#site-support

@violet wing has around 1026

Hello, I have 48 UP series and I wanted to treat myself by benefiting from the reduction on the shop. I realize that the reduction is not active!?

48 UP series?

The hacking streak

45 séries like 5% off swag

Ah.

You need to contact support via E-mail for your code. 🙂

Ha ok 😅. Many thanks my friend

@thin tartan What are you experiencing?
Can't you connect?
Or the IP just doesnt show in the top bar of the THM website?

hello i ask about subscribe i pay but nothing happened

Sorry, did you mean you paid for a subscription, but it was not activated?

Did you payment went through the bank successfully?

Howdy - AWS path, STS Credentials Lab - cannot create user in console or cloudshell. Get the error not authorized to perform: iam:CreateUser on resource: arn:aws:iam::<account>:user/padawan because no identity-based policy allows the iam:CreateUser action

Any know how to fix the connection timeout issues with openVPN? I'm on windows and trying to connect to us east.

Are you using the OpenVPN Connect GUI?

you can help me? i can send a print in yours dm?

yeah i think so, i installed the one that try hack me links you too. im on my mac now it connects but isnt stable and the ip times out 😦

Are you using brew on your mac?

no

You need to use homebrew to connect on your mac

do you happen to have the link to that?

the instuctions i used just gave me the download to open vpn

https://tryhackme.com/access

Click OpenVPN config

not sure if im looking at the right place, i dont see it going off that page

Scroll down to the two cards one will say “OpenVPN configuration”

Click it, then select MacOS from the screen, and follow the steps :)

thank you!

Gave +1 Rep to @bronze vale (current: #6 - 1135)

hmm those steps dont seem to work either, im wonderinf if open vpn is blocked...

hey gang, could I get some help with openvpn? whenever I get it started, it sits here indefinitely and never finishes installation. Research lead me nowhere!

im on kali btw

that means it is connected and u dont need to do anything else

just open a new tab

and start

the work

then you just ssh tryhackme@ip right?

no

u are already connected to it

start an nmap on target on another tab

Is the connection you are using managed by someone else like a school or office or the one you have at home? If it is the latter, what country are you connecting from?

This depends on what room you are working on as not all rooms have VMs you are supposed to SSH into.

it isnt actually, im just having issues connecting on two diff comps with two diff OS. Installing went correctly on both. I think I lose connection from my mac anyways.
With my mac it connects successfully, then after a minute or two it says connected again and the stop watch starts at 0. Like for example The highest its gone has been 0:02, but then it'll show "connected" and its back at 0:00. It keeps flashing connected over and over again but I have yet to see any message showing it's been disconnected...

Hello 👋 Family, please where do I locate the POSITION ( payload position )

Room: OWASP juice shop

I am eyes 👀 gazing on my burb suite and I can't find

Hey, in the Intruder tab. https://portswigger.net/burp/documentation/desktop/tools/intruder/configure-attack/positions don't hesitate to go to google if you can't find something in a tool 🙂

Okay. Thanks for the heads up...

i have a question

how to change the bio under your profile?

On discord?

Or Thm?

im not finding it

im there

but im not seeing it?

like changing it without putting occupation details

Not sure, nobody can see them anyway, so you can fill it with pretty much anything.

is there anyone else i can ask if they know how?

but the Bio is allready there without me enetering an occupation

I don't think you can right now.

I don't know if it's intended.

i just put my occupation details

Thanks

if you just write in the biography it should show

oh nvm, you'll need the details, didn't see 😄

hello i the room metasploit : exploitation task6 Msfvenom: "Get a meterpreter session on the target machine." i have error " Handler failed to bin to MyIP:PORT..." i don't understand..

I've been on the problem for 2 hours...

You got a firewall?

i used attackthebox

I even cheated by watching a video of the solution by performing the same commands but I still got nothing

Did you even copy the IP?

yes

I am 100% sure I entered the correct IP

Just to confirm.

You copied the IP you used from a video?

no, no from my room on tryhackme in live

You said you watched a video and used the same commands.

I'm just making sure you didn't use the IP

yeah, it's not that beginner's mistake lol

go chat vocal 2min please ?

for share my screen

I can't.

I'm making dinner, and you need to be veriffied.

ok no problem

i am verify

Are you using the ip of the right interface?

Asking again.

Wish I could help but I haven't done that path and don't have access to it so there isn't much I can do for ya. Really think they should add a support channel for the AWS path in this server though, now that it is not just for business users

@naive dust : problem is always here ? Please be careful on your typo 😉 ! I had same error

Yes sure 100%

The typo is sure 100%

You many not get alot of help with this, many of us don't have access to the path.

Check your metasploit options and make sure both your RHOSTS/RPORT and LHOST/LPORT are accurate. Make sure the port you selected for LPORT isn't already in use by something else. (e.g. if you used thag guide and put your python on 9000, but then didn't close that webserver, then you can't use 9000 in metasploit. It'll default to 4444, but still something to look at.

good evening everyone! i hope youre all well, i am having some issues on the site relating to connecting to the virtual machines, is this the correct room to chat in?

This one.

Are you using OpenVPN?

no, through attackbox on the site through chrome

What are you recieving an error with?

i have done the room before and didnt finsih it so i am going back through it, i seem to have had the answers before after running the nmap commands trying to find open ports. i have even gone through a video walkthrough copying what they are doing but i still dont have the same resules or even directory names, which makes me think even though its says im conencted, im not!

hello i have a prob with connect to openvpn file

What is the exact issue you are having?

Can you share a link to the room you are doing? And the command you are running?

cannot connect bcz of the following errors:

lost connection to server 1 times

@ivory spruce

1. How are you connecting to OpenVPN - GUI or CLI?

2. What OS are you using?

3. Is this a home connection you are using? Or one that is managed by others e.g., in a school or library?

gui windows home network

@ivory spruce

Is it your host? It is not recommended to connect to the THM network using your host. However, if you prefer to do so, are you using the Community version of OpenVPN?

yeah the community version

and my host

The one from here - https://openvpn.net/community-downloads/ ?

ty

Did you manage to make it work?

It appears updated versions of Open VPN are having some issues with some coding? in the GUI..

directives? Ehh.. I have been trying to toy with this for a while now.

Any moderator who can help remove my discord token?

https://tryhackme.com/room/networkservices task 6, command was nmap -vv <ip address of VM> i was following a walkthrough video and theirs returned a port but mine didnt. also on another video, we had to find the folder scripts where in however, my directories didnt have these options.

I'm currently on the Jr Pen Testing room, and I've been stuck on this section for about 30 minutes because it just does not seem to work.

It either non-stop loads or 504 Gateway errors, I have the premium version etc

I've tried restarting my browser, PC, using Igcognito mode, a different browser (currently running chrome but tried firefox)

Anyone else have an issue with this?

Room in question: https://tryhackme.com/room/walkinganapplication

Hey, can you try with https://10-10-112-182.p.thmlabs.com/

yes that worked!

During your troubleshooting steps, did you reboot your task VM? Sometimes that does the trick 🙂

I did, I have been trying to fix this for about 30 minutes, I restarted the box, I switched to Kali Linux (to see if that would work), new browsers, only thing that worked was that new link

hmmm that's strange, I will leave my VM running for now so you can get through the room. Are there any other errors, for example, in your browser's developer tools, when trying to access the website?

No need to keep yours running! I have moved onto a different room currently, hoping it will fix in a few days when I try it next. thanks though!

I will check quickly, 2 seconds

Nothing noticable from what I can see, although I am not really a professional at this

all it says is

504 Gateway Time-out
nginx/1.14.0 (Ubuntu)

On Firefox, you can access your browsers dev tools by right-clicking your mouse -> inspect

You can then check for errors in the console and network tab. Network tab can be a good way to understand how requests and responses are made 🙂
In your case, 504 is a server error, so I thought a reboot would do the trick.

Sorry. Are you trying to access the pthmlabs on attackbox?

yeah I see the 504 error, is there anything within the error which would give me a reason for why its not working?

In this instance, not much else, but the methodology can come in handy for troubleshooting (even outside TryHackMe)

Alright, Well for now I'll just ignore it and hope it fixes itself next time i study it haha. thank you for the help!

Anytime, enjoy your day!

you too!

Does anyone knows how I can reset my 2FA in TryHackMe?

Contact support. 🙂

Thanks! I'll try that 😃

Gave +1 Rep to @west chasm (current: #285 - 16)

Did you save the codes when you setup your 2fa?

Yes, if you mean the recoverycodes

leteral movement network just doesnt work no matter what I do, cant ping the DC IP

i tried regenerating the .ovpn config file

im using kali

Im wasting like 20 minutes a day each time I want to connect to a THM network, someone should really look into it.

Issue seems like it's only you?

I see, so you pay for a service, you open up a manual, you do every single step exactly how it is in the manual, it doesn't work but the issue is you

Thanks a lot

Well think of it this way.

How many people are complining about it?

I understand that you are in the mood to argue, but that's not what you got the Mentor role did you?

Please let's not waste our time here, your argument is completely irrelevant.

Someone let me know once the issue is solved please I'd like to finish the room, Thanks

How about you tell me what's not working?

Have you added the nameserver to your /etc/resolve ?

yep first I added the DCIP as additional DNS IP in the IPv4 section in Network manager (this always worked), and restarted network manager

now I tried adding the DCIP at the top of all nameservers in resolv.conf

i tried regenerating the ovpn file, and restarting my kali multiple times

Have you tried reseting the network?

Not enough votes, that's the only hope now.

You can add one every 30/60 mins.

Or you can leave the room with the cog for 30 mins and get placed in a new subnet when you re-join

It works after sixth restart of my kali, didn't change anything about how I connect to the network. Theres just bugs that need to be fixed, not the user's fault

50 minutes wasted today

You can use them to login and disable 2FA

hi guys, does anyone know how to deal with a very slow attackbox? it takes minutes for a ping to show on a netcat capture ? painful to use!

Hey Rixon, have you tried leaving the Network room for at least 30 minutes, and then re-joining it? This should put you on a new subnet, and hopefully resolve those networking issues.

Could you share your DCs IP address so we can look into that subnet? Thanks 🙂

Gave +1 Rep to @haughty dagger (current: #684 - 5)

Hey the DCs IP is 10.200.51.101

It works perfectly now even tho I didn't change any settings, I just waited and kept restarting my kali.

There's a chance the problem is my Kali and not the network

All good, the trick could come in handy if you ever encounter other issues.

Hey All

i am having a trouble using openvpn

i tired running the script but no luck

Hi, can you tell me which OS and country you reside in?

kali in VM Fusion and currently in Canada

@weary spindle i ran the script suggested by THM and it gives error

[+] Stable internet connection
[+] OpenVPN is installed
[+] tun0 exists
[+] tun0 IP is in the correct range
[+] Only one instance of OpenVPN is running
[+] Confirming connectivity
[-] MTU value failed at 1000, aborting MTU check
[-] Something went wrong -- please ask for further assistance in the TryHackMe Discord server, subreddit, or forum

Is the VPN restarting?

not sure

Well, what does the output say?

024-02-01 14:01:30 Note: --cipher is not set. OpenVPN versions before 2.5 defaulted to BF-CBC as fallback when cipher negotiation failed in this case. If you need this fallback please add '--data-ciphers-fallback BF-CBC' to your configuration and/or add BF-CBC to --data-ciphers.
2024-02-01 14:01:30 Note: cipher 'AES-256-CBC' in --data-ciphers is not supported by ovpn-dco, disabling data channel offload.
2024-02-01 14:01:30 OpenVPN 2.6.7 aarch64-unknown-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] [DCO]
2024-02-01 14:01:30 library versions: OpenSSL 3.1.4 24 Oct 2023, LZO 2.10
2024-02-01 14:01:30 DCO version: N/A
2024-02-01 14:01:30 TCP/UDP: Preserving recently used remote address: [AF_INET]54.193.147.96:1194
2024-02-01 14:01:30 Socket Buffers: R=[212992->212992] S=[212992->212992]

2024-02-01 14:01:30 UDPv4 link local: (not bound)
2024-02-01 14:01:30 UDPv4 link remote: [AF_INET]54.193.147.96:1194
2024-02-01 14:01:30 TLS: Initial packet from [AF_INET]54.193.147.96:1194, sid=bb15217b c00235d1
2024-02-01 14:01:30 VERIFY OK: depth=1, CN=ChangeMe
2024-02-01 14:01:30 VERIFY KU OK
2024-02-01 14:01:30 Validating certificate extended key usage
2024-02-01 14:01:30 ++ Certificate has EKU (str) TLS Web Server Authentication, expects TLS Web Server Authentication
2024-02-01 14:01:30 VERIFY EKU OK
2024-02-01 14:01:30 VERIFY OK: depth=0, CN=server
2024-02-01 14:01:30 Control Channel: TLSv1.3, cipher TLSv1.3 TLS_AES_256_GCM_SHA384, peer certificate: 2048 bits RSA, signature: RSA-SHA256, peer temporary key: 253 bits X25519
2024-02-01 14:01:30 [server] Peer Connection Initiated with [AF_INET]54.193.147.96:1194
2024-02-01 14:01:30 TLS: move_session: dest=TM_ACTIVE src=TM_INITIAL reinit_src=1
2024-02-01 14:01:30 TLS: tls_multi_process: initial untrusted session promoted to trusted
2024-02-01 14:01:31 SENT CONTROL [server]: 'PUSH_REQUEST' (status=1)
2024-02-01 14:01:31 PUSH: Received control message: 'PUSH_REPLY,route 10.10.0.0 255.255.0.0,route 10.1.0.0 255.255.0.0,route-metric 1000,route-gateway 10.13.0.1,topology subnet,ping 5,ping-restart 120,ifconfig 10.13.45.122 255.255.128.0,peer-id 6'
2024-02-01 14:01:31 OPTIONS IMPORT: --ifconfig/up options modified
2024-02-01 14:01:31 OPTIONS IMPORT: route options modified
2024-02-01 14:01:31 OPTIONS IMPORT: route-related options modified
2024-02-01 14:01:31 Using peer cipher 'AES-256-CBC'

2024-02-01 14:01:31 net_route_v4_best_gw query: dst 0.0.0.0
2024-02-01 14:01:31 net_route_v4_best_gw result: via 192.168.11.2 dev eth0
2024-02-01 14:01:31 ROUTE_GATEWAY 192.168.11.2/255.255.255.0 IFACE=eth0 HWADDR=00:0c:29:9c:2b:bc
2024-02-01 14:01:31 TUN/TAP device tun1 opened
2024-02-01 14:01:31 net_iface_mtu_set: mtu 1500 for tun1
2024-02-01 14:01:31 net_iface_up: set tun1 up
2024-02-01 14:01:31 net_addr_v4_add: 10.13.45.122/17 dev tun1
2024-02-01 14:01:31 net_route_v4_add: 10.10.0.0/16 via 10.13.0.1 dev [NULL] table 0 metric 1000
2024-02-01 14:01:32 net_route_v4_add: 10.1.0.0/16 via 10.13.0.1 dev [NULL] table 0 metric 1000
2024-02-01 14:01:32 Initialization Sequence Completed
2024-02-01 14:01:32 Data Channel: cipher 'AES-256-CBC', auth 'SHA512', peer-id: 6
2024-02-01 14:01:32 Timers: ping 5, ping-restart 120
2024-02-01 14:01:32 Protocol options: explicit-exit-notify 3

That's connected

it should be but the website doesn't showing connected status

It's bugged, ignore it

okay and what about macOS, any idea?

gui just wait for connection and then asks me to retry connection

finally it started, i was not able to ping the lab IP for some time

Hi together,

I have found an unusual behavior in Room "Upload Vulnerabilities" (https://tryhackme.com/room/uploadvulns). If I request demo.uploadvulns.thm I am forwarded to youtube.com

Here the cat and wget command output:

"""
root@ip-10-10-36-94:~# cat /etc/hosts
127.0.0.1 localhost
127.0.1.1 tryhackme.lan tryhackme

# The following lines are desirable for IPv6 capable hosts
::1 localhost ip6-localhost ip6-loopback
ff02::1 ip6-allnodes
ff02::2 ip6-allrouters
10.10.47.142 overwrite.uploadvulns.thm shell.uploadvulns.thm java.uploadvulns.thm annex.uploadvulns.thm magic.uploadvulns.thm jewel.uploadvulns.thm demo.uploadvulns.thm

root@ip-10-10-36-94:~# wget http://demo.uploadvulns.thm -vv
--2024-02-01 20:49:07-- http://demo.uploadvulns.thm/
Resolving demo.uploadvulns.thm (demo.uploadvulns.thm)... 10.10.47.142
Connecting to demo.uploadvulns.thm (demo.uploadvulns.thm)|10.10.47.142|:80... connected.
HTTP request sent, awaiting response... 302 FOUND
Location: https://www.youtube.com/watch?v=dQw4w9WgXcQ [following]
--2024-02-01 20:49:07-- https://www.youtube.com/watch?v=dQw4w9WgXcQ
Resolving www.youtube.com (www.youtube.com)... 74.125.193.93, 74.125.193.91, 209.85.203.190, ...
Connecting to www.youtube.com (www.youtube.com)|74.125.193.93|:443... connected.
HTTP request sent, awaiting response... 200 OK
Length: unspecified [text/html]
Saving to: \u2018index.html\u2019

index.html [ <=> ] 616.98K 1.19MB/s in 0.5s

2024-02-01 20:49:08 (1.19 MB/s) - \u2018index.html\u2019 saved [631789]
"""

Have anyone an idea what's wrong??

The YouTube link directs to the following song: Rick Astley - Never Gonna Give You Up

Is there any connection between Tryhackme and Rick Astley... 🙂

Is this for a thm room? If so which one?

i got it working somehow

https://forum.hackthebox.com/t/evil-winrm-error-on-connection-to-host/257342/7

here is a helpful guide if you have errors with evil-winrm

Hello i am having an issue with wreath. I am using the attackbox and it is not reachable can anyone check the network?

which subnet

the foothold server says it's at 10.200.87.200

the documentation says it should be reachable from the attackbox

it doesnt ping or respond to a portscan with -Pn appended either

hmmm

im going to let the network time out and try again later i will repost if the issue persists

or hit the reset button

once every hour/half hour

Super dumb question but it has been a while since I have been on. You can connect via website with AttackBox with subscription or using OpenVPN and use your own machine. Do you need openvpn or a virtual box with the attackbox or can you use your home computer outside a virtual box?

you can use your own computer with the vpn but be weary as you are then connecting your main pc to a network full of hackers.... still rare that they target someones attack machine but it has happened before

Thank you so very much! I truly appreciate it!

Gave +1 Rep to @plush bay (current: #4 - 1619)

recommended setup is the attackbox or your own kali or parrot os vm

The OpenVPN has updated and doesn’t appear to like the gui

well yeah

generally people connect using the command line openvpn command

AttackBox being inside the browser or something else completely?

yeah attackbox being the browser vm that tryhackme provides to use to attack the target machines

But even within their AttackBox browser it is best to do within a virtual box? And use OpenVPN? Sorry.. now I am going in circles. It is the end of the day. Erm…if you use the AttackBox in the browser of home/main computer be wary

I have been fighting with OpenVPN for a day. Getting different errors and now it just keeps timing out. So I am uninstalling it to start fresh.

If you are using the attackbox you don't use your own VM and OpenVPN, it's an either or situation

Thank you so much! This made perfect sense. Thank you! I was being a dumb bunny!

Gave +1 Rep to @gleaming flume (current: #46 - 157)

Thank you!!

nah if you use the attackbox in the browser it is completely fine...

Thank you so much! I am so sorry for going around in circles with you. But I am truly grateful for your time and help!

Gave +1 Rep to @plush bay (current: #4 - 1620)

no problem... shadow helps out when they can

Yeoo im new here and i wanna learn how to hack

can someone reset the wreath network? someone seems to have closed port 10000 for the exploit on the first machine...

@dull leaf im getting the same thing, are you getting any response from it at all? i'm not

no. the rce cve wouldn’t connect and nmap scan showed closed port on 10000. odd.

You'll need to tell us which subnet you're in

We got enough votes to reset, and it's working fine now

I am having difficulty with the hydra attackbot launching

Am I the only one affected by maaaaaajor lags on the website ? Been literally waiting for a minute to just load the AWS learning path and this only happens with TryHackMe specifically

Do you have access to the AWS path?

Yes, bought it monday

Even now it's still laggy and I've been waiting for my AWS environment to reset for the VPC - Attack and Defense room for quite a while now

Yeah... I'm not certain that AWS takes more than an hour to create a few VPCs so something is definitely off

So the attackbox is not connected to the wreath network as advertised and the site will not download the network vpn config to an internal address can anyone please advise
1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000
link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
inet 127.0.0.1/8 scope host lo
valid_lft forever preferred_lft forever
inet6 ::1/128 scope host
valid_lft forever preferred_lft forever
2: ens5: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 9001 qdisc mq state UP group default qlen 1000
link/ether 02:11:c9:4b:95:3b brd ff:ff:ff:ff:ff:ff
inet 10.10.71.XXX/16 brd 10.10.255.255 scope global dynamic ens5
valid_lft 3194sec preferred_lft 3194sec
inet6 fe80::11:c9ff:fe4b:953b/64 scope link
valid_lft forever preferred_lft forever
3: docker0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP group default
link/ether 02:42:49:45:00:36 brd ff:ff:ff:ff:ff:ff
inet 172.17.0.1/16 brd 172.17.255.255 scope global docker0
valid_lft forever preferred_lft forever
inet6 fe80::42:49ff:fe45:36/64 scope link
valid_lft forever preferred_lft forever
5: veth138266f@if4: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue master docker0 state UP group default
link/ether 6e:02:e2:bb:96:24 brd ff:ff:ff:ff:ff:ff link-netnsid 1
inet6 fe80::6c02:e2ff:febb:9624/64 scope link
valid_lft forever preferred_lft forever
7: vethd801038@if6: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue master docker0 state UP group default
link/ether ae:e4:92:9d:15:64 brd ff:ff:ff:ff:ff:ff link-netnsid 0
inet6 fe80::ace4:92ff:fe9d:1564/64 scope link
valid_lft forever preferred_lft forever

If you are connecting from the Attackbox, that should be the ens5 interface. Have you tried to vote for a network reset?

This depends on the user being a subsciber or not.

If the user is a subscriber it will tun0 on the attackbox.

Are you a subscriber?

Thanks for clarifying.

Gave +1 Rep to @weary spindle (current: #2 - 1911)

Any news on the AWS environments ? Mine is still resetting and I have no possible actions to stop / try to reset it again or anything of the sort. For info, this is supposed to be the account 905418062754

I am

Start the Attackbox from inside wreath room?

Yea I did that because for other AD rooms you have to as well

what i might try this evening when i get home is download the .ovpn and copy the contents over to the attackbox for POC, otherwise i'll just do it from my home box

i just like to pick at rooms while at work

just thought i should bring it to someone's attention that it's misconfigured

SOme room shave strange VPN packs, you could always cat it and see if it's blank.

As Tun0 worked for me on the attackbox.

yea there is vpn config on the desktop and it is blank. odd.

You'll need to leave the room (with the cog) and rejoin later

👍

Hey guys any idea when will the Lateral movement network be available again? The config file can't be downloaded right now so I'm assuming someone is working on it?

Not quite.

Works again 👍

Hello, I'm having a weird issue with the Wreath network, when downloading the config file for it, the file is empty (0 bytes). I'm a free user with 8-day streak.

Leave the room for 30 min(s) with the cog. (top right)

Okay, done, thanks for the help!

Hey guys, whenever i click join room in the wreath it redirects me to /rooms/ without signing me up in wreath

Are you a sub, or have a streak > 7?

I'm working on the Windows PrivEsc room at: https://tryhackme.com/room/windows10privesc and it's not letting me terminate the machine. I reload the page after hitting terminate and it's active again. I tried going to another room and activating/terminating a machine and have no issues. Just this single room having an issue. I also can't ping it from my machine anymore.

You won't be able to ping it due to Windows firewall.

Okay, I still cannot terminate the machine on tryhackme.

#site-support message

not a sub any my streak is 2

That's why

how do i link my token to the discord?

you did. you are verified

I have a different account now, and need to relink it

ah... you need to ask some mod/admin to unlink the old one so you can use new

Hello I'm having issue while connection to Exploiting Active Directory room. Used both methods as using OpenVPN and Attack Box. Not able to share screenshots here as it's only showing "Use Apps" options . Please guide me how to insert Screenshots for better understanding of issue

You have to verify to send screenshots

ftp: Can't connect to `ip add': No route to host

more info is needed. did you connect to VPN and is ok? is that room? and what you doing. and so on...

yeah vpn is connected but the error is open port ftp is not connect i get this error no route to host?

when connected to vpn, can you do in another terminal: ping -c 3 10.10.10.10 and have 0% packet lost as in result?

and what you try to have that. room or what so?

hello i am facing a problem, The attack box is too slow to use. and the there is a system massage popup when i try to use Brup suite syaying: there is a few space left. Please fix the problem i want to finish Brup suite room

@eager fulcrum

Contact Roblox support. We do not do account hacking here.

Have you tried to use a VM with adequate resources and connect it via THM OpenVPN?

hello I have a problem with THM machines. When I connect to the the machine with OpenVPN and try to open the page on web browser it doesn't load . Any solutions ?

Can you go to http://10.10.10.10/ ?

yeah the 10.10.10.10 works fine but when I try to connect to the machine IP it doesnt load

Which machine?

both Burpsuite the basics and OWASP top 10-2021 rooms

Do you have a machine open now?

yes owasp_top10_2021_v1.2
IP Address
10.10.80.35

You're on a VM, yes?

yes I use Kali linux on VM

Can you run sudo ip link set dev tun0 mtu 1200 in a seperate terminal please (with the VPN open)

Can you also confirm you have one tunnel open with ip a | grep "tun"

┌──(thmkali㉿kali)-[~/Desktop]
└─$ ip a | grep "tun"
4: tun0: <POINTOPOINT,MULTICAST,NOARP,UP,LOWER_UP> mtu 1200 qdisc fq_codel state UNKNOWN group default qlen 500
inet 10.9.119.186/16 scope global tun0

Ok, run the first command.

I did

Did the webpage connect?

ok thanks a lot it worked 🙏

Gave +1 Rep to @weary spindle (current: #2 - 1916)

Excellent!

If it does that again, you know what to do, or you can edit you VPN pack to have it by default.

yeah sure thank you very much

hey im new here and im trying to connect to tryhackme site via openvpn and its showes that im connected but all the assignments wont update there ip i mean the access machins wont change even if im connected to the attackbox idk if its related to this message but if somebody can help me i will really appreciate 2024-02-03 13:17:41 Data Channel: cipher 'AES-256-CBC', auth 'SHA512', peer-id: 121, compression: 'lzo'
2024-02-03 13:17:41 Timers: ping 5, ping-restart 120
2024-02-03 13:17:41 Protocol options: explicit-exit-notify 3

Could you send a screenshot of the full openvpn output? You'd need to verify your account to send images

Hello! Im trying to buy the monthly premium subscription but I can't already called my bank and such and there are no problems on their end

If you are sure the issue is not on your end then I'd talk to support via email, they are the only ones that can help with payment related issues

thank you!

or all of it from the begining?

That is enough and it looks to be a working output, can you go to 10.10.10.10 in your browser? If a site loads there and gives you a flag then you should be good to go. The site can be bit buggy when it comes to displaying you as connected/giving you the IP of your connection which could be causing you confusion, but if you can load 10.10.10.10 then that doesn't matter.

i get the flag and even in the access menu it writes "connected" how ever still i cant connect for the labs

its just wont change...

That is for the victim machines, your VM that you use openvpn on and the machines that you interact with are two separate things. Is there a green 'Start Machine' button on one of the tasks in the room you are in? You should hit that button then the machine_ip will populate with the ip of the victim machine.

great thank you very much 🙂

HI! my attack box for exploit AD can't resolve za.tryhackme.loc whereas I set the DNS as usual. I've tried to leave and join back the room but nothing changes. I also tried to flush dns but didn't work. What should i do? Does anyone had already faced this issue ?

Hi, I'm new here and I'm trying to connect to the tryhackme site through openvpn and I'm getting this error

2024-02-03 16:08:21 Data channel: 'AES-256-CBC' encryption, authentication
'SHA512', peer ID: 198, compression: 'stub'
2024-02-03 16:08:21 Timers: ping 5, ping-reset 120

how can I solve that

Can you send a screenshot of the entire command line output for openvpn? You'll need to verify to send images

Hey guys, I am currently trying to connect to the VPN (Australian server). I am not sure if I should tunnel with Windows directly or tunnel with Kali in WSL2, I would rather Windows, because Burp Suite's UI. I am currently getting the client exception: "BF-CBC: bad cipher for data channel use"

At the moment, I am just using the Attack Boxes, but they are a bit laggy for Australians.

Very, but I've found they're more reliable in what they do. I've used a VPN to access through a VM and even then there are some issues with compatibility.

We generally don't recommend using WSL2 to connect to the VPN as the networking is a bit funky. Run the VPN from within the host that you are using (I.e. the Windows host - not WSL2 in your case, or in a VM, run it on that machine).

However, it looks like that error *might *not be related. Can you try the above (i.e. running the VPN on windows using an install from the OpenVPN community edition client (https://openvpn.net/community-downloads/), and try connecting again? See if you can access 10.10.10.10/whoami either in your browser or via curl on Windows

Hey, can you do the following on the AttackBox please:

1. run ip addr in the terminal.
2. Look for an interface that has a similar name to the network that you're trying. If it exists, then double-check that your /etc/resolv.conf & /etc/hosts are correct. If it doesn't exist, can you share the subnet that you're on in the map in the room and the URL to the room that you're trying please. Otherwise, share the IP address of a machine that you see on that map/graphic.

If you're not sure, send a screenshot of all of the above (especially the output of step #1!!) (you'll need to verify your discord account to post pics here, or you can upload them to say imgur)

Seems I had the wrong client. It is working now.

great:) glad to hear

The one that was being linked from the access machines menu might not be correct?

but yes just as a PSA, the networking on WSL2 with the VPN can be weird. It depends on what you do, but I know this is especially noticeable with things like reverse shells

Perhaps. Is this the https://tryhackme.com/access page? or somewhere else?

The show connections options menu.

In the Windows tab.

Ahh I think I see where you mean. Here?

yup gotcha

okay looks like that's outdated. I'll submit a ticket re. this 🙂

0day streak

yup lol

the most i'll ever have is 5 days because I try and not do THM things on say the weekends, because it's my full-time job during the week 😄

xdd

probly also because ur the teacher not the student like us

I think the highest streak I've had is 8

you can send email to support to get your strikes back 🙂

Aye. That and I do a lot of work on THM that doesn't involve answering questions on the site.

Plus, as with any job, it's healthy to have a work/life balance. Like I said, THM is my full-time job during the week. While I love it, i also have other things to do on the weekend 😄

nice

same

i love ur rooms btw

tey are the best
clear stand out

thanks!:)

@normal vale can you take a look at this

https://openvpn.net/faq/tls-error-tls-key-negotiation-failed-to-occur-within-60-seconds-check-your-network-connectivity/

could be a router thing?

like what?

A NAT gateway on the server's network does not have a port forward rule for TCP/UDP 1194 to the internal address of the OpenVPN server machine.

i see but I've never had a problem like this before

I just deleted kali and reinstalled it

How do I redirect?

You could also set it to bridged mode (the network settings for your VM).

set to NAT

#site-support message

Gave 1 Rep to inf0s3cw4nn4b3 (current: #18 - 381)

I don't think this is THM-related so this may be better posted in #general or #infosec-general . Also, I don't think you'll get folks to simply click on a link posted by someone they don't even know?

Please don't spam in multiple channels as well.

i tried as sudo

@fresh bear You might consider re-downloading the config file

okay

Is it in the.directorh you're calling?

Or in Downloads?

idk i did now sudo su cd /etc/openvpn

i tried re-downloading and again same problem

Can you ls?

Exit from root, go to your Downloads directory with cd ~/Downloads
Then sudo openvpn config.ovpn

It also won't like the brackets.

Your vpn file isn't in that directory.

itsd in downloads

Your cli pwd isn't.

huh

Ls

Just use the one without brackets.

Or use the one with brackets but the file inside quotes

and end with that

after much text

Look 3 or 4 lines up.

If it says Initialization Sequence completed

You're ready to go

That's fine.

whats the 10's up is that ips

Mjnimize the terminal file.

huh

Minimise it and leave it running

oh ytes

ty

im connected

🙂

now to use it in my terminal i do ssh tryhackme@ip of machine?

If its ssh enabled, yes.

whats password

it ask for tryhackme@machine ip password

Which room are you doing?

Basic Pentesting

It said i can use openvpn and thsat

whats password

You have to brute force it

how

i did ssh tryhackme@ ip and it says tryhackme@ip password i need put in password

The room doesn't give you a tryhackme uername

huh

username

You have to hack it to get the username and password, it's a challenge room

but how do i get to the ssh so i can start

I would recommend doing some walkthrough rooms, such as linux basics, nmap module, hydra before doing this room

oh okay

Basic Pentesting is a challenge room, it is asking you to attack the machine, it doesn't ask you to login with ssh with username tryhackme

ohhhhhhhhhhhh okay ty

i keep trying to connect using openvpn to tryhackme but it keeps giving me this error openvpn TLS negotion failed any one know whats the probem?

Which server and country are in?

iam in turkey and trying to connect to eu-regular 1

I think Openvpn is banned in your country.

i have used it before to connect to hackthebox machines and it worked

Different protocols used.

UDP might be blocked, which is what THM uses.

can i connect to it if iam connected to a VPN ?

US or something

My only suggestion is to use the attackbox

Iam not a subsciber yet, so i only have 1 hour daily

but thanks for your ehlp

help*

That doesn't change my suggestion.

Can you repeat that again please?

Good Morning
Is there an issue with the site? I connect with openvpn like I always have and get the 'initialization sequence complete' like I always have.
In the room I'm working in 'Access Machines' stays red as if Im disconnec no matter how many times I refresh and I can't access the machines.
My terminal says my tun0 adapter is connected and the site Access Page says Im connected. But no matter how many times I try or regenerate an openvpn file - it won't ACTUALLY connect me - just says I'm connected.

Is this a thing anyone else is dealing with or just me??

That page is broken.

The access page or the room page that says im disconned??

Is there something specific required to make remote connections to windows machines work? Only getting a blackscreen after it initializes and briefly loads the login background

How are you connecting?

The access page

Room machine, split view

Not RDPing, just link in browser

Can you screenshot?

tried it with FF and Chrome

What exactly? The page is black
There's really not much to see 😅

Well, a user is getting a white screen.

Not for me 😛

What happens if you open full screen?

Just says please wait for group policy client, loads picture for a sec, then blackscreen

this is full screen

I always pop the split view link into another window

Can you link the room?

Core Windows Processes

https://tryhackme.com/room/btwindowsinternals

Have you tried to RDP in?

Do you still have the machine open?

Not yet, but I'm looking at it now

Yes

Can you DM me the URL/

This is my machine

Strange

I did try chrome because sometimes things don't work on FF

I have a black screen with yours. Can you terminate and re-deploy if RDP doesn't work?

I just redeployed, hopefully it works then

how do they ban it? like a country firewall or kind of

Ban what?

oops i was way up on the conv i think

didnt notice

lol i tought this was last message on updated chat

Oh.

governments can put in restrictions on the internet.

the whole of it?

like using the authoritative servers or smthing

Egypt is one of the biggest ones, they once blocked the full country from accessign the internet, now they just restrict the use of VPN's

ohh

wow

But this isn't the channel, or the server to discuss it

So then that would mean there's something also wrong with openvpn - it says initialization sequence complete each time. So the site AND my local openvpn are wrong and there's nothing wrong with the machine I'm trying to connect to?? I don't understand

ok

Thanks for info @weary spindle

Gave +1 Rep to @weary spindle (current: #2 - 1919)

Can you take a screenshot of what you're trying to do?

i start like u

Thanks, I like me too.

Hm, worked this time - should have just tried turning it off and on again, sorry 😄

No worries!

you did the right thing imo

This is the broken webpage

I'm not trying to do anything different, is the thing. It's the same routine as a 100 times before

ok, I saw your reply too late

so what does it mean? I'm not really connected, I can't connect .. what do I do?

Can you show me the output of your VPN config?

I can't get that to turn green as it usually does, nor connect to a machine

That gets the information from the page I linked.

So that is broken too.

ok

the issue is getting narrowed down lol

So what can I do about it? none of my openvpn files are working

You're connected.

4 lines up from the bottom.

Can you visit http://10.10.10.10/ ?

yes, I see that, but at the same time I see the red Access Machine chip I also see this ->

You can either;

a) visit the webpage I linked http://10.10.10.10

b) curl 10.10.10.10/whoami

c) ip a | grep "tun"

so one says Im connected, the other - that feeds from it - says something different, openvpn says Im connected but I can't connect

What are you trying to connect to?

The django room was the initial problem room but the same happens to the others I've tried

Have you done the steps above?

flag{connection_verified}
yea

I'm going to try a different room again

Yeah, you're connected.

yea, I've just gone into one of the OWASP top ten rooms and it connected right up ..
So the 'Intro to Django' machine is def down. There's at least one more too but I can't remember which one I tried right off

There's def something going on over there and what it is isn't exactly clear - I'm connected to the machine and can access it but the top banner still says I'm not connected while Access Page says I am - I'd have thought, and you confirmed, that they were connected to one another

Do you have a target IP?

But that's a them problem, not a me problem since I am connected
Thanks for the help @weary spindle

Gave +1 Rep to @weary spindle (current: #2 - 1921)

In the Django room? yea, it was giving me an IP but I couldn't connect to the machine

Is it still active?

no

do you want the IP

??

If you've terminated it will be useless.

I think it's still saved as en env variable if you want it

It's terminated

I can try again though if it will help debug a problem

give me a moment to start it again

It's starting up now. It's the Django CTF box in the Intro to Django room (unit 5)

so here's the IP of the new instance. I noticed it's forcing me to use HTTPS for this box
10.10.169.238

Are you trying to visit http://10.10.169.238 ?

yup

can't

That's why.

I suggest you enumerate THM boxes with nmap first.

yea, I know this. It's forcing me to use HTTPS and still won't connect

Port 80 is closed.

So you won't be able to connect to it using http or https

hi

why doesnt it work

I get that, HTTPS is 443
I feel stupid, like I missed something
Is this box down?

You're going to have to give me alot of context.

what u mean

He means your question is super, super vague

Port 443 is also closed.

i did verify and put my troken and it said usesr not ound

worked now

You're verified?

yes it worked noew

It was working beforE?

no i couldnt rank it said first my token not working and smth and i tried again and it said user not found but it worked now

i got rank 0x3 i was 2

The box is working fine.

You need to enumerate more.

There is a web server running on the box, that is working.

I'm giving it a full scan now. I was stupid and was thinking 'just connect normally' - I misjudged what type of room it was

Yo how did you make your terminal green

depends on what terminal emulator you use but should be easy to set default text colour

Hm I wonder if that works on Kali

Hacker green is what I call it

yeah it does but not the same way as on windows

think kali uses gnome terminal

which would mean
edit -> profiles -> unamed -> colours

Thanks

Hi guys !
Actually i am studying in web fundamentals room but when i use attacker box and connect successfully i can't open connect with the website using the ip address of the machine. Anybody has the same problem?

Can you share a screenshot of the issue you are having? Are you certain that the website running in the target VM is running on port 80 (http)?

You'll need to verify your account to post screenshots

20 hours ago it was working , i will try to reboot my machine

So you haven't restarted your target since?

I never do , im on kali linux

the site yes , the machine not

hi
i cant connect adenumeration with openvpn file
my error this: 2024-02-05 10:47:43 OPTIONS IMPORT: --ifconfig/up options modified
2024-02-05 10:47:43 OPTIONS IMPORT: route options modified
2024-02-05 10:47:43 OPTIONS IMPORT: route-related options modified
2024-02-05 10:47:43 Using peer cipher 'AES-256-CBC'
2024-02-05 10:47:43 Error: problem with tun vs. tap setting
2024-02-05 10:47:43 Exiting due to fatal error

@dense creek yes quite normal, this happens to anything internet facing.
Please don't post IP addresses stc especially ones that have malware on them

Have you tried to reach out to THM Support? This seems to be a concern they would be the best resource to resolve or address.

yeah I did already 👌

Just wait for them to reply. I'm not certain what the current response time is, but if you happen to send them another email before they respond, it will push your ticket down the queue.

I see, tysm

No you can’t. You have to delete and recreate your account

Hey

Idk which things on tryhackme i can use ssh on

If you're supposed to use ssh, you'll either get;

A) SSH credentials
B) hints to ssh credentials

when i try to connect to the OpenVPN im getting this error:
Core exception: connect error: mbed TLS: cert certificate is undefined
help?🥲

Hello, any news on the AWS cloud environment ? Three days later and I still cannot access the environment, no answer through tickets too 😕

Basically stuck at resetting stage, I can connect to the account but i don't have the iam permissions to do anything on it

Hi, Is there any open thread discussion on a OpenVPN connection issue?
https://tryhackme.com/room/openvpn
Error Message: Connection Failed. Peer Certificate Verification Failure

Have you tried to regenerate your VPN?

yes

i tried with different servers and the same server I am getting different errors
Error1: Peer Certificate Verification Failure
Error2: Unsupported Options in configuration file

i have a challenge to complete as part of an assignment and this is blocking my work , any help would be great

Use the OpenVPN communities GUI app if you're in windows.

hey

picklerick is open ssh but when i try ssh into it i get permission denied (publickey)

You don't use SSH for that room.

but it has open ssh

what rooms do thats easy

just because it's open, doesn't mean it's in use.

:0

ur smart

wow

Eu reg 3?

i guess some certificate related issue in the configuration file generated with EU reg3 vpn server

is there a way we can override this certification check ?

You can try changing region and regenerating it

There's a known issue with the EU Reg 3

ok

SSH is available on many machines (even in the real world), but that doesn't mean you can connect with it, especially with the same default credentials. Imagine if every machine on the internet using SSH had the same credentials; it's wouldn't be very secure. SSH is used so that you can connect to a machine remotely, so this is something a company would want to secure as much as possible.

Some of our rooms taught you how to use SSH to connect to a specific VM we use to teach you a concept (for example, Linux fundamentals rooms), but if every single task VM on THM allowed you to connect to them via SSH with default credentials, then there wouldn't be much learning done.

A lot of the time (in Offensive security), the goal is to get a shell (initial access) on the target VM and to get that shell, you need to "hack" something (like a web server). Maybe down the line, during the challenge, you will find valid SSH credentials for a user and can use them, but you will need to work to find them; it's all part of the learning experience.

I think there is this misconception that you need to use SSH to connect to a room or machine to access the content.

Hope that makes sense 🙂

ohh ty:)

Thanks for the explanation Gonzo! I think a lot of users misunderstand the concept after solving a room that gives out the SSH credentials (:

Gonzo how did you become staff? do you know the owner?

Yes, I know, we are working on some ways to explain these things better 🙂 When I started using THM, I had very limited knowledge, didn't know anything about VMs, SSH, etc... So I know how crucial it is to understand these concepts.

cool

This is worth a pin, btw

I didn't know the owners, I sent my CV and the interviews went really well, and here I am !

wait is it a work

I tried for THM, failed,

Will try again soon enough.

or i mean job like is it a job and not a type of hobby or something in that type

Helping out people on discord isn't a paid job. I don't know what Gonzo is working as but yeah, they also might not want to provide information about it

For me? It's a job now, but I was a THM user before, and still use it to learn today 🙂

hi

cool when did you start

i have a question

But as Heap said, helping on Discord is voluntary 🙂

i see u did early

o since mars 5 2021 u started and still learn there

is it so much paths there?

Using THM since 2020 I think, and working here since August 2022

What's up?

how to find out password of wifi my.... (people who lives opposite my house)

?

It'd be nice to see you here as a Staff Member (:

Quite a few lengthy paths, but also a lot of challenge rooms. I'm close to 250 rooms done, out of almost 800, so still a lot to do

Thank you!

It would 😉

Gave +1 Rep to @tribal mason (current: #28 - 268)

woah

what did he do to get rep

This is a channel that is related to TryHackMe website support

i dont think he wants to know their password in a good way

Well, I wasn't meant to get a rep but that was a compliment

yes

You can knock on their door, and kindly ask them if you can have their password and if they are okay with you using their wifi 🙂

thanks bro you are the best

how didnt i understood?

Hi, I changed to EU reg2 and it worked using OpenVPN GUI

thank u

You're welcome, happy hacking

hi

can u say some rooms i can do that i can use ssh in

Linux Fundemental 2 + 3.

i mean some that gives me more xp and like abit harder

Search SSH on the search

oki

would yall recommend kali linux or ubuntu to do tryhackme and use terminal for nmap and that

Well, not so much difference. But i'd go with kali if it's the only purpose

kali linux in a vm is the easiest if you don't wanna manually install tools all the time... ubuntu will teach you more about how linux works over time though

oh okay ty

no problems

Hi. is the Holo network inaccessible for everyone? it says the room isn't public yet, I faced these type of issue first so dont know what to do.

are you on a student plan???
are you on a business plan???
are you subscribed on the site(does not apply if the above part is true)????

I am subscribed.

then it should work

you sure you are not on any student or business plan and just a normal subscribed user????

will throw a report up on the bug tracker anyways but lets see

I am a normal subscribed user and can access every other subscribed room except this network

yeah sent a report

hopefully they can fix it... it works for shadow but that is not useful right now

what do you mean by "shadow"

oh sorry about the confusion..... shadow is shadow... a person that refers to themselves in third person

Any reason why "free rooms" are redirecting people to https://tryhackme.com/why-subscribe and not allowing access? Is there any workaround? I have a subscription, but am trying to help someone.

which rooms specifically???

Windows Fundamentals 1, Linux Fundamentals 2, and Linux Fundamentals 3. Completely random though.

ah yeah someone reported simmilar issues late yesterday.... sent another report

I am also having this issue when I try to enter into Windows Fundamentals 1

when i tried to log onto the same rooms it worked fine for me. Very weird

hieieiei

can i ssh in task3 linux fundamentals

The first room? No.

2 and 3. Yes

oki tyyyyyy

how do i get more colors its only purple and green

edit -> preferences -> profiles -> untitled -> colours

where do i do that

the terminal window does not have a list of options at the top???

i have prefrecned at file

ah then it is under file

sorry about that

but i dont have profile

or text color

headdesk

huh

https://xkcd.com/627/

kinda tongue in cheek with this but it really helps

huh

have to get kali again i ruined terminal colors in zshrc

can someone help me

why do i only have blue and type green color in terminal no matter what i type i dont get like purple when its a avaiable command

This channel is for TryHackMe site related issues, please use #general to keep this channel clear for such questions. 🙂

but i want more colors can u help me?

Please refer to the above message 🙂

i did but can you still help me

im unable to access the website https://LAB_WEB_URL.p.thmlabs.com ......it shows 504 gateway-time out in jr pentester path course /......please help me

You need to start the machine with the green Start Machine button

i tried already, still working

stiil no tworking

Well you then need to wait for the link to change and click the new link . Have you done this?

yes

Could you send a screenshot? You'll need to verify to do so

i dont know how to send screenshot ? please

The link I sent above shows you how to verify your tryhackme account which will then allow you to send a screenshot in this discord channel

im unable to access the website https://lab_web_url.p.thmlabs.com/ ......it shows 504 gateway-time out in jr pentester path course from yesterday / ....please help me

You need to start the machine with the green "Start Machine" button and then the link will update and you will load that new link

Where can I find green "Start Machine" button

It will be on one of the task pages, I'm not sure exactly where as I don't know what room you are doing

This one right

No, that is for the attackbox, there will be a green button for the victim machines.

ok

got it

It's working Thank you

Hey guys

I am having trouble to connect openvpn

I installed configuration file from profile > access part, and opened my VM ( Kali LInux ) , and run the command on the terminal "sudo openvpn myusername.ovpn " , and I get below error

lol did not know that I can't add photos

I got this kinda errors "2024-02-06 03:30:24 OpenSSL: error:0A000086:SSL routines::certificate verify failed:
2024-02-06 03:30:24 TLS_ERROR: BIO read tls_read_plaintext error
2024-02-06 03:30:24 TLS Error: TLS object -> incoming plaintext read error
2024-02-06 03:30:24 TLS Error: TLS handshake failed
2024-02-06 03:30:24 SIGUSR1[soft,tls-error] received, process restarting
2024-02-06 03:30:24 Restart pause, 16 second(s)
e^C2024-02-06 03:30:40 SIGINT[hard,init_instance] received, process exiting
"

Which region is the VPN in?

EU-regular 3

Changing and re-generating it should fix the problem

Not for eu reg 3.

yeah, i just fixed changing to EU regular 1

Is it possible to ssh into the AttackBox or Kali linux instances via the VPN ?

Yes

basically I add the pub part of a key I have to the authorized keys to the non root user and ssh that way right?

No.

You open up the i in the Attackbox and take the password and ssh in.

there is a password? I did not know

😅

#general message

Got It Thanks

OMG All this time I had to suffer the slowness of my net because I wanted to keep notes on my machine and swapping tabs or using the split screen was not helping.

so im at Agent Sudo and to get a file i need to finish i and anotherthing i need to ssh into the agent user that i cracked the name and password of but when i do ssh james@ip it ask for password i take in right but get permission denied (publickey)

helpp meeee

Hey guys im on the first lesson of intro to offensive security. Ive done the task and answered the question correctly but the section still remains uncomplete. Is this a bug or am i missing something? Any advice would be greatly appreciated

Can you try refreshing the page with CTRL + F5?

I just tried it and the task still remains uncomplete

I got it. It was the section that requires no answering. You have to click on the no answer for it to count as no answer. Lol sorry for alil waste there

Is it one of the network rooms?

That's what I suspected 😄

Nvm.

Lol

Hi, I am trying to connect to the redstone capstone challenge but for some reason the vpn won't connect

I have regenerated the ovpn file twice but the result is still the same

Do you get a error?

Which country?

Yups I get

```  and am from India

Hi

Some days when I connect to tryhackme servers with the script it fails at the MTU test.

The OpenVPN connection will work but I won't be able to access tryhackme vms.

Am I doing something wrong or tryhackme is?

Do you have any other VPN's running?

Which country are you in?

nops

just this one

Can you leave the room with the cog for 15-20 mins?

Russia

Cog ?

Russia may be blocking your access to the VPN.

Top right/

The vpn works

But I won't be able to access vms

left the room

So if it's failing at the MTU test what isn't working exactly?

This should put you in a subnet, when you re-join the room in 15-20 mins, regen your vpn file first, then download (I suggest deleting the others)

Thanks will try and let you know how that goes

Gave +1 Rep to @weary spindle (current: #2 - 1926)

Wait/

Hang on

I'm so dumb.

You still there?

yups I am

I came here to get an answer 😅

This doesn't happen every day. Yesterday everything was fine

Can you re-enter the room, download your vpn and connect?

I don't know what you're having an issue connecting to?

let me try

To the VM for the file upload vulnerability room

Can you ping it?

The ping doesn't go through either

Can you visit http://10.10.10.10/ ?

I get the same error again and isn't connecting

I can send a screenshot but I think it isn't allowed on this channel

You need to verify in order to send images

No I can't.

What is the VPN output?

got it

Failed to connect

.

That's not enough

Have you re-connected?

I did but still having the same issue

Ok, Can you copy and paste the last 4 lines of the output?

2024-02-06 07:54:32 net_route_v4_add: 10.200.116.0/24 via 10.50.113.1 dev [NULL] table 0 metric 1000
2024-02-06 07:54:32 Initialization Sequence Completed
2024-02-06 07:54:32 Data Channel: cipher 'AES-256-CBC', auth 'SHA512', peer-id: 0
2024-02-06 07:54:32 Timers: ping 5, ping-restart 120

You're connected 🙂

3 lines up from the bottom,

Can you confirm an output in a new terminal window with the following command?

ip a | grep "capstone"

ah ok sorry I think it is working

thanks for the help 🙂

No problem!

Have fun attacking my favourite network!

Thank you 🙂

Gave +1 Rep to @weary spindle (current: #2 - 1927)

Just one word fo advice, when you register with the ssh.

Write down all the details and save them, you won't be able to reset your own password.

ah ok I will, thanks for the heads up