#site-support

My Kali VM is you're saying?

tip: sometimes it doesn't show on the access page that you are conneceted, if you deploy a machine and put the machine IP on the browser and you can load the page, that means that you are connected

Thank you

btw where does it show that how much time you have got before you lose your streak?

I did this and it won't load.

But it says connected here

make sure that you are loading the room machine IP, not your own machine IP

i am actually having this exact issue

I am using the room machine IP. It's still not working.

This is still showing as red but on the access page it says "connected" for internal Virtual IP Address.

I have tried redownloading multiple different configuration files from multiple different VPN servers.

for me it's also showing red but I can access the room machine

have you tried another room's machine?

Yes, multiple.

I'm currently triyng to get it to connect to the "Ice" room.

I have terminated my machine and restarted it multiple times as well.

do you have the premium?

Yeah

the you don't need to access it via openvpn

you can just use attackbox

I am wanting to get used to using my actual kali machine or I would have just went that route.

turn the openvpn off

if you are using the page kali vm

Ignore the connected/vs not connect and the access machines stuff on the site, as scrubz said, it is not working as it should right now. Can you load 10.10.10.10 in your browser while the VPN is running?

It won't load. I am typing "10.10.10.10" in my web browser on my VM.

i cant even get the wreath vpn file to give me data

Can you type ip a in your terminal (while the VPN is still on) and share that output?

yeah it's been buggy for a while now, I'd try this #site-support message

Looks like you have multiple VPN instances running at once. Try to run the killall openvpn command and then start the VPN up again

sad times:'( VIP shouldnt be this buggy

Yeah a lot of network config files too, not really sure what's up with it

My Kali machine is also fully updated & upgraded.

Did you do what I said and run the killall command?

There should only be one tun interface on your kali

yeah if you have multiple instances running of openvp youll have to kill them

otherwise kali wont know which if to put 10.10.10.10 to

Okay I killed all of them.

Alright now you can start up the VPN again and see if it works

Try loading 10.10.10.10 in my web browser on my vm?

BOOM!

Let's freaking GO!

You all are wizards

Woo! Very nice

time to wait 30 minutes to see if i can get wreath to work

And still 0B when downloading now

same

i'll just do other room first, i'll try again after 1 hr

ater 30 mins i rejoined, got the same subnet, waited 20 mins downloaded the config anf still same issue @cold fog is there any way we can get this fixed?

Got the same issue with Wreath for a couple of days now. Tried leaving/joining the room, regenerating the ovpn, but I still get an empty/0B file.

Try waiting for a day after leaving. (The subnet should change)

Site down?

Up on my end

*problem loading page" here

I can open other sites

Weird

Can you show a screenshot?

Hi guys did you have any hope on downloading today? I still cannot.

hi, im stuck on tryhackme/welcome, clicking doesnt work, is it normal ?

What do you mean?

where can i show screen record ?

You need to verify your account.

i literally click "now choose your learning path:" cards at the bottom

and nothing happens

alr thx

Gave +1 Rep to @west chasm (current: #274 - 17)

it also happened to me, and when i tried to verify my account, it kept bringing me back to the screen of choose your learning path. I finally got it to work after logging in on my phone and choosing the path there

yeah doesnt work still

weird

ill try that

it worked thanks

np

anyway to add external modules if cd /root/.msf4/modules doesent exist?

Hello
I would like to ask for a coupon for premium access
Thank you

Hello i have this problem when i try to connect the tryhackme openvpn

idk how to fix it

anyone knows the solution?

Don’t run as root, it bad practice and can mess up tools

What country are you from?

mexico

im gonna try it without root

still the same problem

Im just leaning some XSS, and I saw that the tel: URI scheme gets through DOMPurify, and it seems like it is able to run arbitrary js code like alert() through <a id=ok href=tel:alert(1337)> then calling ok. Why does this work, and is there a way for my to sanitize this workaround?

hmm why didn't discord title changed yet

helppp haha

pls

i had other laptop before and it worked

Re-verify

maybe is for the version idk

Does Mexico blacklist UDP OpenVPN connections?

mm i dont think so

i use it before and it worked

Have you tried a different VPN server?

what rank is that?

0x11

goodness

0xB *

0x11 = 17.

https://tenor.com/view/rb-gif-3624281043814718262

I don't know if this has anything to do with the fact that it's now fixed, but just in case thanks a lot !

Gave +1 Rep to @glad oyster (current: #13 - 472)

Hi guys... Does anyone know why OpenVPN gives me this error when I try to connect?
TLS: Initial packet from [AF_INET]XXX, sid=8ccecdd2 b727389c 2024-02-09 21:03:58 VERIFY ERROR: depth=1, error=self-signed certificate in certificate chain: CN=ChangeMe, serial=4253972... 2024-02-09 21:03:58 OpenSSL: error:0A000086:SSL routines::certificate verify failed 2024-02-09 21:03:58 TLS_ERROR: BIO read tls_read_plaintext error 2024-02-09 21:03:58 TLS Error: TLS object -> incoming plaintext read error 2024-02-09 21:03:58 TLS Error: TLS handshake failed 2024-02-09 21:03:58 SIGUSR1[soft,tls-error] received, process restarting 2024-02-09 21:03:58 Restart pause, 5 second(s)

Which country are you in?

Which server are you trying to use?

Thanks... I've solved switching region

Im just leaning some XSS, and I saw that the tel: URI scheme gets through DOMPurify, and it seems like it is able to run arbitrary js code like alert() through <a id=ok href=tel:alert(1337)> then calling ok. Why does this work, and is there a way for my to sanitize this workaround?

hi in attackbox it do me this for the crsf attack:

please help me before the attackbox go awxay please

The Attackbox really uses port 80 so we can't do anything about it unfortunately. Have you tried to use another port for the attack?

like wihch?

Whatever port you want

1234 would work. Unless you really need port 80

but the website we need to attack will correctly send me at the good port?

Which room are you trying to do?

https://tryhackme.com/room/owasptop102021#

T22

Use another port

If you specify it, yes

and the server of attacker is "localhost"?

because i dont see anywhere in text the ip or hostname of attacker

ho all good

Hey guys. I have an issue with the red team capstone network. As I am connected successfully with the vpn configuration file of the network, I still don't have access to any of the machines. It's like they are inactive or something. I have tried everything, resetting my "mailbox" with the x.x.x.250 endpoint, regenerated the vpn configuration file many times over. But still no luck. Is there a way to solve this issue?

Your target was 10.10.229.34. That's what was running the website.. Your attack box was 10.10.157.126 (based on your prompt in the screenshot above).. That's where you ran netcat. Your pycurl error is trying to connect to the target, when it should be trying to connect to the attack box where the listener is.

Hey guys I was messing with my new pineapple but I had left it unfinished with the ip still at the stager phase. When I went back in there was a bunch of unknown files and changes I hadn’t made. Is it possible someone took advantage of that and hijacked the signal? I’m new to this so please.. spare me lol if that’s the case and they have the MAC address of the machine is there a way I can tune it in a way where they can’t get access? Like a hard reset? Or reconfiguration?

Fell feee to message me for help

Are you referring to WiFi Pineapple? If so, better post this in the #infosec-general or #general channels.

Indeed sorry about that I’ll make sure to post there thank you

No worries. Your question will simply get more traction or feedback in those channels.

yes I mix all things of thé attack box ahha

why do i get a white screen after i turn the machine?

only AttackBox works fine

Going through the first room. And fakebank.com is not a working site.

1. it is
2. You're using the wrong machine.

fakebank

fakebank

I am not using AttackBox.

you're using the split screenmachine?

I am using a local VirtualBox.

Oh.

In that case you're attacking a real website.

I'd uh, stop.

Do I need to use AttackBox for every room ?

Or just for the first room ?

No, but a few rooms have a sandboxed machine.

Please use the Show split view

I added 1 hour. Was that wrong ?

not at all 🙂

I am just worried that I might have used 1 hour of some hours that I have left. Is there any limit for how many I can add ?

6 hours. 🙂

But if you're not using the attackbox it won't matter, the machine starts (green button) can be deployed as many times as you like.

Ok. I won the first game.

On my local machine - u is not a working flag.

I've advised you not to use your local machine for this room.

I am already done with this room. It was quick.

I need to use "gobuster dir". Where do I download the wordlist ?

Which wordlist?

I need to use a wordlist for gobuster. A website directory wordlist.

SecLists has 'em

I found it. It is in usr share wordlists dirb common.txt.

Found it on kali.org tools gobuster.

How do I exclude status codes in gobuster search ?

Ok. I am misunderstanding something. Sites are configured to always respond with a specific status code.

Hello, Am I the only one having trouble trying the machine on Volatility? Whenever I type in the password it keep denying the access? I tried rerun the machine still the same, what am I doing wrong? :/

Can you take a screenshot and show me?

I'm trying to get screenshot but it's not working, but as it shows in the room IP Address: MACHINE_IP, I tried yo connect to the IP address of the machine showingin the room but it will show " Premission denied (publicket,password) after typing the password coiuple of times

you need to start the machine, probably on task 1

And I was wondering why the Active Machine Information wasn't showing up........ Thanks for the help it works now, guess the lack of sleep was what im doing wrong loll

Gave +1 Rep to @weary spindle (current: #2 - 1946)

Trying to go through the Linux Fundamentals - Part 1 with some students of mine yesterday. Ran into an issue that didn't seem present earlier in the week. When using ls command, I'm supposed to see 4 directories: Important Files, My Documents, Notes, Pictures.

Instead I'm seeing access.log, and four directories: folder1, folder2, folder3, folder4. Anyone have an idea if this is some kind of issue on the VM?

No, there is a strong chance you were in the wrong machine.

Was the machine a GUI or CLI?

CLI... And actually I just figured it out. Apparently the key to finding a stupid mistake is to admit others that you haven't been able to figure it out. Total error on my part and the part of my students.

Hey all. I'm logging off for the day. But wanted to ask quickly to see if anyone had any issues connecting via OpenVPN today? I haven't had issues in the past. Just wanted to see if it was just an issue with the network today before I bother troubleshooting later

Hey all - I am also experiencing penvpn issues.... can't connect... "TLS Error: TLS key negotiation failed"...

^ Server 52.4.198.155

Do you also happen to be US Regular East 1?

Yeah I had that and then switched to the US West ovpn server

Their Access page showed US Regular East 1 as 'Online' but it seemed something wasn't working

@zenith spruce I am... going to switch now...

@woven drum thank you!

Gave +1 Rep to @woven drum (current: #1993 - 1)

Thanks guys. Keep me posted. I'll check it out when I get home tonight

Could be worth reporting

Which country are you in?

Hey actually I'm having the same issue how did you solve that

The example noted shows you what to do, but isn’t an exact replication of the files and directories available.

So you need to open each folder and find the one with the file and if you input its name, you get the correct answer.

Still not working for US-East? (US-West does work, though; even after re-generating US-East)

$ sudo openvpn ../../adamSmooch.us-east.ovpn
2024-02-10 13:14:00 Note: --cipher is not set. OpenVPN versions before 2.5 defaulted to BF-CBC as fallback when cipher negotiation failed in this case. If you need this fallback please add '--data-ciphers-fallback BF-CBC' to your configuration and/or add BF-CBC to --data-ciphers.
2024-02-10 13:14:00 Note: cipher 'AES-256-CBC' in --data-ciphers is not supported by ovpn-dco, disabling data channel offload.
2024-02-10 13:14:00 OpenVPN 2.6.3 x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] [DCO]
2024-02-10 13:14:00 library versions: OpenSSL 3.1.4 24 Oct 2023, LZO 2.10
2024-02-10 13:14:00 DCO version: N/A
2024-02-10 13:14:00 OpenSSL: error:0480006C:PEM routines::no start line
2024-02-10 13:14:00 OpenSSL: error:0A080009:SSL routines::PEM lib
2024-02-10 13:14:00 Cannot load inline certificate file
2024-02-10 13:14:00 Exiting due to fatal error

Folders1-4 are correct. It’s just not going to match the example. I’m guessing so you have to actually do it instead of seeing the answers by just looking at the sample.

Make sense?

I'm having issues connecting to the OpenVPN to THM via Kali Linux. I've tried restarting my machine, restarting my laptop, and reinstalling the OpenVPN package (I have OpenVPN version 2.6.7). When I use ping, it works with ~50-80% packet loss, and I can access webpages.

have the same issue

but for EU-Regular-3

That one is broken

oh ok, i'll try the second one

is the EU - 2 broken too ?

No,

Which country are you in?

ok the EU isnt working but EU 1 does

France

EU 1 looks to work atm

I GOT IT TO WORK!!!!!! go here and regenerate the config file, then REDOWNLOAD the config file https://tryhackme.com/r/access

same, just switched the server x))

sorry for the caps, I'm just excited bc I've been trying to solve it for a while and forgot that you can regenerate the config file

Yeah when you regenerate a config file for us east it's a completely empty file

Hey, guys.
Maybe someone can tell me what the problem is
Very often machines run 1-2 minutes and switch off for 5 minutes. Some more, some less.
Tell me what to do to solve it
Thx a lot

I'm seeing this issue too, however enumAD is showing up but not exploitAD

are you guys still having this problem? I tried regenerating East-reg-1 and still cant connect. Ended up running the THM VPNtroubleshooting script, said to just regenerate the file. No such luck yet

Hello

Pre Security path, Linux Fundamentals module, Linux Fundamentals 3, Task 2

Since I cannot demonstrate with screenshots, the task says to connect to an SSH session.

In the previous Linux Fundamentals 2, connecting via SSH to the TryHackMe active machine was okay using my own environment: configuring OpenVPN and using the SSH commands were good and I could perform the activities normally.

However, in the Linux Fundamentals 3, and particularly in Task 2, the authentification is successful but the SSH connection gets stuck in the middle. Various results are given, and I will send an example.

┌──(vm㉿vm)-[~/Desktop/thm]
└─$ ssh tryhackme@10.10.203.5
tryhackme@10.10.203.5's password:
Welcome to Ubuntu 20.04.5 LTS (GNU/Linux 5.15.0-1021-aws x86_64)

• Documentation: https://help.ubuntu.com
• Management: https://landscape.canonical.com
• Support: https://ubuntu.com/advantage

System information as of Sat Feb 10 23:28:50 UTC 2024

System load: 0.0 Processes: 101
That’s it, and it gets stuck there. No command prompt is introduced.

(the IP address was in Task 2’s instructions, not generated automatically)

I’d appreciate it if anyone can help me resolve this technical issue, knowing that a friend of mine also experienced this issue. Thank you in advance

Is anyone else getting errors using the ovpn file with the newest version of openvpn

Hey all, does anyone have issues regarding about the OVPN

just recently renewed and downloaded the .ovpn file, seems like it is not quite working at the moment

I guess its down for most people are you using us-east?

Which machine is this?

Have you tried to switch to another server?

From which server are you downloading your ovpn file? Have you tried using the VIP servers?

You'll need to verify your account to do so.

US east was not working for me this AM. I didn't troubleshoot anything yet assuming it was a temporary issue

Yeah that’s fair

It sorta fixed it self, I assumed it was my personal connection but yeah all is good mate

Yeah I switched to us-west-vip and regenerated and it worked fine. It seems to be an issue with the ovpn file using a deprecated format

The files coming out for US-East (regenerated this AM and again just now) seem to be completely missing the <cert> and <key> sections...??
(Screenshots vs. US-West: diff --side-by-side username.us-*)

wonder how that happens

expired cert? busted build-script?

Yeah those are not on our control sadly

Can't connect to any server with openvpn

Hey all, I can successfully connect to THM using OpenVPN and can ping 10.10.10.10, however I cannot access the web interface of the module I'm working on (OWASP top 10, task 12). "Navigate to http://MACHINE_IP:86/console..." I'm assuming it means my given IP, but when I enter it in on the web browser it gives me a "cannot connect" error. I can ping my given IP too. Thoughts?

Use the IP given when you start the VM from the task

machine_ip is not your IP or the attackbox IP

I have a feeling there should be an IP there- I did a few of the other modules last night and it gave me an IP to work with, but going back to the other modules it now says HTTP://MACHINE_IP similar to the module I'm on.

There's a big green button that says START MACHINE

you'll get a banner across the top of the page that will have the VM IP and time to live. Use that IP.

omg thanks! I'm so dumb haha

Appreciate you!

hello. is the openvpn broken for anyone else? things were working fine yesterday, today i cant connect on either of my machines, if i delete and redownload the opn file, it says something about remote connection not selected

"remote option not specified"

us east server

Some of us chatting yesterday were having issues with US East. I haven't been on yet today, but I plan to switch servers

i tried us west and still same errors

hi just started my adventure today, and stuck on my module about Introduction to Defensive Security as my answer even if its correct cames up as incorrect

What is the question and answer you're attempting?

@weary spindleAnswer the questions below
Which team focuses on defensive security? Answer seems to be after read whole module that the Blue team is the one what focuses on defensive

sorry for mistakes english is my second language

@wraith cliff @woven drum following up on yesterday's conversations. I switched to US-VIP-West which seems to be working fine

Hello, so as I verified my account, I’d like to follow up the problem yesterday

I remind: Pre Security path, Linux Fundamentals 3, Task 2

Earlier, it worked fine

Yesterday, accessing the machine with the provided IP address and credientials were not possible

Today, I tried again, accessing them was possible earlier, and now it displays the same problem again

Are you using IP 1 or 2?

1

2 is in the picture and is used as a reference

Oh!

I know you're issue.

Disconnect from the SSH.

sudo ip link set dev tun0 mtu 1200

Run that command, then re-connect to the SSH.

Few moments please

It worked! Thank you so much!

Ok.

Since this happened two seperate times.

Can you please exit the ssh and close the VNP connection.

Then sudo nano VPNfile.ovpn

ABOVE <ca> and you insert tun-mtu 1200

Okay, done

Save it.

Done

sudo systemctl restart openvpn

Then reconnect to the VPN

Done, now I shall reconnect to the SSH session again, right?

Yes 🙂

It works fine now after connecting to the SSH session, thank you so much; but if you permit me, could you please explain what we meant by defining tun’s mtu to 1200?

In other words, what is tun? Is mtu the total data size?

The packets communicated between either machine was too large on each transaction, so it some parts were being missed.

Think of it as placing a box in your letter box.

TUN is short for tunnel.

Using the MTU command, made the packets smaller so there is less sent in each transaction ensuring that they're all picked up.

Essentially, it's reducing the box to the size of the letter.

tun == tunnel == interface used for vpns
mtu == max transfer unit == the largest size your packages can be while being sent through this interface
meaning if it is to large it sometimes fails for weird reasons
lowering the max size increases the amount of packages sent which help on unreliable connections

together with what scrubz said

Also if you like moving forward, you don't need to hide your active machine IP, THM can see which machines interact with which (our VPN IP is bound to our account) this will help with troubleshooting (especially by me, as I like to connect to the machine for issues like this)

That being said, it's completely up to you. 🙂

I see, my apologies 😅
Makes a lot of sense and I appreciate your explanations, so if I need to regenerate a new OpenVPN file to use for TryHackMe tasks from my own environment, I need to add the name line tun-mtu 1200 every time above <ca>, right?

Tbh, I'm not sure.

As it's an issue that can effect you, and can't.

for example, I've never needed to change my MTU size, but others have only had to change it once, without editing their main config file.

but it's a good thing to remember. 🙂

It’s all clear, thank you so much for your time for both of you to help troubleshoot the issue! If there is any further problem while using THM then I will post it in this server. Thank you so much again! 😀

No problem!

Happy hacking!

Thanks Scrubz tun-mtu 1200 in the VPN File works perfect

Any idea why I cant connect to openvpn. It has worked in the past but all the sudden stopped working. I redownloaded the config file and this is what I get when I run it: 2024-02-11 16:05:47 VERIFY OK: depth=1, CN=ChangeMe
2024-02-11 16:05:47 VERIFY KU OK
2024-02-11 16:05:47 Validating certificate extended key usage
2024-02-11 16:05:47 ++ Certificate has EKU (str) TLS Web Server Authentication, expects TLS Web Server Authentication
2024-02-11 16:05:47 VERIFY EKU OK
2024-02-11 16:05:47 VERIFY OK: depth=0, CN=server
2024-02-11 16:06:47 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
2024-02-11 16:06:47 TLS Error: TLS handshake failed
2024-02-11 16:06:47 SIGUSR1[soft,tls-error] received, process restarting
2024-02-11 16:06:47 Restart pause, 5 second(s)

Something seems broken in the AWS modules - all the rooms are listed as free (not VIP, as with other sub-required rooms), but clicking through lands on the buy the AWS-package page.

VIP would be a more accurate jewel than Free
https://tryhackme.com/module/introduction-to-aws

What type of issue are you experiencing?

When you say can't start it what do you mean, what are you trying to do and what are you expecting it to do?

I cant generate the vpn as seem here

also it been resetting for 4 days now

I started paying for THM just to have access to these exact rooms and in a week it will be a month and I still havent get access to these rooms

So that happens when you try to download the vpn? I can't seem to replicate it

Have you tried a different browser or maybe trying to see if same thing happens when incognito?

better yet, I trying it in a different computer

but sure let me try with incognito

no, nothing

is just broken

Can you check the console and see if it gives you any errors there?

when trying to download it

Not sure if it could be causing it but maybe try disable your adblocker and refresh again and retry, if not then it's something to do with your account

I am trying to complete the network services track but I got stuck in the smbclient exercise, When I try to connnect using smbclient //10.10.194.206//profiles -U Anonymous I get the a prompt for a password. I tried to just click ENTER but I get the error tree connect failed: NT_STATUS_BAD_NETWORK_NAME

Only last thing I can think of is if you have a VPN running that might be causing it to block it or not

Have you tried leaving the room and rejoining? Should put you in a new DC

Can you try reducing the number of forward slashes such that:

smbclient //10.10.194.206/profiles -U Anonymous

Also, you are connected to THM OpenVPN while trying to connect to the said service?

In the cog or settings button, usually there are three options - Write Ups, Reset Progress and Leave. Do you not have the said option?

Yes, leaving the room and re-joining it after 15-30 mins should move you to a different subnet as Blackout has mentioned.

In the terminal where the OpenVPN connection is open, the last line for me is "Timers: ping 5, ping restart 120". After 2-3 minutes i get "[sever] Inactivity timout (--ping-restart), restarting" and "SIGURSR1[soft,ping-restart] received, process restart" then the connection is re-established and it continues like this . Is that normal?

gobuster is interrupted by this and so is burpsuite

Yes, it worked. Thanks!

Gave +1 Rep to @ivory spruce (current: #16 - 411)

Have you tried submitting a ticket to THM Support?

yes I did

Hello, anytime i download my vpn config file, It's always empty

Yeah.. not certain though if it is caused by your ISP. Have you tried to reconnect your OVPN to see if the issue would persist?

This is for which network?

All network tbh

yes, several times. The problem remains the same. Although that has only been the case since today.

What VPN server are you using?

Yesterday I tried to do 'breachingAD' so i downloaded it's vpn but it was empty, regenerated, still empty, so i left it

SO today, I want to do anormal box, I tried to connect to my normal EU region VPN, and it did not connect, so i deleted and tried to regenerate only to keep downloading a empty file for that too

EU-Regular-1

if is empty try to download it from your host not kali

Kali is my host

I'm using kali as a daily driver

try downloading it from a different pc, i know it weird but i had this problem before and thats how i fixed it

i think thm will have to do some heavy maintenance

tried now with my phone and got successful with normal VPN

But I'm getting download failed with breachingAD

Thanks mate @topaz iron

Gave +1 Rep to @topaz iron (current: #687 - 5)

Can you try to EU-Reg-2 perhaps?

welcome, no problem. Yeah now you will have to find a way for the AD. but idk, im having problem with ad myself too

4 days now trying to do a room

Reset?

I just tried EU-VIP-1. This works without any problems.

no, lateral movement. i did reset last week

oh my god, my problems with FTP and NFS are gone now too. Everything is running smoothly now. It was probably all due to the EU Regular 1 in the last few days.

I was already so frustrated that I started looking for another platform. But now everything works great on the other server. 😄

Glad you have it sorted.

I can't get connected to VPN any Idea why ?

What VPN server are you using? If its EU-Reg-3, I suggest you try other servers.

An hour ago, my premium subscription expired, so I repurchased it. After downloading the openvpn file, it's still empty. How long does it take to use a VPN?

• Successful repurchase
• regenerated(US-East-Regular-1)
• file download & it is empty

Have you tried reusing your old ovpn file?

Yes, I've tried both the old file and the regenerate file.

Have you tried any VIP servers (considering you're a subscriber)?

i have tried download any vpn servers ovpnfiel. but all are empty inside.

Is it because time has passed? EU-VIP-2 was able to download the file and connect successfully. Thank you for your big help.

Gave +1 Rep to @ivory spruce (current: #16 - 412)

Hi team, I need your help with the "Python for Pentesters" room. How can I upload a screenshot in this chat to better describe the issue I am facing?

You're verified, to just copy and paste using Windows snip n sketch.

We share x, greenshot, flameshot etc

Nevermind, I figured that out already !

Hello, in lateral movement and pivoting room, my attack box do not have « lateralmovement » interface.. so I can’t configure the DNS

Hi team, I've tried to solve the Splunk based Benign room. In the Task2 the 9th question asks for a flag. As the logs doesn't contains such information, I've tried to check the url on contolc.com. But it states as 404. I've checked writeups on the net and a saw, my idea was correct: I should have found the information on controlc.com. So you should update the room. Thanks

Lost my daily streak count. I have been trying to get to 90 days and yesterday I was at 59 and today it read 3. It was not that I missed a day and went to zero. Did this happen to anyone else and who do I need to contact to get it fixed? I do not see any email address or contact info in THM other than social media.

Hi ! When I'm training on my ubuntu machine, sometimes it does this when trying to access the target on burpsuite, do you know how to fix it ? (this is the burpsuite browser)

You're using https, you need to use http.

yeah, but when change to http, it automatically change to https, I don't get why it act like that

If its firefox you need to change the setting.

it's chromium integrated browser

Switch to Firefox with foxyproxy then

i would prefer to find a way to fix this on brupsuit integrated browser

You'll have to drop an email to THM Support and ask them politely to restore it.

Did a quick Google and found this -

https://forum.portswigger.net/thread/burp-embedded-browser-chromium-b0e81734

Yeah, already searched, this is not the same issue, and all the support is for pro version only. If someone already experiment my issue and succeed to fix it, please tell me

The proposed solution by @weary spindle is the ideal one though.

Its doing the same for me, its annoying as hell

if you find the fix, keep me updated 😉

I've done everything I could, seem like Firefox is having a seizure today. All websites are automatically HTTPS redirected. The setting of https-only mode is not even enabled.

same for me

Are you in the vulnvuniversity room?

nope

I had that problem but i used the port number associated with the webserver during my request, now it works

does someone has time rn ?

hello guys, am i the only one having problems with the reset password link ?

hi all, I wonder if one can use the Kali's GUI VPN configuration tool to connect to the THM VPN (instead of running the "openvpn" command in the terminal window)?. I've imported the settings, but the connection doesn't work for me. Maybe it's just me as I'm running Kali in a VM and my eth0 is a virtual adapter...

If you do , you need to turn off the setting to route your traffic through that.

Really, the CLI is easier and better.

Can you elaborate?

the access page also instructs you to^

on email i recive the link to put my email in again not for the password reset

like a loop

thanks, I appreciate that

Gave +1 Rep to @weary spindle (current: #2 - 1956)

I'm aware, I just like to have a tidy and clean environment around 😉

You shouldn't surprised when it doesn't work then 😁

Pro tip: You're going to get into much messier situations, especially with tools on Linux.
Ensure you are reading all of the instructions provided for the best experience both in and outside of TryHackMe! 😄

I do, but it's also a matter of small, constant improvements, isn't it? 😉

Hey @dusty dagger Are there any browser errors?

Right click -> Inspect -> Console

Allow attribute will take precedence over 'allowfullscreen'.
60Third-party cookie will be blocked. Learn more in the Issues tab.

Any idea why the openvpn connection would stop working all the sudden when I move houses and am connecting to a different router? It just gets stuck on the verify OK:
2024-02-12 11:36:32 --cipher is not set. Previous OpenVPN version defaulted to BF-CBC as fallback when cipher negotiation failed in this case. If you need this fallback please add '--data-ciphers-fallback BF-CBC' to your configuration and/or add BF-CBC to --data-ciphers.
2024-02-12 11:36:32 OpenVPN 2.5.9 x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] built on Sep 29 2023
2024-02-12 11:36:32 library versions: OpenSSL 3.0.2 15 Mar 2022, LZO 2.10
2024-02-12 11:36:32 Outgoing Control Channel Authentication: Using 512 bit message hash 'SHA512' for HMAC authentication
2024-02-12 11:36:32 Incoming Control Channel Authentication: Using 512 bit message hash 'SHA512' for HMAC authentication
2024-02-12 11:36:32 TCP/UDP: Preserving recently used remote address: [AF_INET]52.4.198.155:1194
2024-02-12 11:36:32 Socket Buffers: R=[212992->212992] S=[212992->212992]
2024-02-12 11:36:32 UDP link local: (not bound)
2024-02-12 11:36:32 UDP link remote: [AF_INET]52.4.198.155:1194
2024-02-12 11:36:32 TLS: Initial packet from [AF_INET]52.4.198.155:1194, sid=0bc561cf f96acee6
2024-02-12 11:36:32 VERIFY OK: depth=1, CN=ChangeMe
2024-02-12 11:36:32 VERIFY KU OK
2024-02-12 11:36:32 Validating certificate extended key usage
2024-02-12 11:36:32 ++ Certificate has EKU (str) TLS Web Server Authentication, expects TLS Web Server Authentication
2024-02-12 11:36:32 VERIFY EKU OK
2024-02-12 11:36:32 VERIFY OK: depth=0, CN=server

Which server?

US-East-Regular-1

Can you try a different, closer server?

That one is the closest to me but I can try west and see what happens

That worked! thank you!

You should have received an email from an employee:)

Thank you so much.

Gave +1 Rep to @bronze vale (current: #6 - 1150)

HEy, did it work?

yes

Hello no body can help me?

i need help too

I want to get into cyber sec but the website wont accept my card

does it accept debit cards or only credit cards ?

should'nt make a difference or ?

Accetps debits too

Which country are you in?

germany

why do you ask ?

I already tried a second time so I didn't messed up with the form

what do you say ?

I try anoter time

Im currently more in web development and I wanted to learn about cyber security to make my potential website safer

and maybe get a job in this direction in the future

so is the US-East-Regular-1 still not working for anyone?

still not workig

I tried chrome and firefox

weard

Im using west now

now I gotta get used to a new IP

😦

I came here to ask about this. Keep getting a bad cypher error with openvpn

I'm gonna try west too

yea Ive been getting it since Friday

will probably be fixed this week

does the card have to mach specifik rules to get accepted

like a specifik bank?

us east still not working for me

getting a connection timeout error when try to connect with openvpn

i might have clicked a button to update openvpn... has it not worked since the update?

openvpn version 3.4.7

Huh? CLI?

no, the macos app

You need to use the cli on macos, as per the access page

https://tryhackme/access

everything had been workingnfine for months... till friday/weekend sometime.

Mhm it’s not recommended to use the Connect application

It’s also harder to debug.

ok... ill learn how to do it the cli way.

It’s all on the access page :)

i'll look harder and read better 🙂 thank you

Gave +1 Rep to @bronze vale (current: #6 - 1154)

is tickets ever going to come back?

Depends if they chose to do so when they launch the DevSecOps path (as they may come up with another promo).

Hello,
It’s been 3 days I am asking for help because in lateral movement and pivoting room I don’t have « lateralmovement » interface. It’s impossible to configure the dns, I can’t move forward and nobody answer me since 3 days
Thank you

Hi. Could someone please assist with this when available? My current account doesn't seem to be updating since I tried to verify the new one either, so if the discord token could be revoked that would be great. Thanks

I've forwarded this onto the mods. They'll reach out when available 🙂

Can you try and set the interface name on line 2 to lateralmovementin the openvpn config file?

Brilliant, thanks for your help!

Actually « lateralmovementandpivoting.ovpn » file is empty

Ahh that’s a problem. Can you go on the access page and regenerate? See if that profile works. If it’s blank, can you share an IP address of a machine on the network map so I can forward this on?

Even for the attackbox? I thought Access page is just for connect from our personnal computer/VM ?

Ah, so that is correct for machines in rooms. For normal rooms, the AttackBox is on the same network, so no VPN is needed. However, for network rooms, they need their own VPN file as they're on a different subnet, even on the AttackBox (the attackbox automatically pulls the VPN file from the access page).

Ok thank you, so if a regenerate the config file, it will sync automatically in my Attackbox?

You'll need to re-deploy the AttackBox as the pull happens at boot. You might be able to force the pull again without re-deploying but I'll need to check my notes on it first

No no don’t waste your time I’m reloading my AB

Same, config file still empty

😦 can you share an IP of a machine on the network map of the room. I need this to identify what subnet you're on and forward internally

10.200.78.101 : adress of the THMDC

Thank you:)

But I don’t have any issu with the network, from my VM I managed to join the network and set up the dns 😕 it’s just that I prefere to use the attackbox for this room and it’s weird this interface won’t show up

Hello the DNS link demo.uploadvulns.thm points to video youtube...

Did you read the red-text box at all?

yeah, yes, so people modify the link?

...

Can you read the text box again please.

sorry thanks @weary spindle 😅

Gave +1 Rep to @weary spindle (current: #2 - 1957)

the user cannot read 😎

I'm glad you said it

I'm trying to connect to the VPN but my saved profile isn't working

Has the server hostname changed recently?

Not at all.

Which server are you using?

Where do you live?

What issue are you receiving?

Server is 52.4.198.155 and I'm on the east coast

I meant VPN profile.

Is there a way to export my openVPN profile?

You dont need to export it, you just need to tell me which profile you downloaded from the website and which OS you're using it on?

I'm on Windows 10 but I downloaded this profile so long ago I don't remember the exact page I got it from

https://i.imgur.com/2x8074j.png

Are you using the OpenVPN connect, or the communties download?

OpenVPN Connect

Ah, can you download the communitites version?

communities download

Where can I find it

#general message

Couldn't find it in the pinned messages

It's not in pinned messages

That link I posted is linked you to my message with the link for the URL

So I've been having issues with Openvpn for the past week. I have created a new config file, uploaded it (I've done this a couple time). Uploaded it to the Windows community version, Kali version, and ParrotOS version. All of which are giving me :

TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
TLS Error: TLS handshake failed

Which server?

US-East-Regular-1

Can you try a different server?

Yep, report back if different

@weary spindle Just installed the version you posted and downloaded a new config file and this is the error I get from it

Tue Feb 13 10:35:09 2024 OPTIONS ERROR: failed to negotiate cipher with server. Add the server's cipher ('AES-256-CBC') to --data-ciphers (currently 'AES-256-GCM:AES-128-GCM') if you want to connect to this server.
Tue Feb 13 10:35:09 2024 ERROR: Failed to apply push options
Tue Feb 13 10:35:09 2024 Failed to open tun/tap interface

US-West-VIP-1 is working for me. Thank you @weary spindle !

Gave +1 Rep to @weary spindle (current: #2 - 1958)

Which server?

Excellent.,

18.202.168.160 1194

That's what's listed as remote in my config file

Which config file did you download?

In the top banner where it shows the IP of your active machine

Hi everyone,

I've been encountering a challenge with my TryHackMe account, specifically when connecting to new machines. When I connect to the allocated IP address, I can access resources on all other available ports except for port 80.

I'm reaching out to the community for some guidance on what might be causing this issue and how I can overcome it. I've tried troubleshooting on my own, but the problem persists.

Any insights or suggestions would be greatly appreciated.

Can you please go to https://www.tryhackme.com/r/access and download a config pack.

Do you get an error at all?

No error, but it just loading and not able to access web page on port 80

Vm or Attackbox?

I picked the east coast server and when I try to connect with this it just says connecting to config file name has failed

VM

Can you try a different one?

Can you try this command in a terminal sudo ip link set dev tun0 mtu 1200 wile the VPN is running, and try again.

Thx the west coast server works

Gave +1 Rep to @weary spindle (current: #2 - 1959)

what exactly happening is that for the same challenge, there is a service is running on port 5000 which is accessible but not able to access on port 80.

Can you give me the exact name of the one that didn't work please?

This message wasn't meant for you.

#site-support message

this one was.

US-East-Regular-1

Thanks a lot, Your support resolved my issue. Grateful for the quick assistance!

Gave +1 Rep to @weary spindle (current: #2 - 1960)

If this happens again.

you can edit your VPN config file to add tun-mtu 1200 to your config

Sure

hey, sorry for the late reply, has someone gotten back to you about this?

Hi. No worries at all, but no not yet. I tried to verify my new account last week thinking it might transfer across but the bot said it's already in use on this account. This account then looks to have stopped sync'ing with the site as my level didn't update. Ideally I'm hoping you can help to just revoke the token from this account compeltely and then I can verify on my new one? Thanks

Gave +1 Rep to @stray cove (current: #12 - 541)

just to be clear, you want to unlink this current discord account, yes?

Yes please 🙂

aight

it should be done

Perfect, thanks very much for your help 🙂

cheers

I too have been having relentless openvpn issues. With US East, US West, and even EU Reg. With the US servers I keep getting this bad cipher error. EU was an unsupported protocol or something along those lines. I put in a ticket but I'm sure theyre getting swamped with them seeing as I'm not the only one

Hi, I've been getting issues connecting to openvpn since yesterday, is there any way to solve this issue? Mine is only supporting with US East but i tried with the US West as well, but no luck so far!

2024-02-13 12:02:44 Note: --cipher is not set. OpenVPN versions before 2.5 defaulted to BF-CBC as fallback when cipher negotiation failed in this case. If you need this fallback please add '--data-ciphers-fallback BF-CBC' to your configuration and/or add BF-CBC to --data-ciphers.
2024-02-13 12:02:44 Note: cipher 'AES-256-CBC' in --data-ciphers is not supported by ovpn-dco, disabling data channel offload.
2024-02-13 12:02:44 OpenVPN 2.6.7 x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] [DCO]
2024-02-13 12:02:44 library versions: OpenSSL 3.0.11 19 Sep 2023, LZO 2.10
2024-02-13 12:02:44 DCO version: N/A
2024-02-13 12:02:44 OpenSSL: error:0480006C:PEM routines::no start line:Expecting: CERTIFICATE
2024-02-13 12:02:44 OpenSSL: error:0A080009:SSL routines::PEM lib:
2024-02-13 12:02:44 Cannot load inline certificate file
2024-02-13 12:02:44 Exiting due to fatal error

Try a different server.

Yeees, it worked as EU-Regular-1 ! Thank you!

Anyone elses terminal on the attackbox being extremely slow right now? I cant even do a simple port scan without it taking more than 30 minutes

Hello, I'm on linux fundamentals part 2, task 2, When I try to ssh and use this command - ssh tryhackme@(ip of the machine ur using) I get in but when they ask me for the password they literally say on the task the password is "tryhackme" but I type this everytime and it's not the right password! Please help!

Not sure if I should put this here or in #room-help -- I'm in the Burpsuite Basics room, and the homepage for my attack box won't load. I have the foxyproxy enabled, and Intercept is on under the Proxy tab of Burpsuite -- and I know the class mentions that web pages will "hang", but I'm looking at about a 15 minute load time at this point. I've killed the attack box & restarted it a couple times.

I'm tempted to update both firefox & burpsuite as there are more current versions than what's on the attack box, but that means the new versions won't be 1:1 with the class instruction...wondering if that's my best path forward?

Hello. I can not connect to the tryhackme server with openvpn. My openvpn version is 2.6.7 . Note : sed -i 's/cipher AES-256-CBC/data-ciphers AES-256-CBC/' *.ovpn I changed the cipher to data cypher but still not working. And the message is showing that Protocol options: explicit-exit-notify 3. Hope anyone can help.

I think you're using the wrong ip.

Which server and OS?

If foxyproxy is on, you need to forward the request in burp

Kali linux. I can not join any server

You're also using the wrong ip.

You need to start thenmafhine with the green start machine button.

The ip you're placing in the browser is for the attackbox

Which server did you download?

EU-Regular-1, EU-Regular-2,In-Regular-1. I tried all of that

Which country do you reside in?

I reside in Bangladesh

I live in Bangladesh

when I use "view in full screen" and then "exit split view" for attackbox (to have text in the one display, attackbox in the second), I lose info about time remaining.. after that when I click to "show split view", it shows 2 hours of remaining time even its not correct.. is possible to fix this bug? and also, what should I do to extend time without reopen split view?

hi guys - any idea why i dont have the upload file option in this discord channel?

You need to verify your account

aha

thank you!

Hi , where can i find the support channel for docker ? I have some questions about the path ?

Which room?

Container vuln

hello! I just finished aoc2023 and I can't seem to get my certificate after clicking on it, I tried to get it on 3 different occasions but nothing, does it have another thing I need to input?

problem solved, didn't allow pop-ups

The channel for it was recently archived which you can find in the #release-help-archives or at least post it in the #room-help channel.

I'm on task#4 of
Active Directory Basics lab
and when I'm trying to reset the password and run another powershell command I'm getting access denied which is the complete opposite of the lab objectives. Here is the screenshot.

Is there a way I can attach image.

@wicked dove ⬆️ follow instruction in said link to be able to post images here

one time I unjoined waited about 2 hours and joined back

but results are the same

did you start powershell as admin???

does not look like it and you need to do that

@weary spindle I figured it out. Thanks so much!

Gave +1 Rep to @weary spindle (current: #2 - 1963)

Hello I need help please my server is not working, can somebody help me ?

is this for TryHackMe?

yes

Which server? 🙂

hold please I'm taking a screen of it.

hold on i'm taking a screenshot of it.

I can not uplaod the screenshot.

You need to verify

but anyway, I'm working on the insecure design and then I copy the url I put it on the web it still doesn't work.

Having trouble connecting to openvpn,
Options error: You must define TUN/TAP device

Command- sudo openvpn uname.ovpn

for a network room or for the default vpn???

Default

The US-East-Regular-1 OVPN file is blank when downloaded after several regenerations and attempts.

Try changing region

hi friends,

i cant use " in the attack box, not in the terminal, not in browser and also not in any text editor.

how can i fix this?

That works but connection is very slow due to my location.

Choose the closest one, and not US-East-Regular-1

Currently a problem with East Regular.. go with the US-West ones.. support is aware of it.

Thank you

Gave +1 Rep to @tawdry vortex (current: #255 - 19)

@tribal mason said it as well, i just clarified further.. I just can't rep him directly. 🙂

Hello Please I need help?

I'm also having this issue with multiple regions

No worries, i don't mind reps

with what exactly???

Hey, if I download an ovpn file for the EU, can I go into it and edit the region somehow manually?

Because I can't get one for US East

No.

Thought so. Thanks

Gave +1 Rep to @weary spindle (current: #2 - 1964)

im trying to use openvpn on kali but after i run sudo openvpn my-cconfig-file.ovpn it gives me this

"Options error: You must define TUN/TAP device (--dev)"

Are you connecting to the normal THM rooms or in THM networks?

this!! thank you!!

Gave +1 Rep to @weary spindle (current: #2 - 1965)

wdym, im just trying to do this room but cant use openvpn to connect to the room machine

THM networks such as RedTeam Capstone Challenge, Wreath, Persisting AD, etc. have their own ovpn configurations.

oh no just normal thm rooms

the options error is telling me to define tun/tap device but when i serach how to do that im not really getting anything useful

What VPN server are you using.

like am i supposed to use nano or vim on my ovpn file ?

like which region im selecting?

us east regular 1

Have you tried to generate an ovpn configuration file from a VIP server?

no but i dont get why the one ive always used isnt working now?

i guess i could try to use the west vip server but it doesnt make sense why i cant connect to ovpn now

You're not supposed to as manually editing it can cause issues when you connect.

i didnt edit it

One possible reason is that the server is having issues. I seem to read something along those lines yesterday.

#site-support message

Hello, can someone help me, the images are not being displayed on the bash-scripting room.

Can you provide the room link?

https://tryhackme.com/room/bashscripting?path=undefined
this is the one

hello, i found i can't save occupation details in my profile. and so i can't join the workspace. is this often a network related problem? or there may be other causes?

Images load on my end. Is your ISP or the one who manages your internet connection (in case of schools or libraries) blocking i.ibb.co domain?

I am not knowledgeable about that,

@ivory spruce vip server ovpn conifg worked thx

Gave +1 Rep to @ivory spruce (current: #16 - 421)

In your browser, you can try putting i.ibb.co

hi guys, im having some issues with openvpn. getting connection refused all the time, also switched regions without succes. should i continue with a fresh install of openvpn perhaps? or am i missing something

Which server are you using?

Hi! Is there any way to access CC:Steganography and Easysteganography rooms? I can find them in google but it says they are private

Yes, they are retired rooms due to age.

Im also getting connection issues with ovpn. Tried 2 different EU servers and previous versions of my ovpn configs

Are you in EU?

Yep

Which country?

What did you try?

Which OS?

UK

Tried 3 different OVPN configs, tried regenerating twice, restarted networking service, reboot

Kali - 6.5.0-kali3-amd64

It was working about 35-40 mins ago, then seemingly all of a sudden stopped

Bit further context of the issue. ovpn error logs:

VERIFY ERROR: depth=1, error=self-signed certificate in certificate chain: CN=ChangeMe
OpenSSL: error:0A000086:SSL routines::certificate verify failed

What region is the VPN from?

EU :)

1,2 or 3?

Tried 2 and 3 so far

Are you using sudo?

Yep

You don't have a VPN running on the host?

did a pgrep on openvpn, nothing else hung open

ip a shows no other tunnels open

Is this bare metal or a VM?

Bare metal

Ah, you're running Kali bare-metal, not a good idea for a start,

How so? I've been using it for a while now and no issues with VPNs in the past

Not the VPN, but the system can be broken

Do you have any further info on this, curious now 😂

Kali packages, they sometimes break the entire os

Kali is too unstable to use as a daily os

Hey, is there anyway to get an openvpn file for US East? I can't seem to get one that isn't blank. I have one for the EU and for US West at least

im on windows and also doesnt work for me

tried 1-2

0kb OVPN files?

Yes

Have you tried regenarting the file?

Yeah, at least 50 times lol

I suppose the ones for US West and EU will work. It would just be nice to have one closest to where I live

Strange, east works for me, I know some users have also reported some issues with it regarding the networks maybe it's the same thing causing that

Interesting. Would that be a problem on my end?

That i'm not sure of unfortunatley

Okay, well, US West wouldn't work either yesterday. So, maybe I'll get lucky with East at some point

At least they're valid for 10 years lol

you're using Windows?

I've tried it on my Windows 11 Pro at home, Windows 10 at school, and multiple Kali vms

Same issue across the board

The school may be blocking your access.

For Windows, are you using zthe connect GUI app?

Well, I haven't actually tried connecting on Windows. I want to use my Kali vm as the attack box. I just tried downloading the file on Windows to see if I had the same issue

Which country are you in?

How are you doing it on the vm?

I live on the east coast of the United States. I'm trying to connect to the US East Regular 1 Server.

I think the US East Reg is broken,

Sorry for running around the rings here.

I go onto TryHackMe's website, click Access under my profile, choose US East Regular 1, and download the config file. It shows that it's 0 bytes, meaning I didn't get the encryption key and such

Oh, it is?

Yeah.

I've let staff knw about that

Yeah

Okay, good to know lol

Thank you very much

Just to make sure I'm understanding this correctly. Every time I start an attackbox I'm "Spinning Up" a new, never used VM, correct?

Correct

I've been doing a bunch of rooms lately which require me to download files locally. For Example, John the Ripper" (https://tryhackme[.]com/room/johntheripper0)

Is there an easy way I'm missing to download these files directly to the attack box?

No, unfortunately you're not able to

So either install and run the tools locally on my machine, or, log in on the attack box and download locally there. Is there a reason the files can't be downloaded using curl from the attack box? I've seen some rooms do this before.

You could do a python server on your host, but that would mean putting your host on the network

So basically make my own attack box. But at that point I'd just log in and always be logged in since its the same box each time. Am I understanding that correctly?

No, when you shutdown the attackbox, it reverts back to the way it was when it was booked up

There is no persistence

I meant make my own attack box/vm locally and use the VPN to remote into the network. Although, in the case of the John room there is no "network" since there is not a box which gets attacked.

Yes, that would be ideal.

How do I get access to the king of the hill chat?

Iirc have to verify your account

Thank you

Gave +1 Rep to @west chasm (current: #255 - 19)

hello, im new in tryhackme, and, tried to get premium, but, in the page "why-subscribe", the pop-up of the option "subscribe", dont load anything, and i cant buy premium.

someone can help me?

Can you try accessing this link?

https://tryhackme.com/r/manage-account/subscription

Or are you planning to buy vouchers?

i can access this, but when i click "Subscribe Now", i go to the same "why-subscribe" page, and get the same problem

no, i wanna for my personal use

Have you tried to send an email to THM Support?

Try using a VPN

Hi, I am facing issues while doing a lateral movement lab of windows

I have given all the permissions as well.

Im facing issues trying to connect to the Exploiting AD and Persisting AD rooms. Network VPN config file can't connect but machine VPN file connects. Any help?

What do you my by machine VPN file?

Hi, by mistake i had run iptables -F in the room linux hardening and now i cannot access the server, can you apply a hard reset?

Just terminate the machine

Hey Guys!

Hi, I'm doing AoC 2021 and the machine doesn't seem to be popping up, what can I do?

Navigate to the top of the page, click "Show Split View"

Thank you

Gave +1 Rep to @tribal mason (current: #28 - 275)

Hello, im having problems with some environments in the attack and defending aws

hello i got a problm with

nmap

@smoky fog

Can you type ip a | grep "tun"

└─# ip a | grep "tun"
4: tun1: <POINTOPOINT,MULTICAST,NOARP,UP,LOWER_UP> mtu 1500 qdisc fq_codel state UNKNOWN group default qlen 500
inet 10.18.116.211/17 scope global tun1
5: tun0: <POINTOPOINT,MULTICAST,NOARP,UP,LOWER_UP> mtu 1500 qdisc fq_codel state UNKNOWN group default qlen 500
inet 10.18.116.211/17 scope global tun0
6: tun2: <POINTOPOINT,MULTICAST,NOARP,UP,LOWER_UP> mtu 1500 qdisc fq_codel state UNKNOWN group default qlen 500
inet 10.18.116.211/17 scope global tun2

oh that bad

sudo killall openvpn

okey know iwill check

After that command, wait 30 sec(s) and do ip a | grep "tun"

a okey

thanks a lot for your help

Hey new guy here trying to access via VPN. Using my Kali linux VM here and having troubles getting through.

Tried multiple VPN servers + regen the config file.

I found this error originally:

2024-02-16 18:43:59 Note: --cipher is not set. OpenVPN versions before 2.5 defaulted to BF-CBC as fallback when cipher negotiation failed in this case. If you need this fallback please add '--data-ciphers-fallback BF-CBC' to your configuration and/or add BF-CBC to --data-ciphers.

Google showed a lot of people had it so ended up just dropping "--data-" and naming it cipher (singular) got a new error:

2024-02-16 18:46:49 SIGUSR1[soft,process-push-msg-failed] received, process restarting
2024-02-16 18:46:49 Restart pause, 1 second(s)

Also:

2024-02-16 18:46:49 OPTIONS ERROR: failed to negotiate cipher with server. Add the server's cipher ('AES-256-CBC') to --data-ciphers (currently 'AES-256-GCM:AES-128-GCM:CHACHA20-POLY1305') if you want to connect to this server.

Weird. I went to 10.10.10.10 but it works anyway.

If anyone is reading this, disregard the output and check 10.10.10.10 on your browser. For whatever reason tryhackme website + the terminal output will both say you're not connected but the actual connection works.

hello ,i deleted my account without paying attention how can i recover it please?

Unfortunatley, there is no way to recover it

Even if I contact the support team ?

I may be wrong but i dont think so as it states that there is no way of recovery

Yes, this is a known bug and THM Staff is already looking into it.

Guys, can anyone tell me if SOC Level 1 is free for the entire module or is it just up to the pain pyramid?

Grateful!

help me!

All of the learning paths have both free and paid rooms within them afaik

Hi, does anyone know if I buy a year subscription and cancel before the year is up? Do I get a refund for the time not used?

No, if you opt for the annual subscription, even if you cancel it before your subscription expires, you will still be charged for the full amount.

Thank you for the info! 🙂

Gave +1 Rep to @ivory spruce (current: #16 - 426)

And the subscription will still be active.

Hey i have a question! Will THM get courses like Full-stack dev or other coding courses? I know THM is about hacking but i really love THMs concept that you pay a affordable monthly fee and you get certificates etc

i had a similar issue with another OpenVPN connection where i made this annoyance go away adding a flag with the referred cipher like --data-ciphers "BF-CBC" - OpenVPN is trying to make you avoid old and insecure ciphers, at my peticular case, i wasn't able to update server side ciphers. In my case i also had to add to ovpn file "tls-cipher "DEFAULT:@SECLEVEL=0" https://community.openvpn.net/openvpn/wiki/DeprecatedOptions

hello, may I ask what is meant by subscribing to business in tryhackme?

Hi Ned, i came to discord to solve an issue where a Windows 10 computer had OpenVPN connecting and working fine with THM Server, where a Windows 11 wasn't w
orking. On Windows 11 with latest OpenVPN software i was only able to connect changing advanced settings and letting insecure ciphers. The VPN would connect, it'd show traffic on its GUI, i'd get ip address for OpenVPN virtual interface, i'd get routes, i wasn't actually connected for some reason. I had also regenerated my profile in THM, but it didn't work out. In my Windows 11 i have another OpenVPN software for another proprietary company (that uses OpenVPN and it rebrands with its own name) and it was working properly on Windows 11. Also, OpenVPN (3.XX - latest) with above changes, it was reconnecting every a couple minutes. MY SOLUTION was uninstalling latest OpenVPN and getting same build i have on Windows 10 - https://build.openvpn.net/downloads/releases/
OpenVPN-2.5.6-I601-amd64.msi - i was able to import my THM profile, no changes applied to OpenVPN settings, i was able to connect and i am now pinging my attack machine.

I understood why I finished the pain pyramid, but when I go to the next step, it says that I need to purchase the premium to continue

hi, its a basic question but I didnt fine the answer, I cant connect to my openvpn (ver 2.6.7), and it's already with the "data-ciphers AES-256-CBC" so I don't know what doesn't work. Does anyone know ?

Does your vpn say intilization sequence complete at the end?

no its the restart pause issue but the line data ciphers doesnt fix it

If you verify, can you send a screenshot of your VPN output

I verified but it doesn't looks better

What VPN server are you using?

im on EU3

Could you try to press regenerate on the access page, then wait about 3 minutes, and only after waiting these 3 minutes, press download to get your new vpn config, then try again?

Oh actually

Try to switch to EU2, then follow the steps above

I think EU3 is having issues all together

Yes I just tried on eu2 and it works

didnt think about changing server thanks

I am unable to connect to site with OpenVPN from Windows, from Linux I am able.
Windows error message in OpenVPN:

Connection Failed
There was an error attempting to connect to the selected server.
Error message: option_error: sorry, unsupported options present in configuration:
UNKNOWN/UNSUPPORTED OPTIONS (pull)

I am using the same file on Windows and on Linux, what am I doing wrong?

the problem is in your network

If I'm switching to EU2 regular then I'm receiving the following message:
Connection Timeout
Connection failed to establish withing given time

Are you using the gui on windows?

The one downloaded from here: https://swupdate.openvpn.net/downloads/connect/openvpn-connect-3.4.4.3412_signed.msi

#site-support message

Thank you, it worked. You should change the links from the rooms 🙂

Gave +1 Rep to @ivory spruce (current: #16 - 427)

I suppose you can submit an entry for it in the #room-bugs channel.

https://tenor.com/view/tom-hardy-ill-do-that-gif-18733915

LOSER

@bronze vale thank you please

Gave +1 Rep to @fiery knot (current: #1999 - 1)

Done!

What these letters signify?

Kinda hard to tell based on that very cropped image, what page of the site is this from?

The support employees

hey has anyone tried to boot up the room: Blaster? cant get a response from it.

What do you mean by can’t get a response?

ping

Windows boxes don't respond to pings

big oversight. thanks

Not able to download the configuration file for the network wreath . Says "An unknown error has occurred" when every time i click download . Tried regenerating multiple times .