#site-support

i am unable to connect to openvpn

TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
2024-06-02 19:33:11 TLS Error: TLS handshake failed

Which THM OpenVPN server are you trying to connect to?

i need help
i can connect to openvpn i can ping 10.10.10.10 but still its showing not access in thm

So long as you can connect to 10.10.10.10 and it shows you your tun0, you should be good. The access page is broken at the moment.

but i cant access the machine_ip:8088

lab 17 of owasp 2021

can you help me with that?

Can you share the last few lines of your OpenVPN log? 5 to 6 lines should do.

2024-06-02 19:04:16 ROUTE_GATEWAY 192.168.212.109/255.255.255.0 IFACE=enx865b9a4116bb HWADDR=86:5b:9a:41:16:bb
2024-06-02 19:04:16 TUN/TAP device tun0 opened
2024-06-02 19:04:16 net_iface_mtu_set: mtu 1500 for tun0
2024-06-02 19:04:16 net_iface_up: set tun0 up
2024-06-02 19:04:16 net_addr_v4_add: 10.9.0.43/16 dev tun0
2024-06-02 19:04:16 net_route_v4_add: 10.10.0.0/16 via 10.9.0.1 dev [NULL] table 0 metric 1000
2024-06-02 19:04:16 Initialization Sequence Completed
2024-06-02 19:04:16 Data Channel: cipher 'AES-256-CBC', auth 'SHA512', peer-id: 52, compression: 'stub'
2024-06-02 19:04:16 Timers: ping 5, ping-restart 120
2024-06-02 19:04:16 Protocol options: explicit-exit-notify 3

Oh wait... did you click on the green Start Machine button attached or referred to the task you are working on?

nope

Yes, this says you are connected.

That's the issue then.

there isnt any

Which room and task are you doing?

wait its in task 2

Thank you

its working now

Thank You @ivory spruce

Gave +1 Rep to @ivory spruce (current: #13 - 573)

REGULAR-IN

Try the AU or EU-Reg-2 server and wait for ~2 to 3 minutes after changing your VPN server before generating your ovpn config file.

let me check

for AU openvpn says "initialization sequence completed" but i cannot ping thm machines and on the access page it says i am not connected

The access page is broken.. Also, what specific THM machine are you trying to send a ping request to?

I got some serious tribble with openvpn

Can you describe the issue you are having?

Sure, so sometime when I use openvpn I see "packet HMAC authentication failed" this error

Also my internet is fast

Sharing a screenshot of it would enable me to assist you easier. Also what THM OpenVPN server are you using?

sure

i don't know exactly what server i am using

Can you try to go to the Access page in THM and try to re-generate your ovpn config file?

yes more then 4 times i delete the old file and download it again , but after some time the same issue started

It (where you generated your config file) should show you which THM OpenVPN server you are connecing to.

https://www.tryhackme.com/r/access

wait i will show you

IN-Regular-1

Can you try connecting to any THM VIP OpenVPN servers?

no

Well, its up to you. Being a subscriber, you can access VIP OpenVPN servers which offer better speeds than normal ones.

can you guide me how i can use this ?

plz

In the dropdown where you saw IN-Regular-1, there are other OpenVPN servers in the list that includes VIP servers. After selecting the VIP OpenVPN servers, you can generate you ovpn config file after waiting ~2 to 3 minutes.

Okk i will definitely do that

Room Upload Vulnerabilities - I am try to follow the instructions and install Gobuster. I am getting this error. Am I doing something wrong?

First run apt update

That worked but I'm still getting the same error. Do I need to "upgrade" the packages?

Wait are you a thm subscriber?

Yes

Did you try if it's already installed? Room text mentions Kali but the attackbox is not Kali. I use ffuf so I don't remember. And I always mix up dirbuster with gobuster 😄

That would only upgrade already installed packages.

I ran this and it seems to be already installed, correct?

Yes that's it

So this may be a really dumb question but if I use THM and "start the machine" and start the "AttackBox" is that Linux or Windows?

Thank you!

Gave +1 Rep to @errant breach (current: #135 - 50)

The attackbox is a custom Ubuntu linux. You can run lsb_release -a for details.

Thank you.

So one last question when I am reading through THM rooms and it says something like this. I am going to follow the Linux commands, correct?

If you're using the attackbox in the browser: the Linux commands, yes.

Thank you for your time and help!

By the way you don't need to use sudo on the attackbox since you're automatically logged in as root user, the equivalent of Administrator on a Windows computer. As such you have full permissions to do anything.

hello need help subscribing to premium from india , subscription using card/paypal not working

Please don't multi post.

ok sure

Hello, i have an issue with thm server, i'm using openvpn, sometime i cant ping the server, and sometime i cant, does this happen to anyone else? Thanks

What room and task you are doing where that happens?

https://tryhackme.com/r/room/agentsudoctf

i tried in my VM and it was not stable, now i have openvpn on my mac, and sometime i lost conection

So it's not stable with your mac either?

no =/

Can you verify to be able to send screenshots, and potentially show me some screens e.g. of what you mean exactly by losing connection, and/or how pinging is not working?

Also, it's best to stay with your VM, if it's some sort of linux machine, as troubleshooting might be easier there

ok, i will verify my ccount, and send you screenshot, thanks

@crystal marlin account verified, do you want screenshot by dm or here ?

I think they want it here :p

Uhm, where are you trying these pings from?

Looks like you tried from various places?

i have starlink, but i can use internet without issue, just my ping is not stable.

Okay, I meant more like, are all these screenshots from your VM, because these seem to be all different kinds of terminals?

It would be best if we stick with your VM to troubleshoot, otherwise it's getting confusing

So in your VM, can you show me the output of running ip a

on my VM, linux dont show when connection is stuck (even with -w1 )

so the blank space is when i press enter because nothing happen

And what if you do ping 10.10.10.10?

same behavior

mhh interesting

What if you ping 8.8.8.8?

||Google ip||

Can you provide me with the output I asked regarding running ip a please 🙂

And you are only connected to the Tryhackme VPN within your VM, not on your host machine aswell?
And/or any other private VPN on your host machine?

i try both

and i dont use other VPN

Well make sure the TryHackMe VPN is only running within your VM, not on your host machine as well

yes, when i test on my mac, i stop on VM and i suspend it

Also always make sure you only have a tun0 interface when checking ip a and not any extra like tun1, tun2 etc.
If that's all set, try running sudo ip link set dev tun0 mtu 1200 while being connected to the TryHackMe VPN within your VM

After that, try to ping again to see if it improved

i have only tun0, command passed, and i have the same behavior:
64 bytes from 10.10.10.10: icmp_seq=177 ttl=63 time=48.0 ms 64 bytes from 10.10.10.10: icmp_seq=178 ttl=63 time=89.2 ms 64 bytes from 10.10.10.10: icmp_seq=179 ttl=63 time=219 ms

What about to ping 8.8.8.8 as ACME mentioned?

no issue

Did you pick a VPN on the https://tryhackme.com/r/access page that's the closed to your location?

yes , EU-Regular

Okay one last thing, try sudo ip link set dev tun0 mtu 900
Then run ip a and show me a screenshot of that, then try to ping again

If that's also not helping, then I'm not too sure what might cause this, but most likely due to starlink somehow

and same behavior, ok i understand, thank you for your time !

Sure not a problem, sorry we couldn't solve it

ChatGPT is your best friend😁

I'm having trouble with Burp Suite (Edit: The Basics) room - it barely works. I don't know if it's the gifs that take so much resources, but I've checked other rooms and they work fine, as always. My CPU is more than enough for handling websites, but in this room everything went laggy ah, I can't stand it

Hi, I am trying to finish Request Smuggling lab but when I start the machine I still got the response from the web app: Method Not Allowed. Is there any thing else I should run ? THe same error message I got when access the lab/machine via VPN

Error 405 is the wrong IP in use.

You need to start the machine with the green button, which is normally, but not always, in Task 1.

I started the machine and updated /etc/hosts with machine IP address

and still I have the same messsage

Can you give me the ip please?

one sec I'll try to do it one more time from scratch

@weary spindle 10.10.16.221

Can you share the room?

sure

@weary spindle how can I do this?

@weary spindle ok, it works fine - I notice where I made a mistake

sory for bothering 🙂

have a nice day!

(I thought that attacker's machine is the same machine with running app - RTFM ;))

Hi, not sure if this belongs here, I had redeemed a voucher about 2 weeks ago for a month, my subsription got cancelled ( not by my choice) and now I can¨t access premium rooms, even though I should have 2 weeks left of the premium, I tried sending a message on the site but it hasn't been answered in anyway.

I don't think you can cancel vouchers?

You'll need to wait for support to reply.

Okay, thanks, do you know the operating times of the support on the site? if not, no worries.

Gave +1 Rep to @weary spindle (current: #1 - 2353)

I think it was maximum 7 days

But not sure

No, I think some of support aren't UK times as long as they work within 4 hours of 9-6 and the UK I could be wrong.

Heeeelp

I'm upto Windows priv esc. I'm on task 6 at the moment and the start was not good

I spent hours fixing python3 issues which was resolved after hours of research

#room-help :p

i think it's technical issue

i used python3 instead of python3.9 to do SMB

and i keep getting this error message

[-] SMB2_CREATE: share/sam.hive,578,[Errno 13] Permission denied: 'share/sam.hive'

i will go to room help

Hello, I am Marquise Prudence

I am doing SOC Level 1. I am stock at Phishing Analysis Fundamentals

Can someone help me, please?

Just ask your question :)

I tried to get the answer to this question, but to no avail.

In the above screenshots, what is the URI of the blocked image? Here is the question

Here is the other question, In the attached virtual machine, view the information in email2.txt and reconstruct the PDF using the base64 data. What is the text within the PDF?

hi i am presently thinking to get a premuim but it shows the pricing in pounds but my currency is in rupees if I pay it with my credit card will it change the price to my local currency or will any problem occurs?

Guys my attackbox has become really slow. Even tried clearing history , updating browser. Still not working

hello I am doing Insekube machine but only port 22 seems to be up

Starting Nmap 7.94SVN ( https://nmap.org ) at 2024-06-04 17:45 BST
Nmap scan report for ip-10-10-200-249.eu-west-2.compute.internal (10.10.200.249)
Host is up (0.038s latency).
Not shown: 999 closed tcp ports (reset)
PORT   STATE SERVICE
22/tcp open  ssh

Nmap done: 1 IP address (1 host up) scanned in 0.91 seconds

the machine is it broken ?

Did you try all ports?

yeah I scanned with -p-

Port 80 should be open, how long is the machine up for?

20 min ago

Is the machine still up?

yep

Is the ip correct?

I terminated that one

and using a new one : 10.10.204.60

this one spin it up like 10 min ago

I'll let staff know

thanks !

its being looked in to

any updates ?

Yes it would change to rupees. It was in euros when I bought it and converted to usd when I bought it with my cc

tq

any updates @weary spindle still don't see the HTTP service ?

Not sure when staff will get a chance to address it

Hello, could I relink my profile to discord?

how long I should wait for that port to be set ?

You'll have to politely ask a mod to do it for you when you spot one of them online.

Relink with a different account?

yeah, I deleted the old account that's linked right now and made a new one

You mean Tryhackme account?

yes

i think so

Yeah, your account is deleted. 🙂

so is that an oopsie?

Nope. 🙂

Makes my job easier.

okay perfect

and what are my next steps? im a little rusty

I've unlinked your account/

Just verify with your new one.

We use /verify now

thank you!!!!

need help on a bug

Ask.

am on the room intro to research, but when i am writting the answer, its telling me than the answer isnt good

Most likely you got the wrong answer then.

i search myself and i looked on a walktrough cause i finished everything exept that one step

Walkthroughs are not always right.

hey

i want help~

I have a paid subscription with the site but it wont let me use my premium account

If you open this while logged in to THM
https://tryhackme.com/r/manage-account/subscription

does it say Status Active?

no its asking to subscribe but i already paid for the premium version. its suppose to be active

Then contact support support@tryhackme.com

Ideally with the email address you used to sign up and pay.

thx Im waitin on a response

@broken bear

hello when i try to use openvpn, use the configuration file and try to connect it gives this error message why Wed Jun 5 12:07:06 2024 VERIFY ERROR: depth=1, error=self-signed certificate in certificate chain: CN=ChangeMe, serial=425397202556807641543660048237946304772097879576
Wed Jun 5 12:07:06 2024 Sent fatal SSL alert: unknown CA
Wed Jun 5 12:07:06 2024 OpenSSL: error:0A000086:SSL routines::certificate verify failed:
Wed Jun 5 12:07:06 2024 TLS_ERROR: BIO read tls_read_plaintext error
Wed Jun 5 12:07:06 2024 TLS Error: TLS object -> incoming plaintext read error
Wed Jun 5 12:07:06 2024 TLS Error: TLS handshake failed

2024-06-05 12:08:15 ERROR: Cannot ioctl TUNSETIFF tun: Operation not permitted (errno=1)
2024-06-05 12:08:15 Exiting due to fatal error

Tried to connect via openvpn but I can't. the THM page tells me I'm connected though but I cannot nmap the target machine

fixed mine by changing servers

tried but I stay connected on the other server

closed the terminal and restarted my system but still connected with openvpn

Which server are you trying to connect to?

If a Room has lots of files to download, is there an easy way to do that on an Attackbox? If I try to login to THM on the attackbox I've only got a couple of seconds to hit download before the screen resizes itself in a crazy hall-of-mirrors effect. alternatively I've tried downloading files on my machine and emailing them to myself to get on the attackbox, but I'm not wanting to download any files that might flag the virus scanner (on a work machine).

There is not no.

Which room are you doing?

Reversing ELF (which has a ton of files)

Thats cool, I was just curious if I was missing somethign obvious 😉

If you can link the room, I can host them on a server for you.

Thats very kind, thanks https://tryhackme.com/r/room/reverselfiles

If you open the firefox in the attackbox and visit http://10.11.5.163:9090

Brillant, thanks very much 🙂

Double check firefox let you download them, it might have blocked them.

I got all the files thanks

🙂 Np.

Thanks for the effort. I already made it to completely disconnect from all openvpn servers and establish a new connection which worked👍

Gave +1 Rep to @weary spindle (current: #1 - 2358)

If I start an AttackBox does that mean my computer is "siloed" from whatever I do in the AttackBox and I don't have to worry about viruses or anything bc it is walled off from my real computer, can't harm it and erases when I shut it down?

Yes.

Anything done in the attackbox stays there, then it resets on termination

Thank you! Ok great! So I'm safe from harm as long as I terminate. Does that also apply to VM's I use on my computer outside of THM?

Gave +1 Rep to @weary spindle (current: #1 - 2359)

With VM's there are minor risks with breakouts and stuff.

But nobody want to burn a 0day on a random.

Understood! Thank you! I realize that was bit out of scope so I appreciate your imput!

No worries, its better to be safe than sorry.

I use multiple vms for different use case.

1 for hacking, 1 for malware analysis

I have a question, I started not long time ago and I got the intro to cybersecurity completion cert with my nickname, I want it with my name but I cannot select it anymore I also tried to reset the room, is there a way to choose again?

No, you can't

Once they're generated that's them

Any changes will be made on future certs

Oh okay, absolutely no way to do it?

Photoshop 😄

official way* 😁

Thanks man

hi i joined discord to report a suspicious activity while learning in a room , while opening a port to trensfer a file from attack box to a windows server

When dark theme?

are you a subscriber???

Hey Tryahackme

Hey I was checking the Threat Intelligence Tools room

The answers of the first section URLSCanio part is different from what the exact answers should be

As they already mentioned sites are dunamic and results may vary over time, the accepted answers I was checking in someone's writeup seems to be different from wha actual result of scanning the told website on urlscan.io.

how to connect to vpn everytime i do it it gives me this "2024-06-05 21:19:39 WARNING: Compression for receiving enabled. Compression has been used in the past to break encryption. Sent packets are not compressed unless "allow-compression yes" is also set.
2024-06-05 21:19:39 Note: --cipher is not set. OpenVPN versions before 2.5 defaulted to BF-CBC as fallback when cipher negotiation failed in this case. If you need this fallback please add '--data-ciphers-fallback BF-CBC' to your configuration and/or add BF-CBC to --data-ciphers.
2024-06-05 21:19:39 Note: '--allow-compression' is not set to 'no', disabling data channel offload.
2024-06-05 21:19:39 OpenVPN 2.6.7 x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] [DCO]
2024-06-05 21:19:39 library versions: OpenSSL 3.1.4 24 Oct 2023, LZO 2.10
2024-06-05 21:19:39 DCO version: N/A
2024-06-05 21:19:39 OpenSSL: error:0480006C:PEM routines::no start line:Expecting: CERTIFICATE
2024-06-05 21:19:39 OpenSSL: error:0A080009:SSL routines::PEM lib:
2024-06-05 21:19:39 Cannot load inline certificate file
2024-06-05 21:19:39 Exiting due to fatal error"

Try using the us-west region config file

Yes

was the connection from a 10.x.x.x ip... if not then yeah there are scanners on the public internet and for subscribers the attackbox has an outward connection to the internet

No it was 162.x.x.x something like this , i contacted the support and i send to then a screenshot of the event

First request was 200 the other one with a payload was 403

It was in hex and tried to decod it and found not human readable (binary) i think

If you had spent more time reading the text in the task than 3rd part write-ups...

yeah public scanner then that just randomly hit your attackbox.... no major concern except needing to restart the attackbox or using another port

Ah i understand thanks for the answer

hello, I was wondering if anyone has the same problem as me, when I click on "start machine" I wait 60 seconds for the IP to display after I test the ping normally I transmit the packets and receive them but after a few minutes nothing at all the machine is offline, do you have a solution?

Good Morning,

When I try to connect via OpenVPN, connection fails. Log file shows the following:

⏎[Jun 6, 2024, 06:17:36] Client exception in transport_recv: crypto_alg: BF-CBC: bad cipher for data channel use
⏎[Jun 6, 2024, 06:17:36] Client terminated, restarting in 2000 ms...
⏎[Jun 6, 2024, 06:17:36] SetupClient: transmitting tun destroy request to /var/run/agent_ovpnconnect.sock

I have tried all EU profiles (regular and VIP): Same result. Tried VPN adaptive, TCP, and UDP protcols: Same result

Software: OpenVPN Connect v3.49 (build 4830)

Machine: M2 Pro w/ Sonoma v14.5

How did you install OpenVPN - via brew?

Which room is this?

I downloaded it via the link supplied, which took me to the OpenVPN downloads for macOS

#site-support message

cant access internet on attack box

Carnage room

I have subscription

wait this is probably different from attack box, its machine specific to the carnage room, I still cant access internet on it, its very slow and takes 3s in every click, is there any solution to this?

Attack box is not working properly and restarting after 30 s or so.

Wdym by restarting?

It runs for 10-15 seconds and gets discomnectedctime and time again

Going on from last 5 hours +

I am send you the recording in dm

Please ask for permission before sending dm's.

It's in the rules you accepted.

Very sorry as the recording might consists of pi data didnt check/look through the rules. Will keep that in mind next time. Apology.

Have tried different device, networks for but the issue is same.

1. After opening the attack box it shows disconnected within 10-15 s
2. In the video you can see the attack box screen is reduced to a very small windows which is unusable to do anything.
   Hope this gets resolved. Thankyou.

Is it possible take lecture of tasks in pdf?

Depending on the room, this could touch on TryHackMes copyright.

OpenVPN
A guide to connecting to our network using OpenVPN..... Can anyone help? its not connecting

Which server and os?

Window 11

What you mean by server?... im a newby

You had to download a config to connect with.

Are you using the communities version of OpenVPN?

i would not suggest using your host as the device to hack from.

Can i get some help pls. Any ticket needs to be raised??

Yes i already downlaoded the configure and i impute but same

Please what do you mean by using your host as the device to hack from.?

It's not recommended to use your own computer for hacking thm targets, unless you're using virtual machines.

Okay sir, do you mean I have to get on virtual machine before I use the vpn?

You don't have to but it's recommended for security reasons.

Okay sir, i have virtual machine virtualbox

You don't have to call me a sir by the way.

Okay thank you

is there any admin to help pls

Why do you need an admin? 🤔

my issue is still there. not able to work. not sure where i can seek help in a quick way

THM Admin and mods (although the admin are THM staff) they're not here for site support,

Can you verify and share what you're experiencing?

yes verified. can i share my issue here

Yes

this is how the attack box appears. unable to do anything with such small window

Are you on mobile?

tried several browsers, devices, ips. Inetwork issue is same

no pc

What happened to your old account?

That's strange because it looks like you've opened virtualbox?

i left because i lost the mail linked

Is the profile still in this server?

not anymore

Can you DM me your token?

sure

issue is same with both attack box and kali machine option

what can be done?

It's done

Can you give me the room link please?

yes sure

thanks

https://tryhackme.com/r/room/introtologanalysis

is it this u asking

And you're starting an attaclkbox?

yes issue with both attackbox and kali vm option

Why are you opening both?

opening only one

checked with both

Ah, I see.

Oh wait

Are you opening Tryhackme in the attackbox?

yes in firefox trying to open tryhackme

inside attackbox

Yeah, it's not intended to do that...

That's why it isn't working.

Are you doing that to download the task materials?

yes right need that task material and a linux machine thats why

Yeah...

But did you read the task material?

yes.

So did you miss this part?

anyone knows why I cannot upload image to Discord?

You need to be verified.

thank you !

Hello im trying to connect to tryhackme openvpn but it seem that my openvpn 2.6 is not compatible with the old ovpn files that tryhackme is providing what should i do, thank in advance!

Which server are you trying to access?

EU-Regular-1

Try number 2.

still facing the same issue

2024-06-07 02:15:11 DEPRECATED OPTION: --cipher set to 'AES-256-CBC' but missing in --data-ciphers (AES-256-GCM:AES-128-GCM:CHACHA20-POLY1305). OpenVPN ignores --cipher for cipher negotiations.
2024-06-07 02:15:11 Note: Kernel support for ovpn-dco missing, disabling data channel offload.
2024-06-07 02:15:11 OpenVPN 2.6.3 x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] [DCO]
2024-06-07 02:15:11 library versions: OpenSSL 3.0.10 1 Aug 2023, LZO 2.10
2024-06-07 02:15:11 DCO version: N/A
2024-06-07 02:15:11 TCP/UDP: Preserving recently used remote address: [AF_INET]54.76.30.11:1194
2024-06-07 02:15:11 Socket Buffers: R=[212992->425984] S=[212992->425984]
2024-06-07 02:15:11 UDPv4 link local: (not bound)
2024-06-07 02:15:11 UDPv4 link remote: [AF_INET]54.76.30.11:1194

Strange because it works for me an dI have 2.6

yeah iv read that other people are facing this issue with v 2.6

iv solved the issue by running TryHackMe OpenVPN Troubleshooting Script

So I got the flag on the Unified Kill Chain room though the flag is not getting accepted as the answer. Is there something wrong with the room or did I somehow get the wrong flag?

Task 8 you mean?

yes

What's the flag you're trying with? You can put it between double pipe symbols for a ||spoiler||

||Flag: THM{UKC_SCENARIO}||

That's the correct flag. But starting with THM

Without the Flag: part

thank you. I got so used to keeping ||Flag:|| apart of the answer

Hello I am having issues with openvpn, i followed the troubleshooting guide and it told me to come to the discord and ask for help

What issue are you having?

The connection seems to go through and I get the Initializatoin Sequence Complete message but I cannot connect, the troubleshooter says [-] MTU value failed at 1000, aborting MTU check
[-] Something went wrong -- please ask for further assistance in the TryHackMe Discord server, subreddit, or forum

Can you try running the command described here - #site-support message - while connected to THM OpenVPN?

I tried, still no success

To which THM OpenVPN server are you connecting? And what OS are you using to connect?

US-East-Regular-1

Kali Linux Debian 12 x64

Can you do ip a | grep 'tun' and share the result?

It wont let me upload the image

You'll need to verify your account to do so.

@kindred bloom

What happens when you run:

sudo ip link set dev tun0 mtu 1200

Same as before

Can you share a screenshot please?

And maybe try to connect to http://10.10.10.10 using your browser

@ivory spruce

You set it to 120 and not 1200?

My bad, set it to 1200 and still no luck

You do have your OpenVPN connection or session in another tab / terminal active?

Yes

Yes

What OpenVPN version do you have running?

2.6.9

Is there any other connection you can test your connection on?

Do you have any other VPN connection running on your host?

I can confirm, I had to check on discord to know what that means, I wondered if it was a limited trial coming to an end

I am having problems when starting a machine you get almost no time till expiration. I'll start a room and have like 2 mins to complete it

hey guys, how do I share badges on tryhackme. I cant see any options there

hello

https://tryhackme.com/r/room/h4cked

This is in the 11th question of ctf (Which command did the attacker execute to spawn a new TTY shell?)

as the answer ( ||python3 -c ‘import pty; pty.spawn(“/bin/bash”)’|| )
I'm entering this and when I press reply it says wrong, could you please check?

It's your quotation marks.

Switch them with "

wait

It didn't happen

||python3 -c 'import pty; pty.spawn("/bin/bash")'||

python3 -c 'import pty; pty.spawn(/bin/bash)'

haha okay beo

bro

fix

If you see your quotation marks are different.

i can't get my openvpn working. i'm having the exact same issue as these people but nobody's replied to them on the openvpn forum: https://forums.openvpn.net/viewtopic.php?t=43546

anybody have any idea what the issue is?

What issue do you have? (I'm not clicking the link)

i'm connected to the vpn and 10.10.10.10 loads and says im connected, but the tryhackme access page says i'm not connected

The access page is broken, just ignore it 🙂

cool, thanks!

Could you help me pls, with that
its in: Security Engineer
Network and System Security
Virtualization and Containers
kubernets room

may i ignore this certs

Hello, I just start the machine virtual box but its requesting for username and password, please what do i do?

Is this on your host?

in the virtual box, immediately i start the machine....

Please use #general

This chat is support for TryHackMe.

Hi All! I cannot finish up the room because splunk enterprise license is expired. Am I writing to the right channel ?

Which room?

https://tryhackme.com/r/room/subscribe

hey im doing a room rn the THM attackbox

and when i do su - root from johnny i type the password abc123 and it doesnt work

ikt says auth failure

nvm im a idiot

ls

I am having problems when starting a machine you get almost no time till expiration. I'll start a room and have like 2 mins to complete it. Can anybody help?

Can you share a screenshot of it (for clarity)? You'll need to verify your account to do so.

@patent escarp ^

Hello, it's been a long time since I've used this site. I wanted to repeat a few rooms for my certification exam, but in the room called Active Directory Basics, when I said Start Machine, it used to give only the ip address and the attackbox did not open automatically. But now the attackbox opens automatically, is this a new feature or is it only for this room? The problem basically is " when I click start machine, it automatically opens attackbox".

Does it open an attackbox, or a windows box?

Ups I mean windows box

Yeah, that's fine.

If you want to RDP in to it, just minimise it.

oh get it, is that new feature or smth?

I think it changed when the UI did.

okey got it, thanks for clarification @weary spindle

Gave +1 Rep to @weary spindle (current: #1 - 2370)

hello can someone explain me how to change the mail on my account? because i finish my studies soon ( in middle of jully) and i don't want to loose my progression (the mail adress is an email from the campus ) i try but the box is in grey and no action is possible, thank so much for you're answer! 🙂

You'll need to E=mail support if you can't change the E-mail manually, you can do here.

thank you so much !

Gave +1 Rep to @west chasm (current: #159 - 42)

hello

how fix ?

That happens regularly. If you open downloads in the browser you have an option to ignore it

If you don't trust the file, check it with virustotal.com.

Not only do you trust it, but it doesn't exist 😄 Google doesn't allow downloading without any hassle.

As I mentioned, you can ignore the warning and proceed to download.

Open downloads with ctrl + J

Next to the file there's a selector. Click on it and there's an option to download despite the warning.

@errant breach thank you fix

Gave +1 Rep to @errant breach (current: #82 - 78)

Did you sign up with google?

I'm facing a problem with my open vpn. I tried to fix it with a certificate error but it didn't work.

To which THM OpenVPN server are you connecting to?

I tried different but the error is still the same.
Certificate error i checked version

I think I'm facing this issue rn, how do I verify it is this issue and fix it?

Can you do ip a | grep 'tun' and share the result?

actually, I also have a question on NAT in virtualbox, if I have this tun interface in my vm and I have a reverse shell with my tun0 ip, will it reach my vm or just stop at host?

Theoretically, it should. Can you do sudo ufw status?

hmm, I forgot I did this

Either allow a certain port or disable it.

Yup, that fixed it, thanks

Gave +1 Rep to @ivory spruce (current: #13 - 574)

Hallo
i just getstaretd but i keep get onnection refused

How are you trying to connect?

no i am connenting but every task i do i get connec

connection refused

Are you using the Attackbox or your on VM? If it is the latter, have you connected to THM OpenVPN?

hello

access machines show red instead of green but in access it is green
Cant do nmap's on machines etc, tried multiple vpn packages

The access page isn't always accurate

Are you connected through openvpn?

Hello Team, not able to download wreath's vpn, it just circling and seeing an error below
an unknown error has occurred.

Try leaving the network for 30 mins and then rejoin and try to redownload

Network you meant leaving the room? Sure.

Yea, that should fix the error 🙂

Sure thanks.

i have issue with connecting to my local server

Which server?

no like my local server on port 8080 it is asking for my local server password

Oh, I thought you were doing tryhackme.

Back to #general then 😅

We also won't know your username:password

lol

thanks for your help

hi, i am a beginner here and need some help

With what?

i am unable to understand task 7 mentioned in red team threat intel module, if someone can help, that will be appreciated

The static site?

yeah

You use the APT 41 to choose what you'd use in each stage

there are 7 steps in kill chain, however; static site only allows for 6

Yes, it doesn't ask for them all.

what about the sequence?

I cant seem to copy/paste between a room and the inbrowser attackbox. is this common/fixable?

ty! no shortcutting then?

In Chrome you can open it in full screen and it will get access to your clipboard,

Firefox has blocked Copy/paste via javascript.

yessir

I also had an issue with wreath

and holo, but holo got sorted after I changed to my other network

uugh.. true for most chromium browsers?

I'm not sure about that.

oh and thanks points to @weary spindle

Gave +1 Rep to @weary spindle (current: #1 - 2373)

where do I add feedback about a rooms content?

#feedback-and-ideas

Or depending on the room, maybe the path channel, as sometimes the creators are kicking about.

its for content discovery

I'm not sure which staff member done that room, do you think it's a bug? Or just positive/negative feedback?

no, just a minor improvement. I submitted it. the pipe in the curlexamle was highlighted which I think might be quite confusing for a new linux user

thanks @weary spindle 🙂

Gave +1 Rep to @weary spindle (current: #1 - 2374)

I vaguely remember there even was a user recently who tripped over that.

then my report seems justifed 🙂

Found it #room-help message

hah!

Just wanted to check out if abundance of caution, every time I’m in a room that asks me to download files to use, my computer blocks it and tells me it contains a virus and I shouldn’t open it. Is this normal?

It’s likely just a false positive. Anti-virus usually check the domain and source code of the website when you download files, which can cause it to flag.

You can always air on the side if caution and download into a Virtual Machine if available 🙂

an automated scan found like 500 hits........ in the kali or parrot iso LMAO

I'm having issues trying to recover my account, somehow it isn't sending anything to hotmail

contact support please ^

Thank you so much!

Gave +1 Rep to @weary spindle (current: #1 - 2376)

Hi, I'm having trouble connecting to the VPN. I've tried several servers and downloaded a new config file each time

Any advice 😄

Which THM OpenVPN server are you trying to connect to? From which location are you connecting from?

I've tried a few, but currently EU-Regular-4 from Norway

Can you try EU-Reg-2? Then wait for ~2 to 3 minutes after switching your server before generating your OpenVPN config file?

No luck :/

I do notice that the Internal Virtual IP Address is now 0.0.0.0/not connected

The acces page isn’t always accurate are you able to access 10.10.10.10?

No I get a connection timeout error in openvpn when I try to connect

Can you verify and take a screenshot of the error

Ahh you’re using windows?

hi guys what's the fastest way to transfer room task files to attack box

Which room?

any room that gives files to download

The attackbox has a rooms directory that should have the files in there

I'm on mac sonoma

Install openvpn with brew

The GUI doesn’t work well

There’s a guide on the access page

would you know where it is?

‘cd Rooms’ on the attackbox

where would i find the files for this task?

Ahh looks like that one isn’t added

rip

is there a working site that's quick and easy for transfering file you guys use?

ah nvm it's a common wordlist anyways

Room Affected - Vulnersity - https://tryhackme.com/r/room/vulnversity
Issue - Unable to access machine website
Tried Solutions - Have tried to access the website on both my vm as well as my attack box outside the vm , and yes i'm connected to openvpn , It was working fine yesterday

apparently @stone wren had the same issue but fixed it by specifying the port number the service was being ran on , How do i find that?

Did you scan the IP?

Not always, the older content isn't there.

Hi all, I'm sure this is a common question, but I can't seem to get any data through Ping or Nmap commands for the CTF box, even tho the VPN seems to be connected. This seemed to be fine a few days ago so not sure what happened. I regenerated the key, killed any backgrounds, and restarted the OS. Before I really start messing with it, anyone have any suggestions?

Hey I'm having issues connecting to the vpn on windows, any advice?

What software or application are you using to connect? Also, just to confirm, are you aware on the implications of connecting your host to the THM network?

Which box are you working on?

I was using OpenVPN, what are the implications...?

Other users could potentially access your system

THM has in place safeguards to prevent other users from doing so, but the risk is still there.

What specific OpenVPN software are you using - OpenVPN Connect?

Hi, I made a mistake in the RED TEAM Capstone network and the VPN Server needs a reset because I overwritten the /etc/passwd file.

oh thanks revisiting the room after a while had to finish a couple of other rooms first must've missed it

Gave +1 Rep to @wind wedge (current: #52 - 132)

I think you can vote once every hour

You'll need to tell us your subent too.

@eager adder You can change the VPN Region and regenerate to fix that issue

I don't remember which one was working but yeah, try all of them

I completely forgot how to change this, I've did what the error has told me to do. Tried both separately and together and it still wont

I did AUS because that's closer to my geographical location

Use sudo

Yeah it's still happening

Try regenerate and switch to EU-4

Even if I'm in Oceania? Would that make it slow?

Ohh you're in oceania. Have you tried regenerating and downloading the file?

Done it about 4 times

Try EU-4 and see if it makes a differnece

HEY in rooms benign i cant connect to splunk
[2:19 PM]
http://10.10.126.111:8000/ i try this from the attack box but unable to connect

Nah didn't

any idea what is the issue??

Is that meduim?

yes

it is 72 hrs right? I think I can submit one ??

I think it's the meduim link is bugged, staff are aware

ohh ok ok

BTW do authors on medium get to decide whether or not to paywall their articles?

I thought you were talking about the room, my bad!!
and yes it is a medium room

maybe .. I don't know about that as I haven't been a member over medium..

Hello there, I changed my email to school email and accidentally joined their workspace. Is there any way to leave it?

Hello.
My .ovpn file gives a Warning: Compression for receiving enabled.
What should I do?

nothing, it's fine.

It is exiting due to fatal error.

that's a an unrelated reason.

Okay, I am sending a screenshot here. Maybe someone in here will see the problem and help.
Thanks.

You need to verify

Alright, let me try that.

Whchi server?

Did yo uuse sudo/

AU Regular 1
Here, I didn't use sudo.

Using sudo

Can you gey another server close to you?

hi guys i can't connect my open vpn to hack the box
i am using open vpn on windows and imported the file into open vpn and connected it but it's not connecting to tryhackme
gives me OpenSSL error for certificate fail

US-East-Regular-1 seems to work, thanks.

Is this related to here?
Unable to negotiate with 10.10.32.122 port 22: no matching host key type found. Their offer: ssh-rsa,ssh-dss

just saying certificate failed

i imported the config file

@junior reef it worked, i just changed the server to US-East_regular-1 instead of EU-Regular-1

You're lucky I solved your problem while I was seeking help.

Yes, this could be intended, won't know for sure unless you name the room

Linux PrivEsc Arena.

hack the box or try hack me? if the htb vpn isn't working, you may be better off either asking int heir discord, or asking their support team

Fixed it, thank you so much for the support tho

If I use US East Regular 1 and I'm based in the AUS server range is everything going to be slower?

And will the AUS server work eventually?

Hi, I am trying to connect to a room but for some reason I can't even ping the machine's IP

I have regenerated the OVPN file and also changed the region once but the same issue persists, can I have some help with it !

Which THM OpenVPN server are you connecting to? And can you share the last few lines of your OpenVPN log?

Which room are you working on?

Not all targets respond to pings.

https://tryhackme.com/r/room/cyberlensp6 this is the room I am connecting to

Now I am on EU-VIP-1

That's the server I am using so it should be working now.

Yes but it is also the issue that I am unable to scan it or do anything

Windows targets do not usually respond to ping requests due to Windows firewall.

What have you done thus far to enumerate the target?

Cyberlens should respond to an nmap scan.

If it doesn't something else is going wrong.

GET unix://[/var/run/agent_ovpnconnect.sock]/tun-destroy : 200 OK
/sbin/route delete -net 10.11.0.0 -netmask 255.255.0.0 10.11.5.209
delete net 10.11.0.0: gateway 10.11.5.209
/sbin/route delete -net 10.10.0.0 -netmask 255.255.0.0 10.11.0.1
delete net 10.10.0.0: gateway 10.11.0.1
/sbin/ifconfig utun6 down
MacDNSAction: FLAGS=ESF
<E2><8F><8E>[May 11, 2024, 14:27:21] EVENT: PAUSE sleep<E2><8F><8E>[May 11, 2024, 14:27:24] MacLifeCycle WAKEUP
<E2><8F><8E>[May 11, 2024, 14:27:25] MacLifeCycle ACTION pause=1 state=[net_up=1 iface=en0 sleep=0] prev=[net_up=1 iface=en0 sleep=1]
<E2><8F><8E>[May 11, 2024, 14:27:25] EVENT: RESUME <E2><8F><8E>[May 11, 2024, 14:27:25] EVENT: RECONNECTING <E2><8F><8E>[May 11, 2024, 14:27:25] EVENT: RESOLVE <E2><8F><8E>[May 11, 2024, 14:27:25] Contacting 34.253.19.14:1194 via UDP
<E2><8F><8E>[May 11, 2024, 14:27:25] EVENT: WAIT <E2><8F><8E>[May 11, 2024, 14:27:25] UnixCommandAgent: transmitting bypass route to /var/run/agent_ovpnconnect.sock
{
        "host" : "34.253.19.14",
        "ipv6" : false,
        "pid" : 842
}

<E2><8F><8E>[May 11, 2024, 14:27:25] Connecting to [34.253.19.14]:1194 (34.253.19.14) via UDPv4
<E2><8F><8E>[May 11, 2024, 14:27:25] EVENT: CONNECTING <E2><8F><8E>[May 11, 2024, 14:27:25] Tunnel Options:V4,dev-type tun,link-mtu 1602,tun-mtu 1500,proto UDPv4,comp-lzo,keydir 1,cipher AES-256-CBC,auth SHA512,keysize 256,tls-auth,key-method 2,tls-client
<E2><8F><8E>[May 11, 2024, 14:27:25] Peer Info:
IV_VER=3.6.7
IV_PLAT=mac

I can send you the log file if that helps

I have tried to run nmap, ping, naabu and have tried to visit it via browser to see if there is a service running on 80 then would have responded but

I can't even reach the machine

Sounds like a VPN issue then

Yups, is this the correct place to raise the issue or is there some other way I can reach support ?

Should be fine here. I'm not a mod though. I can't help you with troubleshooting VPN issues but somebody will, I'm sure.

Sure thanks

Gave +1 Rep to @errant breach (current: #70 - 89)

guys everytime i open a python file it close automatic in 1 second what can i do????

What do you mean by "open a python file"? With which software/command?

i download it from github

like Johntheripper

what are you opening it on ? an IDE or how ?

That doesn't answer my question.

i dont know

wait

what do you mean "open a python file" ?

are you running it ?

yea double click

is Johntheripper the file you are trying to open via double clicking it ?

bruh i cant send picutes here

that isn't how you use it, you would have to use it via cli just use your terminal and do 'john --help'

You should wait for ~2 to 3 mins before generating your OpenVPN config file.

Will do now

You'll need to verify your account to do so

@naive dust

That server should work as that is the one I am using.

If you use the attackbox provided by THM you don't have to do these things manually. It comes with most of the tools you need. Maybe a good idea for an absolute beginner.

I am still unable to connect

still got error on connection to VPN
What wrong ???

2024-06-11 16:33:58 WARNING: Compression for receiving enabled. Compression has been used in the past to break encryption. Sent packets are not compressed unless "allow-compression yes" is also set.
2024-06-11 16:33:58 Note: --cipher is not set. OpenVPN versions before 2.5 defaulted to BF-CBC as fallback when cipher negotiation failed in this case. If you need this fallback please add '--data-ciphers-fallback BF-CBC' to your configuration and/or add BF-CBC to --data-ciphers.
2024-06-11 16:33:58 OpenVPN 2.6.10 x86_64-apple-darwin23.3.0 [SSL (OpenSSL)] [LZO] [LZ4] [PKCS11] [MH/RECVDA] [AEAD]
2024-06-11 16:33:58 library versions: OpenSSL 3.3.0 9 Apr 2024, LZO 2.10
2024-06-11 16:33:58 TCP/UDP: Preserving recently used remote address: [AF_INET]3.104.196.208:1194
2024-06-11 16:33:58 Socket Buffers: R=[786896->786896] S=[9216->9216]
2024-06-11 16:33:58 UDPv4 link local: (not bound)
2024-06-11 16:33:58 UDPv4 link remote: [AF_INET]3.104.196.208:1194
2024-06-11 16:33:59 TLS: Initial packet from [AF_INET]3.104.196.208:1194, sid=4ed3a79b c0c826cb
2024-06-11 16:33:59 VERIFY OK: depth=1, CN=ChangeMe
2024-06-11 16:33:59 VERIFY KU OK
2024-06-11 16:33:59 Validating certificate extended key usage
2024-06-11 16:33:59 ++ Certificate has EKU (str) TLS Web Server Authentication, expects TLS Web Server Authentication
2024-06-11 16:33:59 VERIFY EKU OK
2024-06-11 16:33:59 VERIFY OK: depth=0, CN=server
2024-06-11 16:34:58 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
2024-06-11 16:34:58 TLS Error: TLS handshake failed
2024-06-11 16:34:58 SIGUSR1[soft,tls-error] received, process restarting
2024-06-11 16:34:58 Restart pause, 1 second(s)

Solving by
re-generate and download on EU-Regular-3

ı get this

Can you please use #general for this, as this is site support for TryHackMe

is there a way to solve as the attacker boxes are slow to me

I am having trouble connecting to TryHackMe over OpenVpn, I used the troublehsooting tool and it told me my connection was good. But still not indicating that in the Access page

Access page is broken, ignore it

can you get an ip when you browse to http://10.10.10.10

Unable to connect to that url.

Update* i am successfully connected.

then you're good to go

you can enter dummy infor

is there a way to dettach the split screen machine into a seperate window?

There will be a minus and extend screen in bottom left of the attackbox

all it does for me is the close the split window

its alt text is also "exit split view"

#general message

Different UI, same buttons.

oh

so do you know if theres a way to do it?

Take a screenshot of the bottom of your attackbox?

But that message I linked has a screenshot

Diagonal arrows.

ooooooh

figured it would fullscreen the way a youtube vidoe does!! thanks!

Gave +1 Rep to @weary spindle (current: #1 - 2388)

You'll also need to minimise the split screen

also didnt realize you linked to general. Im not using discord a lot.. thought you posted form genereal somehow lmao

rad

Nooo, you can right click messages and get a link, and paste it, when somebody clicks it it will take them to the message

hi, I'm trying to do the devsecops cicdandroomsecurity and it just freezes after the tips

Whenever I use the Attackbox, it's always so laggy and unresponsive at times, is there any way I can improve this?

hey

i have a question

whn the game king of the hills stars, should we use vpn or we should start finding the open ports

and what metion is the ebst to do that

If you're using a vm, you'll need to connect to the VPN before you can find any ports.

You can connect to the van before the game even starts.

@weary spindle so if I use any type of vpn in my own vm its fine right?

No, you'll need to connected to the THM openvpn

@eager adder Can you try the AU VPN again please when you get the chance

Will try it tonight, us east regular 1 worked good

There were some issues with the AU server, which should now be fixed

Oh awesome. Try remember the new tun0 ip address lol

Can I change it or is it always randomly assigned?

The tun0 IP?

No, you can't change it unfortunately

Nah its still not connecting

Did you regenerate the config file for AU for 3 minutes?

Is there a way to correct or report spelling mistakes in rooms ?

Heya, id like to ask if anyone is running the @west chasm bot on a personal discord server, and if so how did ya set it up?

#room-bugs

Nobody has the THM bot in their server, its only for this server.

AFAIK.

alrighty

but I would still like to add to a THM group, as it would allow us to verify users

i cloned it from https://github.com/tryhackmeltd/thm-discord-bot

is it up to date?

I don't think @bronze vale allows it to be added to servers.

oh okay then

thats a shame

Yes you can add it

But you need to setup the .env file yourself

Also that isn’t the TryHackMe bot

Only the actual bot itself cannot be added to servers. Users can clone the bot’s code and set it up themself if they wish

oohh thanks a lot

Gave +1 Rep to @west chasm (current: #157 - 43)

thats what i meant, i have my own hosting for it

i see there is a .env.example, so i'll manage

You will manually have to configure the database and anything else the bot needs, unfortunately we don’t provide setup help

understandable

thanks for the help!

Just a forewarning, that repository is no longer maintained because we are moving to a new code base and framework.

In the event that Discord.js updates and it breaks the code, the bot will no longer be updated.

any chance you keep the new version open source?

We have no plans of making it closed source at this time 🙂

great to know

thanks for the heads up

Gave +1 Rep to @bronze vale (current: #6 - 1251)

also if yall would need help with the bot rewrite, feel free to contact me

i'd gladly help

No problem, if we need any help I’ll give you a shout!

Splunk: Setting up a SOC Lab
task 3
I type the gollowing into the browser; http://coffely:8000/
nothing happens, I have spent the last 3hours on this room and nothing work, is there a customer service number for try hack me?

I'M connected using the openVPN but i can't access the site , my internet is good , and if i pinged the room ip the ping 60 is this a common problem and should i use the attack box

Which site?

guyss is it not possible to set custom timings in king of the hill

like is it not possible to increase the timings to 120 hours

OWASP juice Shop

What does "can't access" mean? What are you doing? What happens?

Important to use precise language when troubleshooting technical issues.

is there some kind of general network issue going on? I was in lateralmovement & pivoting room and all was going well, then suddenly the network stopped responding. Can't ping from attackbox to 10.200.71.101 at all anymore. "From 10.50.65.1 icmp_seq=161 Destination Host Unreachable"

I've stopped my attackbox and started the network again, then started attackbox again and still the same response

My bad sorry, when i type the ip in my browser the web page keeps loading

Try opening a new terminal and running this

sudo ip link set dev tun0 mtu 1200

Worked! Thank you for your help
Can you explain what the problem was?

Gave +1 Rep to @errant breach (current: #65 - 104)

A too high MTU https://www.cloudflare.com/learning/network-layer/what-is-mtu/#:~:text=Fragmented packets are reassembled once,is the maximum MTU size.

Hello. I'm at the /creative room and i'm wondering if it should run out of the box or is manually adding the domain name in the hosts file expected?

I'm sure the room task gives you the answer?

Well. It's a challenge room. When I put in the ip to check the site somehow the DNS recognizes it but it doesn't point to the site. After editing the hosts file it does piont correctly

Then that's what you're supposed to do.

Unconventional but ok

It's not?

Why is it unconventional?

Usually customer facing web apps have the domain name sorted out. If you can't get to a site by typing in the company name you are losing customers. Although this is intentional and it is a test. It is like using an esolang to code your backend with, doable but nobody would do it

It's a challenge, the ip doesn't follow the redirect.

I guess I should expect challenges screwing with me more

Yeah...

It's a misconfiguration, and the description is Exploit a vulnerable web application and some misconfigurations to gain root privileges..

Dunno if it's a bug. But i guess it could stay that way

For fun

It's not a bug, it's intended. 🙂

Hi all, I keep having issues with target boxes. One I couldn't read get a port output of, the other I can't RDP into. Followed all the steps as listed, googled, shut off personal VPN + adblockers. No idea why this is happening 😦

On Linux? The machine you're connecting from I mean.

Yup

Try opening a new terminal and running this

sudo ip link set dev tun0 mtu 1200

While connected to the THM VPN

Seems to work now, thanks mate!

Gave +1 Rep to @errant breach (current: #65 - 108)

You're welcome. You might have to repeat this at some point.

Def gonna save this!

the burpsuite basic site is bugging

like i cant click on anything

just a heads up that on task 5 of the ukc module **Defence **Evasion (MITRE Tactic TA0005) is spelled wrong

depends on where you're from...
"The difference between defence and defense is the spelling guidelines of British and American English.

• defence with a c is the correct spelling for British English.
• defense with an s is the correct spelling for American English"

assuming you were referring to "Defence"

wow i didnt know

😂

is there an issue or glitch in 'Red Team Recon; task 6', I feel as if I correctly answered the question and it's not being accepted for some reason. I found the author using the 'info' command.

There is an issue with the Wreath VPN file. When ever I try to download the VPN file it shows me an error that says.

An unexpected error has occurred.

And then don't let me download the VPN file.