#site-support

try accessing 10.10.10.10

check if this is accessable

or else try downloading something if still problem then switch vpn

not working

how can i use another vpn?

not working

how can i combine another vpn with vm tryhackme

https://tryhackme.com/access u can download another vpn from here

@quick kraken

or why not try with attackbox of thm , as cyborg is a small room u try it with attackbox as well

click on your profile and then access

Box creator?

there's no such role

sorry

i didn't know

Attackbox, VM, works slower, and I can use AttackBox 1 time per hour, when I'll come home, I'll try another VPN, thanks 🙏🏿

Gave +1 Rep to @light laurel (current: #2080 - 1)

I'm trying to update my email to my academic email address, but that block is greyed out ... I presume because I use my google account to authenticate...
Is there a work around?

does anyone know when i try to bruteforce an login page Ethically it gives me a wrong password

I am trying to utilize the student discount on subscription

Youl need to contact supo

Support

Which login page are you trying to break in to?

To add on what Scrubz asked you, by "ethically", do you have explicit or documented permission from the confirmed site owner and other relevant stakeholders?

Phishing Analysis Fundamentals -> Task 4 -> https://mediatemple.net/community/products/all/204643950/understanding-an-email-header
link not working

Forwarded to staff.

https://proton.me/blog/what-are-email-headers#:~:text=An email header is a,visible header at the top.

Here is an alternative

The same task 4, 2nd question:
Once you find the email sender's IP address, where can you retrieve more information about the IP?

i tried to find on the internet info about any websites, didn't get anything in particular.
when i googled the answer for that it was http://www.arin.net; no idea how it is expected to get that answer.

You actually need to use the link you want access.

https://web.archive.org/web/20230323231252/https://mediatemple.net/community/products/all/204643950/understanding-an-email-header

You can use this link to see the old link.

Ok, the last link has arin in it.

Which server?

Is there a other sever close you can try?

How are you connecting?

Can you add sudo?

Gave +1 Rep to @weary spindle (current: #1 - 2277)

Done. Thanks.

Gave +1 Rep to @weary spindle (current: #1 - 2279)

why it doesn't show me the os

Does it give you the rest of the information okay?

yes

but i need the os version, i belive its on the os

Strange, maybe retry, as it gave me the information.

You'd be correct.

i think its a problem

or its normal

Attackbox or own VM?

attackbox {kali}

Attackbox or Kali Web box?

(The attackbox isn't Kali)

im using kali linux

Try the Attackbox, as it worked for me

thx

i am able to view 10.10.10.10 and see my vpn/THM ip but unable to access machine. can anyone help me?

Which machine are you trying to access?

Are you still on the Kali web box?

no no sorry it was my fault actually. BTW thanks.

Gave +1 Rep to @weary spindle (current: #1 - 2280)

Hello. I have lost the access to my 2fa app and I have 2fa enabled in my account. How do I disable 2FA with help of THM support

You need to email Support.

I do not see an email id in the account. Is it possible if you can share please?

Thanks

anybody help im trying over a hour , im at task4 Exploiting SMB , it does not work what is wrong with my line.

Look at your command.

It should be obvious.

Can you see it?

no

//10.10.87.147/profiels

Can you see it now?

over an hour you say..

tf? what is it

You've spelt profiles wrong.

its time to get off

thx scrubz

Hello,
have been trying to submit my write-up since yesterday, still same error. (invalid url)

Guys i have a question abt OpenVPN. So I'm connected on Kali Linux VM, I noticed when I type find my IP on browser it's still my IP. So how am I supposed to use this vpn?

What's the URL you try to submit?

https://medium.com/@MrHDK/cyberlens-5d39ea4ff23b

What do you need help with, exactly?

So I do OpenVPN username and it connects

But I can't type any commands in the terminal

Does the terminal say connection initlized?

Yes

Ok, just minimise that window.

Ok

Done

Now which room are you attempting to solve?

just a guess: Is it because medium paywalls articles? no clue really

Windows privesc

Press the green start machine button.

Aight

Done

And you interact with the IP that appears

So connect to OpenVPN in terminal 1 then close terminal 1 and open terminal 2 and the connects to terminal 2 but not to the browser?

Like this is what I don't understand

Don't close it, minimise it.

If you close it, you close the connection.

Ok minimize terminal 1 and open terminal 2 , let's say I have to scan the victim machine

Yeah, you can use nmap for that

When I scan it from terminal 2 I am connected to the VPN and the victim sees the ip of thm?

Then it will allow it to be scanned as they're on the same network.

The VPN doesn't change your browsing control, it only allows the machines to talk to the other machines on the network

Aight thx, so after I connect to ovpn I always have the ip of ovpn on any terminal I use if I interact with the victim ip

Like for reverse shell I would use the ip of the vpn and i would see it on my terminal?

That IP is used to catch any reverse shells etc

It appears on the top right hand corner for me.

Yes I think I got it

Thx

working only us-west-regular-1

Does THM not accept Github links for writeup submissions?

Yes, there's loads of them

I missed the "not". They are accepted.

I thought so as well, but I was getting a "this is not a valid URL" message when I was trying to upload one. Had to pivot to a tinyURL

Unless something changed since they were all submitted and approved.

I just submitted mine without problems.

Hmm, must have been something with the URL itself then. Thanks for verifying!

My URL is in #thm-community-media if you want to compare what might have been different

Yeah I think since mine had spaces in the name, it didn't like the %20s

u mean u 're able to do stuff right ?

like nmap scans etc

Same issue here, pelase if u know how to resolve it let me know

I wrapped mine in a tinyURL and submitted that way successfully

are there known issues with booting windows machines in general? I can't seem to be able to control the windows machine, Guacamole Server Connection seems to be instable

I haven't encounted issues booting / spinning up Windows targets in THM (though I only did a handful of them to date). Is there a specific room you are having an issue with?

pls someone can help me

with?

have to be more specific

VPN Server working only US-West-Regular-1 but my ping becomes 350

Eu-1 not connect
Eu-2 Connected, but not ping 10.10.10.10, not working ip on ctf
Eu-3 not connect. infinite restarts

I guess only THM staff could help you with that

ohhh, i see, i wrote on their mail, but their answer didn't helps me

i still waiting their next answer

hie THM Team i am trying to run vpn on my main host kali linux os and it's not working ? help?

xd also such a problem

Kali is not intended to be a daily driver so you might encounter issues later on.

However, how are you connecting to THM OpenVPN?

When using EU-Reg-2, have you waited for ~2 to 3 minutes before you generated your OpenVPN config?

ok, this is confusing, or i'm really stupid. Some of the rooms in THM, I can visit them without logging in. But if I'm logged in, it redirects me to the subscription page. (Like "Intro to Lan https://tryhackme.com/room/introtolan"). Are these rooms free or paid? I'm a complete beginner, learnt about THM recently.

Here's a list of free rooms: https://tryhackme.com/r/resources/blog/free-offensive-security-training

"Intro to LAN" is not on it, so you'd need a subscription.

And that's despite that room showing up in the search as free and having Free Room. Anyone can deploy virtual machines in the room (without being subscribed)! at the bottom of the page. That's apparently out of date info.

So I was told.

Hi! Thank you very much for this.

Gave +1 Rep to @errant breach (current: #392 - 12)

I saw one of my senior finished this room long ago. and he said he didn't pay for premium. Was this room ever free before ??

I believe it was, yes.

ok, that clarifies it. Thank you again.

And they haven't updated the text since it was paywalled

Something I don't quite understand...

yeah, there are a lot more like this.

thanks for the list tho, i'm gonna stick to that.

Windows Local Persistence https://tryhackme.com/r/room/windowslocalpersistence

Hi Support. I can't access any room via openvpn. please help checking the log file. thank you.

Have you tried a different server?

yes. i tired mutiple servers and different vpn and rooms e.g. exploitad , breachad , holo

Network vpn won't give you access to standard rooms.

Which country are you from?

Hong Kong

normally i don't see this part on ifconfig :
"unspec 00-00-00-00-00-00-00-00-00-00-00-00-00-00-00-00 txqueuelen 500 (UNSPEC)"

was running holo room and suddenly the connection lost and i tried reconnect then this happen

So it's an intermittent error?

no idea. it just happen today

So yes.

Are you on a home network or other?

home network

Which vpn do you normally connect to?

wdym which vpn do i normally connect to?

personal vpn?

i can't use any openvpn file provided by tryhackme

No, openvpn server for TryHackMe.

You said this started today, which server did you use prior?

only holo

INDIA server

Have you tried any of the VIP vpn's?

no

Try EU-Vip-1

seems working now. let me check the holo room again

is that any holo-vip vpn? or only the normal one?

Holo only has one VPN.

You can try using the cog button on the to leave for 15 min(s) and re enter with a new subnet, then ensuring your regenerating the configuration before downloading a new one.

seems my room stuck.

where's the cog button? you mean let the room reset itself?

Nah.

Hit leave

ok then i wait for 15mins to connect back

atleast 15.

Should place you on a subnet.

thanks. will get back to you

@weary spindle Same issue.

I connect to the holo-openvpn file but seems no connection to the server side

That page can be broken.

I tried different physical desktop same issue happen

Do ip a

I should be able to ping 10.200.108.33 (L-SRV01) and visit its sites but I couldn't process them right now

i give up on using vpn. luckily still can use web kali for this room thank you for the support @weary spindle

Gave +1 Rep to @weary spindle (current: #1 - 2284)

Hello I have a question, does anyone know if a bug bounty learning path will be added to TryHackMe ?

Not at this moment, no.

But could a learning path be added in the future ?

I mean, the majoroty of bug bounty is just owasp top 10, so who knows.

okay no problem thanks

There is a web application path coming out

Which can be conidered somewhat as bug bounties

With the current rooms being released, looks like a bug bounty path might be in the making... I'm not THM staff so I don't really know... But it sure looks that way 😎

Ahh nvm web app pentesting... Same thing tho 😉

I can't say what's in the making 😄

how accurate is the streak feature? I ask because I worked on rooms yesterday and i think i was at 12 or 13 days in a row. however, it has reset to 1 today. I think the issue has a lot to do with I'm in the US and days start and end at different times than THM...

Make sure no vpn is turned on and click this, it will take you the the dashboard and this should update your timezone https://tryhackme.com/api/user/update-timezone

Could be an incorrect timezone

hello some one can help me i can connect to vpn here is the log

"""

Try using the us-west region, seen a lot of ppl having issues with OpenVPN lately

i change region for eu but dont work

here is the message

"""WARNING: Compression for receiving enabled. Compression has been used in the past to break encryption. Sent packets are not compressed unless "allow-compression yes" is also set.
2024-05-21 13:32:00 Note: --cipher is not set. OpenVPN versions before 2.5 defaulted to BF-CBC as fallback when cipher negotiation failed in this case. If you need this fallback please add '--data-ciphers-fallback BF-CBC' to your configuration and/or add BF-CBC to --data-ciphers.
2024-05-21 13:32:00 Note: '--allow-compression' is not set to 'no', disabling data channel offload.
2024-05-21 13:32:00 OpenVPN 2.6.9 x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] [DCO]
2024-05-21 13:32:00 library versions: OpenSSL 3.2.2-dev , LZO 2.10
2024-05-21 13:32:00 DCO version: N/A
2024-05-21 13:32:00 OpenSSL: error:0480006C:PEM routines::no start line:Expecting: CERTIFICATE
2024-05-21 13:32:00 OpenSSL: error:0A080009:SSL routines::PEM lib:
2024-05-21 13:32:00 Cannot load inline certificate file
2024-05-21 13:32:00 Exiting due to fatal error
"""

Yea I know... Try using us-west though

Had some success helping others with this same problem using us-west ...

@autumn lynx is work thank so much

Gave +1 Rep to @autumn lynx (current: #98 - 65)

thank you. who do i contact to get the streak back?

Gave +1 Rep to @wind wedge (current: #54 - 124)

You can email us at support@tryhackme.com

thank you again!

I hope this is the right place to ask but every time I try and open any room I haven't done yet in the intro to cyber security room, I constantly get prompted to subscribe. I'm assuming its a free room so I'm a bit confused

its not free

It could just be a premium room

first few are, but eventually for that path you need to subscribe

ohhh okay thanks for letting me know

it's worth it. i find the classes here are quite good. ive done stuff with this virtual machines i havent done in years 😛

Hi guys. Can someone help with something pls?
Iam trying to connect to thm with openvpn. I already got my linux vm, i installed openvpn, i downloaded the machine configuration file, but when i try to do the command: "sudo openvpn /path/file-name.ovpn" i get a fatal error, because it couldnt load the inline certificate file
Idk what iam doing wrong. I watched a video on youtube and iam doing exactly what iam supposed to do, i think

Im thinking of getting it cause I'm going to be pursuing cyber security professionally anyways.

i run sudo openvpn from the folder tht contains the ovpn file

Yah iam doing that, and i get the error... :/

but i recently added it to a script that specifies full path, still works

can someone help me ?

im at task 4 of network services i cant get the info of the file

Try regenerating your openvpn configs

put filenames with spaces in " "

you've opened a file called "Working" in nano with that command

i think its the right one but still

Try using us-west region

That worked!! Thanks a lot!

Gave +1 Rep to @autumn lynx (current: #96 - 66)

This should be in #room-help but you may have created a new file... What's the output when you run ls -la

I keep getting error messages that I gave the wrong answer, but the answers are correct. Is this a known issue?

Which room, task, and question you are doing?

NVM, I was entering words not numbers.

Delete and get it again from smb

Hello,
I am new on TryHackMe.
I have completed the 'Network Fundamentals' module, all rooms are green.
There's nothing left open, but unfortunately, I haven't received my badge.
I would be very grateful if you could help me.
Thank you.

Hey so I lost access to my 2fa app but I still have the backup codes (which is how I was able to login) but now I want to disable it to put it on another auth. I went to settings but to disable it I need a 2fa code and my backup codes are not working. Can anyone help?

Does it give you an error?

it says the code is incorrect

You will need to email us at support@tryhackme.com

Task 7 of #exploitingad room. my attempt to use Rubeus tool failed with this error - [X] KRB-ERROR (16) : KDC_ERR_PADATA_TYPE_NOSUPP.

seems like a common issue here. anyone has a solution?

I keep having a instable connection with the windows machine im on, linux works fine

Just wanted you to know it is not only you, I'm dealing with same issue in only the burp suite basics room ( https://tryhackme.com/r/room/burpsuitebasics ) ; it's so laggy, i cant even complete it, unable to interact with answer boxes

Thanks for your comment, I was so confused by how bad the lag was I wondered if it was a site-wide issue but can confirm it's only that room

Gave +1 Rep to @runic heart (current: #1385 - 2)

attackbox is very slow

today

what i can do

use your own local attack vm is an option
or wait for a while and see if it speeds up

https://www.virtualbox.org

source room not working , ide room also

hii, im having some problems with thm machines, yesterday i started doing "fowsniff ctf" but the machine website cant be loaded even nmap scan is failed with 0 ports open, now i tried "source" room i still get same thing nmap scan with 0 port open, anyone have experienced with this? anyone knows fix or thm has some problems for now? also openvpn is configured

did you find solution?

I think generally my network shit

But who knows?

Hi when i terminate an attackbox, the machine is reset or not ?

Yes, it reverts back to the state it was blooted up in.

Alright thanks

Gave +1 Rep to @weary spindle (current: #1 - 2290)

Thanks @autumn lynx for the help. I was having the same issue as @pine scarab connecting to the openvpen.

Gave +1 Rep to @autumn lynx (current: #95 - 67)

Have you noticed that the username and password are sent in clear text. What is the category of this security risk?

Can you elaborate on what do you mean by "not working"?

Are you connected to THM OpenVPN when trying to access the machine / targets (unless you are using the Attackbox)?

Have you tried doing a Google search on this? You should find a hint on what to look for. 😀

hello, I'm facing an issue with my streak, on my dashboard, my streak near my profile is 170, and on the questions answered panel, it is 169, is it happening with anyone else.?

afaik this is a known bug

hmm... ok thank you

Gave +1 Rep to @errant breach (current: #321 - 15)

Yeah, I had that problem only using that rooom, is probably due to how the site is build and the use of gif videos that may take a lot of memory to load and play at the same time + burp suite is also using quite a lot of CPU

That is so weird. Even on the tasks with lots of pictures I have no problems whatsoever, and that's on a crap machine with hundreds of tabs open in both Chrome and Firefox. Burp and VS Code are also open. Wonder what causes the different experience.

now go on burp page

it has long gifs

that s the only noticeable difference

I am on the burp page linked here

task 12 for example with the large animated gif

no difference here

OS?

Or task 14 with several

Win 10

me and probably also the other guy were on Kali

if not I am left totally clueless to what might have cause that problem

It's not as amazingly snappy as on my i7 desktop, but scrolls smoothly and far, far away from being unable to interact with it/complete tasks.

mystery

fair

yeah is a total mystery then

Can any1 please help with VPN connection, I have this error:
VERIFY ERROR: depth=1, error=self-signed certificate in certificate chain: CN=ChangeMe

Which server are you trying?

How do I put the incorrect timezone back? lost a day in the streak in real time 😂

Wdym incorrect? lol

If you want to change your time zone, just use a vpn and log in.

Or E-mail support and ask them to reset it back.

I was lurking the threads and I saw the way to fix the timezones, but since the TZ was originally on UK time and Im on US PT...I lost a whole day on my streak haha

its not a big deal really..

You'll probably be easier using support tbh.

I see

email support and wait...or just answer another questions...hmmm decisions

Yes

How much was your streak?

Which machine are you tyring to access?

I was at 29. Today would have been 30 🥲

You can continue, ask support, and they will add it.

Ok I’ll try it out. Thanks

Gave +1 Rep to @weary spindle (current: #1 - 2295)

Try using a different region... I know the errors are not the same as the others but it could be the config file you've downloaded... I'd suggest using us-west ...

just logged into my THM account showing different numbers in my skills matrix, is there anything I can do to make it go back to before?

Worse or better?

worse 😦

im not sure of the exact numbers but I know I was in the 90s with linux and now its saying 45

same

Before :

Now :

:/

They could have re-worked tags.

Which leads to this.

Remember, it's still in beta

I see, thank you :)

Also new rooms get added too, which could make the number go down.

I don't think it could go down that much just by having published 2-3 rooms x)

No, but tag changes and new rooms published would hit it quite a bit.

is there a time line for when its out of beta?

Nah.

o.m.g.

mine shrunk too. it used to look like a rat now it looks a distant NASA image from the outer universe

a sad day..

NASAs image of the day... on THM

no skills matrix shrinking

Yes, it seems to have been updated I have asked for confirmation

guys I have a problem with my openvpn connection
when I try to connect it keeps connecting forever when I downloaded the troubleshoot sh script it said tun0 wasn't there

how do I fix it

I'm using pop os

im connecting using openvpn, when i do nmap scan it will respond 0 ports open also there is a webserver on machine and it doesnt even loads when i enter on browser

My machine is linux pro max 14

Are you on the attackbox or vpn?

vpn

Maybe vpn issue?

Is the vpn on?

Yes

Can you confirm by doing ip a | grep "tun"

$ ip a | grep "tun"
4: tun0: <POINTOPOINT,MULTICAST,NOARP,UP,LOWER_UP> mtu 1500 qdisc fq_codel state UNKNOWN group default qlen 500
inet 10.9.4.109/16 scope global tun0

And which machine are you tryign to access?

You mean room

Source?

Yeah...

Is the room called "source" ?

Yes

Bro thx for help @weary spindle

And how are you trying to connect?

Oh I though that was something I did, My Linux skill went from 65 to like 30

I'm like it definitely did not.

Hello, we're looking into this. 🙂

yo bro can you help me on that too, im having same experience he has

0 port open on scan result

and webserver isnt loading

i also connect with openvpn

pinging machine will give response

What room are you doing?

"fowsniff ctf" "source" and "ide"

i tried these 3

and same thing

How are you connecting to those machines or targets - OpenVPN or Attackbox?

Have you clicked on the green Start Machine button to spin up the targets?

having troubles with my terminal in attack box. im on authentication bypass/logic flaw. I have written the curl code in and shows that the page source code is different but when i go to the website it hasn't changed. I don't understand i followed the instructions. if anyone could help me that would be great.

Which room are you doing?

jr penetration tester > introduction to web hacking > authentication bypass

Did you do all the commands?

yes. I did have to shut down the terminal at task 3 to go to a doctor appointment. would that have messed with everything for task 4?

I don't think so.

okay ill try again from the start

same thing changes in the terminal but not the website.

first i set vpn sudo openvpn name.ovpn
then click the green "start machine" button
after waiting 60 seconds, this ip 10.10.11.11 is shown
do nmap scan nmap -sCV --open -p- 10.10.11.11
and the scan result is "1 host (0 port open)"
also there is a webserver in port 80
going this website on browser http://10.10.11.11:80 is does nothing, browser says cant reach this page

hi, is anyone else feeling that the site is very slow? (my internet is fast 300mps> )

Go to http://10.10.10.10

Doesn't seem to be slow on mine.

What does the last few lines of the OpenVPN log say?

it's strange, when i ping thm the connection seems good

it got better now but i was struggling for an hour

alright i just tried doing all of this again today and it seems working now, but this was happened like for 3 days, i guess its somehow fixed?

thanks for responding

Hello, can you please recheck? 🙂

Mine is back to normal.

Yes !! Thank :D

Gave +1 Rep to @tawdry orbit (current: #16 - 444)

Awesome. 🥳

https://tryhackme.com/r/room/introtooffensivesecurity?path=presecurity site doesn't load on my pc

Launcher is disabled in settings or current page does not match display conditions; this is the error in the console it gives me

Failed to load resource: the server responded with a status of 404 ()

guys can i do openvpn on ubuntu server on my laptop as a beginner?

Hey guys. Is this normal:

Hello i am just getting started with hacking. Which learning path should i use? my goal is to just have fun and learn pen testing (i want a lot of labs)

Start with the basics Beginner rated and go from there. You can always go back and revisit areas you want to refresh, and explore new intros of tools as well

What do you mean? 0xD is the highest level at the moment and you still earn points as you complete rooms.

it still shows 0xD as the next rank. And also the points are on 20000+/20000

just wanted to know if that is normal

You might want to take a test drive of the platform first:

#site-support message

You can then decide if you want to subscribe and complete the learning paths.

Yep, it is.

cool. Thanks

http://machine_ip/customers/signup can anyone connect to this? its for a task i'm on but I can't connect =/

Nope.

okay, i'll just work on something else in the mean time. Thanks!

You will have to start the machine attached to the task/room and change the machine_ip with the machines IP.

i see, it's saying I already have three open machines. Is there a way to see my open machines?

Go to previous rooms you did to terminate them if you havent.

okay, thanks

Event: Download denied
User:
User type: Initiator
Application name: brave.exe
Application path: C:\Program Files\BraveSoftware\Brave-Browser\Application
Component: Safe Browsing
Result description: Blocked
Type: Software that may cause harm
Name: HEUR:HackTool.Script.Inject.heur
Precision: Heuristic Analysis
Threat level: Medium
Object type: File
Object name: tasks?roomCode=windowsapi
Object path: https://tryhackme.com/api/v2/rooms
MD5 of an object: 5CD1E8EA01DF9420602ADB66A802CC2E
Reason: Expert analysis
Databases release date: 23/05/2024 8:12:00 PM

First time getting this

is it a false positive

?

#site-support message

do i need to make Port forwarding with openvpn server or not?

There shouldn't be a need to do so. What issue are you having?

i just want to make sure, it's pain i don't want to do it

Does THM support ever lurk these channels?

Yes

Ok cool thanks!

Gave +1 Rep to @bronze vale (current: #6 - 1245)

Depending on your concern though, it would be best to drop the THM Support Team an email.

I did, that’s why I was wondering if they checked the channel . And the answers are auto generated so can’t really explain what happened. I’ll just wait for the reply

Oh.. THM Support don't work on weekends and if I remember correctly, the SLA on the response time is ~3 to 5 working days (I may be wrong though).

Ah Yes that makes sense.

hello i put Local Cache for an anwser to this question "Where is the very first place your computer would look to find the IP address of a domain?" it suppose to be right but it said Uh-oh! Your answer is incorrect

Its not. If you read the task text, you'll find the answer there.

What makes you think it's right?

It used to be what you entered, that's why it's in all the walkthroughs online. Then it was corrected without being transparent about it, as usual.

It's a community member created room...

  .then(r => r.json())
  .then(vms =>
    vms.forEach(vm =>
      fetch('/api/vm/terminate', {
        method: 'POST',
        body: JSON.stringify({ code: vm.roomId }),
        headers: {
          'csrf-token': csrfToken,
          'Content-Type': 'application/json'
        }
      })
    )
  )```

Run this script in browser console

@iron idol

Yeah was reacting to a queston in General Scrubz xD

It's also in the hint section where they can get the answer.

thanks

Gave +1 Rep to @stiff barn (current: #173 - 37)

although restarting the site works well too

That's potentially an argument if corrections are made transparently in THM created rooms. Which they are not to my knowledge.

Not much of an argument, changes are addressed in the server in channels whenever people find them.

If THM implemented all the changes community members wanted they wouldn't have time to create new content.

You misunderstood me. I wasn't talking about implementing changes in the first place but about being transparent when changes/corrections are made. The discord server where not even 1% of users are present and even less search the server history for every room they attempt, that's not transparency.

That paid-for rooms like Snort-Challenge1 have been blatantly wrong for >25 months despite paying subscribers reporting them several times over the years with zero feedback, that's an entirely different discussion.

Not one for this channel, #feedback-and-ideas please 🙂

Response will most likely be Tuesday or Wednesday as it’s a bank holiday on monday but it mainly depends on how many tickets we have

yo

guys

Hey

openvpn 6alal.ovpn
2024-05-25 13:52:36 WARNING: Compression for receiving enabled. Compression has been used in the past to break encryption. Sent packets are not compressed unless "allow-compression yes" is also set.
2024-05-25 13:52:36 Note: --cipher is not set. OpenVPN versions before 2.5 defaulted to BF-CBC as fallback when cipher negotiation failed in this case. If you need this fallback please add '--data-ciphers-fallback BF-CBC' to your configuration and/or add BF-CBC to --data-ciphers.
2024-05-25 13:52:36 Note: '--allow-compression' is not set to 'no', disabling data channel offload.
2024-05-25 13:52:36 OpenVPN 2.6.9 x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] [DCO]
2024-05-25 13:52:36 library versions: OpenSSL 3.2.2-dev , LZO 2.10
2024-05-25 13:52:36 DCO version: N/A
2024-05-25 13:52:36 OpenSSL: error:04800064:PEM routines::bad base64 decode:
2024-05-25 13:52:36 OpenSSL: error:0A080009:SSL routines::PEM lib:
2024-05-25 13:52:36 Cannot load inline certificate file
2024-05-25 13:52:36 Exiting due to fatal error

SOS

i cant login

Which server you on?

EU 1

Regenerate and switch to EU 2

bet

ok so its from eu 1 ?

cuz incase it happens to my frnds

Worked thanks sm bro

Gave +1 Rep to @wind wedge (current: #54 - 125)

No worries I completely understand. I just left details in an email for whenever yall get to it

Hello, the password reset part is not working, what should I do?

Hello, the password reset part is not working, what should I do?

If you're not getting an email you'll need to contact support.

thank you

how can i disable the develop mode removing the button in the navbar?

I have problems connecting via VPN, here are my Logs:

2024-05-26 15:04:47 WARNING: Compression for receiving enabled. Compression has been used in the past to break encryption. Sent packets are not compressed unless "allow-compression yes" is also set.
2024-05-26 15:04:47 Note: --cipher is not set. OpenVPN versions before 2.5 defaulted to BF-CBC as fallback when cipher negotiation failed in this case. If you need this fallback please add '--data-ciphers-fallback BF-CBC' to your configuration and/or add BF-CBC to --data-ciphers.
2024-05-26 15:04:47 Note: '--allow-compression' is not set to 'no', disabling data channel offload.
2024-05-26 15:04:47 OpenVPN 2.6.5 x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] [DCO]
2024-05-26 15:04:47 library versions: OpenSSL 3.0.10 1 Aug 2023, LZO 2.10
2024-05-26 15:04:47 DCO version: N/A
2024-05-26 15:04:47 OpenSSL: error:0480006C:PEM routines::no start line
2024-05-26 15:04:47 OpenSSL: error:0A080009:SSL routines::PEM lib
2024-05-26 15:04:47 Cannot load inline certificate file
2024-05-26 15:04:47 Exiting due to fatal error

I am using Kubuntu 23.10, OpenVPN 2.6.5 and OpenSSL 3.0.10

Fixed it, I had to swich VPN Server a bunch of times

Hello, I want to ask if the issuance of a certificate after completing the training is free or is it paid?

You need to complete all the rooms in the path to get the certificate. So you will need to have a subscription to the rooms then complete them before you can get the certificate

I have a paid subscription

i know i have to complete all the trainings

my question is whether this certificate is paid? 😀

Wdym?

Is it paid?

I don't know if it was paid. That's why I'm asking 🙂

It's paid as in, you need to pay for THM subscription to access the rooms on the path, as each path is not 100% free.

that's what i did. I have a paid subscription

Then you can access the rooms and get the cert.

Yes, I know this. But my question is whether the certificate must be paid separately from the paid subscription?

Oh!

Not at all.

The only the thing that is paid outside the subscription is the AWS path.

I understand. Thanks 👍 😀

Hello All, I need to report a room bug "httpindetail"

the very last task is not working "POST the username of thm and a password of letmein to /login"

can someone check it ?

More people are having an issue, I'll ping staff.

Yeah, I had a similar issue there aswell. Also the request area isn't updating when you add your parameters.

That makes 2 of us . Please check Scrubz . Thank you 🙂

I can't check, I can only let staff know.

ok

Where's the best place to report room bugs?

#room-bugs

ahh i see, missed it

This is a general question about THM and AttackBox. Should I install the update? I didn't even think the machine was connected to the outside internet so I wasn't sure.

The attack box is connected to the outside internet. Never installed the update, has never been a problem.

Thank you!

Gave +1 Rep to @errant breach (current: #245 - 21)

I got the following error when i try to connect to the vpn:Fatal Error: Inline Certificate is invalid

I tried using different vpn servers and regenerating but it did not work. Any suggestion about how to solve it?

2024-05-26 19:59:10 Note: --cipher is not set. OpenVPN versions before 2.5 defaulted to BF-CBC as fallback when cipher negotiation failed in this case. If you need this fallback please add '--data-ciphers-fallback BF-CBC' to your configuration and/or add BF-CBC to --data-ciphers.
2024-05-26 19:59:10 Note: '--allow-compression' is not set to 'no', disabling data channel offload.
2024-05-26 19:59:10 OpenVPN 2.6.7 x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] [DCO]
2024-05-26 19:59:10 library versions: OpenSSL 3.1.4 24 Oct 2023, LZO 2.10
2024-05-26 19:59:10 DCO version: N/A
2024-05-26 19:59:10 OpenSSL: error:0480006C:PEM routines::no start line:Expecting: CERTIFICATE
2024-05-26 19:59:10 OpenSSL: error:0A080009:SSL routines::PEM lib:
2024-05-26 19:59:10 Cannot load inline certificate file
2024-05-26 19:59:10 Exiting due to fatal error

Im having problems trying to connect to my openvpn

I can't connect to tryhackme's VPN on Kali Linux, as Fatal Error keeps appearing, how can I solve it?

Are you using sudo?

Only subscribers have an external network. 🙂

Which THM OpenVPN server are you using?

Which THM OpenVPN server are you using?

Yes

Do you think it could be because I have the Proxy installed?

Use proxy?

I have it installed

Do you think I should uninstall the Proxy and try to connect again?

Which proxy?

I was trying all the Eu. But after trying more it got fixed

I think the thm website is slowing down my firefox

even selecting text is a pain

In a specific room or everywhere?

Im doing aoc2023, I havent tried others

could it be due to using ublock origin

I see it is blocking domains in thousands

sometimes it goes up to 10k

I have proxychains installed

Thay could be an issue.

Do you think it would be good for me to reinstall Kali on my virtual machine again?

hi guys

I enroll in learning path pre-cybersecurity and in task 7 last question i encounter a problem that i can't find the login page, can someone help me with it pls

Which room?

it's HTTP in detail

Is this the post question?

yes, even if i do exactly like it asked, it shows me that cannot find the page

Known bug, staff have it in their list to fix.

Please just skip 🙂

😮

thank you very much

proxychains Strict chain ... 127.0.0.1:9050 ... 10.200.113.31:445 <--denied
any idea?

Do you need proxy chains?

Thank you!

Gave +1 Rep to @weary spindle (current: #1 - 2316)

Need it to log in into SERV...

Phishing Analysis Tools;
task 7: phising case 1.
Last question "What is the shortened URL? Defang the URL."
After i used cyberchef inside the machine for the task i got 19 urls, but the needed ones are
hxxps[://]t[.]co/yuxfZm8KPg?amp=3D=
or
hxxps[://]t[.]co/yuxfZm8KPg?amp=3D1

the answer is: hxxps[://]t[.]co/yuxfZm8KPg?amp==1

Why i didn't get that answer?

Hello!
how can i disable the develop mode removing the button in the navbar?

https://tryhackme.com/develop-rooms

The network services rooms are set to private? Is that intentional?

Hey, I'm trying to connect to the THM VPN using openvpn. I've followed every guide that I could find online and they all say the same thing and it isn't working. I keep getting a TLS error saying that key negotiation failed. I'm using openvpn-2.6.10 from the pacman package manager.

This is my log when trying to connect:

2024-05-28 00:36:11 Note: --cipher is not set. OpenVPN versions before 2.5 defaulted to BF-CBC as fallback when cipher negotiation failed in this case. If you need this fallback please add '--data-ciphers-fallback BF-CBC' to your configuration and/or add BF-CBC to --data-ciphers.
2024-05-28 00:36:11 Note: cipher 'AES-256-CBC' in --data-ciphers is not supported by ovpn-dco, disabling data channel offload.
2024-05-28 00:36:11 OpenVPN 2.6.10 [git:makepkg/ba0f62fb950c56a0+] x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] [DCO] built on Mar 20 2024
2024-05-28 00:36:11 library versions: OpenSSL 3.2.1 30 Jan 2024, LZO 2.10
2024-05-28 00:36:11 DCO version: N/A
2024-05-28 00:36:11 TCP/UDP: Preserving recently used remote address: [AF_INET]52.4.198.155:1194
2024-05-28 00:36:11 Socket Buffers: R=[212992->212992] S=[212992->212992]
2024-05-28 00:36:11 UDPv4 link local: (not bound)
2024-05-28 00:36:11 UDPv4 link remote: [AF_INET]52.4.198.155:1194
2024-05-28 00:37:11 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
2024-05-28 00:37:11 TLS Error: TLS handshake failed
2024-05-28 00:37:11 SIGUSR1[soft,tls-error] received, process restarting
2024-05-28 00:37:11 Restart pause, 1 second(s)
2024-05-28 00:37:12 TCP/UDP: Preserving recently used remote address: [AF_INET]52.4.198.155:1194
2024-05-28 00:37:12 Socket Buffers: R=[212992->212992] S=[212992->212992]
2024-05-28 00:37:12 UDPv4 link local: (not bound)
2024-05-28 00:37:12 UDPv4 link remote: [AF_INET]52.4.198.155:1194
^C2024-05-28 00:37:20 event_wait : Interrupted system call (fd=-1,code=4)
2024-05-28 00:37:20 SIGTERM received, sending exit notification to peer
2024-05-28 00:37:24 SIGTERM[soft,exit-with-notification] received, process exiting

and yes I'm running with sudo

Rooms marked as private are either dated as determined by THM Staff, pending QA or Testing or those that were deemed by the creator as requiring an update or catered for certain users only.

Which THM OpenVPN server are you trying to connect to?

They're not private.

They may be a subscription room now.

Hey guys, i am a noob doing the wreath room on kali linux running via utm on a mac. After activating openvpn, tryhackme is still disconnected. Anyone could help? I tried all the troubleshooting that i found online. Thanks in advance 🙂

The access page or broken, ignore that

Are you using the wreath vpn?

Yes

Yes

Is your vpn file empty?

No i check that

In the task bar i see my new ip address after launching it but tryhackme says its not active

Which part is saying you're not active.

?*

Top part where it says access

If i click on that it shows “disconnected”

And i couldnt continue with one exercise as it wasn’t giving me the complete results

That is broken ignore it.

Oh ok. Can i send you a screenshot later to double check?

@main merlin
@.scrubz.

Of the issue i was having?

experiencing the same issue

Dang

Maybe there is no fix to it..

shit how can we access it then?

Maybe the attack box would be the only solution. But I would prefer to do it on my VM

Hi, can anyone help me? I have 366 days streak today, but not get 365 days badges? Where I can send request. Thanks

Hello everyone! I am new here and i stumbled into a strange issue with the TryHackMe website.
In ALL of the rooms i try to complete that involve any website ON THE MACHINE ATTACKBOX the URLs simply take forever to load.
So out of the 1 hour i got i sit 30 minuetes in wait for a url to load for pentest.
I also tried the use OPENVPN to finish the rooms on my VM but to my anger that option too is blocked.
I need help i am way behind my class because od this and im desperate, please help me

Same here with openvpn wreath network

Why is the vpn blocked?

What he meant was the access page is broken, but you can still connect to THM OpenVPN.

You could try dropping an email to THM Support

@snow bobcat

@weary spindle @ivory spruce
The OPENVPN for me does not work, i even got a script from my lecturer to fix it and yet its still doesnt work.
I have to got to work now but as soon as im back ill upload both how the tryhackme site is slow and what errors i got while trying to connect with openvpn

I have already sent out an email for support on THM i hope they'll answer because im really angry at how this site treated me

A few questions:

1. How are you connecting to THM OpenVPN?
2. What OS are you using?
3. Which country are you trying to connect from?
4. Is the connection you are using a home connection or managed by someone else?

I have also sent a mail yesterday but heard nothing back yet. Let’s see!

In my case:

1. With terminator
2. Kali Linux Via UTM
3. Luxembourg
4. Home Connection

Utmm

Utm?

Hello all, how could I expedite the response to my queries on THM portal? any email ID other than support@tryhackme.com (regarding card details deletion and / or account deletion) for quick response

Support@tryhackme.com is the only way really.

okay, thanks

Don't email multiple times.

Just once and wait patiently

ok

Hey, I'm trying to connect to the THM VPN using openvpn. I tried to connect first from Windows but it didn't work, even following the most common resolution guides and also regenerating the certificate, but nothing. I then tried to download it on my Kali Linux machine and it didn't work there too. When I try to connect it gives me the error (look at the last lines for the error):

Tue May 28 15:07:57 2024 Note: cipher 'AES-256-CBC' in --data-ciphers is not supported by ovpn-dco, disabling data channel offload.
Tue May 28 15:07:57 2024 OpenVPN 2.6.8 [git:v2.6.8/3b0d9489cc423da3] Windows [SSL (OpenSSL)] [LZO] [LZ4] [PKCS11] [AEAD] [DCO] built on Nov 17 2023
Tue May 28 15:07:57 2024 Windows version 10.0 (Windows 10 or greater), amd64 executable
Tue May 28 15:07:57 2024 library versions: OpenSSL 3.1.4 24 Oct 2023, LZO 2.10
Tue May 28 15:07:57 2024 DCO version: 1.0.0
Tue May 28 15:07:57 2024 MANAGEMENT: TCP Socket listening on [AF_INET]127.0.0.1:25343
Tue May 28 15:07:57 2024 Need hold release from management interface, waiting...
Tue May 28 15:07:57 2024 MANAGEMENT: Client connected from [AF_INET]127.0.0.1:58470
Tue May 28 15:07:57 2024 MANAGEMENT: CMD 'state on'
Tue May 28 15:07:57 2024 MANAGEMENT: CMD 'log on all'
Tue May 28 15:07:57 2024 MANAGEMENT: CMD 'echo on all'
Tue May 28 15:07:57 2024 MANAGEMENT: CMD 'bytecount 5'
Tue May 28 15:07:57 2024 MANAGEMENT: CMD 'state'
Tue May 28 15:07:57 2024 MANAGEMENT: CMD 'hold off'
Tue May 28 15:07:57 2024 MANAGEMENT: CMD 'hold release'
Tue May 28 15:07:57 2024 TCP/UDP: Preserving recently used remote address: [AF_INET]18.202.168.160:1194
Tue May 28 15:07:57 2024 Socket Buffers: R=[65536->65536] S=[65536->65536]
Tue May 28 15:07:57 2024 UDPv4 link local: (not bound)
Tue May 28 15:07:57 2024 UDPv4 link remote: [AF_INET]18.202.168.160:1194

Tue May 28 15:07:58 2024 MANAGEMENT: >STATE:1716901678,AUTH,,,,,,
Tue May 28 15:07:58 2024 TLS: Initial packet from [AF_INET]18.202.168.160:1194, sid=3160291b 081412ab
Tue May 28 15:07:58 2024 VERIFY ERROR: depth=1, error=self-signed certificate in certificate chain: CN=ChangeMe, serial=425397202556807641543660048237946304772097879576
Tue May 28 15:07:58 2024 OpenSSL: error:0A000086:SSL routines::certificate verify failed:
Tue May 28 15:07:58 2024 TLS_ERROR: BIO read tls_read_plaintext error
Tue May 28 15:07:58 2024 TLS Error: TLS object -> incoming plaintext read error
Tue May 28 15:07:58 2024 TLS Error: TLS handshake failed```

Can anyone help me, please?

US-East-Regular-1

i have also tried to connect to US-West-Regular-1 and I've redownloaded the configuration file for both servers

@ivory spruce i am unable to connect through OPENVPN i get an error on my VM
2 i am using a kali linux VM machine
3 Israel
4 home connection

I am running a script by MuirlandOracle that is supposetly resolving my issue, i would upload a screenshot but the server wont allow me

But that wont resolve any issue with the computer i still get an error message while i try to connect via openvpm
I have switched servers for all of the eu servers as well as tried to use attackbox but each comes with its own problems

Also redownloaded the files for each server seperatly multiple times

Its a VM

Yeah

Ok i solved it, my classmate told me how to@main merlin
Now what you need is first to download the namefile for your openvpn
Then sudo openvpn [your name]
And as long as you didnt get an error youre good.
After that open a terminal and a THM page and press START MACHINE on THM (not start attackbox)
Then wait 2/3 minuetes and ping the IP adress THM gave you.
If theres a ping youre inside THM and can work with it.
Your browser is also in this so you can put IPs from THM to access in your browser
Worked for me GL fixing yours

You could try downloading and using us-west region. That has seemed to help other user with connecting to OpenVPN. Whether it still works or is having issues also 🤷🏼‍♂️. But give it a shot

Interesting! Thanks, will try this and get back to you

Gave +1 Rep to @swift tendon (current: #2084 - 1)

I would also try us-west region

Also if you'd like to send screenshots you will need to verify first

Can also just ping 10.10.10.10 and if you receive any packets then you are connected to THM network

I don't want to believe it... it really worked! And I had stopped to try the only two European ones thinking they all had the same error at that point. A thousand thanks!

Gave +1 Rep to @autumn lynx (current: #92 - 69)

No problem

#site-support message you can try this if you are still having issues connecting to OpenVPN

i had already tried connecting to us west. and I redownloaded the config file for each server and did the change from cipher to data-ciphers

Whats the error you get using us-west without editing data-ciphers..? From the output from above I do see errors but I also see sigterm...

If all else fails I guess you could always use an older version of OpenVPN before 2.5... probably not the recommended fix but it should work, I did this when OpenVPN updated a while back... @heady pine

the sigterm was me pressing ctrl+c to stop the vpn

Yea I know

That's why I asked what errors did you get without editing the config file of us-west ..

i dont think I tested wothout editing the config for us-west, but every test I did resulted in the same TLS error after 60 seconds

I would try us-west again without editing and see what errors you receive...

ok. ill try it out when I can

Do I have to install this even if I only have to use the wreath network vpn?

Ahh with the network config files 🤷🏼‍♂️. I think using the attackbox would be able to connect to wreath network though.

I know but I wanted to use terminal on kali linux. But i guess there’s no other solution so I might just do that

Wonder if you could use us-west to connect to THM network then run attackbox and use attackbox as a jump box to connect to wreath 🤷🏼‍♂️. Haven't tried it but it might be possible.

I get this when trying to open the config file:
sudo] password for kali:
2024-05-28 17:32:04 Note: --cipher is not set. OpenVPN versions before 2.5 defaulted to BF-CBC as fallback when cipher negotiation failed in this case. If you need this fallback please add '--data-ciphers-fallback BF-CBC' to your configuration and/or add BF-CBC to --data-ciphers.

You might be able to get it to work if you add BF-CBC to --data-ciphers and add the fallback option. Or another thing would be to revert to an older version of OpenVPN. Although idk if these are recommended but should fix the issue.

Thx! I dmd you

Sorry to ask again, I have started a virtual machine instance in a room but this machine is not connected to the internet in general. Is there any way to get me to send a file from the vm to my pc? PS. I am already connected to VPN and the ping between the two machines works.

Target machines generally have no internet connection. There are ways to transfer files from them to your computer, but I don't know if that's within THM ToS

If you wanted to transfer a file to the THM attackbox, you'd use something like python3 -m http.server 8080 on the target and then wget server:8080/file on the THM attackbox

I already tried it but there isn't python in the target machine

Then SCP might make it happen

You could probably also copy&paste some C-code for a simple web server and compiile it on the target. If two machines are connected, it's almost impossible to stop you from exchanging files.
But if you had to go to such great lengths, it's probably not necessary to solve the room

Is there python3? nvm I see that is what was suggested

I can try, thanks

Gave +1 Rep to @errant breach (current: #224 - 24)

Out of curiosity: Which file do you want to look at?

I would like to download a 1Gb digital forensic image from room/caseb4dm755

Otherwise for a text file I would have copied the text directly block by block at worst, as you suggested

We do not suggest that you take files from target machines. If they happen to cause damage to your machine, you are fully liable for the damages caused 🙂
Please make sure you are not helping users transfer TryHackMe educational material off the target machines.

We purposely make the files only available on the machines for your safety

I pointed out that I do not know whether that's ok with THM ToS. Know I know the answer.

Sorry, my bad for ask the question. It's just that the room is really interesting except that my professor had asked to rigorously use autopsy for the analysis of the image while the room has me create the image with FTK-imager and then also has it "analysed" with that

Now you have a valid reason for not doing your homework

Ahahahah of course that I have

Done. Thx

Gave +1 Rep to @west chasm (current: #176 - 36)

@autumn lynx using US-West-Regular-1 with no modifications worked. Oddly enough, downloading the us-west config already included the data-ciphers tag, and now I can't remember exactly what modifications I made to it last time. I also saw an extra option in the us-west config called comp-lzo which had no effect when adding it to the us-east config

how do i change it to usa?

wdym

@white turtle

I see，really appriaciate it

hello guys ,here i met some problems: i wanna learn the lessons with my iPad,and when I logged in THM with the Ggoogle and switched the desktop site,then screen turnt into blank,is there some ways to fix it?

The website isn't really optimised for mobile devices.

fine

actually i really you one day we can use an app LOL

thanks for your response

Gave +1 Rep to @weary spindle (current: #1 - 2325)

can someone help me with this error with connecting openvpn?
i cant send the image of it
Error message: Peer certificate verification failure

Which server are you using?

Which os and country?

I am now using windows - EU-Regular-3 - Czech Republic @weary spindle

I tried it on Kali linux and didnt works

Use number 2.

same error

Can you verify and screen?

If you're using Windows, can you use the communicaties OpenVPN please?

(Would not suggest hackin from your host.)

why

why?

Hi, many task files fail to download in my system as my browser says the file is malicious. Is this expected?

Because you're placing your host computer on the THM vpn, although THM monitors all traffic, we can't (and won't) assure you that somebody won't try and mess with your system.

What are you downloading?

Remember many task files are malware, or mimic malware, and any hacking tools will be flagged also.

what vpn or proxy should i used

or is the safest

Depends on the task. For instance, https://tryhackme.com/r/room/encryptioncrypto101 has rsa file in SSH Authentication task. This shows similar error

No, I don't think I have been in any of such rooms until now

All the content you need to download will be safe to do so, just consider it false positive, if you're unsure.

Post in here/ping me and I can double check.

Ninja gives you signature so you can verify the file.

Your vm, for THM 🙂

kali?

Yeah

and what i should use for normal pentesting?

Got it, Thanks! I didn't exactly understand the part where I can get signature. Can you please help me understand this so I can check from my end as well?

Gave +1 Rep to @weary spindle (current: #1 - 2326)

Depends what you're pentesting, and if you written permission to do so.

But many use Kali in a vm.

but kali didnt masks your ip?

It doesn't no.

and what vpn is the best?

My bad, Ninja doesn't provide the signature for those rooms.

He does in a different room AFAIK.

Which ever suits your need as a user, this topic is for a different channe; (using a VPN and the openVPN won't work either)

Hey guys im currently doing the introductory to network course. Im in the dig section. The question is where is the first place your computer would look to find the ip address of a domain. I type local cache. Then googled the answer to get local cache again but even when i copy and paste its incorrect. Does anyone know the answer?

#room-help

Open vpn continusly giving me this error < SIGUSR1[soft,network-unreachable] received, process restarting , restart pause [..]sec > when I try to connect my local mechine with tryhack me. I'm using parrot os and Eu-VIP-1 openvpn configaration. Help me out of this.

Try eu 2

Tried

But cann't connect

Which os and country?

@muted hinge Please no DM's without permission (Unless it's regaring another user and needs immediate attention)

it when you write i want to identify whats a problem. I think you want I send the screenshot of it

You can verify your account and post it in here. 🙂

okey

parrot os and Bangladesh.

Just to confirm, are you a subscriber?

Yeah

Are you using sudo when you run your OpenVPN command?

Yes

Although the error message you got says network unreachable, which shouldn't be the case.

I'm using my mobile hostspot. It can be cause of this error.

and also using breached network in my vm

Oh.. if I remember it correctly, there should be a separate OpenVPN file for breaching AD

Can you send the that link?

should I switch NAT Network?

It shouldn't be necessary. Have you joined the network?

No

You should join the network first, then click on your profile image, select access, in the screen, there should be a selection for machines and networks, select networks and you should be able to generate your OpenVPN config for it.

I alredy generate openvpn configuration file 3-4 times also change server EU-VIP2 to VIP1. But Can't

That is for the Machines

There should be a 'Networks' word right next to it.

hi, how come i got the peer cert error when i connec tthe openvpn

Number of reasons,

which server are you tying?

i am having issue with my attack box
in a room of AD enumeration but enumad interface is not showing

Please don't multi post in different channels, this is considered spam.

ok

any ideas how to fix it

Which of the >800 THM rooms are you talking about?

also room questions should be asked in #room-help or #room-hints

It's just to keep things in places where you are more likely to get help

tried few. EU, IND. i based in singapore

Afternoon guys, I most often use my PC on a company owned network which blocks the use of OpenVPN. Does anyone have any advice for other options/circumvent this? I would use the in browser machine but it tends to run quite slowly

Attackbox is your only option.

Or ask the company to unblock port 1194

Though that might be the case, thanks for the help

How can I view Certificates I have earned on THM?

Only by going the paths.

Which stage of penetration testing involves using publicly available information? R:Information collection

What is your question?

Osint, is the use of publicly available information.

hi, I'm having hard time connecting to openvpn with my kali machine in windows 11. this is the output after I run sudo openvpn <filename>:

sudo openvpn --config ||nigaroido||.ovpn
2024-05-30 12:44:59 WARNING: Compression for receiving enabled. Compression has been used in the past to break encryption. Sent packets are not compressed unless "allow-compression yes" is also set.
2024-05-30 12:44:59 WARNING: Compression for sending and receiving enabled. Compression has been used in the past to break encryption. Allowing compression allows attacks that break encryption. Using "--allow-compression yes" is strongly discouraged for common usage. See --compress in the manual page for more information 
2024-05-30 12:44:59 Note: --data-cipher-fallback with cipher 'BF-CBC' disables data channel offload.
2024-05-30 12:44:59 OpenVPN 2.6.7 x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] [DCO]
2024-05-30 12:44:59 library versions: OpenSSL 3.1.4 24 Oct 2023, LZO 2.10
2024-05-30 12:44:59 DCO version: N/A
2024-05-30 12:44:59 WARNING: INSECURE cipher (BF-CBC) with block size less than 128 bit (64 bit).  This allows attacks like SWEET32.  Mitigate by using a --cipher with a larger block size (e.g. AES-256-CBC). Support for these insecure ciphers will be removed in OpenVPN 2.7.
2024-05-30 12:44:59 TCP/UDP: Preserving recently used remote address: [AF_INET]54.193.240.194:1194
2024-05-30 12:44:59 Socket Buffers: R=[212992->212992] S=[212992->212992]
2024-05-30 12:44:59 UDPv4 link local: (not bound)
2024-05-30 12:44:59 UDPv4 link remote: [AF_INET]54.193.240.194:1194
2024-05-30 12:45:59 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
2024-05-30 12:45:59 TLS Error: TLS handshake failed
2024-05-30 12:45:59 SIGUSR1[soft,tls-error] received, process restarting
2024-05-30 12:45:59 Restart pause, 1 second(s)
2024-05-30 12:46:00 TCP/UDP: Preserving recently used remote address: [AF_INET]54.193.240.194:1194
2024-05-30 12:46:00 Socket Buffers: R=[212992->212992] S=[212992->212992]
2024-05-30 12:46:00 UDPv4 link local: (not bound)
2024-05-30 12:46:00 UDPv4 link remote: [AF_INET]54.193.240.194:1194

this is my configuration file: config.bash

i have the same error, still can’t find the answer for this question

Which server as this? (ignore the ping inroom help, this is the channel for VPN etc)

You can try using the us-west region, that one seems to be working properly.

^^

I fixed it

looked up the configuration file and saw that the <cert>[empty]</cert> cenrtification wasn't even there, so I tried some other locations and finally found the working one. Additionally I killed all the processes for openvpn, ensure you have only one when you do ps aux | grep openvpn

also ensure you first change location and then generate each time you download, otherwise the configurations will stay the same

funny part is that wherever I looked upon, I saw similar solution but only after digging into it, hence really understanding what causing the issue I was able to fix it.

idk why but it says that medium is an invalid url

try https://www.med... etc?

same

When I submitted a write-up for Blizzard a couple of weeks ago somebody also ran into this problem. Don't know if they resolved it but it's not new. Github worked for me back then.

Is anyone expieriencing the site being unresponsive? Its barely taking up any memory and its the only page that keeps consistently crashing in my browser --please assume I checked/troubleshooted the obvious.

If you can @ me Id appreciate it

Could dark reader somehow be crashing the site/pages?

I am on the Linux Priv escalation room of pentest+ and the screen keeps freezing, none of my other windows in chrome have issues. I have to constantly exit the page and go back to tryhackme, anyone else have this issue? its never happened with any other room

The same thing happened to me with the Linux Process Analysis room. Every 2 minutes, if I copied something to the clipboard, the tab would freeze and become unresponsive. The only solution was to exit and re-enter the page, as refreshing the page did not fix the problem.

Happening to me as well on multiple rooms now. Has made things take a lot longer to complete. The error code :Result_code_hung been doing labs most of the week and havent had this issue. =/

It shouldn't be. Haven't had any issues with dark reader on since.

seems like they are having issues if multiple people are having the same issue today

I've been getting a ton of issues as well for OSI and a couple other rooms.

Exiting and re-entering the page has since stopped fixing it for me.

@olive veldt experiencing the same thing you are with the code_hung.

Thanks guys!

agreed

Same here

I love THM but for some reason they deal with alot of issues 🤦🏻‍♂️

Having same freezing problem with Linux Fundamentals room. Same problem in FF and Edge.

Why does my access page show "No connection" for OpenVPN but the VPN connected in the command line successfully ?

Page is borked, so long as you can access 10.10.10.10, you should be good.

Aii bet. I just connected to US West to fix it lol

Hmm I thought I had an isolated issue when tryhackme tab started using a entire CPU core and pretty much crashing the tab.
but looks like others are also complaining on reddit.
Still looking for a way to reproduce but It happened twice

Also I don't think you had this much telemetry before but the telemetry from customer.io is making a little too many requests

and cpu spike to 100% happened again

I am trying to download my certificate after completing the Pre-Security Learning path but when I click on download it just shows fetching certificate, please wait message and then disappears. I am not able to download it at all.

I don't know, it's just me who has such a problem!
The room - "adventofcyber2023" works very terribly (slows down, freezes, reacts slowly, eats the ram resource)?
I did not notice this in the previous rooms of "Advent of Cyber".
Is this normal or is it being treated somehow?🤷‍♂️

Do you have an adblocker?

Hi guys, is it only me who experiences bad performance on TryHackMe? I had to reload page for 3 times in 20 minutes, it just freezes and I can't do anything, while the rest of the tabs in my browser and browser itself operate well