#site-support

Easy to use and setup

if it's running in docker, it's not a vm, it's a container

Hi,

Why am I still have premium access when the expiration date says dec 2 2023?? I have premium access I can start machine a premium box and I have receive an email from THM that says something like this "Paypal: renewal failed" something like that

I have canceled my subscription before dec 2 2023 21:XX "[Important] We couldn't charge your Paypal Express Checkout" <- email header

If payment fails its usually expiry date + 3 days.

Because it will try and resolve it.

If it doesn't after 3rd day, it cancels.

the solution to this was just setting a ssh with the target machine,

Hahaha yeah I mean that is definitely a way to do it. Probably a lot more work for just one room than just using the browser but honestly it's a good learning experience. Glad you figured out a solution.

Hello is there a way to open the attack box directly in a new tab ?

Yup

#general message

Hello,
I tried contacting the support team, but I haven't had any response,
My subscription got auto renewed,
Kindly help.

Support are busy, if you contacted within 7 days you'll be fine.

Do I need a stripe account for refunds?

you'll get refunded on how which method you paid.

Thank you 😃

To do this you first have to open and then send it to a new tab, i want to start it directly in the new tab

Then no, there isn't currently a process, this would make good #feedback-and-ideas

Ok thanks for your reply

average answer time is 7 days atm?

uhm

7-9 excluding weekends.

then i can wait a lil longer

Hi i'm having an issue
in the Advent of Cyber 2023 room in the day 2 task, i'm asked to use the attack box to finish the room
but when i actually open it, for the ip 127.0.0.1:8888/lab the VM don't open me nothing
how can i fix this?

You have a split screen machine instead of the attaclbox

thanks for the help

Gave +1 Rep to @weary spindle

hello, i've recently wrote a new tool to create and run your own "attackbox" locally or remotely and i'm testing this with "day 3 of advent of cyber" - if you would like to give a try https://github.com/hckops/hckctl let me know if you have any feedback 😄

you need to edit the config with something similar to

network:
  vpn:
  - name: thm
    path: <YOUR_PATH>/thm_eu_regular_1.ovpn

and this is the machine i'm currently using

hckctl box parrot-sec --network-vpn thm

Can you access http://10.10.10.10 from the machine that is connected to our VPN?

If you can't reach 10.10.10.10, you have an issue with connecting to the THM OpenVPN. Can you send the last few line of the logs (when connecting to OpenVPN)?

Then it might be best to /verify with the token found in your public profile here https://tryhackme.com/r/manage-account/account-details and send a screenshot of your openvpn output

I have a question, I'm already a tryhackme subscriber, can I use the new discount code AOC2023 or is it only for new subscribers?

was this question for me? yes anyway

When will your current subscription expire?

expired yesterday 😂

You can make use of the code until 7th December and can be used by existing and new subscribers so long as their renewal coincides with the validity period.

You'll have to wait until the 6th or 7th before you try though

thx

Gave +1 Rep to @ivory spruce

Gave +1 Rep to @rare flume

It was one of the metasploit rooms in the complete beginner path. Seems to die very frequently for me. Nothing else has before maybe it’s just metasploit

Attack Box keeps saying I had 3 or more attack boxes, even though I terminated them all.

Then when I go to the next room, there's a 2000 second wait time?

have you tried CNTL + F5

Trying it now.

Looks like it worked, thanks.

no problem!

just a note F5 refreshes from cache and CNTL + F5 deletes the file from cache and contacts the server

Will keep in mind.

more or less it is always better than gui

Gave +1 Rep to @rare flume

Ha @short mortar

thanks (since my original thanks didn't give rep)

Gave +1 Rep to @restive flume

No problem but don't worry about the rep thing. I just help out for fun.

Hey all, I'm not sure if this should be in site support or room help but I've joined the Wreath room but when I go to download the Wreath network VPN file for it it just spins loading and never downloads. I've tried multiple browsers, multiple PC's, even my phone. Normal VPN file downloads just fine. Any help would be appreciated.

Zut terminal bari poxaren command line ei grel, 10 tari Windows user em exel

Hey, this is an English only discord server :)

Sorry, we're just really happy when we find enthusiasts of the same nationality. 🇦🇲

got a bit of a stupid question, but can badges vanish off the profile??

i think ive "lost" at least 2 of them

Whhich 2?

linux priv esc and windows priv esc

oh nvm, stupid me

didnt see there are multiple privesc rooms, only had an eye on the one in the jr path ^^

I'm not good with Discord, so sorry if this was already reported
there's an issue with room Malbuster, Task 2
at the question : "Based on VirusTotal detection, what is the malware signature of malbuster_2 according to Avira?"
I'm pretty sure the Avira signature changed since the question was created
The current signature for Avira in virus total is now : HEUR/AGEN.1306860 which does'nt work

Hi, I'm having an issue can anybody help me?

What's the issue...

We need context.

Just noticed my day3 Task9 has been unchecked. I completed it and submitted the correct answer yesterday ???

Are you sure?

Yeah

Hello Everyone, I think tryhackme is down in my region I am getting a 524 response from cloudflare. Is there anything going on currently? I have had a few people in the area try and they get the same.

Yes, staff are working on it

I can access any of the thm pages from my VM, on my computer works normally but through my Kali doesn't connect, keep loading and after a time got cloudfare error

Exactly the same

I can't even start attack box to complete this now. "Non-subscribed user can only deploy the free AttackBox for 1 hour a day. Subscribe for unlimited access."

I did not use up all of my 1 hour for the day

Did you open up an attackbox then close it?

yes I did to complete todays task

Then when you boot up at the instance, and close it, it still goes on for 60 min(s)

So you can either

Sub

Use a VM

Wait until tomorrow.

Does it matter if I do the task late?

Not at all

(except for the daily prizes)

Whats that?

Just a daily prize draw, you should be fine if you finish before 4PM GMT.

But I cant get qualified for the day 3 now right?

You can, I'm sure.

I dont understand. A day has already passed right? How long after the day can you still be eligible

Day 4 has just started.

https://www.reddit.com/r/tryhackme/comments/r99m08/why_are_tasks_for_advent_of_cyber_not_being/ also looks like someone also faced this before.

So I cant qualify for the daily prize for day 3 right

Nah, you'll be fine though.

Still other chances.

cool

Thought I'd try my luck and go for a hit or miss. Anyone in the staff able to confirm general time window for when business trials are started? We had a chat last week with the GAE and was supposed to start today, but no contact after last tuesday whatsoever. Also emailed the representative earlier today with whom we had a talk with, but no response thus far.
Technically no rush, but we kind of had planned a team meeting for reviewing the platform, so would be great if the platform itself would also be available during that time.

Just wait patienly for the E-mail. 🙂

Been doing that for a while now, but it is what it is. 🙂

Staff will see it in here, if they have time to reply in here, they will.

hi, Hey everyone! Do you happen to know how to fix this issue after you are successfully connected to OpenVPN to TryHackMe? When I type http://MACHINE_IP I don't see a website. Also my Access server status and connection have a green checkmark. When I go to vulnversity and click on the rooms IP and try to open it within my browser, it shows this.
This site can’t be reached.
In nmap i see this port 80 is open
and when i put 10.10.10.10 i have acces to page

Start the VM connected to the room, and machine_ip will change to the IP you need to access

how ? I didn't understand

I launch the room machine before launching the VPN?

info : i'm using openvpn in kali linux

Is port 80 open?

yes

the port is good all is good

Are you visiting http://10.10.10.10/ or http://machine_ip/ ?

hi, everyone! i started my vm, see my ip but i cant see the appropriate window of my vm. how to fix it?

I'd check again.

http://10.10.10.10/ is running but http://machine_ip/ not running i'm trying a lot of room same problem

machineip isn't an ip.

http://machine_ip/ is just a reference to visit the IP of the machine which is connected to the room. E.g., the Virtual Machine you need to attack

You need to start the machine in task 1.

i'm used to it working but here the machine http://machine_ip/ only waits and doesn't execute

for all rooms

Do you press that green button?

yes i'm told you when i put in kali 10.10.10.10 he working

but if i put http://machine_ip/ for any rooms just waitings and don't see the page

Are you using 10.10.xxx.xxx or MachineIP ?

It is not a valid URL, you need to visit the IP of active machine

10.10.10.10 is one of methods to test if he work openvpn

Yes.

yes when i visit the IP of active machine not workings

But you're not reading the advice we're telling you.

yes this ip adress don't work for me

If you follow the tasks of vulnversity, you find that the web server is not on the usual port

Nmap it, and pay attention.

i precise the port 80 for rooms mr.robot

6th question of task 2

i have problem in all rooms

not only this rooms

like rooms mr.robots is port 80

not working

the machine ip page does not give an error but just loads endlessly and never opens

Hi, is the site down?

Ahh. I did not click the last "completed" button where it asks you to check the other rooms.

1. Why is "completed" written on it if it is not completed?
2. It is just colored boundary but fills up green when pressed. Thats the opposite of how generally button ui works
3. Why is it necessary for the task to be completed.
   Bad design imo

As @weary spindle said, run port scan against the target machine with nmap, and pay attention. Use the info you find to answer to questions in order.

ok I will give you the dashboard:
openvpn work, ping ip vpn work
ip machine attack started
nmap i see this port 80 is open
but htpp://ip_machine:80/ not work

What's your ip?

vpn or machine ?

Machine.

I repeat what I already said, read the instructions of the said vulnversity room you had issues with. Web server is not on the usual port.

10.10.45.70

10.10.45.70

My open vpn connection doesn't work properly

Works for me.

for me not 😦 i don't uderstand

sudo ip link set dev tun0 mtu 1200 Can you try that command for me please,in a different terminal with your VPN on

yes that is work 🙂

you are my man Scrubz

Ah, it was your packet size.

And the confusion was you're not doing Vulnersity,

i told you problem for all rooms not just this 🙂

so thanks have nice evening

Happy hacking.

I’m asking myself that, too. The site isn’t loading on different browsers. It eventually loads to a “timeout” with an error via Cloudflare on prod-load-balancer.tryhackme.com.

Where should I run the /verify command to link my discord?

or does it even matter?

In here is fine

no worries, thank you

Hi, I'm on day3 AOC-2023 room, when I start the machine and AttackBox, I can't access to it, I get this error message after initialising Attackbox bar : The connection has timed out
An error occurred during a connection to vnc.tryhackme.tech.
I retried many times and it's always the same error, can you help me to access it pls ?

I'm getting the same thing @civic hawk

Im having this problem as well, cant access tryhackme

i keep getting timeout when trying to setup the vpn

but the website says i'm connected

i can only do like 1 a day even if it only takes me 5-10 min bc even if i only take 5 min on the attackbox or if i close it before it even loads,i reach my hour for the day

we checking for issues on our end, but suspect it's a regional issue with external providers. We are talking with our providers to investigate the root cause. Apologies for the inconvenience cc @civic hawk @stiff rivet

thank you McSkidy!

just confused which carrer path to follow , earlier i was doing google cybersecurity professional course

we're gonna save christmas don't worry

Oh okay, thank you!

Gave +1 Rep to @slender plume

im in australia if that helps

guys just i need guidence

try in general

this channel for site issues

why does my vpn profile have a different ip name than the website? is that the issue? i'm just so lost on how to set up this VPN as my windows doesn't have the right click run as admin or the import file options, they're just through the app

And im in central america if that helps

what do i do with a discord token?

Read the link I sent you. 🙂

Hi, i have some troubles to acces tryhackme

Known problem, staff are looking in to it.

oh ok, thanks!

Thanks for the info!

Gave +1 Rep to @slender plume

Just a quick drop here. Following up on the site being down for us, is there a timeline or anything of when we will be able to access it again?

Staff are aware

Site down on my end

Trying to setup OpenVPN for the first time and after typing in yes. I try typing in the password tryhackme. It won't work. What is the password to connect?

Is there an issue with THM, I am getting a CloudFlare Timeout error when trying to access the Dashboard. Located in USA East coast. AT&T Fiber network

@round compass yes, the team is aware of it and working with the vendor to get it back up.

Okay thanks, will check again in a few hours.

There's not a password to connect. Can you verify with the bot and then send a screenshot to show us what you mean please?

Ignore if the website says you're connected as that's unreliable. Can you screenshot the output of your openvpn command please?

i am using the app, and just pressing connect

It was broken on Windows for a while, I think it still is.

I recommend creating a Kali VM and connecting from that directly

You need to use the communities one

ah interesting i will try to download that one. i just followed the website instructions

Kali VM better though, no NAT issues

Safer

And no installing hacking tools on Windows

Which is no fun

i have kali vm but if it's just a website i sometimes just want to pull it up without starting opening the virtualbox

this site for the communities one? https://openvpn.net/community-downloads/

yeah cuz the website says i'm connected but i cannot open the webpage regardless so it's not connected

Yeah, but I'd go with what James said and use a VM.

I had the same issue yesterday, using the Kali VM solved it

got it

There's also http://10.10.10.10 for checking your connection

yeah it wasn't working on that page

So I am connected to OpenVPN but when trying to connect to the room it asks for a password and it doesn't accept tryhackme

I'm in todays Advent room.

wait.. not sure but it may work now...

greetings!
help pls, ive been unable to access THM since early morning, getting an error code 524, prod-load-balancer.tryhackme.com host error. please advise...

It still doesn't work.

I'm using a Kali in VM

know problem

Which room are you trying to SSH in to?

they said AoC specifically day 4

I was double checking.

You don't ssh in to the machine.

Today's Advent? I am reflecting on this. Maybe I don't have to in order to do the room?

That's why you can't SSH in.

to connect to the vpn?

https://tryhackme.com/access

They're connected.

If they weren't connected, the machine wouldn't be asking for a password.

got it

All you have to do for AoC 2023 Task 4 is use Cewl, Ffuf and the browser.

No ssh.

Okay. Must I use the Attack box? I am trying to understand the logistics of when and why to use ssh. Like for today's room am I able to complete using my kali VM and just being connected to OpenVPN?

to connect to the webpage yes you have to use the attack box or vpn

No, when you start the machine with the green button, you'll get an ip in the active machine information.

Okay.

Is this still an issue with the site? It was an issue at least 3 hours ago and I see a lot of people being to access the site, but im still getting this..

i've found mearly opening it even if you press shutdown right away uses the hour

known issue

so basically just wait it out?

Yes.

Nothing else you can do.

fair enough...thx!

understood, thanks

Is the tryhackme site down? I've been trying to get in since morning but its not loading

yes known issue

@ashen scroll Yes, the team is aware of it and working with the vendor to get it back up and running.

Okay! Thank you!

If you use a VPN, I changed to Georgia and successfully logged in. FL was unable to connect.

i was doing the advent with the attackbox but wfuzz is not filtering my results, dunno know why ...... it even says it filtered them (filtered is 1 less then total) does anyone has any idea why ?

Usually you gotta hack your way in and you won't be provided with SSH access

@eager fulcrum I think I understand it now! Thank you for your help earlier. I was able to complete the room. It was a fun one.

Gave +1 Rep to @eager fulcrum

Same issue here. It’s still happening. I did see in the chat earlier that THM is aware of it.

We checking for issues on our end, but suspect it's a regional issue with external providers. We are talking with our providers to investigate the root cause. Apologies for the inconvenience

cc @storm moat @ashen scroll

This worked Thanks!

Gave +1 Rep to @iron hinge

This worked for me

Thanks

No worries.. i hope it gets resolved. its still down on my end. i dont have a VPN to change regions either. Im just stressed about losing my streak..

It can be restarted

I use ProtonVPN & there's some free access, may help
https://protonvpn.com/

Same problem on both work and home connection but not on mobile network
Cloudflare seems to have a lot of ongoing maintenance in various region

oh

what can be restarted?

opera gx vpn works

it's free

Just solved for me, server seems back to work

Your streak

It can be reset back to what it was.

Sorry to cross post, but I noticed an issue with one of the rooms. I posted it in #subs-room-help. Hopefully the staff see the message.

ohh i see..

the website is back up for me! yay!

Back up for me also! 🙂

same here 🙂

Down in NZ still, cloudflare landing page, prod-load-balancer.tryhackme.com host error

Edit: still down in NZ, tested via two ISP and devices. UTC 2244

tryhackme site back up and working

hey, could someone help me with xrdp

keep getting timeout errors for vnc.tryhackme.tech when loading up the attackbox
is that a known issue currently?

Hello everyone. I've been trying to work through the holo room, and have been encountering a significant issue with ovpn.
The original ovpn config file that I had been using stopped working when I came back a few days later to work on the lab. So, I went to the access page to regenerate it. The problem now is that the regenerated ovpn files are only 2KB (compared to the 8KB they should be), and they do not work.
I have tried waiting for the network to shut down and restart, I have tried leaving and rejoining the room, and nothing has managed to fix this issue with generating a working OVPN file. Has anyone else experienced this issue?

The 2KB files it generates only show one certificate and one static key. The overall file is 65 lines of code whereas the 8KB files that it should be generating have, as you say, 2 certs, a private key, static key, and ~178 lines of code

This is the error it throws trying to run the 2KB ovpn file:

2023-12-04 17:57:11 Note: cipher 'AES-256-CBC' in --data-ciphers is not supported by ovpn-dco, disabling data channel offload.
2023-12-04 17:57:11 OpenVPN 2.6.3 x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] [DCO]
2023-12-04 17:57:11 library versions: OpenSSL 3.0.10 1 Aug 2023, LZO 2.10
2023-12-04 17:57:11 DCO version: N/A
2023-12-04 17:57:11 OpenSSL: error:0480006C:PEM routines::no start line
2023-12-04 17:57:11 OpenSSL: error:0A080009:SSL routines::PEM lib
2023-12-04 17:57:11 Cannot load inline certificate file
2023-12-04 17:57:11 Exiting due to fatal error

THM is finally working on my end.

Iam not sure Iam in the right room but, I have an issue, Iam doin the breaching AD room, and when I try to password spray its just not working, Error:

equests.exceptions.ConnectionError: HTTPConnectionPool(host='ntlmauth.za.tryhackme.com', port=80): Max retries exceeded with url: / (Caused by NewConnectionError('<urllib3.connection.HTTPConnection object at 0x7f805ddc4b38>: Failed to establish a new connection: [Errno -2] Name or service not known',))

hi i have a connectione rror timedout to openvpn

Free users can only the attackbox for an hour each day. However, another option would be to use your own kali VM.

No, it will still eat away at the one hour attackbox use limit.

and tryhackme shoaw me that iam connected and its ok for the status

@zealous yoke @storm moat THM working on my end now as well...woohoo!

all the vpns keep timing out for me too

🙌

hmm can't start an AttackBox as a free user even though I've only had one open for like 8 minutes today. Complaining about the 1 hour limit

Still down in NZ, two different ISPs and devices

guys I can't access the site through web and mobile idk what's going on

Hi, sorry to bother, but I was trying to complete day 4 AOC but it kept saying that the link wasn't working, so I tried to reopen the attackbot hoping that would help but it says I need to pay for it and I can not open a VPN because I am completing the challenges on a Chromebook. Any advice?

error code 524?

Can't reach the site as well. Might have to wait until this is resolved. From previous messages, this seems to be a regional thing.

Which link are you referring to? Have you checked if you can access the main THM site? Free users can only use the Attackbox for an hour a day, you can either wait until it becomes available again, or you can setup a kali VM (which has no restriction on the number of hours).

http://MACHINE_IP/login.php

Have you clicked on the green Start Machine button attached to the task?

I have, but nothing happens

It shows the message at the top, but thats it.

You have to wait for 3 to 5 minutes depending if its a Windows box for it to completely spin up.

It says for me to access the machine, I either need the attackbox(which I do not have access to unless I pay) or I use a vpn(which I cant access because I am on a Chromebook).

I'll wait and see what happens.

@ivory spruce nothing has happened so I am going to try and watch the video to see if I can either figure out how to access the machine or understand how to get to the answers.

Did an IP address not appear after waiting for a couple of minutes?

No, so I’m watching the video that was posted to see if I can figure out how to access it or find the answers.

Good news, after watching the key parts of the video. I learned how to use CeWL and assuming that the timer that keeps telling me I can’t start an attack box ends tomorrow(since it will be 24 hours) I will try to start the challenge then. And the video taught me how to find the answers so I can answer the questions. Thank you for your time.

still no access from NZ. sadpanda

good day, i can't access the site and it gives a timeout: prod-load-balancer.tryhackme.com host error from cloudflare, is it an outage on certain regions or is it just me?

certain regions bud

sad >_<

Same here from where I'm from.

There's dozens of us, dozens

are the site admins aware of this issue?

yarr. they think it might be something with cloudflare itself despite what the error page is claiming

my money is on something dumb with aws, cert issue or something

note if you really cant wait, Tor Browser works fine

Yea, pretty much any form of VPN will get you in, as long as it lands you somewhere outside Oceania

outside oceania and sea

Yes

Yes, they are. However, this seems to be a Cloudflare thing.

The issue seems to be regional in nature, but we're still investigating it. 🙂

i see, there won't be a problem if we used vpn or tor for the time being?

VPN should be a good temporary mitigation. 🙂

okay, thank you

Gave +1 Rep to @tawdry orbit

Hello, does anyone know why my machine on KOTH keeps timing out? I am using the openvpn and I have tried regening it as well. Everytime I run an nmap scan or gobuster scan it times out. This also goes with trying to brute force with hydra or even trying to connect to SMB it doesnt even work to well. When I stop all these tasks and I ping the machine after a while I get ping requests back. I can also access the machine on port 80 so not sure what the problem is. Can anyone help?

Hi, I cant connect to Machine for Wireshark: Traffic Analysis room. For the last 10-12 hours it's reading "vnc.tryhackme.tech took too long to respond". Any Plan B for this? Appreciate your response. Thanks

Hello, My openVPN connects, I get an IP but I cannot ping the machines. How to resolve this issue? I generated new config and used that. Still cannot ping!

Nz seems to be back up and running finally

and looks like SEA can now access as well

Must be running through the same infrastructure I’d assume then

Yes! Thanks for the update

Gave +1 Rep to @scenic needle

Try changing the server maybe ?

Hi guys, I can't seem to join Enumerating Active Directory Room, is it a premium exercise room? It Keeps showing to the room's I'm in whenever I click joined room. I thought it was a room limit so I deleted those that I've finished. Thanks in advance

Is it just me or the VM's timer is not what it supposed to mean?
I thought as a free user I have collective 1hr per day to use it. But it seems once I run it no matter how much time is left, I can't run it again.
I use the VM for today's advent task and it had 36mins left, but now I cannot run it again for some reason. I had made sure I had terminated the VM when I stopped doing the task, so technically I should have 26mins in the VM for the day. But I don't?
Am I not understanding how it works? Thank you.

The Attackbox you mean? Is it not possible to use a kali VM instead?

Sorry. Yes, Attackbox.

Do you have a streak of at least 7 days?

No cause I was looking for AD exercises and realize THM has them, just wanting to brush up on windows haha. Is it a requirement 💀

#general message

Hello, I don’t have access to my 2FA and can’t login in to my account. I emailed support no reply it’s already been 2 days . Can someone please help?

Damn HAHA, that's an L on me I guess

When I try to use Kali VM it says You need to subscribe to start this machine

And when I try to start Attackbox Uh-oh! Non-subscribed user can only deploy the free AttackBox for 1 hour a day. Subscribe for unlimited access.

I mean connect to the THM network via OpenVPN in your kali?

But I am sure I did not use up 1hr today

oh you mean start the machine and connect it locally?

THM Support response time is at ~8 to 9 working days as they are very busy especially with the AoC event.

I haven't thought of that, will try that. thank you.

Although the question still stands, if I haven't used up my daily quota of 1hr why can't I start it again?

You'll have to drop an email to THM Support directly for this one.

1. What room are you working on?
2. Have you left the terminal you connected to THM OpenVPN and worked in another terminal?
3. Not all machines respond to ping requests (especially Windows boxes due to Windows firewall).

I can't generate "wreath" network vpn file. Could someone confirm that they can't either or is it just me?

Suggest to ask this in the #wreath-network channel to get feedback from other users.

I did't realize there was channel for it 😅 it seems Im not the only one...Thank you!

Thank you my friend. I connected via OpenVPN and was able to finish the Advent task swiftly!

Gave +1 Rep to @ivory spruce

Glad I could help

It looks like if i close AtеackBox I cannot reuse it again 😦

And why VPN profile is not working?
2023-12-05 02:24:58 ERROR: Cannot ioctl TUNSETIFF tun: Operation not permitted (errno=1)
2023-12-05 02:24:58 Exiting due to fatal error

What VPN server are you using?

I'm having trouble connecting to the OpenVPN server (54.193.240.194 1194). It used to work last week, but now it just hanges. While OpenVPN is attempting to connect, the tryhackme.com website briefly shows that I am connected, but then OpenVPN just times out.

Also, why the heck does AttackBox gives you Ruby 2.5.1. That is an ancient version of Ruby that was released five years ago and reached End-of-Life two years ago, meaning it's no longer receiving security patches or any patches. You're giving users a potentially unpatched/insecure version of Ruby. Even Debian stable gives you Ruby 3.1.

I think it may have something to do with functionality of older rooms, the update may break a high number of the older content.

Cc @zealous yoke

This is for Advent of Cyber 2023, which I believe is not an older room.

The Attackbox is using a single base image if I'm not mistaken.

No, but the same attackbox is spawned everywhere.

What if you created a second AttackBox for newer rooms? Maybe that would be better than using the same image for both older and newer rooms.

EU-Regular-1

I've pinged the staff member who maintains the attackbox, they can give you a more accurate answer on both questions than I.

That does not explain why you must use an older version of Ruby? Is there a specific tool that requires <= 2.5.1? I am pretty sure I could recommend an alternative tool, or even write one for you (I develop open source security tools in Ruby, btw).

But I do suspect it's for older content support, as for having two images?

Possibly more work/higher costs/ and ensuring the correct image boots up for the correct room.

We are also not staff members, but volunteers.

If you don't keep versions up to date, more people will decide to stop paying, which means less money every year. It pays to invest in your infrastructure.

Tbh.

You're the first person I've seen comment on it.

OK I won't argue with volunteers about the AttackBox versions. That seems to be someone else's choice/responsibility.

... I did try telling you that and I pinged the staff member who manages the AB...

As it's currently 08:19

They will reply when they can. 🙂

👍

its still on this error for me

Hey 🙂 so the AttackBox has a lot of moving parts, a lot of different tools that require all sorts of dependencies and a large variety of environments. Updating a/b/c can and has broken x/y/z before. I try my best to maximise compatibility for our older catalogue of content as well as our newer. This may involve running things in containers, or having multiple versions, or for example, maintaining a current version although it isn't the latest. For example, IIRC, there's three different glib versions for this reason, as well as not to mention python2, 3.6, 3.8 and 3.11 which has it's own headaches

I do understand that is a considerably old version of Ruby, but, to be honest, outside of patches, there hasn't really been a reason to update it so far. Updates for dependencies and tooling are not done lightly because of the wider impact it can have and the testing that needs to be done. A great example of this is when I migrated the AttackBox from Metasploit 5 to Metasploit 6. There was weeks of things behind the scenes that surrounded it.

Regarding security concerns, the AttackBox is on a public network, so it is prompted to not store sensitive files, etc

If you have any suggestions or feedback for the AttackBox, send an email to support@tryhackme.com and it will filter through to me 🙂

cc @weary spindle

With all due respect, this sounds like an excuse for not doing the work of upgrading the Ruby version, which would allow for newer versions of various Ruby tools. I will send an email.

It's not an excuse, I have said that there hasn't been a reason to upgrade Ruby so far. If a content engineer develops a room that uses a tool that requires a certain version of a dependency (i.e. ruby, python), then it will be made compatible on the AttackBox (be it installing or updating that dependency).

So far, I haven't received any requests internally to upgrade Ruby on the AttackBox. I'm not against it, same with any dependency. If it's needed and won't affect other things then sure. I only support and maintain what is on the AttackBox, i.e. if a user wants to use an alternative tool to what is already provided, it is on them to make the environment compatible. But yes, please send and email and we can continue there 🙂

Please explain to me specifically what is blocking you from upgrading the Ruby version from 2.5.1? Is it a specific tool in question which is holding it back? Is it a base distro version issue? Have you even tried upgrading the Ruby version? Do you have any basic tests to ensure various tools work with newer versions (ex: running thetool --help and checking the exit stauts)?

Well, you are now officially receiving a request to upgrade the Ruby version on AttackBox. You can't continue using an ancient version of Ruby. It will eventually be removed from Debian/Ubuntu's package repositories. It will obviously not compile against openssl-3.0, and probably will have troubles with newer versions of glibc, gcc, etc. New software versions eventually get released, and people have to upgrade. This is just the natural progression of things. Continuing to cling to Ruby version 2.5.1 (which is five years old) for fear of breaking something, is a losing strategy that might come back to bite you.

please

Which country are you in?

FR

Started a session and attack box for aoc challenge 4 - completed within 10 minutes but now I'm getting an error saying I can't spin up any more attack boxes as my 1 hour limit has been used

You can only boot up an attackbox once per day, and then for 60 min(s) as a free user.

I don't want to assume, so I'm going to say.. France?

yes

Please explain to me specifically what is blocking you from upgrading the Ruby version from 2.5.1?
I don't have any specific examples to hand without checking. I am just saying that I haven't had any requests internally to update it.

Is it a base distro version issue
This does play a large part of things which can be a whole entire discussion itself

Do you have any basic tests to ensure various tools work with newer versions (ex: running thetool --help and checking the exit stauts)?
Yes, there are checks and tests when tooling has either been installed or upgraded. That includes it, but there are additional checks, for example, tooling often changes argument/syntaxing, or the tool might work differently now compared to how it used to - that needs to be checked too.

Well, you are now officially receiving a request to upgrade the Ruby version on AttackBox.
This needs to be done via the appropriate channel which is support@tryhackme.com

New software versions eventually get released, and people have to upgrade. This is just the natural progression of things
Yes indeed, which is what we do, but it's involved. I used that Metasploit version as an example. Upgrading from MSF5 -> MSF6 while it was a very easy upgrade on the AttackBox itself, it required updating content on our site which goes through it's own processes, etc

Continuing to cling to Ruby version 2.5.1 (which is five years old) for fear of breaking something, is a losing strategy that might come back to bite you
I'll expand this and say that we don't cling onto things. It's all about pacing and bandwidth. The Metasploit example is great, Burp Suite is another. Burp Suite changed it's UI which meant a whole module had to be re-written. This takes time, lots of collaboration with other departments and business matters that are above me

I'm maybe misunderstanding, but it seems you think that I just don't want to action it. It's not that, i'm trying to explain that there're a lot of knock-on effects and considerations that need to be discussed. Be it Ruby, Python, Burp Suite, Metasploit, etc

So once a single challenge is complete, that's it then?

Well, yes and no,

You can terminate target machines and leave the attackbox running.

Can tell I've not really used the platform! I was able to connect briefly to another challenge then it cut out so that's probably the reason (attack box not running or I've closed the wrong window)

To counter this, I did setup the VPN and can ping challenges (like aoc-Day 3) however, the browser doesn't load on my local machine

I don't have any specific examples to hand without checking. I am just saying that I haven't had any requests internally to update it.
If you do not have any specify reasons why Ruby cannot be upgraded to 2.5.1, and you have not even tried, than that kind of sounds like a fear or hesitation to upgrade things. This is common when dealing with critical legacy software/systems.

Yes, there are checks and tests when tooling has either been installed or upgraded. That includes it, but there are additional checks, for example, tooling often changes argument/syntaxing, or the tool might work differently now compared to how it used to - that needs to be checked too.
Well have you tried upgrading Ruby to 3.x and seeing what breaks?

This needs to be done via the appropriate channel which is support@tryhackme.com
Like I said before, I am doing this now.

I'll expand this and say that we don't cling onto things. It's all about pacing and bandwidth. The Metasploit example is great, Burp Suite is another. Burp Suite changed it's UI which meant a whole module had to be re-written. This takes time, lots of collaboration with other departments and business matters that are above me
Than why haven't you updated to Ruby 3.x yet?

I'm maybe misunderstanding, but it seems you think that I just don't want to action it. It's not that, i'm trying to explain that there're a lot of knock-on effects and considerations that need to be discussed. Be it Ruby, Python, Burp Suite, Metasploit, etc
Then please explain the exact specific blocking issues preventing you from doing it? So far you haven't been able to do so, just giving generic concerns. Have you even tried to upgrade the Ruby version? What broke?

hesitation to upgrade things. This is common when dealing with critical legacy software/systems.
Hesitation yes because of all of the above

Well have you tried upgrading Ruby to 3.1.x and seeing what breaks?
I haven't, no, but the AttackBox is just one of my responsibilities at TryHackMe. I'm very busy with other work, so it's not as easy as just marking some time to test how a dependency upgrade can impact over 600+ rooms

Than why haven't you updated to Ruby 3.x yet?
see above

Hesitation yes because of all of the above
The best remedy to hesitation is the scientific method. Try it, test whether something breaks, repeat. Aka "just try it".

I haven't, no, but the AttackBox is just one of my responsibilities at TryHackMe. I'm very busy with other work, so it's not as easy as just marking some time to test how a dependency upgrade can impact over 600+ rooms
Try it! Test it! See what actually breaks. Or you might get replaced by someone else who is willing to try and push things forward.

Now you're just being rude.

No, I am being frank. I am a maintainer of many popular Open Source projects. I speak from experience.

I've explained my perspective, I'm not going to keep on discussing this as I have other things to do. Please send in your suggestions via email, and I will review and consider them

Getting a 500 error when uploading a downloadable file based room

. yes

Do you have a VPN config downloaded, or does it error when you try to download it?

i have downloaded openvpn without error

and i desactivate my vpns

What command are you using?

Screenshots will help also you can verify by going to the following link.

i cant connect me to openvpn

Are you using the CLI or GUI?

Hope that someone will help with this

the one who you get when you click on download ion the tryhackme explanation

sudo openvpn /path/tp/file.ovpn ?

i'm on win

Are you trying to upload a virtual machine?

Ah!

Ok.

That changes things.

No just a simple file. Btw I didn’t even got to upload it. It asks for title, description, duration and the room icon

https://openvpn.net/community-downloads/

Did you sownload this gui app?

And when i submit it goes to 500 error pagw

no i have installed the "connect"

Ok, please install the one I linked.

already started haha

same errror

Which server are you using?

now all server are off

• not connected bit status ok

All servers aren't off.

can i send you a screenshot please?

you can verify and send it here

heu how i verify? i dont find any thing on how to verify please

i have forget to check command ahha

all free server look like this

What projects? :)

bundler-audit (over 10 million downloads), digest-crc (over a 100 million downloads), ruby-install, chruby, ruby-nmap, ronin. There's more on my GitHub profile which I linked to in my Discord bio.

That just means you're not connected

But it can be bugged

I also have a problem connecting to a server via OpenVPN, from both, Linux and Windows.

Which server?

This is cool, ty

Gave +1 Rep to @open verge

Are you usin g the communities download one?

Any server I try to connect respond with same error message.

What VPN Server are you using - EU-Reg-3?

https://openvpn.net/community-downloads/

I had this exact issue with EU-Reg-3. Swapped to 2 and regenerated my ovpn config for it to connect

That one I use

How can I check that using OpenVPN GUI?

I'll try

ok but openvpn say me that i am not connected too so what i must do to connect me?

please

Are you using Windows, yes/

yes

And you downloaded and used the client above?

i have downloaded but client dont show window

Yeey

So, EU 3 doesn't work

Nope.

Thanks!

Gave +1 Rep to @stiff pebble

if i launch CLI and after i launch the connect, its same errror

you don't use the CLI for windows, you use the GUI

ok

and i use it if there is no window?

Hey there guys. I am unable to connect to openvpn from my virtual box. I have been a dual boot user so I have no idea what is wrong with my kali linux VM. Can someone please help me

Are you using Kali on your host, or a VM?

i have this

Can you please check again without VPN if it works now? 🙏

I am trying to use openvpn to connect to a AOC room but I keep getting this error when trying to use openvpn.

what should I do?

I have regenerated the config file like the openvpn room said to do

Are you running the command with sudo?

ah

apologies, I did that last night and remembered to use sudo, not sure why I didnt remember tonight

thanks

:hammer: jessicaisbrokelmao#0 has been banned.

is nmap taking ages for anyone else?

polease

any staff who can help me?

No one?

any help?

Depends on what you need?

I need an answer fro my ticket..i paid an annual plan 1 week ago and still my sub is not activate

i send mails, ticket

0 support

can i know whats the problem?

How long ago did you send the email?
Support is super flooded due to AoC, but they will definitely get back to you as soon as they can 🙂

30/11

yes guys okay i can understant it but we paid 100$ to wait 1 month to continue learning??

if tryhackme cant handle it, then inform the users not to subscribe for this month

I do not know what might have happened that your sub didn't get activated, usually that goes flawless.
And I'm sure it won't be a month until support gets back to you.

While I understand your frustration about that situation, I would still ask you to please give it a bit more time, support will get back to you and sort it out.

Hi, I've tried to message you - Did it get filtered into Message Requests?

please

Hi, i'm on advent day 5, i pressed 'start machine'

nothing happened

the machine is not starting

Staff are aware.

Try refreshing the page

I am recieving this error when trying to connect to the vpn. VERIFY ERROR: depth=1, error=self-signed certificate in certificate chain: CN=ChangeMe, serial=425397202556807641543660048237946304772097879576

sudo openvpn ~/Downloads/sk4r3kr0w.ovpn
2023-12-05 11:08:57 Note: --cipher is not set. OpenVPN versions before 2.5 defaulted to BF-CBC as fallback when cipher negotiation failed in this case. If you need this fallback please add '--data-ciphers-fallback BF-CBC' to your configuration and/or add BF-CBC to --data-ciphers.
2023-12-05 11:08:57 Note: cipher 'AES-256-CBC' in --data-ciphers is not supported by ovpn-dco, disabling data channel offload.
2023-12-05 11:08:57 OpenVPN 2.6.7 x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] [DCO]
2023-12-05 11:08:57 library versions: OpenSSL 3.0.11 19 Sep 2023, LZO 2.10
2023-12-05 11:08:57 DCO version: N/A
2023-12-05 11:08:57 TCP/UDP: Preserving recently used remote address: [AF_INET]18.202.168.160:1194
2023-12-05 11:08:57 Socket Buffers: R=[212992->212992] S=[212992->212992]
2023-12-05 11:08:57 UDPv4 link local: (not bound)
2023-12-05 11:08:57 UDPv4 link remote: [AF_INET]18.202.168.160:1194
2023-12-05 11:08:57 TLS: Initial packet from [AF_INET]18.202.168.160:1194, sid=3aa86bd6 2bc78774
2023-12-05 11:08:58 VERIFY ERROR: depth=1, error=self-signed certificate in certificate chain: CN=ChangeMe, serial=425397202556807641543660048237946304772097879576
2023-12-05 11:08:58 OpenSSL: error:0A000086:SSL routines::certificate verify failed:
2023-12-05 11:08:58 TLS_ERROR: BIO read tls_read_plaintext error
2023-12-05 11:08:58 TLS Error: TLS object -> incoming plaintext read error
2023-12-05 11:08:58 TLS Error: TLS handshake failed
2023-12-05 11:08:58 SIGUSR1[soft,tls-error] received, process restarting
2023-12-05 11:08:58 Restart pause, 1 second(s)

What VPN server?

THM

I meant which one of these did you select when downloading the VPN?

I never got any options.

You didn't download a configuration file from the tryhackme access page? The file that should be your_username.ovpn?

no, I clicked

and downloaded my ovpn file

I changed to US west, downloaded a new file and now it works

Yeah, I didn't know downloading that way was possible, but it probably gave you a config for EU-3 which is broken atm, that server keeps throwing out certificate errors

not sure why it kept giving me a EU file but I think that is what it was

I have been using THM for 2 years and havent changed that setting.

can somebody help me ?

still locked

Good afternoon! I messaged early last week about my premium membership not being activated and I was told that it would be 24 hours before it's active. They payment cleared via my bank. I submitted a support ticket to no avail.

i need a supporter pls

need help for vpn

more context man, you know the drill 😄

https://www.youtube.com/watch?v=RMXpIukjyHw&pp=ygUVdmlydHVhbCBib3ggdHJ5aGFja21l

tutorial for virtualbox openvpn. maybe there's something here that can help you

alright, so I just downloaded a new config file starring my region In and now it's not connecting to the vpn instead exiting with a fatal error

Are you using sudo?

yes

Can you send a screenshot?

It's working again

thanks

Did you use sudo? 😛

i bought the monthly subscription, how can i change to annualy subscription with aoc coupon?

You can't, you need to cancel, wait for it to expire.

I don't think you will have time

What do i do

i have been trying with and without sudo

it suddenly started working

I used sudo openvpn config.ovpn after the restart message everything ust keeps on repeating

thanks too

Gave +1 Rep to @cursive ermine

Which server are you using?

+1 rep @weary spindle

oh? it used to work

ty @weary spindle

:0

kek

ooh, thank you @weary spindle , if i cancel i will lose the 14$?

Gave +1 Rep to @weary spindle

I didn;t chose any server ,

No, it won't cancel, it will just stop the auto renew.

The code ends in 2 days

I will try again choosing server

https://www.tryhackme.com/access

Which country are you in?

india

thanks..

Then choose IN reg 1 or EU reg 1 or 2.

IN reg 1 didnt work EU reg 1 worked thanks

Exc

Excellent

Hey guys for some reason i can't connect to EU-Regular-3... I can to the other 2 servers from EU, but I'm allways getting disconnected and then the connection is established again. Neither 1 second... the marker is always like on 0:00

Can anyone help me?

In EU-Regular-3 they said that my certificate is invalid...

It's borked.

I regenerate one config file, and still gets the same behaviour

maybe reinstalling openvpn would fix it?

No

Eu-Reg-3 is broken,

oh!! ok, ok! Now I get it xD

Thanks, it makes sense

And the other 2 EU servers... any idea why keeps disconnecting and establishing new connections?

I do not have any other VPN connected

Which OS?

MAC

OS

Did you install brew then run it that way?

i used the tryhackme openvpn connect download on access machines

Nah, for MacOs you need to use brew

#site-support message

Oh ok, i followed the tab for MAC i thought it should work like that. I'm going to try with brew then. Thank you @weary spindle

Gave +1 Rep to @weary spindle

Hello guys, I'm having some troubles opening a VPN Connection:
Options error: Unrecognized option or missing or extra parameter(s) in TheSpecia.ovpn:15: data-ciphers (2.4.7)
I've already tried the fixes suggested by some users in this channel like updating version (This is the last one), adding some lines to the .ovpn file
Nothing is working

Which OS are you using?

Hello guys! I purchased the premium, I even received the confirmation email, but my account still does not have the premium enabled. The message "Payment Pending" stays in an eternal loop. What can I do in this case?

I'm running the WSL2, Linux: 5.15.90.1-microsoft-standard-WSL2

Can anybody help me with this?

Have you emailed support already?
That's the only way to resolve it.

But bear in mind that it might take them a little bit to get back to you, due to the sheer amount of support requests due to Advent of Cyber 🙂

@crystal marlin Thank you! I'll wait a couple of hours and email support if necessary. Ty!

Gave +1 Rep to @crystal marlin

Ah hey 🙂 Looks like it got caught in message requests. Sorry, I have an absolute tonne of them as of recent with AoC. I'll respond to you there 🙂

please how i connect to my openvpn?

ahahah i dont click ahah

Done!

its bugged ahha

simply type sudo openvpn <fname> in your terminal

im in win10

then use the gui..

before i had this, now i dont have any window

@knotty storm

check this..

i have installed this

then delete that and install the above mentioned

the first is the link who you redirect me

@knotty storm?

hey, i have problem with OpenVPN, tried everything that is on youtube, and cant find helpon google

Does anyone know how I can disconnect for the OVPN on my VM?

What paroblem?

2023-12-05 16:56:16 Note: --cipher is not set. OpenVPN versions before 2.5 defaulted to BF-CBC as fallback when cipher negotiation failed in this case. If you need this fallback please add '--data-ciphers-fallback BF-CBC' to your configuration and/or add BF-CBC to --data-ciphers.
2023-12-05 16:56:16 Note: cipher 'AES-256-CBC' in --data-ciphers is not supported by ovpn-dco, disabling data channel offload.

do you have a firewall up?

client
dev tun
proto udp
sndbuf 524288
rcvbuf 524288
remote 54.76.30.11 1194
resolv-retry infinite
nobind
explicit-exit-notify 3
persist-key
persist-tun
remote-cert-tls server
auth SHA512
data-ciphers AES-256-CBC
key-direction 1
verb 3
reneg-sec 0
<ca>
this is my .ovpn

i am using kali linux on virtualbox

try turning off your firewall if you have one up

did you download you config file?

are you using EU3?

tried every EU, same thing

Hello guys. I switched to my student mail and verified it on tryhackme but when I try to subscribe there's no discount in the price. Any fix?

are you trying to use the vpn on windows?

Contact support

now, i tried shield vpn but didnt change anything

i use bridged connection on my virtual box

same I did but didn't got this error hmm 🤔

it is said that new versions of openvpn have this problem

can i install openVPN 2.4.7 somehow?

from their website..

tired it but command make, and make install doesnt work

if that's the case scrubz might be able to help you with this you around scrubz?

no idea what that is :/

Data Channel: cipher 'AES-256-CBC', auth 'SHA512', peer-id: 36, compression: 'stub'
2023-12-05 17:14:47 Timers: ping 5, ping-restart 120

it looks like it connects and stops immediatelly

and this is status

openvpn.service - OpenVPN service
Loaded: loaded (/lib/systemd/system/openvpn.service; disabled; preset: disabled)
Active: active (exited) since Tue 2023-12-05 17:16:28 EST; 1s ago

Note: --cipher is not set. OpenVPN versions before 2.5 defaulted to BF-CBC as fallback when cipher negotiation failed in this case. If you need this fallback please add '--data-ciphers-fallback BF-CBC' to your configuration and/or add BF-CBC to --data-ciphers.
Note: cipher 'AES-256-CBC' in --data-ciphers is not supported by ovpn-dco, disabling data channel offload.

im adding it to my .ovpn file and it doesn/t help

can someone send me working .ovpn file?

Which vpn server is this?

EU-Regular 1

hmm, I am assuming you tried regenerating and redownloading the config file?

yes

What openvpn version are you using?

OpenVPN 2.6.7 x86_64-pc-linux-gnu

@knotty storm please

hmm, that should be fine, I haven't see this issue on other servers besides the EU-3, have you perhaps tried one of the US servers?

exactly same thing :/

do you use the same version ofopenvpn?

Has nobody ever tried running it with a WSL?

Hello, how do I use my terminal after establishing a connection using ovpn without having to terminate it?

Like when I use the 'sudo openvpn /path/to/file.ovpn' command the terminal will have this
2023-12-06 01:24:51 VERIFY EKU OK
2023-12-06 01:24:51 VERIFY OK: depth=0, CN=server
2023-12-06 01:24:51 Control Channel: TLSv1.3, cipher TLSv1.3 TLS_AES_256_GCM_SHA384, peer certificate: 2048 bit RSA, signature: RSA-SHA256
2023-12-06 01:24:51 [server] Peer Connection Initiated with [AF_INET]3.7.33.194:1194
2023-12-06 01:24:51 TLS: move_session: dest=TM_ACTIVE src=TM_INITIAL reinit_src=1
2023-12-06 01:24:51 TLS: tls_multi_process: initial untrusted session promoted to trusted
2023-12-06 01:24:53 SENT CONTROL [server]: 'PUSH_REQUEST' (status=1)
2023-12-06 01:24:53 PUSH: Received control message: 'PUSH_REPLY,route 10.10.0.0 255.255.0.0,route-metric 1000,route-gateway 10.17.0.1,topology subnet,ping 5,ping-restart 120,ifconfig 10.17.101.133 255.255.128.0,peer-id 32'
2023-12-06 01:24:53 OPTIONS IMPORT: --ifconfig/up options modified
2023-12-06 01:24:53 OPTIONS IMPORT: route options modified
2023-12-06 01:24:53 OPTIONS IMPORT: route-related options modified
2023-12-06 01:24:53 Using peer cipher 'AES-256-CBC'
2023-12-06 01:24:53 net_route_v4_best_gw query: dst 0.0.0.0
2023-12-06 01:24:53 net_route_v4_best_gw result: via 192.168.52.2 dev eth0
2023-12-06 01:24:53 ROUTE_GATEWAY 192.168.52.2/255.255.255.0 IFACE=eth0 HWADDR=00:0c:29:6a:6c:85
2023-12-06 01:24:53 TUN/TAP device tun0 opened
2023-12-06 01:24:53 net_iface_mtu_set: mtu 1500 for tun0
2023-12-06 01:24:53 net_iface_up: set tun0 up
2023-12-06 01:24:54 net_addr_v4_add: 10.17.101.133/17 dev tun0
2023-12-06 01:24:54 net_route_v4_add: 10.10.0.0/16 via 10.17.0.1 dev [NULL] table 0 metric 1000
2023-12-06 01:24:54 Initialization Sequence Completed
2023-12-06 01:24:54 Data Channel: cipher 'AES-256-CBC', auth 'SHA512', peer-id: 32, compression: 'lzo'
2023-12-06 01:24:54 Timers: ping 5, ping-restart 120
2023-12-06 01:24:54 Protocol options: explicit-exit-notify 3

But no prompt for entering any other commands, what should I do?

Sorry I was afk for a while, I use 2.6.3, but your version should work fine. What country are you in?

What VPN server is this?

IN-Regular-1

Have you tried changing servers and then regenerating and redownloading the config file?

The server is not the problem, I have successfully connected to THM network but once it connects I can't enter any other commands after cos the prompt doesn't appear anymore unless I press ctrl+C which terminates my connection...

You need to keep that running and open a new terminal window / tab to run commands.

Sorry I thought you were having issues getting the VPN to work, I should have read more carefully

It's okay thanks for the help

How do i get eJPT added to my profile?

Ask a mod nicely when you see one around, all the cert roles are added manually

thanks!

Gave +1 Rep to @gleaming flume

Anyone know how to safely disconnect from OpenVPN?

Ctrl + C?

I have same problem with every vpn, but when i use eu-vip-1 or 2 it connect. try it.

having the same problem for 2 days in a row now. After having opened and closed an AttackBox 2 times, it now says that my 1 hour is full even though I hadn't used even half of the time. Genuinely considering just trying out hackthebox academy instead since this site reeally doesn't want to let me do any tasks

What problem are you having exactly?

Same as Jarek Balcerzak, something with --cipher is not set when try every vpn server etc. But eu-vip servers connect every time. ehh, im new here i should write to him.

Strange, seems like a fair amount of people have been having issues like that. I know EU-3 is not working atm, but all of the others should not give such errors

Not sure what the issue is tbh

you too cannot connect o openvpn?

only with eu-vip-1 or 2. so my problem is solved, but it looks like rest of servers gives errors --cipher not set ...

What is your full openvpn output when using another server?

One of the ones that doesn't work (that is not EU-3)

Wed Dec 6 02:27:33 2023 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
Wed Dec 6 02:27:33 2023 TLS Error: TLS handshake failedi have this. how i solve this please?

one moment i start vm and see what error is it.

Can you share the entire output as well?

sorry i have that problem 2 weeks ago now it looks like i connect to eu2 server, but still it starts with _ openvpn Downloads/eu2.ovpn
[sudo] password for kali:
Sorry, try again.
[sudo] password for kali:
2023-12-05 20:31:50 Note: --cipher is not set. OpenVPN versions before 2.5 defaulted to BF-CBC as fallback when cipher negotiation failed in this case. If you need this fallback please add '--data-ciphers-fallback BF-CBC' to your configuration and/or add BF-CBC to --data-ciphers.
2023-12-05 20:31:50 Note: cipher 'AES-256-CBC' in --data-ciphers is not supported by ovpn-dco, disabling data channel offload.
2023-12-05 20:31:50 OpenVPN 2.6.7 x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] [DCO]
2023-12-05 20:31:50 library versions: OpenSSL 3.0.11 19 Sep 2023, LZO 2.10
2023-12-05 20:31:50 DCO version: N/A
2023-12-05 20:31:50 TCP/UDP: Preserving recently used remote address: [AF_INET]63.35.110.70:1194
2023-12-05 20:31:50 Socket Buffers: R=[212992->212992] S=[212992->212992]
2023-12-05 20:31:50 UDPv4 link local: (not bound)
2023-12-05 20:31:50 UDPv4 link remote: [AF_INET]63.35.110.70:1194
2023-12-05 20:31:50 TLS: Initial packet from [AF_INET]63.35.110.70:1194, sid=a1604d12 4735be84
2023-12-05 20:31:51 VERIFY OK: depth=1, CN=ChangeMe
2023-12-05 20:31:51 VERIFY KU OK
2023-12-05 20:31:51 Validating certificate extended key usage
2023-12-05 20:31:51 ++ Certificate has EKU (str) TLS Web Server Authentication, expects TLS Web Server Authentication
2023-12-05 20:31:51 VERIFY EKU OK
2023-12-05 20:31:51 VERIFY OK: depth=0, CN=server
2023-12-05 20:31:51 Control Channel: TLSv1.3, cipher TLSv1.3 TLS_AES_256_GCM_SHA384, peer certificate: 2048 bits RSA, signature: RSA-SHA256, peer temporary key: 253 bits X25519
2023-12-05 20:31:51 [server] Peer Connection Initiated with [AF_INET]63.35.110.70:1194
2023-12-05 20:31:51 TLS: move_session: dest=TM_ACTIVE src=TM_INITIAL reinit_src=1
2

2023-12-05 20:31:51 TLS: move_session: dest=TM_ACTIVE src=TM_INITIAL reinit_src=1
2023-12-05 20:31:51 TLS: tls_multi_process: initial untrusted session promoted to trusted
2023-12-05 20:31:52 SENT CONTROL [server]: 'PUSH_REQUEST' (status=1)
2023-12-05 20:31:52 PUSH: Received control message: 'PUSH_REPLY,route 10.10.0.0 255.255.0.0,route-metric 1000,route-gateway 10.14.0.1,topology subnet,ping 5,ping-restart 120,ifconfig 10.14.63.72 255.255.128.0,peer-id 0'
2023-12-05 20:31:52 OPTIONS IMPORT: --ifconfig/up options modified
2023-12-05 20:31:52 OPTIONS IMPORT: route options modified
2023-12-05 20:31:52 OPTIONS IMPORT: route-related options modified
2023-12-05 20:31:52 Using peer cipher 'AES-256-CBC'
2023-12-05 20:31:52 net_route_v4_best_gw query: dst 0.0.0.0
2023-12-05 20:31:52 net_route_v4_best_gw result: via 192.168.0.1 dev eth0
2023-12-05 20:31:52 ROUTE_GATEWAY 192.168.0.1/255.255.255.0 IFACE=eth0 HWADDR=08:00:27:cb:7e:f5
2023-12-05 20:31:52 TUN/TAP device tun0 opened
2023-12-05 20:31:52 net_iface_mtu_set: mtu 1500 for tun0
2023-12-05 20:31:52 net_iface_up: set tun0 up
2023-12-05 20:31:52 net_addr_v4_add: 10.14.63.72/17 dev tun0
2023-12-05 20:31:52 net_route_v4_add: 10.10.0.0/16 via 10.14.0.1 dev [NULL] table 0 metric 1000
2023-12-05 20:31:52 Initialization Sequence Completed
2023-12-05 20:31:52 Data Channel: cipher 'AES-256-CBC', auth 'SHA512', peer-id: 0
2023-12-05 20:31:52 Timers: ping 5, ping-restart 120
2023-12-05 20:31:52 Protocol options: explicit-exit-notify 3

So now it looks like eu2 is ok for me.

Yeah that looks fine now

Yes, and note about cipher not set is still but it set ip and connect. I dont know why it somtimes not work. but for me everything is ok for now thanks.

Yeah the cipher is not set manually with --cipher and it won't use an old cipher, but it is able to auto-negotiate to use AES-256-CBC and make a connection which is what it should do. Still not sure on what your original issue was though, but I guess it doesn't matter much now as long as it working for ya.

Wed Dec 6 02:37:48 2023 SIGUSR1[soft,tls-error] received, process restarting
Wed Dec 6 02:37:48 2023 MANAGEMENT: >STATE:1701826668,RECONNECTING,tls-error,,,,,
Wed Dec 6 02:37:48 2023 Restart pause, 256 second(s)
Wed Dec 6 02:42:04 2023 TCP/UDP: Preserving recently used remote address: [AF_INET]54.76.30.11:1194
Wed Dec 6 02:42:04 2023 Socket Buffers: R=[65536->524288] S=[65536->524288]
Wed Dec 6 02:42:04 2023 UDPv4 link local: (not bound)
Wed Dec 6 02:42:04 2023 UDPv4 link remote: [AF_INET]54.76.30.11:1194
Wed Dec 6 02:42:04 2023 MANAGEMENT: >STATE:1701826924,WAIT,,,,,,
Wed Dec 6 02:42:04 2023 MANAGEMENT: >STATE:1701826924,AUTH,,,,,,
Wed Dec 6 02:42:04 2023 TLS: Initial packet from [AF_INET]54.76.30.11:1194, sid=c1c36afb bd474524
Wed Dec 6 02:42:04 2023 VERIFY OK: depth=1, CN=ChangeMe
Wed Dec 6 02:42:04 2023 VERIFY KU OK
Wed Dec 6 02:42:04 2023 Validating certificate extended key usage
Wed Dec 6 02:42:04 2023 ++ Certificate has EKU (str) TLS Web Server Authentication, expects TLS Web Server Authentication
Wed Dec 6 02:42:04 2023 VERIFY EKU OK
Wed Dec 6 02:42:04 2023 VERIFY OK: depth=0, CN=server
Wed Dec 6 02:43:05 2023 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
Wed Dec 6 02:43:05 2023 TLS Error: TLS handshake failed

And this is what server?

that's my fault, i should reply Jarek B and rest people with problems that eu-vip servers working for me when other not but it was 3 weeks ago ang looks like eu2 for example now work.

*and

EU1 i think

Yeah I tested all of the free servers myself and all but EU-3 is working so any issues should be client side

What country are you in?

ho im connected just by redoawnloading the file

fr

Yeah certain countries block VPN's / UDP traffic and it could cause issues for you. Though if you are NA/EU you should be fine

and after this how me im connected, i must do what ?

I have been away for awhile. I am trying to login but it keeps asking me for a code from my authentication application. I have not set up the authentication application. Help me login

If you do get connected then you just leave the tab how it is and make a new tab to start hacking or whatever you want to do. Don't think you are properly connected right now though

You'd probably need to talk to email support for that

I send a message 2 days ago

Support is really busy this time of year, I think response time is like 8-9 days right now

i dont understand, im connected, i go in the learn room that i want to do and after i must do what?

Each room will be different, if you are doing a walkthrough room it will tell you what to do, challenges rooms just give you an IP and you have to hack the box. If you tell me which room specifically you are trying to do I may be able to provide more specific instructions

you dont understand me. how i enter on the hacker's machine

becuse i think its not the machine wich we navugate on tryhackme rooms ahah

The hacker's machine? Like the machine you send attacks from? You're right that I am not quite understanding what you are trying to do

Like the machine you send attacks from => yes

The machine you would attack from can be one of two: the attackbox which is a browser based machine from tryhackme or your VM running OpenVPN to connect to the network.

Select room, next click start machine red button wait for ip and do what room is for.

The machines you launch how Bimbol explained are the machines that you attack or the victim machines (most of the time)

ho its to me to create my own VM?

Yes, or you can use the attackbox

but for example in this question it say me what is the content of file what i dont create so how i do this if its me who create my own VM?

attackbox is only 1h /d ahah

download VMwareplayer, or Virtualbox and Kali i think is the best choice.

You would connect to it in some way, I think for that room you ssh in iirc? From your own VM

and the file? its not me and its not the OS too

so i create my own VM, in this VM i ssh this?

mhm, you make your own VM and then use the credentials provided to ssh into that VM you launched within the room. On the Vm you ssh into should be all the files you need to complete that room/task

Task 2 of that room should give a guide of how to SSH into, as for how to make the VM there are plently of guide on google/youtube to help you out

ha ok

i understand now

before you said that, i thinked that it show me how to connect to ssh

so i understand now thanks a lot

Np, happy to help

so now good night i need to sleep

Haha, goodnight

https://www.kali.org/get-kali/#kali-virtual-machines here's Kali for download i think it 'sbetter then attackbox in browser.

i do a thing i dont must?

Can I use Oracle VM VirtualBox instead of OpenVPN?

Those are two completely different things. Virtual Box is a virtualization software program and OpenVPN is a VPN program. You would need them both to connect to tryhackme

That IP is just an example iirc, you would actually connect to the VM that you launch within the room

got it. Thank you, Hiro. I feel stupid for not realizing that... oops.

On Kali, does not work

It works on my Kali? I mean you can just like close the tab tbh, but Ctrl + C should work perfectly

Yea you're right I was being dumb lol

hello guys

I want to access the tryhackme user via ssh, but I get Permission denied.
Username: tryhackme
Password: tryhackme

Is there a problem or am I making a mistake while typing the password?

ignore pls ı solved thank u

how do I link my thm account?

im using my own kali vmware, is there a passlist that I can download for use on THM rooms?

Specifically Hydra is what i'm doing atm.

2 passlist i have used was rockyou.txt and someone i dont renember /usr/share/wordlists/ you should find some but they always give also a link if its needed in the room. hydra and john the ripper or something like that shoudl do the job if you have gpu hashcat is also useful i dont try it for now. sometimes dirb or gobuster but its not for password as i know... im not sure.

Appreciate you man, I actually looked into the wordlists folder right after i sent those.

what exacly you want to do. in accout settings you have social media twitter,instageram etc, you can find your id badge and put on website can be interactive with rank/rooms completed/badges or static image.

Verifying, I got it. Thanks!

Gave +1 Rep to @bitter aurora

its enought? or you still searching ? you only needs it filename it easy to find.

i finished the room no worries. 😄

anyone know how to best contact support? i raised a ticket but haven heard anything back from them

When did you email?

I raised the ticket and messaged them on the 1st of December at 12:01am haha

THM Support standard response time is at ~8 to 9 working days at the moment as they are very busy with the AoC event.

Hmmm okay thankyou do you know if this will impact my refund request ticket

Are you on annual subscription?

I paid for the year yes

#site-support message

Ahh awesome thankyou

i have exact same message, How did you fix it?

The log shows that he was able to establish an OpenVPN connection.

Have you tried to connect to 10.10.10.10 to verify if you are already connected?

yes, cant ping it

Have you tried it in your browser? Can you share the last 3 to 5 lines of the log when you connect to OpenVPN?

ok, i run my older Kali version with openvpn 2.6.0 and it worked

i will clone it and update opevpn to 2.6.7 and see if it will still work

ok, it works on kali 2022.3... and yesterday when i installed it on newest Kali it didnt

Hi, anyone else having a problem with connection to the Guacamole server in the day 5 challenge? I tried to restart the VM, but it didnt work. Also I dont have an option to use "Remote Desktop", because my version of OS (Windows 11 Home) doesnt support it. Any ideas? 🙂

it say that we need to connect to the ip in the red banner, and the ip in the red banner is the one who ends by 65

As Hiro said, this is an example. You will need to deploy the machine and connect to the IP that is displayed in the red card for you. Not the one in the screenshot. The screenshot is just showing where the IP address will be displayed 🙂

it was just a little bugged haha

i have finished linux2