#site-support

If you're reffering to OVPN i use the cli

Yeah, that's why.

You want use the CLI.

sudo openvpn path/to/file/filename.ovpn

yeah, done that

So it's like that?

You don't use the network manager at all to use the VPN?

Oh, we can att pictures! let me show you

in a minute i'll get the tls error

Which server is this?

Not sure I understand the question. This is my own instance of Linux running on my VMware, trying to connect to OVPN, it's not a specific room

which VPN server did you download from Thm?

I don't remember seeing that let me have another look

https://www.tryhackme.com/r/access

Try Eu-Reg-2

EU-Regular-2

Gotcha

Don't listen to that page, it's broken also.

Oh rip

I did try accessing https://tryhackme.com/access

Based on some older troubleshootings

That should re-direct to the new page,

You're a sub, you could also use VIP #1?

Which country are you in?

windows fundamentals 1, task 3. all the questions seem to have weird answers as i have tried pretty much everything but it doesnt seem to accept anything. I know its to do with the task bar but it wont accept anything as the right answer for any of the 3 questions

Right click here, it's open A*\*\*\*\* C*\*\*\*\*

Soz, back will have a look now

Im in the UK

is it this under the cloud? how do i get rid of the cloud

I use EU VIP 1 with no issues.

I use EU R 2 With no issues on windows

Like im connected right now

connected to a room and a machine no problem

The problems appear on the VM (i make sure to disconnect from this one first)

What's vip? OH. A server to connect to

you cant use them both at the same time

You can do that on your host

this is still not working i have tried everything that comes up but still says its wrong?

I am aware. I just connected now, to "demonstrate" that it works on windows but not on my vm linux

I will try it again on linux with the new cfg file

it works...

Goddamit

Thanks man

Really wasn't getting why is not working

Spent a few hours trying to sort it :))

@weary spindle ?

What did you put?

task bar and a bunch of other things

i even googled it and its not accepting what google is saying either

I told you it begins with a and c

Its two words.

yeah no idea

its either me or theres something of with it. I have read through the task a couple times now

Lol where are you seeing the A and the C here ?

The very first line.

#site-support message

it doesnt accept it

I just tried it with all the questions and it wont accept it

Which exact task and question?

windows fundamentals 1 , task 3 all 3 questions

Okay, the option I have you is first Q3.

I'm looking at it

The other two can be shown with the task material.

can you try if its working for you if it will accept your answers

My answers are already there.

ok what are they

Hello, Im sorry for the noob question and apologize in advance if this is the wrong location. I am having issues subscribing to THM both debit cards Im attempting to use wont allow an international charge? Do I need to contact the card issuer?

thanks, i was just looking for that hidden tab but couldnt find it anywhere? and as for the second one that should have been quiet obvious. The third i would have never gotten cos i had it with the first word also so 3 words instead of 2

Gave +1 Rep to @sonic zodiac (current: #2052 - 1)

Try to look more carefully. The answers are basically in the text above. Make sure you use a virtual machine as well (even the free one). If you're trying this on your computer, windows version may differ like win11 and win10 and you won't be able to get the right answers. By using thm's machine, you will be 100% sure the answers will be there

Please don't post flags.

hi! im new here, does anyone know what it means when a room says it has x days of access left? what happens in x days?

Sorry, won't do anymore.

Im not a pro but at the moment im on a 2022 room/event. And I can use it fine. It depends on the event I'd assume. If it something like capture the flag, I guess you're over the term so it won't count anymore? Maybe the target machine will be switched off or repurposed?

no, it's just a regular room in the devsecops path

@weary spindle is your person

#general message

how come when I check my profile I am ranked level 0x5 and on the dashboard the next level says I'll be 0x7?

here it makes no difference, on Discord

when I try to verify my account (to update my level) it stays at 0x5

Known bug, staff are working on it.

Windows fundamentals 1, task 6, questions 1 and 2. It says i should find the name of the other user and i have found it but it will not accept it for some reason

That's not the user it's looking for.

Hello, Anyone can tell me why on tryhackme take 3600 seconds to load attack box? i'm premiun user, this day have tried start attackbox for do a room and the attackbox said takes 3600 sec for load, i have tried restart the page and wait some hours doing other things, after that i come back and have tried again and is the same

Just terminate and deploy it again

Should fix it

Hello, i have tried that 3 times in different hours and is the same

i have tried right now again and is the same

Can you do CTRL + F5?

will try give me a sec

well i have terminated attack box, did CTRL + F5 and later started attack box again, and i got the same issue

Uhh @tawdry orbit I thought that would be an issue with the account. Can you help?

Clear cookies and cache?

yeah no idea about this one too

ima try , give me a sec

My levels are not updating can i know why my handle is @ranzyedirisinghe

It's a known issue 🙂 It'll get fixed soon

Hello again, i have tried change browser (actually i was using brave browser), i have tried firefox with 100 % clear history data cookies etc, and i have same issue

damn oke 🥲

this issue started happening me this day, yesterday was all working fine

nvm i got it 🙏

now im stuck with the next question... I feel like this windows fundamentals1 isnt done correctly for beginners. One of the questions on task 6 is what is the account status but in the description text it says nothing about seeing the status off an account?

Hey guys, is there some problem with the level system? I can't level up

Uhh yea, there is a known issue about levels. They are going to fix it soon (:

thx

Gave +1 Rep to @tribal mason (current: #27 - 288)

Hi all. Is anyone able to access any rooms? I can’t access any rooms at all. And progress is showing as 0% on all of them, even though I know for a fact that it’s not. And I’m a premium member.

Rooms are fine for me

A quick question: I just finished the CompTIA Pentest+ Learning Path. My certificate is dated : 28th May 2023. I don't recall finishing this Learning Path before...

Hi, is someone having trouble with THM site? I'm getting a 504 error

yeah

site is down or something

it's good now for me

I have a question and its on NMAP : How many of these ports are considered "well-known"? (These are the "standard" numbers mentioned in the task)]

Hey guys I have raised ticket #24423. Any chance I can get it looked at asap please so I get stuck in to using my subscription properly. Thanks

I'm in the same room, the answer is 1024. (0-1023 ports)

Registered ports are 1024-49151, dynamic ports are 49152-65535

Hi everyone,
I am not able to see the content of the rooms. If this is not fixed asap then I will lose my streak.

What do you mean?

I mean from today whenever I am accessing any room then there's no content available in those rooms. So everyday I need to answer some questions to keep up my streak.

I don't have the option to attach a screenshot here. That could have explained better.

Having the same issue as well

You need to verify your account.

Same issue can’t see any room content. already raised a ticket a few hours ago

@weary spindle Why /verify isn't working, when sending from the same room or to the @west chasm ...

The article states to use this method for the verification

Can you give a name of the room you can't access? Tried a few on my end and it works for me.

owasptop102021

For me all the rooms. There is just no content

Yes it's for all the rooms, and not just one

Hmm.. if you don't mind me asking, in which region on the globe are you on? I'm in SEA and can access the rooms just fine.

SEA as well

For me it's South Asia

Did you do this? Then add your token after

Nope I just entered/verify, thinking it will then give the option to enter the token post that. Let me try with the added text

Tried but for me there's no popup command, like in ur case

You can dm me and send a screenshot of whas happening

All rooms affected for me. Issue only happened after upgrading to premium. Located in Australia

2024-04-08 13:54:50 Initialization Sequence Completed
2024-04-08 13:54:50 Data Channel: cipher 'AES-256-CBC', auth 'SHA512', peer-id: 106, compression: 'stub'
2024-04-08 13:54:50 Timers: ping 5, ping-restart 120

does this mean vpn has started

when i do ifconfig....it shows tun0

but when machine isn;t being ping

Which machine?

fowsniff

yesterday after changing vpn server 10 times it worked but today again same problem...

How many minutes have you waited for it to spin up?

5 mins

what the helll

always the same error...works one day and next day booom vpn

just sick of it

doing web ctf...website opens...works..and as soon as enumeration begins vpn sucks

just spend 3 hours just to run nmap for a single room

I have even got video now

😭😭😭

check facebook message ..I had sent a whole video

Nobody else is having an issue with the vpn quite like you are.

Are you sure it's not your end?

yestersay I did whole room of ffuf

there was no problem

I ran gobuster at beginning no error

opens nmap boom

That doesn't answer my question...

How would I find if its my end or not….is there any method than say I will test and say you

quick question I haven't been in THM in a long time I see the view change but I don't see questions for the room, why?

Are you on your own network?

Does your issues have any effect on anything else?

you need to su scripe

I am on my own network..it doesnt have error on anything

subscribe it frn..its subscribers only room

Have you tried clearing cookies and cache?

If they weren't a subscriber, they wouldn't have access to the room?

ohh yeah I forgot that😂my bad…

ley me tey clearing cookies and trying other browsers and I be back if it didnt wirk

Yes, I did

and it didn't help, all the rooms look like that

Do you have any errors on the console?

nope, no errors appear

Have you tried another browser/incognito?

I did incognito right now and is what you see in the above screenshot

Can you try a different network?

I just checked the Edge and the same issue

what do you mean by different network? I am at home so there is not other network

Mobile?

ok, in mobile it works

What region are you in?

so I have to check what's going on

Europe

Do you have extensions that might be blcoking it

not in edge

I mainly use chrome and I disabled the ad blocking one for THM but on Edge I don't have any

2 months ago everything worked ok

so I wonder what happened

I will do some investigation later today

Looks like few people are having these issues

2 people reported earlier

oh really

from Europe? Or other region?

The others reported from asia

@crystal marlin seems users are having issues not seeing content in rooms, not sure if you’re aware or not

^

Hi, sry for the inconvenience but is it possible to change our email address in the THM website pls ?

Yeah, you just log on, go to profile

Hello, are the AOC certs not downloadable after the event? I swear it leads nowhere rn

Change it here.

i see it but the case where my mail is is grey and i can't touch it

I got it last 2023 and lost the file, so planning to dl again

Are you using a Google login?

no

The text box or the Save Changes button?

the text box

Interesting, you may need to contact support then.

okay thx !

Gave +1 Rep to @weary spindle (current: #1 - 2145)

Mh, I'm not aware of any issues currently.

Do you by chance have a message link to the others that mentioned that?

#site-support message

#site-support message

Thanks

pentesting fundamentals tash 4, The questions are what testing process is it and for every stage on the task information at the beginning it says the testing process is so and so but my answers are not accepted for some reason ??

Can you link the room?

yes ive just done the other tasks but on the 4th one it wont accept any answers

Then it might be wrong.

is that wrong?

Not sure, I'm not downloading it on my phone, I'm not at the computer at the momen

ok please let me know when you can

or someone else as i dont want to be waiting around wasting time when i could be doing more tasks

Hi, I can't get .ovpn for Wreath network. Please, could you help me with that? I tried to regenerate file but same issue.

nvm, I left room and joined again and now I can download .ovpn config for wreath 😄

The issue was that i was putting - between the words black-box..

Yeah, if punctuation is in the answer, it's usually shown. 🙂

Does anyone else not get an issue with the OSQUERY: The basics page? Seems like there is only a video and upon watching it, there is no room completion. https://tryhackme.com/r/room/osqueryf8

Few users are having issues with this atm, I have let staff know

Is it possible to buy a voucher and redeem it on yourself? I'd prefer not to have automatic recurring payments and would rather manually buy a voucher for each month.

Yeah, you can.

It's more expensive though.

How so? iirc they're exempt from student discounts but I'm not a student.

I get this error what should i do
Note: --cipher is not set. OpenVPN versions before 2.5 defaulted to BF-CBC as fallback when cipher negotiation failed in this case. If you need this fallback please add '--data-ciphers-fallback BF-CBC' to your configuration and/or add BF-CBC to --data-ciphers.
And when i add '--data-ciphers-fallback BF-CBC' i get another error saying 'disables data channel offload'

Which server?

euw regular 3

Ah yeah. I forget about that

Try 2.

okey i will try

thank you so much <3 i fix that

Gave +1 Rep to @weary spindle (current: #1 - 2147)

Need help guys. I was unable to open terminal on learning path (introduction to cybersecurity). Do I need to go premium before I can have access to terminals?

Can you open the desktop thing in split view? There'll be a black square with a ">_" on it on the desktop, that's how you start the terminal

Okay. I submitted a ticket yesterday regarding being unable to do anything in the rooms. And now today, streak has been set to 0. Ticket is #24420.

Support will get back to you soon.

Thanks

Gave +1 Rep to @meager chasm (current: #826 - 4)

I'm having the issue with not seeing content on PC. Reading through now to see if there was a solution but thought I'd put this in chat just in case

Any room I have tried gives the same thing

May I ask what region you are from?

You can also DM it to me, if you do not want to share it here 🙂

US

And are you by chance having any personal VPN or similar running?

Not that I know of. Though I am on my work computer. Normally not an issue whatsoever but today it's that page

We have a proxy set up but no vpn

Gotcha, thanks 🙂

Gave +1 Rep to @slim ridge (current: #1359 - 2)

I am experiencing the same issue with similar context. Work computer. Windows. US. Happening in Chrome and Edge both.

I'm going to try when I get home in about an hour and a half but not sure until then. I have a streak freeze so I don't lose it.

is the server bot down?

@bronze vale

Yes for the moment

Not sure if anything on the site changed but I can access the rooms from home when I couldn’t from work earlier.

How do I close/shut down the attackbox once I'm done with it? I can't find the page that lets you see all active VM instnces anywhere. I know it's a page but forgot the URL, and I can't seem to find it just navigating the website

You can use this script

to terminate running machines

You have the recent rooms on the dashboard

wheres the issue here ?

what does that forma: an mean?

the answer is container but how do i write it so it accepts it

Which room?

intro to containerism task3 first question

The answer isn't container

You'll find the answer in second paragraph

Although this channel is for site support, so next time if it's for a room put it in #room-help

do you mean images? i already tried that before but it would not accept it

Take the s off

Hello,
I had a subscription, but I forgot to renew it in time, how can I renew it?
It's giving me this error https://prnt.sc/vnzze3ef6nly

It usually is set to auto-renew unless the card you used to pay for the subscription is no longer valid.

I had auto-renew disabled

Have you tried to cancel your subscription and manually try to subscribe again? If it doesn't work, THM Support would be your best bet.

#site-support message

Yes, it has already expired, I don't know if there is another way to cancel it.

I mean in your THM profile. There should be a tab there that will allow you to "cancel"

I did not find it

https://help.tryhackme.com/en/articles/7262866-cancelling-your-subscription

Hi there, not 100% sure if this is the best place for this, but I've been having some odd issues with connecting to TryHackMe via OpenVPN on a Linux machine. It connects just fine, but immediately runs into this issue where it basically freezes. I'll attach the logs from the ovpn file in a thread here so I don't take up a ton of space. Basically it seems to be running into some kind of issue and pausing, then after a couple minutes it seems to start working again, works just fine for a minute or two, and then freezes once again. I downloaded my ovpn file from TryHackMe through the Access button on top, moved it to my home directory, and basically I'm executing it with sudo openvpn myUserName.ovpn - I created a shell script whose contents is just this one line. When I execute the shell script, it prompts me for the sudo password, and then begins to run like normal.

Ah, evidently I can't make a thread, so here are the logs. These are not all of them, but you can see that it seems to repeat after a point (about 2 - 3 minutes). I excised the beginning of the one from 23:12, but left all of the logs from 23.14.

2024-04-08 23:12:04 sitnl_send: rtnl: generic error (-17): File exists
2024-04-08 23:12:04 NOTE: Linux route add command failed because route exists
2024-04-08 23:12:04 Initialization Sequence Completed
2024-04-08 23:12:04 Data Channel: cipher 'AES-256-CBC', auth 'SHA512', peer-id: 17
2024-04-08 23:12:04 Timers: ping 5, ping-restart 120
2024-04-08 23:12:04 Protocol options: explicit-exit-notify 3
2024-04-08 23:14:31 [server] Inactivity timeout (--ping-restart), restarting
2024-04-08 23:14:31 SIGUSR1[soft,ping-restart] received, process restarting
2024-04-08 23:14:31 Restart pause, 1 second(s)
2024-04-08 23:14:32 TCP/UDP: Preserving recently used remote address: [AF_INET]<there's an IP here>
2024-04-08 23:14:32 Socket Buffers: R=[212992->212992] S=[212992->212992]
2024-04-08 23:14:32 UDPv4 link local: (not bound)
2024-04-08 23:14:32 UDPv4 link remote: [AF_INET]<there's an IP here>
2024-04-08 23:14:32 TLS: Initial packet from [AF_INET]<there's an IP here>, sid=<there's an sid here>
2024-04-08 23:14:32 VERIFY OK: depth=1, CN=ChangeMe
2024-04-08 23:14:32 VERIFY KU OK
2024-04-08 23:14:32 Validating certificate extended key usage
2024-04-08 23:14:32 ++ Certificate has EKU (str) TLS Web Server Authentication, expects TLS Web Server Authentication
2024-04-08 23:14:32 VERIFY EKU OK
2024-04-08 23:14:32 VERIFY OK: depth=0, CN=server
2024-04-08 23:14:32 Control Channel: TLSv1.3, cipher TLSv1.3 TLS_AES_256_GCM_SHA384, peer certificate: 2048 bits RSA, signature: RSA-SHA256, peer temporary key: 253 bits X25519
2024-04-08 23:14:32 [server] Peer Connection Initiated with [AF_INET]<there's an IP here>
2024-04-08 23:14:32 TLS: move_session: dest=TM_ACTIVE src=TM_INITIAL reinit_src=1
2024-04-08 23:14:32 TLS: tls_multi_process: initial untrusted session promoted to trusted
2024-04-08 23:14:33 SENT CONTROL [server]: 'PUSH_REQUEST' (status=1)
2024-04-08 23:14:33 PUSH: Received control message: 'PUSH_REPLY,route 10.10.0.0 255.255.0.0,route-metric 1000,route-gateway 10.6.0.1,topology subnet,ping 5,ping-restart 120,ifconfig 10.6.62.102 255.255.128.0,peer-id 31'
2024-04-08 23:14:33 OPTIONS IMPORT: --ifconfig/up options modified
2024-04-08 23:14:33 OPTIONS IMPORT: route options modified
2024-04-08 23:14:33 OPTIONS IMPORT: route-related options modified
2024-04-08 23:14:33 Using peer cipher 'AES-256-CBC'
2024-04-08 23:14:33 Preserving previous TUN/TAP instance: tun1
2024-04-08 23:14:33 Initialization Sequence Completed
2024-04-08 23:14:33 Data Channel: cipher 'AES-256-CBC', auth 'SHA512', peer-id: 31
2024-04-08 23:14:33 Timers: ping 5, ping-restart 120
2024-04-08 23:14:33 Protocol options: explicit-exit-notify 3

When I try to connect to the target box's IP (after Start Machine on a room), it just hangs for a long time until it eventually goes through, though one time it actually timed out while I was doing a BurpSuite Repeater request. Once it actually timed out I hit send again and it went through immediately. But then again after a couple minutes it went back to frozen.

It's really more annoying than anything else, but I was hoping maybe someone would know "oh yeah, duh, you're doing X wrong"

I have tried deleting the ovpn configuration file and redownloading (which I saw through some online research). I have also tried executing the sudo openvpn command manually in the terminal, instead of running the shell script. No luck on either front.

This problem just started this evening, it was not happening yesterday or this morning

It happens whether Intercept it On or Off as well

Worth noting some details:
Kali Linux 2023.2 (ARM)
Kernel: linux-6.3.0-kali1-arm64
BurpSuite version: 2024.2.1.3
OpenVPN version - I don't know, but I just installed it yesterday
Firefox 115.0.2esr (64-bit)
FoxyProxy 8.9

It happens regardless of if BurpSuite is open (with or without a target set), or FoxyProxy is running my Burp configuration. Every time the openVPN logs cycle through every ~3 minutes it stops working for just about 2 minutes (perhaps related to the ping-restart 120?)

I might have found a possible solution - waiting now to see if the issue happens again, will report back

✅ Looks like this did it. I kept researching, and discovered that one possible cause for this issue is that there may somehow be two running instances of openvpn. I saw this early on, and had checked using ps aux | grep OpenVPN or something along those lines, but it only returned one instance (one PID). Then when I came across the same idea on another article, it recommended just trying killAll openvpn, so I did, and sure enough there were two that died. I started a new instance, and it seems to be working fine again...

Hi there, Can anyone help me? I have completed a room and would like to generate a report for it. Kindly let me know if its possible to generate one?

I've been struggling with the same problem for the past hour. What fixed it for me is changing the VPN region. I'm on the east coast of Canada and US-EAST-REGULAR-1 wasn't working for me for some reason. I tried US-WEST-REGULAR-3, it wasn't working either but US-WEST-REGULAR-1 finally worked!

have you been able to check if there are multiple instances of openvpn running?

May be that changing the region changed it for one and now they aren't competing

but I've now added sudo killall -e openvpn to my shell script right before starting it, just in case. That seems to have helped.

What sort of report are you trying to generate?

A pdf report saying that i have successfully completed "X" room challange?

There are certificates that THM provides for some challenges, usually as part of a Learning Path I believe

I don't think there's anything for individual rooms

I am not following any particular path. Its such a basic thing, i hoped that should have been implicit

Don't know what to tell ya, someone else might have some more information. Keep an eye out for certificate progress.

In order to get your certificate you should complete the course. Certificates allow you to prove your education.

I can't share a screenshot on here, but the tracker is found on the learning path page

There's also Badges, which are typically earned quicker than a whole certificate, and represent a specific group of learnings

For example, if you finish a module about Metasploit, you get a badge. Some individual challenge rooms have their own badges, like the Mr. Robot room

For what it's worth, I highly recommend learning paths, they're really fun and package together a lot of useful topics

Hello, I am also experiencing the same issue since yesterday. Has there been a fix/solution for this?

Asia region, also using work laptop.

Hey there 🙂

We are currently investigating that issue.
May I DM you for 2 - 3 questions?

Sure thing

Hey there 🙂

Are you around by chance?

I'm kinda confused about the auto renew thingy, does that mean if my subscription expired, it will automatically charge my card again for a new month of premium?

Yes, if it expires it will purchase a subscription again

How do I disable auto renew? By cancelling my subscription or is there any other way?

I can't access to OWASP Juice Shop site why it is just seems to be loading

You can't turn it off, if you cancel it you will still have the subscription for the remaing time you have left

Thank you so much!

Gave +1 Rep to @wind wedge (current: #68 - 94)

Please proceed in this channel 😄

s

how long does it take for customer serevice to get back to ticket requests? I submitted one 5 days ago needed to get a refund for a charge but haven't heard anything back and my refund window is only 7 days.....

It's possible they'll get back to you today, sometimes it can take a week, if you haven't heard anything after week then it's best to chase up

As long as you sent the email before the 7day cool off period ends (for yearly subscriptions only), there won't be any issues.

awesome, I sent it via the chatbot but then i realized that it asked for the last 4 digits of my credit card and my card on file had expired and it took the funds from my bank account instead (via paypal) so I sent an email as well explaining the situation. Will that affect the refund?

Yes, that should be fine. The only policy is the request needs to be made within that 7 day period 🙂

perfect!! I made the request the day I got charged. Thank you to you and @wind wedge for your help and information in the matter! I appreciate it! 😁

Gave +1 Rep to @glacial hound (current: #46 - 159)

Yes I'm here. Experiencing the same issue at work today

Can I DM you for a moment?

yes

Hi all,

I am again facing the issue of no content available in the rooms. Yesterday it started showing the content but again today it's not there. Any help as failing to submit questions will lead to losing my streak.

@crystal marlin 1 more person facing this issue

Hey, I have send you a DM, could you get back to me there 🙂 ?

Sure

Hi not sure if this is the right channel but I got a little issue on one of my tasks. I'm doing the /r/room/adventofcyber2 task 10. And the copy sql website isn't working on the provided ip adress

Can you give me the target ip address?

Is this something that should be reported directly like this or should I just be more patient? Don't care to be patient, just want to make sure I should be 😀

May I DM you?

10.10.76.160:8000

Do you have the correct machine started?

Can you send me a screenshot of your Target Machine Information

Sorry not logged in on discord on this machine

But the website works fine. When I go to where task 10 directs me. Which is port 8000

In [Title] in the target information, what machine is running?

It just won't load the "Copy" sql website

Well. There 2 possibilities.

I've had the "day 4" machine running

I can terminate

Yeah.

And start the machine from day 5

Do you think that's it?

That is it, each task has it's own independent machine.

Gotcha

Sorry. Didn't realise until now

Some of the tasks worked on the same machine. But I'll have a closer look next time

hi, im a massive beginner on all this n im kinda stuck. im doing jr penetration testing > introduction to web hacking > walking an application. im on the last question but i dont understand what im supposed to do. its told me to go to the network page and view the contacts page and add in the flag, however when ive done that it says that the answer is wrong. i havnt coppied it wrong, so i must have got the wrong answer but IDK WHAT IT ISS!!! if anyone has any idea how to do this or just some support that would be greatly apreaciated <33333

Did you submit the form on the contact page?

submit the form?

Yes?

what does that mean sorry LMAOO

You said you are on the contact page of the target machine.
Isn't there a contact form to fill out and submit?

oh wait i mean the contacts page in the inspect element thing

like f12

You are supposed to go here (not the same IP as in my screenshot, as your target machine has another IP)
Then fill out the contact form and submit it.
Observate the endpoints that show up in the network tab, and investigate them

OOOOOH

like fill it with like random information

Yes

I think you can also submit it without filling in anything

Doesn't really matter

oh i feel so silly

thank you sm ill try that now

Hi all,

Maybe it will sound stupid but all box that I try are very slow, i can't even nmap scan it, or it take at least couple of minutes, any advices ?

Thanks

I didnt saw any messages abt this in the pinneds

How can i assist you today :p

Which room and command?

I tried 2 differents rooms : Anthem, then i switched to Simple CTF and i encountered the same problem, i tried to increase MTU size but didnt changed anything

any commands tbh, it could be nmap -A or nmap -p- it takes so long

Well A is aggresive and -p- does all port.

try decreasing your MTU

decreasing ?

to 1200 for instance ?

Yeah

What if you do -p1-1000?

You may be making them too big and it's fragmenting the packets.

it dont looks working to decrease my mtu

What command did you use?

nmap -p-

I meant to decrease your MTU

ip link set dev tun0 mtu 1200

faster

Ok, have you tried to change the speed flag in nmap?

No, what is this ?

trying to change the speed flag rn

but its not coming from nmap, when i was on Anthem room it tooks very long to connect to the website

Good morning Im having an issue where the questions have disappeared from all rooms no matter what module or room I go in

Some users have reported this issue and this is already being looked into.

Which broswer and region?

I was on a 330 day streak and yesterdayI subitted a question, I got the notification It was correct and My streak went up by one. This morning when I completed my daily training it was reset to 0. The question I answered yesterday was not completed and I lost my 330+ day streak

contact support 🙂

Chrome and North America Eastcoast

Guys, there is any solution for the problem in tryhackme account that i have?, i waited some day later i did the first report, and this day i have tried start attack box again and it says take more than 3600 sec for load, i have tried with different browser but is the same problem :/

Is your system time correctly set?

It looks like your system time is an hour behind, did it properly update for daylight savings?

3600 seconds = 1 hour

Hello Sir, my time in my system is actually exactly 02:24 p.m, but in phone (actually i saw in this day) is 1 hour + , but this was happening me days ago before this happend me with time, i mean i had this problem before i saw the time in phone was different to the time of pc, you think is for this?

Yes, please ensure that your system time is correctly set 🙂

Site feedback, in the new UI, would it not make scene to move the "Show SPlit Screen" next to the machine what is already spawned?

will change the time and try it again, will let you know if is working, thanks 🙂

Gave +1 Rep to @bronze vale (current: #6 - 1215)

Split view also applies to the AttackBox

True, but really doesn't make any scene that it is in the "room settings" with a section dedicated for the machine/attackbox

well is working now, thanks 😄 i didnt was thinking that was for my time in the computer, same now is working well is better 157 sec than 3600 sec, thank you jared 🙂

Problem is that "split view" is used to refer to:

• Machines that have in-browser access
• AttackBox
• Static sites

Having one universal button for all of them helps intuitivity

If you think otherwise #feedback-and-ideas 😁

Just a quick question/support; some of my certifications from the learning paths have the new format and design applied but some of them have kept the old format (I redownload them once I noticed the format and design changed). Is it all being updated to the new layout across the board or do I just have two different format and designed certificates now?

No, old certificates won't change to the new layout.

hello can somebody please help me im trying to connect with open vpn but when i launch it it says
2024-04-10 11:25:40 WARNING: Compression for receiving enabled. Compression has been used in the past to break encryption. Sent packet s are not compressed unless "allow-compression yes" is also set. 2024-04-10 11:25:40 Note: --cipher is not set. OpenVPN versions before 2.5 defaulted to BF-CBC as fallback when cipher negotiation fai led in this case. If you need this fallback please add '--data-ciphers-fallback BF-CBC' to your configuration and/or add BF-CBC to --d ata-ciphers. 2024-04-10 11:25:40 Note: '--allow-compression' is not set to 'no', disabling data channel offload. 2024-04-10 11:25:40 OpenVPN 2.6.3 aarch64-unknown-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] [DCO] 2024-04-10 11:25:40 library versions: OpenSSL 3.0.11 19 Sep 2023, LZO 2.10 2024-04-10 11:25:40 DCO version: N/A 2024-04-10 11:25:40 OpenSSL: error:0480006C:PEM routines::no start line 2024-04-10 11:25:40 OpenSSL: error:0A080009:SSL routines::PEM lib 2024-04-10 11:25:40 Cannot load inline certificate file 2024-04-10 11:25:40 Exiting due to fatal error

What THM OpenVPN server are you using?

EU-Regular-1 already switched server

Try EU-Regular-2

omfg wtf its working

ty ❤️

@unkempt apex let's not speak like that please.

sorry, is it a server problem ?

For those vpn servers, yes. 🙂

Staff are aware and will fic when they can 🙂

ok ty

What is the use of Discord Token?

@pale bane

Thank you very much

do u guys have this error too ?

"Wed Apr 10 13:52:05 2024 VERIFY ERROR: depth=1, error=self-signed certificate in certificate chain: CN=ChangeMe, serial=425397202556807641543660048237946304772097879576
Wed Apr 10 13:52:05 2024 Sent fatal SSL alert: unknown CA
Wed Apr 10 13:52:05 2024 OpenSSL: error:0A000086:SSL routines::certificate verify failed:
Wed Apr 10 13:52:05 2024 TLS_ERROR: BIO read tls_read_plaintext error
Wed Apr 10 13:52:05 2024 TLS Error: TLS object -> incoming plaintext read error
Wed Apr 10 13:52:05 2024 TLS Error: TLS handshake failed"

Which server are you using?

I've also got this error on EU-Regular-3. When switched to EU-Regular-2 all is fine.

thanks guys

hello i reached 0xD God already, but it still says 0xC guru :/

Staff are aware of an issue.

ohh whats the issue

Profile and dashboard show different level

Thanks for letting me know 🙂

Gave +1 Rep to @weary spindle (current: #1 - 2151)

Leveling up

hey guys, I’m new to tryhackme. I recently signed up but when I went to begin my first course about intro to cs I keep getting a black white screen. any ideas?

@wild jungle

If you verify you can send a screenshot

Does THM offer .edu student discounts?

Yeah 🙂

I can't seem to edit my email, it's greyed out

Do you use G-mail?

Yes, I think i found the issue. i logged in with gmail, might have to create a new account.

You can ask support to give you discount prices if you prove you're a student. email them

Sweet, thank you!

I am trying to connect to US-West-Regular-1 but I am getting a 500 error message.

2024-04-10 15:44:08 Note: --cipher is not set. OpenVPN versions before 2.5 defaulted to BF-CBC as fallback when cipher negotiation failed in this case. If you need this fallback please add '--data-ciphers-fallback BF-CBC' to your configuration and/or add BF-CBC to --data-ciphers.
2024-04-10 15:44:08 Note: cipher 'AES-256-CBC' in --data-ciphers is not supported by ovpn-dco, disabling data channel offload.

I get this error messag when I try US-East-Regular

Can you show us the whole output, please? Verify to send images here:

This is the message I get when I try to download the configuration file for US-West-Regular-1

This one I am doing is US-East-Regular-1

It still shows I am not connected to the vpn server

read the line 3 lines above the bottom... the one with INIT... complete

it means you are connected to the vpn

and it is working

to check on your kali open another terminal window and run curl 10.10.10.10/whoami

It still shows I am not connected even I refreshed it

I am confused it does say I am connected when I use curl

because it gives me an ip

the access page is known to be buggy and broken

do not rely on it for checking if you are connected

if the curl command outputs an ip you are connected

that ip is the one you will need to use for revshells too just for your info

how do you paste image in th discord chat, im not able to put a screenshot of my problem lol

Well.. When I try to do a ctf challenge and start a target machine, it's not giving me any connection to the machine. Even when I try to ping at it.

use nmap with the -Pn option instead to figure out if the machine is up

a lot of them block ping

@split pine

after which you can post pictures

wtf lol it works but how does it not detect when I try to ping at it?

nearly 100% of windows machines block ping:s from none internal networks

Ahh I see.

nmap uses other methods to see if a machine is up or not if you provide the -Pn argument

Got it. I was so confused if I was really connected to the vpn and I was pinging that IP to see if I was connected to it lol

But thank you for the help!

no problem

glad we could help you figure it out and get you hacking more stuffs

I seem to have lost my streak! After more than 900 days, the site reports that i did not login yesterday. Even if this was true I was supposed to be protected by multiple streak freezezs. Is there any way to restore this? Over 900days is something I am proud of.

You can contact support (:

Thank you very much!

Gave +1 Rep to @west chasm (current: #213 - 25)

Hey, I Want to change the verify token, I forgot the email and password I register with on THM platform.

Wdym by change verify token?

Looks like they have a second account they want to use.

Sorry, I don't understand
What you mean by "Wdym"

Wdym = what do you mean?

Ah, Okay

I want to link my new THM account to THM discord

Is your new account already in this discord?

Why do you want to? 🤔

No, I haven't made it yet

Are you wanting to link the current account to a new tryhackme account?

Do you own the router, or rent it from your isp?

Yeah

OK.

Give me a moment. 🙂

There you go.

I've pinged you in general 🙂

Thanks

Gave +1 Rep to @weary spindle (current: #1 - 2154)

Problem in the "Privilege Escalation: Cron Jobs", doesnt seem to be running the crontab can you guys check it pls

Did you chmod it?

Dint seem necessary acording to the information provided

Not all rooms tell you what to do. 🙂

Ye i know it thanks, im a dummy dont default to the basics of basics ty @weary spindle

Gave +1 Rep to @weary spindle (current: #1 - 2155)

Hi, I'm currently doing the Task 12 Capstone Challenge in Jr Penetration Tester > Privilege Escalation > Linux Privilege Escalation.
My issue is that I started the AttackBox and the target machine Linux Privesc Challengebut I can't open the tab THM Attack Box in the Split View, I automatically get redirected to Linux Privesc Challenge's tab.

Do you know why this happens ?

I have the same problem, it worked fine for every task but the capstone challenge

That's quite problematic lol, did you find any solution or workaround ?

Hello, I've been doing a lot of chellenges etc for a few days now to raise my level, except that on the public profile and on Discord I'm not 0x8 whereas on the dashboard it's displayed, here are the screenshots:

Staff are aware of an issue with accounts not leveling up properly 🙂

Okayyy thanks you 😉

Hi everyone, I am currently experiencing issues with seeing the flags required for a challenge I am currently doing in of the rooms. Where exactly does one find the flags or trouble shoot this if there are no flags after the completion of each level?

Which flags are you having issue with?

So, I'm trying to get some hands on experience with virtual machines by installing one on my computer. I actually was working with some people to set up a whole lab but my computer can't handle that much, but I figured I could use the machine I set up with TryHackMe rooms. I'm just a little confused on whether or not I need to use the OpenVPN? Reading some FAQs it sounds like I can just SSH in from my new VM, since I do have an active subscription. Am I understanding this correctly? Or do I still need to set up OpenVPN?

The room I am in has 10 tasks and task 5 to 8 require me to answer what flag prompt I received after completing each task in the machine yet after every level there is no flag prompt.

I am not sure if I am being elaborate enough?

I'm having some trouble with the attackbox and burp suite. Seems the "burp browser" doesn't work on the attack box, I disabled sandboxing (as I get an error message saying the OS can't run it in a sandbox for whatever reason) but then when I click to open the burp brower it never seems to boot.

I imagine I could try foxyproxy or whatever to link burp suite to FireFox instead, but I've always just used built in browser and found it extremely convenient with no hassle to set up.

EDIT: Seems you just gotta use foxyproxy on the attackbox, it's weird because a few days ago I swore I as able to use the burp browser in it

Paths are a mix of free and subscriber rooms

Gave +1 Rep to @wind wedge (current: #67 - 98)

If you are planning or intending to use your own VM, you would need to connect to THM's OpenVPN. As you are a subscriber, you also have the option to use the Attackbox.

greetings. i got a question. i want to partake in the attacking and defending AWS path. but it requires me to buy the aws addon. my question would be the folowing, if i aleready got a student account with access to the things this path has to offer, is there any way to begin learning w/o paying the 329(GBP) for the 3 months?

No, you need to purchase the path in order to do it.

so i see, thanks

https://tryhackme.com/r/room/cloud101aws

Is this room free?
See the picture, I am getting that issue

It shows free here

The room is technically "free" but you still need to purchase the AWS licence.

Okay and after that?

After you have the licence your free to do the AWS rooms.

Iam facing some kind of bug like my streak is showing more than it should be so i couldn't figure out which is real ,in right corner tab it showing 30 but if i clicked my profile and viewed its showing like 29

It's a known issue, staff are aware

The one in the top right will be the correct one

You mean 30 in the first ss?

Yea

but after sometime it changes to 29 , i guess you are referring thats real like in the second ss?

because i aint got my 30 days streak badge like should be, thats how iam saying

I've always followed the top right one as I had the same issue and the top one was correct

Best way to check is your yearly activity that you can view if you go to your public profile

hello I cannot connect to the OpenVPN server is this normal?

Can you show us the output?

To send images ^

ok thx 2sec

Can you try changing the VPN Server and regenerating?

okk

I went from server Eu-regular-3 to Eu-regular-1 here is the error now

Have you tried regenerating it?

And are you sure you have replaced the old one?

yes I'm sure, maybe I try with Eu-regular-2

1+3 are broken.

and 2 is laggy

no answer

Which room is that for?

try sudo ip link set dev tun0 mtu 1200 in your terminal

?

Try to reping the machine now

nothing...

Why are you running in root? 💀

Why not ??

Because it can break things.

Fowsniff CTF also doesn't respond to pings.

I only know my root password, so I only connect as root haha

So the problem doesn't come from me?

Best practice is not to use root as your primary user.

Tools are installed different when you use the root user and this can result in a lot of unintended outcomes.

Furthermore, the ‘sudo’ utility executes with elevated permission which means you’re using sudo in that command for no reason 😅

No, it's intended. 🙂

okok thx

Gave +1 Rep to @bronze vale (current: #6 - 1218)

Hi, I'm having an issue where I signed up to the site with an email that I no longer have access to. Would I be able to change the email the account is associated with as I would like to retain my progress?

If you know your password, you can sign in with your username.

Thank you!

Unfortunately I think I used google sign on so I dont know if I can get back in

Either that or I was using a password manager

why since I switched to my non-root user, I can no longer drag my files from my windows onto my kali

?

If you used google sign in, you may need to contact support via E-mail

Thank you!

Done!

Hi there,
I'm facing issue generating my AWS environment.
The cloud details always provide undefined credentials.
I've tried generating and resetting the environment, but still get the "undefined" credentials.
See picture attached.
I have created a ticket three days ago, but still waiting for a response, hence why I'm here asking for help.
Please and thank you.

CC @tawdry orbit

Same issue with Kubernetes for Everyone
I'm able to connect ssh to the box but after that all commands hitting the "api server" timeout or get reset

Please someone can help me

With what?

wait

i upload

i can't

upload the screenshot

@worthy sentinel

after which you can upload screenshots

Thank you

Gave +1 Rep to @plush bay (current: #4 - 1701)

the room

You need to set LHOST

i set LHOST

The LHOST should be your tun0 IP (as it is the IP that the THM network sees).

192.168.x.x is your home network IP.

Hi guys i was recently doing a room and in middle of it the browser started to move the mouse by itself inside the vm and zoom the whole browser this never happened before is it something that i should worry i did a check of established remote connections but didnt find anything .........any idea why that happened

i ran Malwarefox afterwards but nothing there

Might be misclick? Maybe you pressed the zoom shortcut on your keyboard.

hi bro might be and im monitoring everything closley

I wouldn’t worry about it too much

i did a closer check till now and nothing i think i pressed zoom on keyboard and that was it

Yeah because theoretically, if there was somone accessing your computer remotely, why would they go through all that trouble to get into your system and only move your cursor a inch and not do anything after that.

Yes its true ,logically it doesn't make sense maybe i got paranoid

My attackbox was running even after it expired (I'm a non-premium user), I ran sudo apt update and it worked. Wanted to know if this was intended.

How long have you had it running for?

1 hour

The usual attackbox time for non-premium users, except after it terminated, the window didn't close and the terminal still worked.

Yeah, it sometimes runs longer, but eventually kicks you, is it still running?

Please dont fix this bug lol

Well no, I shut it off after a few minutes. But after it terminated and reached 0 minutes and 0 seconds, sudo commands were working and I could still use telenet.

This was around 3-4 hours ago

If it runs longer sometimes like you mentioned, then that may explain it.

Yeah, it doesn't last exactly an hour.

Makes sense, thanks for explaining!

Hi all.
I'm going through the Weaponization room. My browser runs THM AttackBox and Win10Office2016-Installed. If I try to switch to THM AttackBox, I see the Kali desktop for 1-2 seconds and it automatically switches me to Win10Office2016-Installed.
Who can tell me what's wrong?

Greetings! I keep getting a 500 error code when trying to download the OpenVpn config

Can you go to https://www.tryhackme.com/r/access ?

Same issue

Even when I hit regen I get the 500 error

Can you change server?

Sup! I have downloaded the vpn file and I try to execute it on a kali vm, I get this error, couldn't find a solution yet

Which server are you using?

hmm. I just changed from US-West to East and then back to West and it crashed. Ill keep you posted

EU-Regular-1

Use #2 🙂

thx, gonna try again

Hmm. West should be my geo server but I was able to download the configg for US-East-1 and unable for West @weary spindle

You can download any server, some are broken though right now, staff are aware and will fix ASAP.

👍 🫡

thx, works now

I upgraded to 0x2 today
Why not updating in Discord 🙂

You can either wait for the bot to catch you, or manuall update with the verify command.

Ah, okay

@weary spindle
Here I am
I feel happy lol 🙆‍♂️

There we go.

guys im trying to connect to cicdandbuildsecurity network but openvpn is showing error

2024-04-14 01:05:15 Incoming Control Channel Authentication: Using 512 bit message hash 'SHA512' for HMAC authentication
2024-04-14 01:05:15 TCP/UDP: Preserving recently used remote address: [AF_INET]52.208.87.208:1194
2024-04-14 01:05:15 Socket Buffers: R=[131072->131072] S=[16384->16384]
2024-04-14 01:05:15 Attempting to establish TCP connection with [AF_INET]52.208.87.208:1194 [nonblock]
2024-04-14 01:05:15 TCP: connect to [AF_INET]52.208.87.208:1194 failed: Connection refused
2024-04-14 01:05:15 SIGUSR1[connection failed(soft),init_instance] received, process restarting
2024-04-14 01:05:15 Restart pause, 80 second(s)````
any clue ?

2024-04-14 01:30:00 --cipher is not set. Previous OpenVPN version defaulted to BF-CBC as fallback when cipher negotiation failed in this case. If you need this fallback please add '--data-ciphers-fallback BF-CBC' to your configuration and/or add BF-CBC to --data-ciphers.
2024-04-14 01:30:00 OpenVPN 2.5.9 x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] built on Sep 29 2023
2024-04-14 01:30:00 library versions: OpenSSL 3.0.2 15 Mar 2022, LZO 2.10
2024-04-14 01:30:00 Outgoing Control Channel Authentication: Using 512 bit message hash 'SHA512' for HMAC authentication
2024-04-14 01:30:00 Incoming Control Channel Authentication: Using 512 bit message hash 'SHA512' for HMAC authentication

sudo openvpn bismuth101-wreath.ovpn 
2024-04-14 01:36:27 Cipher negotiation is disabled since neither P2MP client nor server mode is enabled
Options error: You must define TUN/TAP device (--dev)
Use --help for more information.

2024-04-13 18:55:45 OpenSSL: error:0A000086:SSL routines::certificate verify failed

and i have this in the file

--data-ciphers AES-256-CBC

Which server are you in

Try changing the VPN Server and regenerating

EU-Regular-3

Im gonna try

Try 2

2 should work

Dont regenerate yet

First try 2

ok

--data-ciphers AES-256-CBC with that in ?

No no, without flags

ok

It works ! Thanks @languid pier and @tribal mason

Gave +1 Rep to @languid pier (current: #110 - 58)

hello, i just finished https://tryhackme.com/r/room/opacity this box, and actually i cant validate it :(

Wdym by validate

Finish?

i found both flags but i doesnt count it as finish

yes

Refresh the page

its good, thanks mate

Gave +1 Rep to @tribal mason (current: #26 - 295)

idk if its a me problem, but the fonts on some texts are too small? "Email harvesting" part seems a little bit oddly small

Not a you problem I had the same issue too on some of the rooms

nah

i tried

it didnt work

now is --cipher is not set. OpenVPN versions before 2.5 defaulted to BF-CBC

?

is your openVPN version up to dade

date

y

.

OpenVPN 2.6.7 x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] [DCO

Nvm then

What server are you on

i tried EU regular 3 and 2

Might have to redownload a new ovpn file

WARNING: Compression for receiving enabled. Compression has been used in the past to break encryption. Sent packets are not compressed unless "allow-compression yes" is also set.
2024-04-13 22:35:32 Note: --cipher is not set. OpenVPN versions before 2.5 defaulted to BF-CBC as fallback when cipher negotiation failed in this case. If you need this fallback please add '--data-ciphers-fallback BF-CBC' to your configuration and/or add BF-CBC to --data-ciphers.

--cipher is not set. OpenVPN versions before 2.5 defaulted to BF-CBC as fallback when cipher negotiation failed in this case. If you need this fallback please add '--data-ciphers-fallback BF-CBC' to your configuration and/or add BF-CBC to --data-ciphers. 2024-04-13 22:38:14 Note: cipher 'AES-256-CBC' in --data-ciphers is not supported by ovpn-dco, disabling data channel offload. 2024-04-13 22:38:14 OpenVPN 2.6.7 x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] [DCO]

https://forums.openvpn.net/viewtopic.php?t=33503

i installed eu regular 3 now

now is it

Well this error was put in place to mitigate a cyber attack called voracle

oh

just say

--cipher is not set. OpenVPN versions before 2.5 defaulted to BF-CBC as fallback when cipher negotiation failed in this case. If you need this fallback please add '--data-ciphers-fallback BF-CBC' to your configuration and/or add BF-CBC to --data-ciphers.
2024-04-13 22:38:14 Note: cipher 'AES-256-CBC' in --data-ciphers is not supported by ovpn-dco, disabling data channel offload.
2024-04-13 22:38:14 OpenVPN 2.6.7 x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] [DCO]

I’m confused

Just say what

this

oh

i created a new file in eu regular 2

it worked

Awsome

ty

u are the best

Hm makes me think. So eu 3 etc is making ovpn compress even tho Theres protection against that. Just maybe there’s something enabled in eu 3 that’s making it compress

Your welcome

the eu 1 makes compress

Yeah both of those are glitched for some reason

All the other except eu 3 and 2

.

I ment

Eu 3 and eu 1

i think so

guys ?

not able to connect to cicidbuildsecurity network

2024-04-14 12:09:47 --cipher is not set. Previous OpenVPN version defaulted to BF-CBC as fallback when cipher negotiation failed in this case. If you need this fallback please add '--data-ciphers-fallback BF-CBC' to your configuration and/or add BF-CBC to --data-ciphers.
2024-04-14 12:09:47 OpenVPN 2.5.9 x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] built on Sep 29 2023
2024-04-14 12:09:47 library versions: OpenSSL 3.0.2 15 Mar 2022, LZO 2.10
2024-04-14 12:09:47 Outgoing Control Channel Authentication: Using 512 bit message hash 'SHA512' for HMAC authentication
2024-04-14 12:09:47 Incoming Control Channel Authentication: Using 512 bit message hash 'SHA512' for HMAC authentication
2024-04-14 12:09:47 TCP/UDP: Preserving recently used remote address: [AF_INET]52.208.87.208:1194
2024-04-14 12:09:47 Socket Buffers: R=[131072->131072] S=[16384->16384]
2024-04-14 12:09:47 Attempting to establish TCP connection with [AF_INET]52.208.87.208:1194 [nonblock]
2024-04-14 12:09:47 TCP: connect to [AF_INET]52.208.87.208:1194 failed: Connection refused
2024-04-14 12:09:47 SIGUSR1[connection failed(soft),init_instance] received, process restarting
2024-04-14 12:09:47 Restart pause, 5 second(s)
c^C2024-04-14 12:09:49 SIGINT[hard,init_instance] received, process exiting

Did you tried to connect WebSocket or HTML polling or long polling or something else

wdym ?

tryhackme.com/access > network > cicdbuildsecurity , downloaded config and tried to connect

ok

do you know any solution ?

no

hello, I am unable to connect to tryhackme vpn using gnome networkmanager, but I am able to connect using the terminal. I am kind of frustrated because I had an arch linux install that was working that this problem started on first, so I thought it was my arch install. I completely wiped arch and installed ubuntu LTS and I am still having the same issue. I have tried switching servers and regenerating the openvpn file but I am not having any luck. I have my syslog file but unsure how to upload it here

Use the CLI to connect, which server did you use?

I am using US West VIP. Connecting using network manager is mainly a convenience thing, but if it's happening in two OS'es I unsure if it is my system.

Apr 14 03:31:58 Ubuntu-Linux nm-openvpn[4229]: WARNING: normally if you use --mssfix and/or --fragment, you should also set --tun-mtu 1500 (currently it is 1470) Apr 14 03:31:58 Ubuntu-Linux nm-openvpn[4229]: TCP/UDP: Preserving recently used remote address: [AF_INET]ipaddress:1194 Apr 14 03:31:58 Ubuntu-Linux nm-openvpn[4229]: UDP link local: (not bound) Apr 14 03:31:58 Ubuntu-Linux nm-openvpn[4229]: UDP link remote: [AF_INET]ipaddress:1194 Apr 14 03:31:58 Ubuntu-Linux nm-openvpn[4229]: WARNING: 'link-mtu' is used inconsistently, local='link-mtu 1555', remote='link-mtu 1601' Apr 14 03:31:58 Ubuntu-Linux nm-openvpn[4229]: WARNING: 'tun-mtu' is used inconsistently, local='tun-mtu 1470', remote='tun-mtu 1500' Apr 14 03:31:58 Ubuntu-Linux nm-openvpn[4229]: WARNING: 'keysize' is used inconsistently, local='keysize 128', remote='keysize 256' Apr 14 03:31:58 Ubuntu-Linux nm-openvpn[4229]: [server] Peer Connection Initiated with [AF_INET]ipaddress:1194 Apr 14 03:31:59 Ubuntu-Linux NetworkManager[749]: <warn> [1713087119.6260] vpn[0x645f8e2a0480,a0ae24a3-2ccc-42bc-8631-140b971bbe6a,"myusername"]: connect timeout exceeded Apr 14 03:31:59 Ubuntu-Linux nm-openvpn-serv[4225]: Connect timer expired, disconnecting.

If you set up the network manager, it shifts all your traffic through the VPN, which won't work as the VPN is only a tunnel

Apr 14 03:31:59 Ubuntu-Linux nm-openvpn[4229]: SIGTERM received, sending exit notification to peer Apr 14 03:31:59 Ubuntu-Linux nm-openvpn[4229]: OPTIONS ERROR: failed to negotiate cipher with server. Add the server's cipher ('AES-256-CBC') to --data-ciphers (currently 'AES-256-GCM:AES-128-GCM') if you want to connect to this server. Apr 14 03:31:59 Ubuntu-Linux nm-openvpn[4229]: ERROR: Failed to apply push options Apr 14 03:31:59 Ubuntu-Linux nm-openvpn[4229]: Failed to open tun/tap interface Apr 14 03:31:59 Ubuntu-Linux nm-openvpn[4229]: Converting soft SIGUSR1 received during exit notification to SIGTERM Apr 14 03:31:59 Ubuntu-Linux nm-openvpn[4229]: SIGTERM[soft,exit-with-notification] received, process exiting Apr 14 03:32:00 Ubuntu-Linux ubuntu-report[1847]: level=error msg="data were not delivered successfully to metrics server, retrying in 120s"

I am unsure if that means anything

Hey i wanna buy year subscription but i cant with credit card or paypal my country dont provide that

Any help via skrill or crypto?

Unfortunately we do not support these payment methods.

If you cannot pay via the website then you will be unable to subscribe.

Okey thanks

Hell THM team there is a glitch in the following room : https://tryhackme.com/r/room/windows10privesc

the machine is shutting after more or less one hour, even if there is time left to use it. Happened 3 times in a row for me.

youtube

Yeah, it's a licence thing, it's not a glitch.

bro ```2024-04-14 19:34:52 Cipher negotiation is disabled since neither P2MP client nor server mode is enabled
Options error: You must define TUN/TAP device (--dev)
Use --help for more information.

Which server?

cicdandbuildsecurity network

im stuck here 🥲 . i tried adding cipher BF-CBC to file and did what not still not working

2024-04-14 19:56:44 --cipher is not set. Previous OpenVPN version defaulted to BF-CBC as fallback when cipher negotiation failed in this case. If you need this fallback please add '--data-ciphers-fallback BF-CBC' to your configuration and/or add BF-CBC to --data-ciphers.

At the access page, does it say EU Regular 3?

it is network section

those are for machines ig

Oh network config

Can you show us the whole output?

wait

@late coral

ok

If you verify you can send a screenshot

2024-04-14 20:04:16 --cipher is not set. Previous OpenVPN version defaulted to BF-CBC as fallback when cipher negotiation failed in this case. If you need this fallback please add '--data-ciphers-fallback BF-CBC' to your configuration and/or add BF-CBC to --data-ciphers.
2024-04-14 20:04:16 OpenVPN 2.5.9 x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] built on Sep 29 2023
2024-04-14 20:04:16 library versions: OpenSSL 3.0.2 15 Mar 2022, LZO 2.10
2024-04-14 20:04:16 Outgoing Control Channel Authentication: Using 512 bit message hash 'SHA512' for HMAC authentication
2024-04-14 20:04:16 Incoming Control Channel Authentication: Using 512 bit message hash 'SHA512' for HMAC authentication
2024-04-14 20:04:16 TCP/UDP: Preserving recently used remote address: [AF_INET]52.16.254.6:1194
2024-04-14 20:04:16 Socket Buffers: R=[131072->131072] S=[16384->16384]
2024-04-14 20:04:16 Attempting to establish TCP connection with [AF_INET]52.16.254.6:1194 [nonblock]
2024-04-14 20:04:16 TCP: connect to [AF_INET]52.16.254.6:1194 failed: Connection refused
2024-04-14 20:04:16 SIGUSR1[connection failed(soft),init_instance] received, process restarting
2024-04-14 20:04:16 Restart pause, 5 second(s)

Hello, I cant seem to connect via openvpn. I was using WSL2 and I would get the standard "Initialization Sequence Completed" but back in the THM access console it wouldnt show connected and I couldnt connect to the virtual machine instance for the lab.

Then I figured maybe it was some weird issue with how WSL is config so I spun up an instance of Kali in VB and same thing but now I get this after: "Initialization Sequence Completed
2024-04-14 07:33:05 Data Channel: cipher 'AES-256-CBC', auth 'SHA512', peer-id: 64
2024-04-14 07:33:05 Timers: ping 5, ping-restart 120
2024-04-14 07:33:05 Protocol options: explicit-exit-notify 3
"
This explicit exit.

So then I thought maybe there was some unique identifier in the config so I regenerated a new and same thing. but I see a connection to tun0 so Im lost and really really want to get this setup working:
tun0: flags=4305<UP,POINTOPOINT,RUNNING,NOARP,MULTICAST> mtu 1500
inet 10.6.4.221 netmask 255.255.128.0 destination 10.6.4.221
inet6 fe80::385c:4765:3a8a:7409 prefixlen 64 scopeid 0x20<link>
unspec 00-00-00-00-00-00-00-00-00-00-00-00-00-00-00-00 txqueuelen 500 (UNSPEC)
RX packets 0 bytes 0 (0.0 B)
RX errors 0 dropped 0 overruns 0 frame 0
TX packets 22 bytes 2384 (2.3 KiB)
TX errors 0 dropped 0 overruns 0 carrier 0 collisions 0

THM Access page is currently not stable. It seems to be connected. Can you access http://10.10.10.10?

Yea but I cant access the target machine

By access, what do you mean?

ping?

Hmm.. Ok ofc now it works. I mean in this case since the lab spins up a browser instance if I paste the IP of the attack machine in the browser after connecting to openvpn it would just timeout

I think the issue was that I wasnt opening a browser instance from my guest OS running while using WSL

Simple mistake to make

You guys are so responsive with your help and feedback btw! Thank you big time

You're welcome

WSL can sometimes be a bit unstable with the VPN

Yeah, I recommend VMWare

Its just WSL is SOOOO much faster

You can also try Hyper-V Manager which is installed by default on Windows

It's very fast

here's the error

output

Have you tried regenerating?

more then 10 times

Leave the room then join back

👀?

Try this

its working fine on my friends pc idk what's wrong on my

How could I arrange them, I couldn't pull them out 🙂🙆‍♂️

Are you on a mobile device?