 1500
inet 10.9.146.29 --> 10.9.0.1/16 utun6

Are you on mac?

yes

is it same discount or extra discount?

the connected time in openvpn gui also keeps jumping back to 0:00 and the connected message pops up from time to time

#site-support message

oh alright i followed the tutorial room

+rep @balmy zealot

Gave +1 Rep to @balmy zealot

Its the same one.

now im connected with terminal but still same issue:

utun0: flags=8051<UP,POINTOPOINT,RUNNING,MULTICAST> mtu 2000
utun1: flags=8051<UP,POINTOPOINT,RUNNING,MULTICAST> mtu 1380
utun2: flags=8051<UP,POINTOPOINT,RUNNING,MULTICAST> mtu 1000
utun3: flags=8051<UP,POINTOPOINT,RUNNING,MULTICAST> mtu 1380
utun4: flags=8051<UP,POINTOPOINT,RUNNING,MULTICAST> mtu 1380
utun5: flags=8051<UP,POINTOPOINT,RUNNING,MULTICAST> mtu 1500
    inet 10.9.146.29 --> 10.9.146.29/16 utun5
utun6: flags=8051<UP,POINTOPOINT,RUNNING,MULTICAST> mtu 1500
    inet 10.9.146.29 --> 10.9.146.29/16 utun6

openvpn output

2023-11-21 13:46:51 /sbin/ifconfig utun6 delete
ifconfig: ioctl (SIOCDIFADDR): Can't assign requested address
2023-11-21 13:46:51 NOTE: Tried to delete pre-existing tun/tap instance -- No Problem if failure
2023-11-21 13:46:51 /sbin/ifconfig utun6 10.9.146.29 10.9.146.29 netmask 255.255.0.0 mtu 1500 up
2023-11-21 13:46:51 /sbin/route add -net 10.9.0.0 10.9.146.29 255.255.0.0
add net 10.9.0.0: gateway 10.9.146.29
2023-11-21 13:46:51 /sbin/route add -net 10.10.0.0 10.9.0.1 255.255.0.0
add net 10.10.0.0: gateway 10.9.0.1

2023-11-21 13:46:51 Initialization Sequence Completed
2023-11-21 13:46:51 Data Channel: cipher 'AES-256-CBC', auth 'SHA512', peer-id: 51, compression: 'stub'
2023-11-21 13:46:51 Timers: ping 5, ping-restart 120
2023-11-21 13:46:51 Protocol options: explicit-exit-notify 

Which server are you using?

eu reg 2

since 3 seems to be down?

Yup

Just checking

Hmm

Now it’s working after doing nothing… weird but thanks anyways

now its not haha

Sounds like it's your own network then.

Hi i can't connect to the vpn

Can anybody help ?

hmm but internet works fine somehow...

i can ping google with vpn activ

u from iran? cause if you are vpn is ban the only option you have is to use attack box

Metasploit: Exploitation
https://tryhackme.com/room/metasploitexploitation
What is the "penny" user's SMB password? Use the wordlist mentioned in the previous task.

getting error:
[] 10.10.127.243:445 - 10.10.127.243:445 - Starting SMB login bruteforce
[-] 10.10.127.243:445 - 10.10.127.243:445 - Could not connect
[!] 10.10.127.243:445 - No active DB -- Credential data will not be saved!
[-] 10.10.127.243:445 - 10.10.127.243:445 - Could not connect
[-] 10.10.127.243:445 - 10.10.127.243:445 - Could not connect
[] 10.10.127.243:445 - Scanned 1 of 1 hosts (100% complete)
[*] Auxiliary module execution completed

even tried hydra; but no luck;)

getting ping back

is this the ip address of the machine that you have started from task 2?

is 500-800 ms ping normal for vpn connection? nmap and gobuster are both running very slow

for every room when i connect with Attackbox says this:

make sure you are making these changes before runnning the exploit

/Unable to connect

An error occurred during a connection to 10.10.208.195.

The site could be temporarily unavailable or too busy. Try again in a few moments.
If you are unable to load any pages, check your computer\u2019s network connection.
If your computer or network is protected by a firewall or proxy, make sure that Firefox is permitted to access the web.

someone can help me?

which room?

every room

ohh ':) so like you are trying to access these room through attackbox firefox?

i try with different room obviously with IP address related

and with attackbox firefox doesn't go

also the VPN i can't use. I's the first time

if you are a subscriber then only your firewall on the attackbox will be allowed to use internet in order to connect with the stes

yes i'm a annual subscriber

regarding the vpn you have to download the vpn of your own region then it can work..

then it should work

but doesn't

its not compulsory that every room ip should be having a webpage or something like that

yes i know

can you verify yourself so that you can share screenshot here..

i don't understand

wich screenshot?

do this...

of the problem that you are facing ofcourse 🫡

in which section?

here only

and after the verify?

share the problem that you are facing 🫡

i'm doing

here

i don't understand what are you saying

i was simply saying to verify your account so that you can share screen shots if you have any issue with the website or whatsoever problem you facing

ah ok

ok

i didn't know that before i couldn't thanks

so this is what firefox attackbox says

i'm in "Incident handling with Splunk"

Splunk takes slighty longer to boot up

are twenty minutes

http://10.10.208.195/en-US/account/login?return_to=%2Fen-US%2F

ok now it go with your linkl

i cant'understand why

but thanks

Hi, where am I able to report a misswriting in a r00m?

Where it says : «Founded a few years back by a fellow elf,» I think it should say : «Funded a few years back by a fellow elf,»

founded is correct.

funded is a different word completly.

Hummm, I thought McGreedy made AntarctiCrafts instead of found it just there ... maybe i missunderstood this paragraph

Ok, I see, I had "fund" for "put money into making something", and now I read this is 'to found". My bad, thanx for the explanation 🙂

Hello, I am not sure if this is the place to post this but here we go. I am locked out of my email attached to my account and also locked out of my THM account that I pay monthly for. I have contacted support several times over the last few weeks and have only received bot replies.

You'll need to wait until either:

a) Support reply.

b) staff contact you on here.

Yea either of those would be nice 👍

why any machine in all splunk rooms doesn't lunch with me ?

how do i use the AOC2023 code for 20% annual subscription? My sub seems to renew until the 27th and not sure if the discount will be valid up until then

Expires on the 7th.

What's your ip?

🤦 thank you, i just joined the AOC room and saw it in the modules

Gave +1 Rep to @weary spindle

I would like to know if I choose the annual plan will the entire amount be deducted directly from my card or does it give the option to pay in installments?

All at once.

thank you

Gave +1 Rep to @weary spindle

I am working through the Linux PrivEsc module. I've gotten to the step where John is used and, following the provided command, John does not launch. I've tried a few different times just to try to rule out an incorrect entry for a command but keep having the same results. This is using the in-browser attack box. Any recommendations?

I understand I am reposting the same issue here as I posted in holo network room, but I am trying to get access and have tried most of the basic troubleshooting that I could.

Yeah, I am trying to download the VPN for Holo and it's not working.
Issues:
Clicking on regen, works, but then download button never stops loading = no VPN file downloaded.
Refreshed the page, removed cache, used a different browser (both firefox and chromium)
I cannot see other networks except from holo in the drop down menu of network vpn server.

Hi guys can i start first with "junior penetration tester" learning path as a beginner?

You should probably start by completing the pre-requisites listed in the description.

The recommended order of completing the paths can be found here -

#general message

Okay thanks both

If you are using the Attackbox, you'll have to add the path where john is saved. It should be somewhere in the Tools folder that can be found in the Ubuntu desktop.

Thank you!

Gave +1 Rep to @ivory spruce

Hello all
Please what the best way to solve this issue when trying to install

'wating for cache lock: could not get lock /var/lib/dpkg/lock-frontend. it is held by process 234191 (apt)... 66s'

Hi, I'm doing room https://tryhackme.com/room/metasploitexploitation and trying task 2 where it says do port scanning and enter the number of open ports as answer. The problem is nowhere is written which IP/rhost should be scanned? The IP on the screenshots is at least not reachable. This is a huge flaw in the description. I'm paying for this.

There should be a green "launch machine" button that you press and then it will give you an IP

what goes into thm certicate? is it username or full name?

I really don’t understand why it takes two weeks and counting to get back to a customer that is paying for a service. I was enjoying the THM content, but honestly I’m going to have to go through PayPal and dispute the subscription.

Please be patient as THM Support is currently swamped with tickets and they don't work on weekends. When have you last contacted them?

What binary are you trying to install? Also, doing a Google search for errors you encounter will prove useful later down the line as you troubleshoot erros that you may be having when running a command or executing your payloads.

About 12 hours ago I got a bot reply but this has been going on for weeks

Hello!
I have a problem with a room.
I can't open the virtual training machine, a white screen appears and the url says blocked.
I tried from my phone and the same.
I tried with a VPN on my phone, same thing.
Your vpn servers don't work either, but if I already tried with vpn on my phone , it wouldn't be a problem because of the vpn.
The standard attack box works , but it doesn't help me to solve the questionnaires.
I'm waiting for an answer as soon as possible. Thanks!

And i would like to get my money back please , because i can't do the exercises without the training VM.

The room with the problem is this one "linuxfundamentalspart1"

Anybody having the same issue ?

Hey, please dm me your email

I have sended you a dm

Hi, I didn't ask for you to send me a DM :p

Oh sorry , i've seen it now xD

But can anyone help me to start learning again ? 😄

Anyone managed to contact support lately? I've tried contacting them twice from different mails but no response for 2 weeks

Will I lose all the progress if I cancel my subscription?

I never had a subscription but I'd guess not, whatever you've done you've already done and it should be saved imo

I need modd help

I would like to change my Discord token please help me @torn citrus @placid mango @stray cove

Can I get a confirmation from the THM support team on this? I want to cancel my subscription at the moment and will probably subscribe again in the future.

Hi, no you won't; you will just lose your premium access once the renewal date has passed 🙂

Thanks alot @glacial hound

Gave +1 Rep to @glacial hound

can anyone help me?

Probably wait until you see someone active.

Thx

Hello, I've lost access to my university email and I'd like to move my account to my personal email. Can someone help me with that? I had a lot of progress that I don't want to lose.

You can drop an email to THM Support for it.

You may have to prove that it is your account though if you no longer has access to the email.

Yeah makes sense, thanks!

You can log in with your username.

If you remember it.

Tryhackme allows either E-mail or Username sign in.

You want to unlink current Discord token?

yea

Done, try reverifying with other accountt.

Yeah no I don't remember username or password either. I want to move it to a different email so I can get the reset emails.

But it didn't work I'm getting an error

Looks like the bot crashed, I’ll investigate when I’m home

I think I know what the issue is

@zealous yoke if you can, mind putting the bot back up and dumping the error? I think it’s the token remove command

I appreciete your help in fixing this 🙂

I'll send you a dm @bronze vale

un momento por favor señor

@drowsy wren re-verify

ok

Thanks for solving my problem I'm grateful for your asistance

hello do you know why I have the error "111" when I try to reverse shell?

If you can share a screenshot of the error, we can better assist you.

You'll need to verify your account though.

I can send screenshot here :/

You need to verify your acount using /verify

is there way for current subscribers to switch to an annual plan with the black friday discount?

When does it expire?

Nov 30, 2023

You're fine, there is a 20% code off until the 7th of Dec.

awesome, thanks!

Hi there. Is there a way to see how long I've spent learning on THM, or ideally on a particular pathway? I haven't been able to find such information, but I suspect it's there somewhere!

I'm not sure if this is in depth as you're looking for, but you profile has an activaty log. 🙂

Ah, in the Public Profile... I hadn't looked there; thanks. It's not quite what I was looking for but that's probably where it would be if it was there

Gave +1 Rep to @weary spindle

Hi, I am currently tring to connect to openvpn from my virtual machine and i am facing the same issue every time: error opening configuration file

Are you using sudo and the path of the file?

yea sounds like permissions issue

sudo openvpn

sudo openvpn kali/downloads/PO23.ovpn

this is the command that I am using

is it not Downloads ?

maybe need a slash before /kali

depending on your current working directory

same issue is happening when I add a slash

Go in to your downloads directory and type pwd

Try:

sudo updatedb
locate PO23.ovpn
then:
sudo openvpn /full/path/to/ovpnfile

sudo openvpn /full/path/to/file.ovpn

alright your command worked but now I am faced with this problem: Note: --cipher is not set. OpenVPN versions before 2.5 defaulted to BF-CBC as fallback when cipher negotiation failed in this case. If you need this fallback please add '--data-ciphers-fallback BF-CBC' to your configuration and/or add BF-CBC to --data-ciphers.

from my limited understanding I need to add these to my line 14 on my file? line 14: data-ciphers AES-256-CBC. I am just not sure where to add it on the line

Which server are you using?

yea that's right

No?

That problem was fixed months ago 🙂

Are you using Eu-reg-3 ?

Yesterday the same incident had happened to me and I solved the issue

no i am using us-east-regular-1

bro first of all open the terminal and then run nano (openvpn name) after that you can see data chipers you can solve problem there

try this method

Gave 1 Rep to PierOlivierCote44 (current: #1797 - 1)

that's true I had also solved my problem using this method

I do not understand what you mean

text me I'll explain you

if you want

Hi, thanks for your reply. Yes there is the green "launch attack box" button. The problem is I don't understand how to proceed from there, because you need two machines, one where you execute metasploit (which is the machine launched with the green button?!) and another one as target for the scan. So where do I find the second machine? As I understand the green launch button is for the "attack" machine where I use metasploit. Please help.

Gave +1 Rep to @gleaming flume

Use the attackbox or a Virtual Machine.

mhm, the attackbox is the attacker machine that you can use (Or you can use your own VM), but on the task itself there should be a button to start the victim machine, which will give you an IP to attack

I see. Let me just try to start the one with the green button and launch the one at the top of the page with the blue button, maybe this launches two attack boxes in two different tabs in the access desktop interface on the right side of the screen..

Okay it does not open a second machine. I'm a bit upset about the lack of information. Of course I can use a VM but that needs to be connected per VPN to THM, so takes a bit longer. It seemed you can do everything fast in the browser... @gleaming flume @weary spindle

It doesn't open up another tab it should appear as like a red banner with an IP for you to use to scan/attack, kind of like this

when i open the terminal in linux fund part 3 attackbox it still has the contents of part 2's attack box

Did you terminate the machine for part 2? Also you can switch between launched machines with the tabs at the bottom of the page

yeah i terminate every box after im done, ive just gone back to part 2 and it says disconnected in the "access machines" part in red

its just stopping me from doing the questions in task 4

cant run http server

You need to run the wget command in a non ssh'd terminal

Thank you so much! Yeah, it is. This is the solution, thx mate. I wasn't aware that this little window corresponds to a running machine... 🙂

Gave +1 Rep to @gleaming flume

Is there a dark theme for the website?

Not yet, its in the works

Hey everyone, I am doing Linux Fundamentals again and am having issues with the machine. The splitscreen is just white after the initial loading screen and opening fullscreen just opens the url "about:blank#blocked". Do you know whats going on?

Not sure what the issue could be, you can try leaving the room and rejoining, clearing browser cache, disabling any plugins you may have, etc.

Okay thanks, will try that

Currently trying to work through task 4 on the breachingad room but it seems that dns isn’t happy on the network as running nslookup tryhackme.com then the dc ip times out, I can ping the dc fine, there’s 3/5 reset votes on it now including mine but I assume we’re stuck till the network resets itself or enough people vote?

Hi i need help with install and run openVPN, someone helpme?

What is the OS you'll install it into?

in Linux

virtual machine

When i try run, appear this

You'll need to verify your account to post screenshots

Type /verify <discord token>

The discord token can be found in your THM Account profile.

https://tryhackme.com/room/openvpn

sweet. thank you for that

My own Kali machine

Can you do show payload?

here

but it says before

so I am thinking it uses the default?

Aahh.. got it.

Can you do show options?

here's the show payloads

here

eh suddenly I also cannot exploit using tryhackme's attackbox haha. but it worked last night

I now got the same error as my own Kali

Wait. let me check the rating for the exploit

Thanks a bunch!

The higher the rating is, the more effective the exploit is.

It is rated as excellent though.. is the VM still up?

Yes, now I tried restarting it and restarting my msgconsole

I still get the same error

can you share the IP of the target?

10.10.31.63

I ran it just now and it worked fine

i wonder why haha. i also run it just fine last night

i'll retry using another attack box

Have you checked that there are no extra spaces in the username and password values?

yes upon checking there is non

i was able to run it using the kali-attackbox. but with v6.2.23-dev

now i will try to replicate it with my own kali haha. thank you @ivory spruce
i'm just confused why I cannot run it on newer versions

Gave +1 Rep to @ivory spruce

That's weird. When you tried it earlier on your kali VM, your IP is 10.11.60.93, but now its 10.10.89.172?

10.10.89.172 - tryhackme's kali-attackbox
10.11.60.93 - my own box [connected to openvpn]

Oh..

i still cannot run it on my own box haha

but I think I need to move on. I will try other rooms to check if my own box is the problem

Are you able to receive reverse shells in your kali VM just fine?

When working with other boxes?

not yet. it's my first time using my own kali. because i always use the web-based attack boxes

is there firewall or policies that I need to turn off to be able to do this? I turned off my computer's firewall already

can you do sudo ufw status?

The VM or the host?

the host

wait let me check

If I'm not mistaken, you can have your host firewall turned out so long as your VM is in bridged mode.

yes my VM is in bridged mode

That is weird.. is your PATH environment variable set?

let me boot my VM again, I was stucked on rebooting after recovering from a snapshot haha

is this what we are looking for?

Can you run sudo ufw status again?

hi sure, wait please

i think i have not yet done ufw yet haha. is it important?

It should manage the firewall rules in your kali VM, which can affect your ability to receive reverse shells.

But if you try and encounter no issues, it should be fine.

ahh so if I don't have one then I should not have difficulties on reverse shell. interesting. then where am I at fault hahaha

i will try to downgrade my metasploit later if I need to use one on my next room

I meant you'll have to check first.

Try to use your existing one first so we'll know if the issue is related to that room only.

is there any config that I need to touch with regards to openvpn?

i still cannot run the exploit with toolsrus room. I should be trying other rooms so I can proceed with my review haha

Yeah, better to try it with other rooms first.

Where can I access the deployed machines?

I full-sized the window and then closed that tab

now i cant access it anymore

For which room is this?

https://tryhackme.com/room/linuxfundamentalspart1

There should be a show split screen option at the top

i just created an attackbox and it showed me the split screen

If you lookdown the bottom you'll see a grey tab

hey, I was trying to join in Wreath room but it redirects me to my joined rooms, without joining wreath room.
Any solution?

Are you a sub, or have a streak that is = or > 7 ?

no

Then you need to meet one of the two criteria.

oh, okay

please someone can help me to unlike current discord token?

You'll need to wait until a mod is active, so they can unlink you're account.

tnks

Hi! Anybody knows why in this room "inuxfundamentalspart3" wget file is not downloading anything ? Thank you. ( I think it might be a problem from the website )

For best help, please don't multi-post.

whats the format that are using wget for?

reading the task they says you have to deploy the server in your own using http.server and then donwload on the target machine using wget http://<ip>:<portnumber>/filename

I got it , @weary spindle answered my question , the issue was that i was putting the wget command in child terminal instead of parent "root" 😄

ohh

hi! i have a question, how can i get the completion certificate of a room? i know when you finish it you get a pop up to share it, but i didnt at that moment and i dont know how to get it now 😦 (from rooms i have finished time ago)

From there.

I think she is referring to rooms and not paths. However, I don't think there is a certificate for it at the moment. @vocal brook

Oh yeah

If you want to share you've done it to Linked etc.

You can always open it in two tabs, reset the progress and copy and paste the naswers.

Hi I want to change my subscription to an annual subscription. What is the procedure?

You'll have to cancel your current subscription, wait for it to expire and subscribe to the annual plan.

Hi everyone, I can't access to any http://MACHINE_IP I guess it is becaxuse of my VPN, but I just tried every cert in the resources page and none of them works, does anyone have a better idea?

hello i'd like to know how many tickets you get for aoc2023 event if you're subscribed

which vpn you are using?

Are you accessing machine_ip or 10.10.xxx.xxx ?

if you are doing this 😶‍🌫 then try starting the machine green button then you will see the ip address

try attackbox

You get 1 ticket per task, you won't be able to see the tickets, they'll be saved on the backend.

there will be no tickets page this time?

There never is with AoC.

my bad it was my first time
last event it was present so i asked

some event before i think there was 2 tickets per task if you are subscribed was it changed ?

Not for AoC competitions.

I guess AOC and the last event are different categories

altogether

Yes.

You got x tickets for finishing a module on new paths.

For AoC it's different because it's every single task (in the AOC room)

So if a module has 8 tasks, you'll get 8 tickets if you answer all questions.

so it's secret for everyone🫠

Yes. 🙂

so subscribed and unsbscirebd memberes will get the same amount of tickets if they answer the same questions ?

Yes.

There will be no advantage at being a subscriber for this competition.

ok thanks bro

Gave +1 Rep to @weary spindle

Is there a room on tryhackme explaining how to download kali Linux on Mac or do I have to watch a YouTube video?

is there a way to see how many points a lesson is worth?

q

8 points for a walkthrough, 30 points for a challenge.

Hey everyone, I am doing Linux Fundamentals again and am having issues with the machine. The splitscreen is just white after the initial loading screen and opening Fullscreen just opens the url "about:blank#blocked". I tried clearing the Cache and tried a different Browser but the problem still persists.

In other rooms, the AttackBox is working

The attackbox and the target machine in Linux Fundemental is different)

Yes, this is only affecting the target machine, in this room the AttackBox is not available

But still, the target machine should open in splitscreen right?

I thought it turns blue and then shows Show split view next to help if you accidently close the split window

If I close split screen, I see the blue button, but the whole screen is white, where the target machine should be.

Hi, I'm using OpenVPN

can you answer this please @buoyant hamlet

Hey, I am currently at the Content Discovery room at task 4 (Manual Discovery - Sitemap.xml). It asks me to visit http://10.10.x.x/sitemap.xml, however the page does not load; I get no response back. http://10.10.x.x/robots.txt from the task before works fine though

I am using OpenVPN on Windows

Are you using Machine ip or an IP? (10.10.xxx.xxx)

I am using the machine's ip

u mean like http://10.10.xx/robots.txt?

Yes

:P

are u using attackbox for this?

Nope, I am using OpenVPN on Windows

Windows 🤢

if I am not wrong for this they have adviced to use attackbox

It's hit and miss with the VPN

yess use the firefox browser on the Attackbox

it will work

Works better with the cli

The advice I give is either Attackbox or VPN.

but in windows mainly people uses gui :0

Yeah but the openvpn Gui is a bit weird with thm

ohh

I think it's the Community Downloads one that works "perfect"

yeah have used it a couple of times and didn't face any issue

attackbox works I guess, rest doesn't

@stray cove may u help me?

perhaps

the token on the current discord account?

yes, I would like to associate my discord account with a new THM account

ok

tnks

done

🙏

Hi when i try run openVPN say this in my terminal

2023-11-23 16:05:20 WARNING: Compression for receiving enabled. Compression has been used in the past to break encryption. Sent packets are not compressed unless "allow-compression yes" is also set.
2023-11-23 16:05:20 Note: --cipher is not set. OpenVPN versions before 2.5 defaulted to BF-CBC as fallback when cipher negotiation failed in this case. If you need this fallback please add '--data-ciphers-fallback BF-CBC' to your configuration and/or add BF-CBC to --data-ciphers.
2023-11-23 16:05:20 Note: '--allow-compression' is not set to 'no', disabling data channel offload.

Can anyone helpme to know?

are you using EU3 regular?

with EU3 say this
2023-11-23 16:18:58 Note: --cipher is not set. OpenVPN versions before 2.5 defaulted to BF-CBC as fallback when cipher negotiation failed in this case. If you need this fallback please add '--data-ciphers-fallback BF-CBC' to your configuration and/or add BF-CBC to --data-ciphers.
2023-11-23 16:18:58 Note: cipher 'AES-256-CBC' in --data-ciphers is not supported by ovpn-dco, disabling data channel offload.
2023-11-23 16:18:58 OpenVPN 2.6.3 x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] [DCO]
2023-11-23 16:18:58 library versions: OpenSSL 3.0.10 1 Aug 2023, LZO 2.10
2023-11-23 16:18:58 DCO version: N/A

I was actually saying if you are using EU-3 then switch to 1 or 2

check this @narrow pewter

ok, i'll try

hey guys im in the openvpn room .it says to press the link for verification but it doesnt work despite the fact that im connected to the openvpn. does anybody know what is happening?

In what way does it not work? Where is it re-directing you?

I redirects me to a blank page that says we could not communicate with this page

oh i waited some time with the machine open and it worked

thanks for the interest though

Many rooms require a boot up period, sometimes a few minutes sometimes over ten, the intros are pretty detailed.

.

.

wahoo

I want to change my username

Plz guide me for the same

You may address this request to THM Support

Hi, ho do they count this 40% flash sale? https://tryhackme.com/why-subscribe

It's look like 20% Black Friday, not 40%...

Are you a student?

No longer...

Ah, so it's only 20%

Thanks for clarification

Gave +1 Rep to @weary spindle

I am getting this whenever i try connect to any machine via ssh command. read UDPv4 [ENETUNREACH]: Network is unreachable (fd=3,code=101)

What is the reason for this? And how do i solve this?

@reef prairie we don’t use LMGTFY links here :)

Hey guys , do you know by any chance why it's keep saying that i can't deploy any other room because i already have 3 running ? I don't have any...

https://tryhackme.com/api/vm/running

Can you click this website please and tell me the Json output?

[{"roomId":"windowsfundamentals3xzx","expires":"2023-11-24T14:58:37.951Z","created":"2023-11-24T12:58:38.378Z","internalIP":"10.10.49.51","instanceId":"i-07ba8925e16b73adb","title":"WINFUN2 v1.0","timeInSeconds":1253.137,"remote":{"active":true,"bootTime":2,"privateIp":"10.10.49.51","remoteUrl":"https://remote-eu-20.tryhackme.tech/#/client/Mjk0MTczNgBjAG15c3Fs?token=0BE57B674F4B9809FCA191D08B3C0AD2FDA397814215CEBB7763F90800A99525","protocol":"rdp"},"waitTime":null},{"roomId":"operatingsystemsecurity","expires":"2023-11-24T16:03:47.324Z","created":"2023-11-24T14:03:47.324Z","internalIP":"10.10.22.210","instanceId":"i-054ad474780b7836e","title":"Beginner - OS Security v1","timeInSeconds":5162.509,"remote":{"active":false},"waitTime":null}]

You have 3 machines open, in the following rooms.

Linux Fundemental 3

Windows Fundemental 2

Os security.

How i can disconnect from it ?

I am into that room but i don't see any

Do you know how to use the console on your browser?

yup

Go the console

fetch('/api/vm/running')
  .then(r => r.json())
  .then(vms =>
    vms.forEach(vm =>
      fetch('/api/vm/terminate', {
        method: 'POST',
        body: JSON.stringify({ code: vm.roomId }),
        headers: {
          'csrf-token': csrfToken,
          'Content-Type': 'application/json'
        }
      })
    )
  )

Paste that in and hit enter, (while remaiing on TryHackMe)

It worked , thank you master!

Gave +1 Rep to @weary spindle

You're still on cooldown

Hi @weary spindle

I wanted to ask you something please ...

What's up?

I have created a private room and wanted to test it so I solved it, how can I reset the scoreboard and chart

Is that even possible?

I think staff will do that when it becomes public.

if*

But I want to keep it private

Then I don't think you can?

I mean, I want to ask site support to reset the scoreboard and chart for me ...

Do you know any one of the staff that you can mention please

@weary spindle

Hello !
I think there's a problem with VM's on the browser. When I tried to do some rooms about network services my manipulations didn't work and after a check on youtube videos about these rooms the different guys used exactely the same way to find the anwsers and flags, strange...

@glacial hound

Are you able to assist?

What did you try and what command did you use?

Is there an issue with the website ? It's moving very slow , ain't loading anything.

Hey, you can reset user progress in your room from the room management page, in the "users" tab

The first problem was exploiting telnet where we must use a reverse script shell with msfvenom and take the anwser with netcat
The second was on enumerating NFS where I must use ssh -i <key-file> <username>@<ip> to connect to the target machine as the user

tried that but still showing my scoreboard and progress in chart ...

nope might be your network issue

Images from Learn / Practice / Search ain't loading , so i can join a room

which room?

Your best option is to clone your room 🙂

@glacial hound you are a legend dude, ty it worked!

Gave +1 Rep to @glacial hound

Anytime 🙂 Enjoy your day!

It's working now a little bit better , just raising some awarness to tech team to check 😄

How long does it take to receive a response to an email?

@glacial hound is it safe to delete the original room after cloning the room ...

They're quite busy, so te reposnse time is long.

Should be, yes 🙂 But I always keep a clone of mine in case

ty 🙂

Gave +1 Rep to @glacial hound

hey , what happens when you visit the active machine ip address because when i start it it doesn't open anything, it buffers tand then says couldn't open

anyone has a solution for this? i am not able to complete labs which are involved in requesting to active machine ip address on firefox

the machine ip address is opening up in attack box but not on home pc

Are you connected to vpn on your host os?

AttackBox for AoC firefox browser is very slow

AoC 2022

Hey guys, sorry for bothering with this kind of question but, I have finished 1 path and wish to get cert, but I have used fake name in profile and generated my cert with fake name( And now after changing my name to real one, I'm just getting cert which is already generated with fake name, and does not generates new one with updated name, I can fix it somehow?

Unfortunately you can not change it afterwards, but it will use your real name for any upcoming certs you will obtain, if you added it to your profile now 🙂

@crystal marlin

Thank you, looks like I need to change my name in ID then

Ye, sounds like a good solution

i keep getting warned that my new initiated AttackBox is going to expire, when i launched it 10 minutes ago (subscriber)

Linux PrivEsc course, Attack Box stopped responding, could not re-connect. Waited for 30 minutes to try again (a couple minutes ago) and received a "failed to connect error message".

Got an issue

Can someone please help me

not without knowing what said issue is

Unable to login to my attackBox, it keeps saying wrong password despite trying the password provided by tryhackme multiple times

Specifically trying to solve the Linux fundamentals 2

I'm connected to the VPN but it won't let me access the boxes, I'm on Debian I redownloaded the config, running openvpn with root, I get an ip on tun1 but just can't reach anything, my firewall is disabled and other VPNs are also off

It requires me to login using ssh

this is where you get the creds for the attackbox... though you probably forgot to start the target machine and sshing into it from the attackbox

https://github.com/tryhackme/openvpn-troubleshooting

the command to login to ssh would be this ssh tryhackme@10.10.x.x

Thank you

Gave +1 Rep to @plush bay

I can't access tryhack me on openvpn windows. Any suggestions? I'd like to stay on tryhackme but I'm going to move to hackthebox if I can't use what I paid for

1. what country are you from
2. how are you connecting to the openvpn on windows
3. have you tried making a kali linux vm and connecting to the vpn on that
4. if you have done 3 have you check the troubleshoot script above

1. United States (Yes my windows region reflects that)
2. Using the OpenVPN Client or WSL
3. No though I can connect through WSL, but I'm not sure how to access that while in WSL
4. Yes I've done the troubleshoot on WSL. It's not available on windows from what I see

I'm using this room https://tryhackme.com/room/walkinganapplication

wsl:s networking is known to be faulty and broken... try a normal vm in like virtualbox

I can't connect through windows?

dunno... as most users dont so it is not really tested a lot

Crazy that's an option. I'll just charge my money back

thanks

are you having multiple vpns on at the same time is also a question shadow should ask as that can also cause problems

I'm on no other vpn. Connecting works fine when going through wsl and I can ping the server

It's just that netoworking with wsl shares from windows down but not wsl out

could always use the attackbox if you don't wanna set up your own virtual machine in virtualbox

yeah that is one part of the problem.. there is even more if you dig deeper

explain? I haven't had any issues with docker or anything

can't really as shadow has not done a lot of research in it since the last time shadow used windows was in 2016... but keep hearing horror stories from windows and wsl users on here

I love using wsl for software devleopment (i'm an engineer that just moved from mac to windows). I haven't really heard a lot of complaints on my end. Must be my use case that's just being taken care of.

hello

I purchase the yearly subscripition with the discount black friday and student discount but it still charged me $100 instead of $80? how would i get this resolved . I also got it before black friday deal ended

Alright I've downlaoded kali and run the troublehsooter and got this

It says this Your TryHackMe IP address is: 10.6.115.90

but I can't connect to that ip or the one in link listed in the room. Any suggestions?

Do I have to hit start machine too?

Random question - Has anyone ever seen the site not want to download ovpn files for specific rooms, such as Wreath?

You can shoot an email to THM Support and submit a ticket for it. You will need to be patient though as I read somewhere that standard response time is roughly 8-9 days excluding weekends.

Yes, the IP assigned to you only means you are joined to the network.

By not downloading ovpn files, are you downloading empty ovpn files or the downloading process itself prompts an error?

Thanks so much!

No it just says Loading... and never downloads it. Its for the Wreath room. It will work for the standard ovpn file, but the wreath room does not. I've tried regenerating and leaving the room, but neither works and the issue has been going on for a couple days.

It does it on the VM and the local computer as well so I dont think it is on my side, but hoping I missed something.

I can't establish a working interactive ssh connection to my deployed linux machine. I was initially getting stuck on "debug1: expecting SH2_MSG_KEX_ECDH_REPLY Connection closed by 10.10.86.17 port 22". I then used the troubleshooter which said something about changing my mtu value and I was able to get past that section and was able to provide the tryhackme password but then when it just starts to display the system information the terminal window freezes. I can't even Ctrl + c out of it and I am forced to close the terminal window. I experimented a little and found that I was able to communicate with the server and get output back via ssh tryhackme@10.10.86.17 'ls -la' . Any help would be greatly appreciated

What room is this?

Linux Fundamentals Part 3

it worked for me yesterday without needing the troubleshooter which is what has me most confused

Hmm, could be your VPN connection is bad, what is the VPN output?

sudo openvpn ./tryhackme.ovpn
2023-11-24 22:26:14 WARNING: Compression for receiving enabled. Compression has been used in the past to break encryption. Sent packets are not compressed unless "allow-compression yes" is also set.
2023-11-24 22:26:14 Note: --cipher is not set. OpenVPN versions before 2.5 defaulted to BF-CBC as fallback when cipher negotiation failed in this case. If you need this fallback please add '--data-ciphers-fallback BF-CBC' to your configuration and/or add BF-CBC to --data-ciphers.
2023-11-24 22:26:14 Note: '--allow-compression' is not set to 'no', disabling data channel offload.
2023-11-24 22:26:14 OpenVPN 2.6.3 x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] [DCO]
2023-11-24 22:26:14 library versions: OpenSSL 3.0.11 19 Sep 2023, LZO 2.10
2023-11-24 22:26:14 DCO version: N/A
2023-11-24 22:26:14 TCP/UDP: Preserving recently used remote address: [AF_INET]3.104.196.208:1194
2023-11-24 22:26:14 Socket Buffers: R=[212992->212992] S=[212992->212992]
2023-11-24 22:26:14 UDPv4 link local: (not bound)
2023-11-24 22:26:14 UDPv4 link remote: [AF_INET]3.104.196.208:1194
2023-11-24 22:26:14 TLS: Initial packet from [AF_INET]3.104.196.208:1194, sid=36105433 d8df9fe9
2023-11-24 22:26:14 VERIFY OK: depth=1, CN=ChangeMe
2023-11-24 22:26:14 VERIFY KU OK
2023-11-24 22:26:14 Validating certificate extended key usage
2023-11-24 22:26:14 ++ Certificate has EKU (str) TLS Web Server Authentication, expects TLS Web Server Authentication
2023-11-24 22:26:14 VERIFY EKU OK
2023-11-24 22:26:14 VERIFY OK: depth=0, CN=server

2023-11-24 22:26:14 Control Channel: TLSv1.3, cipher TLSv1.3 TLS_AES_256_GCM_SHA384, peer certificate: 2048 bit RSA, signature: RSA-SHA256
2023-11-24 22:26:14 [server] Peer Connection Initiated with [AF_INET]3.104.196.208:1194
2023-11-24 22:26:14 TLS: move_session: dest=TM_ACTIVE src=TM_INITIAL reinit_src=1
2023-11-24 22:26:14 TLS: tls_multi_process: initial untrusted session promoted to trusted
2023-11-24 22:26:15 SENT CONTROL [server]: 'PUSH_REQUEST' (status=1)
2023-11-24 22:26:15 PUSH: Received control message: 'PUSH_REPLY,route 10.10.0.0 255.255.0.0,route 10.3.0.0 255.255.0.0,route-metric 1000,route-gateway 10.4.0.1,topology subnet,ping 5,ping-restart 120,ifconfig 10.4.48.135 255.255.128.0,peer-id 36'
2023-11-24 22:26:15 OPTIONS IMPORT: --ifconfig/up options modified
2023-11-24 22:26:15 OPTIONS IMPORT: route options modified
2023-11-24 22:26:15 OPTIONS IMPORT: route-related options modified
2023-11-24 22:26:15 Using peer cipher 'AES-256-CBC'
2023-11-24 22:26:15 net_route_v4_best_gw query: dst 0.0.0.0
2023-11-24 22:26:15 net_route_v4_best_gw result: via 192.168.26.2 dev eth0
2023-11-24 22:26:15 ROUTE_GATEWAY 192.168.26.2/255.255.255.0 IFACE=eth0 HWADDR=00:0c:29:f1:48:6e
2023-11-24 22:26:15 TUN/TAP device tun0 opened
2023-11-24 22:26:15 net_iface_mtu_set: mtu 1500 for tun0
2023-11-24 22:26:15 net_iface_up: set tun0 up
2023-11-24 22:26:15 net_addr_v4_add: 10.4.48.135/17 dev tun0
2023-11-24 22:26:15 net_route_v4_add: 10.10.0.0/16 via 10.4.0.1 dev [NULL] table 0 metric 1000
2023-11-24 22:26:15 net_route_v4_add: 10.3.0.0/16 via 10.4.0.1 dev [NULL] table 0 metric 1000
2023-11-24 22:26:15 Initialization Sequence Completed
2023-11-24 22:26:15 Data Channel: cipher 'AES-256-CBC', auth 'SHA512', peer-id: 36, compression: 'lzo'
2023-11-24 22:26:15 Timers: ping 5, ping-restart 120
2023-11-24 22:26:15 Protocol options: explicit-exit-notify 3

This shows you're connected.

Yeah that's fine, could you run the ssh with -vv maybe?

ssh tryhackme@10.10.86.17 -vv
OpenSSH_9.4p1 Debian-1, OpenSSL 3.0.11 19 Sep 2023
debug1: Reading configuration data /etc/ssh/ssh_config
debug1: /etc/ssh/ssh_config line 19: include /etc/ssh/ssh_config.d/*.conf matched no files
debug1: /etc/ssh/ssh_config line 21: Applying options for *
debug2: resolve_canonicalize: hostname 10.10.86.17 is address
debug1: Connecting to 10.10.86.17 [10.10.86.17] port 22.
debug1: Connection established.
debug1: identity file /home/kali/.ssh/id_rsa type -1
debug1: identity file /home/kali/.ssh/id_rsa-cert type -1
debug1: identity file /home/kali/.ssh/id_ecdsa type -1
debug1: identity file /home/kali/.ssh/id_ecdsa-cert type -1
debug1: identity file /home/kali/.ssh/id_ecdsa_sk type -1
debug1: identity file /home/kali/.ssh/id_ecdsa_sk-cert type -1
debug1: identity file /home/kali/.ssh/id_ed25519 type -1
debug1: identity file /home/kali/.ssh/id_ed25519-cert type -1
debug1: identity file /home/kali/.ssh/id_ed25519_sk type -1
debug1: identity file /home/kali/.ssh/id_ed25519_sk-cert type -1
debug1: identity file /home/kali/.ssh/id_xmss type -1
debug1: identity file /home/kali/.ssh/id_xmss-cert type -1
debug1: identity file /home/kali/.ssh/id_dsa type -1
debug1: identity file /home/kali/.ssh/id_dsa-cert type -1
debug1: Local version string SSH-2.0-OpenSSH_9.4p1 Debian-1

debug1: Remote protocol version 2.0, remote software version OpenSSH_8.2p1 Ubuntu-4ubuntu0.5
debug1: compat_banner: match: OpenSSH_8.2p1 Ubuntu-4ubuntu0.5 pat OpenSSH* compat 0x04000000
debug2: fd 3 setting O_NONBLOCK
debug1: Authenticating to 10.10.86.17:22 as 'tryhackme'
debug1: load_hostkeys: fopen /home/kali/.ssh/known_hosts2: No such file or directory
debug1: load_hostkeys: fopen /etc/ssh/ssh_known_hosts: No such file or directory
debug1: load_hostkeys: fopen /etc/ssh/ssh_known_hosts2: No such file or directory
debug1: SSH2_MSG_KEXINIT sent
debug1: SSH2_MSG_KEXINIT received
debug2: local client KEXINIT proposal
debug2: KEX algorithms: sntrup761x25519-sha512@openssh.com,curve25519-sha256,curve25519-sha256@libssh.org,ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,diffie-hellman-group-exchange-sha256,diffie-hellman-group16-sha512,diffie-hellman-group18-sha512,diffie-hellman-group14-sha256,ext-info-c
debug2: host key algorithms: ssh-ed25519-cert-v01@openssh.com,ecdsa-sha2-nistp256-cert-v01@openssh.com,ecdsa-sha2-nistp384-cert-v01@openssh.com,ecdsa-sha2-nistp521-cert-v01@openssh.com,sk-ssh-ed25519-cert-v01@openssh.com,sk-ecdsa-sha2-nistp256-cert-v01@openssh.com,rsa-sha2-512-cert-v01@openssh.com,rsa-sha2-256-cert-v01@openssh.com,ssh-ed25519,ecdsa-sha2-nistp256,ecdsa-sha2-nistp384,ecdsa-sha2-nistp521,sk-ssh-ed25519@openssh.com,sk-ecdsa-sha2-nistp256@openssh.com,rsa-sha2-512,rsa-sha2-256

debug2: ciphers ctos: chacha20-poly1305@openssh.com,aes128-ctr,aes192-ctr,aes256-ctr,aes128-gcm@openssh.com,aes256-gcm@openssh.com
debug2: ciphers stoc: chacha20-poly1305@openssh.com,aes128-ctr,aes192-ctr,aes256-ctr,aes128-gcm@openssh.com,aes256-gcm@openssh.com
debug2: MACs ctos: umac-64-etm@openssh.com,umac-128-etm@openssh.com,hmac-sha2-256-etm@openssh.com,hmac-sha2-512-etm@openssh.com,hmac-sha1-etm@openssh.com,umac-64@openssh.com,umac-128@openssh.com,hmac-sha2-256,hmac-sha2-512,hmac-sha1
debug2: MACs stoc: umac-64-etm@openssh.com,umac-128-etm@openssh.com,hmac-sha2-256-etm@openssh.com,hmac-sha2-512-etm@openssh.com,hmac-sha1-etm@openssh.com,umac-64@openssh.com,umac-128@openssh.com,hmac-sha2-256,hmac-sha2-512,hmac-sha1
debug2: compression ctos: none,zlib@openssh.com,zlib
debug2: compression stoc: none,zlib@openssh.com,zlib
debug2: languages ctos:
debug2: languages stoc:
debug2: first_kex_follows 0

debug2: reserved 0
debug2: peer server KEXINIT proposal
debug2: KEX algorithms: curve25519-sha256,curve25519-sha256@libssh.org,ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,diffie-hellman-group-exchange-sha256,diffie-hellman-group16-sha512,diffie-hellman-group18-sha512,diffie-hellman-group14-sha256
debug2: host key algorithms: rsa-sha2-512,rsa-sha2-256,ssh-rsa,ecdsa-sha2-nistp256,ssh-ed25519
debug2: ciphers ctos: chacha20-poly1305@openssh.com,aes128-ctr,aes192-ctr,aes256-ctr,aes128-gcm@openssh.com,aes256-gcm@openssh.com
debug2: ciphers stoc: chacha20-poly1305@openssh.com,aes128-ctr,aes192-ctr,aes256-ctr,aes128-gcm@openssh.com,aes256-gcm@openssh.com
debug2: MACs ctos: umac-64-etm@openssh.com,umac-128-etm@openssh.com,hmac-sha2-256-etm@openssh.com,hmac-sha2-512-etm@openssh.com,hmac-sha1-etm@openssh.com,umac-64@openssh.com,umac-128@openssh.com,hmac-sha2-256,hmac-sha2-512,hmac-sha1
debug2: MACs stoc: umac-64-etm@openssh.com,umac-128-etm@openssh.com,hmac-sha2-256-etm@openssh.com,hmac-sha2-512-etm@openssh.com,hmac-sha1-etm@openssh.com,umac-64@openssh.com,umac-128@openssh.com,hmac-sha2-256,hmac-sha2-512,hmac-sha1
debug2: compression ctos: none,zlib@openssh.com
debug2: compression stoc: none,zlib@openssh.com

debug2: languages ctos:
debug2: languages stoc:
debug2: first_kex_follows 0
debug2: reserved 0
debug1: kex: algorithm: curve25519-sha256
debug1: kex: host key algorithm: ssh-ed25519
debug1: kex: server->client cipher: chacha20-poly1305@openssh.com MAC: <implicit> compression: none
debug1: kex: client->server cipher: chacha20-poly1305@openssh.com MAC: <implicit> compression: none
debug1: expecting SSH2_MSG_KEX_ECDH_REPLY
debug1: SSH2_MSG_KEX_ECDH_REPLY received
debug1: Server host key: ssh-ed25519 SHA256:gZuxk0dJxM+OTU959mBfxgqFdSi+F0ASG/yUtQd3+Qo
debug1: load_hostkeys: fopen /home/kali/.ssh/known_hosts2: No such file or directory
debug1: load_hostkeys: fopen /etc/ssh/ssh_known_hosts: No such file or directory
debug1: load_hostkeys: fopen /etc/ssh/ssh_known_hosts2: No such file or directory
debug1: Host '10.10.86.17' is known and matches the ED25519 host key.

debug1: Found key in /home/kali/.ssh/known_hosts:10
debug2: ssh_set_newkeys: mode 1
debug1: rekey out after 134217728 blocks
debug1: SSH2_MSG_NEWKEYS sent
debug1: expecting SSH2_MSG_NEWKEYS
debug1: SSH2_MSG_NEWKEYS received
debug2: ssh_set_newkeys: mode 0
debug1: rekey in after 134217728 blocks
debug1: get_agent_identities: ssh_get_authentication_socket: No such file or directory
debug1: Will attempt key: /home/kali/.ssh/id_rsa
debug1: Will attempt key: /home/kali/.ssh/id_ecdsa
debug1: Will attempt key: /home/kali/.ssh/id_ecdsa_sk
debug1: Will attempt key: /home/kali/.ssh/id_ed25519
debug1: Will attempt key: /home/kali/.ssh/id_ed25519_sk
debug1: Will attempt key: /home/kali/.ssh/id_xmss
debug1: Will attempt key: /home/kali/.ssh/id_dsa

debug2: pubkey_prepare: done
debug1: SSH2_MSG_EXT_INFO received
debug1: kex_input_ext_info: server-sig-algs=<ssh-ed25519,sk-ssh-ed25519@openssh.com,ssh-rsa,rsa-sha2-256,rsa-sha2-512,ssh-dss,ecdsa-sha2-nistp256,ecdsa-sha2-nistp384,ecdsa-sha2-nistp521,sk-ecdsa-sha2-nistp256@openssh.com>
debug2: service_accept: ssh-userauth
debug1: SSH2_MSG_SERVICE_ACCEPT received
debug1: Authentications that can continue: publickey,password
debug1: Next authentication method: publickey
debug1: Trying private key: /home/kali/.ssh/id_rsa
debug1: Trying private key: /home/kali/.ssh/id_ecdsa
debug1: Trying private key: /home/kali/.ssh/id_ecdsa_sk
debug1: Trying private key: /home/kali/.ssh/id_ed25519
debug1: Trying private key: /home/kali/.ssh/id_ed25519_sk
debug1: Trying private key: /home/kali/.ssh/id_xmss
debug1: Trying private key: /home/kali/.ssh/id_dsa
debug2: we did not send a packet, disable method

debug1: Next authentication method: password
tryhackme@10.10.86.17's password:
debug2: we sent a password packet, wait for reply
Authenticated to 10.10.86.17 ([10.10.86.17]:22) using "password".
debug1: channel 0: new session [client-session] (inactive timeout: 0)
debug2: channel 0: send open
debug1: Requesting no-more-sessions@openssh.com
debug1: Entering interactive session.
debug1: pledge: filesystem
debug1: client_input_global_request: rtype hostkeys-00@openssh.com want_reply 0
debug1: client_input_hostkeys: searching /home/kali/.ssh/known_hosts for 10.10.86.17 / (none)
debug1: client_input_hostkeys: searching /home/kali/.ssh/known_hosts2 for 10.10.86.17 / (none)
debug1: client_input_hostkeys: hostkeys file /home/kali/.ssh/known_hosts2 does not exist
debug2: channel_input_open_confirmation: channel 0: callback start
debug2: fd 3 setting TCP_NODELAY
debug2: client_session2_setup: id 0
debug2: channel 0: request pty-req confirm 1
debug1: Sending environment.
debug1: channel 0: setting env LANG = "en_US.UTF-8"
debug2: channel 0: request env confirm 0
debug2: channel 0: request shell confirm 1
debug2: channel_input_open_confirmation: channel 0: callback done
debug2: channel 0: open confirm rwindow 0 rmax 32768
debug1: client_global_hostkeys_prove_confirm: server used untrusted RSA signature algorithm ssh-rsa for key 0, disregarding
debug1: update_known_hosts: known hosts file /home/kali/.ssh/known_hosts2 does not exist
debug1: pledge: fork
debug2: channel_input_status_confirm: type 99 id 0
debug2: PTY allocation request accepted on channel 0
debug2: channel 0: rcvd adjust 2097152
debug2: channel_input_status_confirm: type 99 id 0
debug2: shell request accepted on channel 0
Welcome to Ubuntu 20.04.5 LTS (GNU/Linux 5.15.0-1021-aws x86_64)

• Documentation: https://help.ubuntu.com
• Management: https://landscape.canonical.com
• Support: https://ubuntu.com/advantage

System information as of Sat Nov 25 03:52:05 UTC 2023

System load: 0.0 Processes: 103
Usage of /: 9.6% of 29.01GB Users logged in: 1
Memory usage: 12% IPv4 address for eth0: 10.10.86.17
Swap usage: 0%

then it freezes

ah well that is just a wall of text... perhaps I shouldn't haven't told you to send the entire thing... let me look through it

sorry about that, thank you

Nw, I just know that the server admins don't like walls of text that much. Next time you can place it in a txt file and then upload it for less spam, it can all still be read without being downloaded and looks a lot nicer

that's a good idea I'll remember that

Are you using an internet connection at home or in a public place?

at home

Have you tried to type something after just to check if it responds or not?

it goes totally unresponsive inside the terminal window

Have you tried just terminating and relaunching the machine?

it won't pick up anything i type or ctrl + c

I've done that a few times

I've also redownloaded the ovpn file

hmm, is the machine still up atm? If so what is the IP?

10.4.48.135 on tun0

sorry

wrong one

haha, nw

10.10.86.17

Well its certainly not the machine's fault then, because I can ssh in just fine

hmm

I can access it with the attackbox as well

it's real weird

Yeah it's definetly something up with your VM, but idk what. The VPN is fine, the IP is fine, the credentials are fine, the debug information isn't showing anything of note, very strange

and the vm was working all yesterday without issue

with the ssh i mean

I think I'll try redownloading Kali

Well you could try updating it first that might help depending on how long ago you installed your VM. sudo apt update && sudo apt upgrade.

will do

it's found a bunch

I hope it's this easy

updates and upgrades done but the ssh terminal is still freezing up just after connecting

file and actions and everything work but the cli freezes

I'm nearly out of ideas then, the only other thing I could think to try would be to restart ssh. Sudo service ssh restart is the command iirc

I'm still getting the hang at system information. I found out how to get the terminal responsive again (https://serverfault.com/questions/283129/why-do-consoles-sometimes-hang-forever-when-ssh-connection-breaks) but all that does is tell me the issue is somewhere in the ssh connection and it's probably client-side

i would recommend screenshotting the error and just uploading that. Once you know what the error is, you can start to diagnose more things about why, including journal logs from the client or server

It could be a variety of issues, ranging from local wifi connectivity, to network throttling, available bandwidth, etc

https://postimg.cc/G8BkY9sJ there's an image of it in action

@ivory spruce I've noticed that you've been answering all the questions since I joined this Discord server (You are awesome)

Nah, just trying to help out where I can.

Keep going 🙂

Hello I just tried buying the premium on black friday sale and somehow it isn't applying the coupon when I finalize the payment and showing the price to be 85 GBR only. So I cancelled the subscription to retry but isn't letting me retry again for now as it shows your subscription will end on 25 Nov 2024. So what should I do as I think the sale is gonna end on Saturday.

What do you mean by not applying the coupon? Based on your computation, how much should have been charged to you? It was previously mentioned here that the discount is not automatically applied without the need to manually input the code.

#1174347459116417054 message

@ivory spruceI just resubscribed but it is showing 86 GBR while before the payment detail filling it was 69.12 GBR.

You still have your student email?

yes

It seems the 20% discount didn't apply although it should have. Do email THM Support and submit a ticket for it.

I should mail on their support@west chasm mail right?

Not this one. It is the TryHackMe bot

support@tryhackme.com

ok got it and please do tell me how to submit ticket as well

When you drop them an email and describe your concern, you will be assigned a ticket number.

ohk got it , thankyou so much

one more thing should I cancel the subscription and retry it or are they gonna fix this one only

You have to choose between cancelling your subscription or applying the 20% discount I think

no i mean i wanna to get the premium but on discount so I am asking , do I have to cancel and resubscribe or is it going to get fixed without that.

THM Support should be able to manually apply the discount and reverse a part of the charge

https://help.tryhackme.com/en/articles/6494960-student-discount

oh that would be nice then , thanks for the info and help

Gave +1 Rep to @ivory spruce

i mailed them , autobot responded there is a long list for tickets so it is gonna take some time

my student mail is recognised and verified as well the discount was applied earlier, but it somehow got glitched after i filled the payment details

Reading the article again, it says here that you will not be reimbursed, but then again, the example they used is monthly and not annual subscription. Better to discuss or clarify it with THM Support to be on the safe side.

Come back on December 1st to answer this first question! i can;t understand

The event will only start on that date. Thus, the first question or task will not be released until then.

wow thank you so much for your information

Gave +1 Rep to @ivory spruce

ok for sure I will ask them , but any idea how much time it usually takes to get a response back

anyone else had issues with the flags not being accepted on "walking an application" i found 2 that it wouldnt take and im just thinking i broke something and need to start over, some incorrect flags on the pages or something like that

It may not be the correct flags as I did that room recently.

ill just try it again later, i probably went deeper into the website than i was intended to do

thank you

long as i know its not broken, i literally quit college bc of that lol

Hello, I would like to know if the prices in dollars are adapted to the euro market? For example today: $50 = €45.6

When we establish an SSH connection to a device within our local network I wonder whether the connection is encrypted ? or it's encryption only applicable over the internet

You should look up what SSH is.

I know what is this

So that should answer your question.

If you're still in doubt.

You should SSH in to a local device with wireshark running.

My question is whether the connection is encrypted only when connecting device in the local area network. I couldn't find an answer to this questiopn on the website it only mentoied encryption when connecting over the internet

I'll try that thanks for idea

Gave +1 Rep to @weary spindle

I mean, I already know the answer, and you so too, but practically doing it might give you a more clearer answer.

Thnakss

I'he observed that the connection is encrypted. Thanks again

Does student discount and AOC discount stack?

It doesn't, no 🙂

hi is there anyone know how to decrypt the wordfile with have 8 passwords that have symbols, lowercase,uppercase and digits with a more faster way, bcos now I am using hashcat and require very long time to decrypt😭

Hi!
How to resubscribe with a discount?
My subscription ends on Dec 27, 2023
I cannot cancel it enough to subscribe again.
Any Ideas?

O

You can't.

Hello, I connected to TryHackMe via SSH and created a text file there, but when I try to transfer the text file to my local machine, it doesn't work, even though I'm sure the command is correct

the command is scp tryhackme@machineip:/home/tryhackme/test1 /home/lotrex/

but it doesnt work

I need ur help

i have an access problem of TryHackMe. is there anyone to help

What is your problem?

access machine is not change. machine is active but cannot terminate. cannot reset progress? AttackBox will not help (215000 min to start)

Hey, try clearing your browsers cache or logging into THM from an incognito tab

@glacial houndCould I DM you for help? I'm not sure if theres any sensitive info in the thing

I have VPN issues

What are you sshing into, the Attackbox? Are you getting an error message after your scp command?

it would be extremely rare for there to be any kind of sensitive data in the VPN connection log - the only "sensitive" data would be your private key that is in the config file

Alright, I'll just send it here.

Yup, please share the output after connecting, and any troubleshooting steps you've done 🙂

So far I've worked with a kali linux 2021 machine, but some stuff stopped working there so I tried moving to the latest version of kali linux 2023, and now the openvpn isnt working

Oh wait maybe I just need to add t he cypher

Which server are you using?

Idk but I used openvpn on my computer and it workeed fine

This post helped me fix it so that it will work in my VM

https://forums.openvpn.net/viewtopic.php?t=33536

Justt changed it from cypher to data-ciphers ciphe

The connection keeps on disconnecting, weird openvpn message as well

how to change my username tryhack me

hi all , i have some trouble with my vpn , keeps on disconnecting like u 😦

Not sure if that helps, but my logs look basically like that. I have not connected for too long, so not sure if it disconnects after a while

it disconnects after like 3 minutes

maybe a bit more but it disconnects

glad to see its not just me

There's a fair amount of troubleshooting knowledge required- have you checked the pinned posts for the VPN troubleshooting script?

I'll keep it for a while to check

I haven't, thanks for reminding they exist

Gave +1 Rep to @broken bear

I downloaded the VPN provided by TryHackMe to do the lessons on my own machine, but I'm getting an error when trying to connect. Can you help me?

https://github.com/tryhackme/openvpn-troubleshooting

here is the link for those not bothering to search pins or google or github

thank you :)

Still having the disconnecting issues.

Disconnecting?

The connetions disconnects after a few minutes, the script fixed the MTU value but thats it

Does your VPN restart?

I had to use a kali linux vpn and the tool. Good luck any way other than on linux

Wat?

Kali linux and the tool*

Which tool?

the tool github repo linked above

It worked on wsl too

Ah, you needed to use that connect on the vpn?

yeah

So just load up a kali iinux virtual box then use that tool to connect in there

If you need help hmu

You won't need to use that every time, just download the config file from THM>

I just run the tool every time

Easier that way

it's easy to use

I can show you on a call if you want

just download kali linux iso (https://www.kali.org/get-kali/#kali-installer-images) and virtual box then hit me up https://www.virtualbox.org/

No thanks, I'm ok.

you cofmortable with the linux command line and running commands? If so you'll be fine

I'm not a beginner?

Wasn't sure

I'm new to tryhack me but I've been a software engineer for 5 years

anybody else having trouble accessing this link? https://wiki.owasp.org/index.php/OWASP_favicon_database.

No works just fine

I was downloading this PassGAN,but when I try to download the requirements in linux,it show error

Anyone having issues with internal.thm wordpress, I'm not able to update php file or any other

Is there better documentation on the APIs than what is on TryHackMe website and the Postman Unofficial Documentation.

What I am looking for is API endpoints that could help me automate reporting of room/module/path completion that could be synced up with LMS systems such as Canvas.

You could probably check with THM Support if they have and support said functionality.

Yeah, for some reason, when I try to connect to the target IP_addy on my Kali Linux page, it just refuses to connect. I did the GitHub OpenVPN troubleshooting. Updated OpenVPN, tried to change the MTU value, and updated the my kernels and bin, etc I'm still not getting access to the webpage for the target IP

NVM my proxy was up

Try hack me wordpress not updating php

Internal Room?

Yes internal room. In that room i logged into WordPress, and when uploading reverse shell in php , it is not updating

Something went wrong. Your change may not have been saved. Please try again. There is also a chance that you may need to manually fix and upload the file over FTP. This is the error

Are you doing it via customising themes (the reverse shell script I mean)?

Yes 404.php, but not that every else save changes is getting same error

Can you share a screenshot of it?

hi there

Hello

how are u @weary spindle

I wanted to ask you if there is a way of adding credits at the very bottom like this
https://tryhackme.com/room/furthernmap

Credits?

I dont want it to be at More option

I'm confused, you don't want that link to he called More ?

I wanted to add it like other rooms just right at the bottom, it is just about making it a "simple room"

Could be a suggestion for #feedback-and-ideas

I have found the solution @weary spindle

ty

Hi

I've been a subscriber for over a year

all my progress on my account has been deleted

I'm sorry to hear that, you can mail support about this. Response time is usually 3-5 days and only on weekdays

Hi, did you click on "sign in with Google" by any chance? This could've created a new account via Oauth.
Can you verify on your profile page that you are logged in with the right email?

I agree with the good Dr.

Are they seperate accounts?

Yeah.

I hope It doesn't override

probably, but i still have my sub on the profile im on now and the profile picture is still the i've been using for ages

You can't link an existing account with a new Google log in

Log out and try logging back in with your username.

Yup, try logging in manually with the login fields

alrighty

Oh, I see the problem there. Will it be resolved one day?

it's not a bug perse, signing in via google / via oauth on another platform creates an entirely new account

Yeah but as Thunder said, It shows your "manual" account information when you sign in with google

You can somehow block that, can't you?

mhhm that's strange. Not sure what's going on there then 😅

probably pulls the pfp from somewhere. Similar to gravatar but idk

I'm probably talking nonsense lmfao

If it's a custom pfp then indeed it's strange

well If emails are the same

It makes sense

(I don't know how it works but I'm just assuming)

Technically you shouldn't be able to have 1 email linked to 2 accounts, so if Oauth created a new acc, it would be with another Gmail address

So It doesn't overwrite... odd..

Let's see what Thunder says

Even the premium

All good?

Hello! Sorry to bother you, please tell me if you accept cards for payment UnionPay?

You can use debit cards for the payment

If you are referring to the site subscription

I have a problem in the metasploit room. It says generate a msfvenom payload, download it to target such that it connects back to attacker machine. So, this works but I have two windows open in the split view in browser, one being the attacker machine, other being the target, so when I execute the ELF on the target and switch the window to the attacker machine, the target gets logged out and the connection to the attacker machine closes.. very frustrating. Can't use a VM bc can't connect to THM VPN either.

Unable to send pic in this chat . Shared screenshot in dm

hey guys i guess the question already been asked but i'm subed until 12 december and i wanted to use the discound of BF is there any solution ?

You can open both windows in full screen instead of split screen, this should solve the issue 🙂

thanks I'll try that 🙂

Gave +1 Rep to @crystal marlin

Hi guys , i wanna ask that is there any delay in name changing process . It’s been 6-7 days but no response 🤔

Support are busy, and they don't work weekends.

Ik but it’s been more than a week now

Maybe due to AOC staff is busy

I could use some assistance, I'm trying to setup OpenVPN Connect. I downloaded the configuration file and tried importing it. But it keeps timing me out. But the site does say that i'm "connected" but I can't reach any of the IP's and in OpenVPN Connect I'm still disconnected

Are you using Windows?

yes

downloaded the windows openVPN client

Did you download the GUI from https://openvpn.net/community-downloads/ ?

I downloaded it from: https://openvpn.net/client/client-connect-vpn-for-windows/

v3.4.2

Ah, please download it from the link I supplied 🙂

If you really need to use Windows (if its your host)

Alright, but is there a reason why the one I linked is wrong? because the tutorials on tryhackme do link to that one

Yeah, they're going to be changed, and as you have experienced, it doesn't work anymore.

Alright, fair enough, thank you for your help

No worries, also before you go, are you using Eu-Reg-3 ?