Htb uses tcp

Thm uses up (for normal) [tcp for networks]

how do I solve the problem? the connection is being established. Ping is not coming.

I'm Not able to connect the vpn

What machine are you pinging?

English only please.

Not all machines react to ping. Try nmap on one of the VMs in the network services room.
https://tryhackme.com/r/room/networkservices

I wrote above

I tried it on machines I've worked on before

Maybe worth a try:
traceroute IP
with a machine that you know should answer to pings.

only the stars

On this machine

Try ip route. Assuming openvpn would add a route if working correctly, can't verify right now.

10.9.0.0/16 dev tun0 proto kernel scope link src 10.9.191.173

That's the entire output?

no

default via 10.0.2.2 dev eth0 proto dhcp src 10.0.2.15 metric 102
10.0.0.0/24 dev eth1 proto kernel scope link src 10.0.0.2 metric 101
10.0.2.0/24 dev eth0 proto kernel scope link src 10.0.2.15 metric 102
10.9.0.0/16 dev tun0 proto kernel scope link src 10.9.191.173
10.10.0.0/16 via 10.9.0.1 dev tun0 metric 1000
172.17.0.0/16 dev docker0 proto kernel scope link src 172.17.0.1
172.18.0.0/16 dev br-d51f296a00c5 proto kernel scope link src 172.18.0.1 linkdown
172.19.0.0/16 dev br-051034f95c1f proto kernel scope link src 172.19.0.1 linkdown

I don't have access to my machine right now. Maybe someone can confirm if there's supposed to be only routes for 10.9.0.0/16 and 10.10.0.0/16 with the tun0 interface...

Is crackstation down for anyone else?

If I'm not mistaken that would mean everything not part of those subnets is sent to eth0, your local physical NIC. (Or docker0)

Yes, for several days already.

Damn, doing the https://tryhackme.com/r/room/owasptop102021 task 8 and trying to crack the hash with John is taking forever.
Guess I'll just go make a cuppa

If you're supposed to look them up on crackstation I'd just Google them instead. They will show up in write ups.

And you're not cheating since you were supposed to look them up anyways.

You don't think John will get there?

Depends on how complex and long they are, idk.

That's fair I'll look it up then

Could take hours, days.

Thanks for the headsup

It's the same on a separate linux computer, but there's no docker there either

Someone recommended hashes.com, haven't used it personally.

You see 10.x.x.x routes with tun0 on a separate computer? That's surprising.

Haha when I cancelled John there was apparently an estimation of 8hours 50minutes

hashes.com worked perfectly for the purpose.
Thanks for the help

I meant that there is the same problem on a separate computer

Maybe this:
ip route get IP
IP of any THM target machine that doesn't start with 10.9 or 10.10

Maybe I'm riding a dead horse here but no other idea

efault via 192.168.31.1 dev wlan0 proto dhcp src 192.168.31.16 metric 600
10.9.0.0/16 dev tun0 proto kernel scope link src 10.9.191.173
10.10.0.0/16 via 10.9.0.1 dev tun0 metric 1000
192.168.31.0/24 dev wlan0 proto kernel scope link src 192.168.31.16 metric 600

this is from another computer

Yeah that's not helpful switching machines in the middle of troubleshooting

I don't know what to do anymore.

I could check on my VM now and the routes are similar. I don't know how openvpn routing works, but that's probably not the problem then...

It seems to me that something is wrong on the part of tryhackme

Ohh now j get that's the output from ip route. I thought it was the answer to #site-support message

Russia could be playing a part in this.

I used hashcat.

Cool, I'll look into hashcat

Hello, friends. Setting up a Kali VM for the first time and having a bit of cognitive dissonance about which OS i'm supposed to be thinking in in order to get OpenVPN on THM working.

Host machine is Windows. VM is Kali. Do I need to download the windows GUI to the host machine of OpenVPN or do I need to sudo apt install openvpn? I assume all things THM-related should be in Linux from now on right?

The latter

If it's not already installed. In any case you wanna have the VM updated for maximum security with sudo apt update && sudo apt upgrade -y

Dont forget to download the file from the access site on THM

So the process freezes and never gives a Initialization Sequence Completed message, but in the topright of my screen I can see I have a VPN IP. And on THM it says I'm not connected. Is this all just lag?

The access page isn't always accurate. Are you able to access 10.10.10.10?

I just get a blank line. 10.10.10.10 is always running right?

Access as in open it in the browser or ping it.

You're not supposed to ssh into random machines.

also if you use ifconfig command you can check if you have a tun0 connection

If I've understood things correctly a tun0 connection means you're on the VPN

pinging seems to work

what if you open a browser and try to type that ip into the url?

Appears to load for a long time, seemingly indefinitely.

Yeah you're not connected to the VPN I'd assume

To what directory did you download the ovpn file from the access site? And what is the command you're using to launch openvpn?

path: /home/bmwallace94/Downloads/bmwallace94.ovpn
command: sudo openvpn /home/bmwallace94/Downloads/bmwallace94.ovpn

Try opening a new terminal and running this

sudo ip link set dev tun0 mtu 1200

blank line

ifconfig returns though

Blank line means it worked

Now try accessing a target machine again.

ip a | grep "tun"

are you getting the ip load problem in tryhackme

What do you mean by IP load problem? Can you provide more details? Also, please do not post the same concern on multiple channels as it is considered spamming.

So I'm not the only one who has such a problem. Is something broken on the tryhackme side?

am not getting the response when i load the machine ip into the web browser

What box are you working on?

open vpn ?

What room the IP of which you can't access?

every room i used to access it wont let me access the site

Can you access 10.10.10.10?

If not, can you share the last few lines of your THM OpenVPN log?

I'm not certain about your case as the government has put a ban on VPNs.

@fallen iris

0 metric 1000
2024-06-16 10:01:47 sitnl_send: rtnl: generic error (-17): File exists
2024-06-16 10:01:47 NOTE: Linux route add command failed because route exists
2024-06-16 10:01:47 Initialization Sequence Completed
2024-06-16 10:01:47 Data Channel: cipher 'AES-256-CBC', auth 'SHA512', peer-id: 47, compression: 'lzo'
2024-06-16 10:01:47 Timers: ping 5, ping-restart 120
2024-06-16 10:01:47 Protocol options: explicit-exit-notify 3

If you can verify your account to allow you to post screenshots in the discord, that would be great.

What appears on your browser when you access http://10.10.10.10 ?

problem loading webpage

and when i nmap that ip it says host is down

No. Vpnbook works on the same protocol.

Which THM OpenVPN server are you connected to?

I have the same problem.

india

Can you try switching into another THM OpenVPN server?

ok can you recommend me some

Try EU-Reg-2?

ok sir

Wait for ~2 to 3 minutes after switching the THM OpenVPN server before generating your OpenVPN config file

it works

am able to see the load the ip into the browser

If you can see your IP when you access 10.10.10.10, then you are good to go.

My colleague can connect. So it's not about blocking.

I wrote to support by e-mail yesterday. They still haven't answered.

THM Support doesn't work on weekends and holidays.

To which THM OpenVPN server are you connecting?

I've already tried it for everyone

Try EU-Reg-2 and wait for ~2 to 3 minutes after switching servers before you generate your OpenVPN file.

How do I add a screenshot here?

Also, which OS are you using to connect?

You'll need to verify your account to be permitted to post screenshots / pictures.

@hollow breach

Kali linux

The access page is green, and on the machine page it says not connected.

Have you heard about round-the-clock support?

Yes. Why so?

Can you try accessing 10.10.10.10. using your browser?

This is a large portal. We could do it 24/7.

no

We discussed all these issues yesterday

I'm just a volunteer here so I don't have a say. In any case, THM already does the community a favor by hosting and providing a lot of content for both free users and subscribers.

I agree

Having 24/7 support would entail additional costs and may not be practical given their business model. At the end of the day, THM has costs to shoulder and manage. However, feel free to post in the #feedback-and-ideas channel.

Hooray I fixed it

First I connected my vpn, then I started the server. Now everything is pinged.

Do take note that Windows boxes do not respond to ping requests in general due to Windows firewall.

how can i reset all rooms ?

i didnt use tryhackme for some time so i forgot most stuff so im starting from the beggining but all the rooms are solved

You can only reset rooms one at a time, if you wish to reset all rooms, I'd suggest making a new account, or doing them individually.

I have the same problem in https://tryhackme.com/r/room/subscribe. How to proceed?

Hey is there a issue with the wreath vpn configuration cuz ive been trying to download it for a week and i still cant

What subnet are you on?

This is so others will be able to help you out. You can also try leaving the room, re-join it after 15 to 30 mins to hopefully be assigned to a working subnet, and generate your OpenVPN config file without issues.

Tryhackme are looking in to the splunk issue

i have no idea what the subnet is but i can get the other network vpns only the wreath network is the issue

guys

i keep getting this error

2024/06/17 03:56:48 [!] unable to connect to https://fakebank.com/: Get https://fakebank.com/: dial tcp 127.0.0.1:443: connect: connection refused

Room, task, question?

Use http.

I think you will be able to see that in the Wreath room upon joining it.

https://tryhackme.com/r/room/authenticationbypass

TASK 4: This is not PHP code. This is Javascript. This is definitely not PHP. Might want to correct that.

#room-bugs

can anyone help me with information on how to build a webcrawler
or to scrape a website using python

Answered you on another channel, please don't multi post.

I have a problem connecting to THM vpn and its about 1 week now can someone assist me?

Which OS and country?

Kali linux and country is kenya.

Which server are you tyring?

AU

AU regular 1

Try a different server?

It writes Failed due to fatal error in have tried three different servers

Do you use sudo?

Yes

A full log would help

Hello guys, begginer here

I try to connect to the target machine in network services room via the attackbox and it doesnt work when i enter the password for the ssh connection

Can I get some help on it ?

Do you need to ssh in?

Does it tell you?

yes

ping it, it responds but doesnt accept the password

I tried connecting with my kali too but I got an issue with creds : Permission denied (publickey)

Which task?

^

3 - Enumerating SMB

Do you have the key?

Using attack box, no but with my kali yes i have an ssh key

Are you declaring it in the command?

tried with the i switch didnt work too

You might need the password and the id_rsa key

i dont know why it doesnt work with the attackbox too though

You said you weren't using the key on the attackbox.

If I understood you right.

yes

I never used it before and it worked

Each ssh is different.

For the task, you're supposed to enumerate the smb, find the id_rsa and use it with the correct username to login to the SSH.

Tryhackme@10.10.xxx.xxx won't work

aaaahhhhh

sorry i wanted to sped up things

i'll try, thanks for the explanation !

Tends to result in the opposite on THM.

yea xD

@wicked crescent Yes, you'll not have to use ssh in task 3. Later in task 4, you'll exploit the smb. There you'll be able to download the id_rsa for establishing an ssh connection with -i id_rsa file to login and CTF.

I'm in task 10 of the #network services room and Hydra is running. It runs since around 3 hours and has only checked 10600 passwords of the 14.344.398 passwords from the file. It would take a bit too long to crack it.
In the text it's written, that Hydra is very fast. Doesn't seem so.
What are your experiences with Hydra?
A FTP login has to be cracked.

There is no THM room that expects you to Crack anything for more than a few minutes. You're doing something wrong.

OK, I guessed so. I stopped now the command.
Here's what I ran:
hydra -t 4 -l Mike -P /usr/share/wordlists/rockyou.txt -vV 10.10.2.223 ftp
Anything wrong with it? I just adjusted the given cmd to my target machine and user name.

Have you tried using a small 'm' instead of a capitalised one (as Linux systems are case-sensitive)?

No, I didn't. Now it was found immediately with the fith occurance in the list. 👍

But I'll remove the "password" password from the list, to test the performance with a proper user name and longer search.
Thank's for the hint! I'm not used to, that the name is key sensitive (windows guy... 😁).
UDPATE: Hydra is not faster, by using a real existing user. No performance difference.

Should not take that long.

Juice Shop is exempt from this.

Unix usernames are all lowercase.

trying to complete the first offensive security room

and im inputing my account balance yet its saying that incorrect

oh wow

nevermind

it is posible to adjust my name in learning path certs?

like just put my initials

once issued

once it is issued it is locked in and there is 0 ways to change it

for other certs later you can change it by changing your full name on your profile from the manage account section

So should I remake the path in another account in order to change the name?

or use an image editor... but yeah that is basically your options.... it might change in the future but there is no granatues for that

im not sharing the image, but the link to prove

thank you anyway, im remaking paths XD

just another point to consider these are certs of completion meaning they say nothing about how you solved it... how long it took.. and similar stuffs

so they hold very little value for job hunting

Today, while working as a SOC Analyst Level 1, I encountered an issue when trying to open the VNC browser machine. The error message stated, "vnc.tryhackme.tech took longer to respond."

hello, ive been trying to connect to the vpn through my wsl and it still can't connect... ive tried the thm troubleshooting script and it returns as below

[+] Stable internet connection
[+] OpenVPN is installed
[-] tun0 interface does not exist
Would you like the script to attempt a connection automatically (Y/n)? y
[+] Connecting....
[Warning!] Connection process is taking longer than expected to complete
[-] Failed to connect
Failure to connect to the VPN can usually be solved by one of the following options:
        -Regenerating your OpenVPN config on the TryHackMe access page (https://tryhackme.com/access)
        -Switching servers, then regenerating your OpenVPN config
        -Checking your system time. If your system time is incorrect then this can cause issues with the authentication process
If none of these methods work, please ask for further assistance in the TryHackMe Discord server, subreddit or forums.
[-] Exiting```
i tried to run the command sudo tunctl tun0 too but it didn't work...

i've used openvpn before but it never had problem, so i'm so confused

I try to connect "linprivesc" room via ssh.
ping 10.10.214.9 works.
ssh is open
I run command "ssh karen@10.10.214.9".
but it gets stuck after: "debug1: SSH2_MSG_KEXINIT sent"
anyone know what I am messing up?

Hello, I'm having some issues with the OPENVPN. Is this the right place to ask for support? Thx

It is.

Which OS, server and where do you live?

I'm using a Kali in a UTM machine

Which server are you trying and where do you live?

I live in Spain, tried to use EU-VIP-1

live in Spain, tried to use EU-VIP-1

Seems all to work fine except when I try to enter the machine via SSH ... it does not accept the PSSWD.
ssh tryhackme@IP

WHat is the correct PSSWD?

Which machine are you trying to SSH in to?

I was trying to make the CTF for BIOHAZARD room, the IP I'm getting is: 10.10.228.127

That's a CTF room, so the username probably isn't tryhackme

And were can I check the correct username? Sorry first time using openvpn and I'm totally lost as you can see

Finding that out is part of thr CTF challenge.

If you're even supposed to ssh in. Who knows?

No, sorry, my idea was to use OPEVPN instead of the WEB version to make the challenge. in WEB I already arrived to step 3, but I never can pass that part as it seems to be a "hidden" timeout and I'm getting kicked of.
So I thought that using my native Kali this would work faster.

If anything the attackbox is quicker since it's physically in the same network and maybe even data center.
You're probably not doing the right thing.

I will check later again 😉 Thx

Gave +1 Rep to @errant breach (current: #52 - 137)

hello, please how do I bring back my Virtual Machine started to split view, I closed it for space and can't seem to find the option to maximize or bring it back up even though it's still running.

Go to the top and resume split screen

If you're doing Biohazard, and you know the connections, you'll have a guess on what the SSH Username is

@weary spindle I've gone to the top of the screen, the site shows my room name, target machine info, room progress but no options to resume split screen

Which room?

@weary spindle Linux strength training room

That may just be a room you connect to with ssh/FTP/http, so you may need an attackox or VM

I think I messed up myself. Could find out what I was doing wrong. Thanks for the help!!

Gave +1 Rep to @weary spindle (current: #1 - 2415)

I never had THM premium and completed these rooms, now they are behind a paywall. Did THM change which rooms are premium or do they shuffle them

Previously free rooms were paywalled, yes.

sad

Hi guys, while using Google Chrome, I have a shared clipboard between the attacker box and my own system. However, this is not the case for Mozilla Firefox. Anyone has an idea how I can fix this issue?

Did you allow clipboard permissions?

It doesn't work on Firefox in general. Nothing you can do.

yes a few rooms got revamped and moved to premium.... if you would like you can report #feedback-and-ideas to make the linux fundamentals rooms free for everyone again

oh thats unfortunate 😦

Yeah

they have good reasons why to avoid it

and I have good reasons not to use FF while doing THM now 🙂

fair enoughs

though a lot of people just use their own kali linux vm instead of the attackbox and then this problem is near none existant

Via java script.

You are asked to test an application but are not given access to its source code - what testing process is this?

The answer is in the task materiel, but what do you think?

I answer Black-Blok but the site does not state the answer is correct

"Blok" ?

box

No hyphen

it does not need you to specify the word box

thanks my mester

Gave +1 Rep to @weary spindle (current: #1 - 2418)

oh wait... guess that changed

it used to not need the word box after

Yeah i recall that too

Perhaps updated

It worked my brother, if you need me you can call me

Hello I mistakenly add a country which i am not staying and i want to change it can you help me out there???anyone

@weary spindle

Make sure no vpn is turned on and click this, it will take you the the dashboard and this should update your timezone https://tryhackme.com/api/user/update-timezone

Thank you it works 🙌🏾

Guys, which open source intelligence do you use to fetch data from an image? osint

How do I fix the “We are unable to authenticate your payment method.” when trying to buy subscription

Please contact support with the last 4 digits of your card used

Hello Guys,

I have a problem while connecting to THM Labs using ovpn. I switched the server many times
What should I do?

Which server?

EU-Regular-4

And not this server only btw, each server i choose makes the same thing

Which country and OS?

Egypt, Kali Linux

Ah, Egypt blocks the VPN, you can;t use a VPN, you'll need to use the attackbox

Hi, I completed the Fowsniff CTF but I received only 60 points. Shouldn't be 450 points?

The point system was changed, the 450 pointers would have been when it was first released

thank you

Gave +1 Rep to @weary spindle (current: #1 - 2424)

Regarding task 3, "The Metasploit DB," the command systemctl start postgresql isn't necessary because msfdb init automatically starts the database for you.

Have you considered hosting the write-ups on GitHub Pages to allow the community to contribute and improve them collaboratively?

most of the writeups are written by community members, so it's wherever they want host them.

Hi TryHackMe Support Team,

I hope you're all having a fantastic day! I just wanted to drop a quick note to let you know that I couldn't find the Reunion island flag on your platform. However, a quick search on the internet reveals it's easily available out there!

Just a heads-up so you can add this exciting challenge to your list. Looking forward to seeing it on TryHackMe soon!

Which room is this for?

it's not for a specific room but for the country flag of the account

#feedback-and-ideas

Oh I get you now!

thanks

Do I need to send them an email for this request?

If you go to the channel Jabba linked it will send a contact form.

ok thanks

Hmm. Do you think it might be beneficial to make this a requirement? It seems much more efficient to enable the community to make changes directly, rather than having to contact an individual for updates.

A requirement to writeups?

IMO no, because some members use their own websites etc to host write ups.

I think we may be talking about different things. I mean the rooms such as: room/metaspoiltexploitation

These rooms can be hosted on a collaborative platform for updates

You mean the actual virtual machines?

The content of the page, including the detailed instructions and example workflows for the room (Metasploit scanning), can be hosted on GitHub Pages. This allows for collaborative updates and maintenance by the community, ensuring the documentation stays current and accessible to all users.

Then no, IMO I don't think having the pages enabled to anybody can edit them.

The steps will be out dated at some point, and things change, however TryHackMe update/fix/edit if and when they can.

They can only be edited by the maintainers. Are you familiar with the concept of opensource?

That's... That's the point of my argument...

Im sayin I can create a PR suggesting a fix and then the maintainers can review and approve @weary spindle

I know exactly what you're saying.

👍🏻

The room is almost 3 years old.

If you feel like this is a good idea, use #feedback-and-ideas

I don't speak for TryHackMe, but if they were going to do something like that, I'm sure they would have done it by now.

Hosting the documentation on GitHub Pages fosters an open-source, collaborative environment, enabling a global community of experts and users to contribute. This approach ensures diverse perspectives, faster updates, and continuous improvement, as opposed to relying solely on an internal team, which may have limited resources and slower response times. This collective effort enhances the accuracy, relevance, and comprehensiveness of the documentation.

This will never happen and there are checks that are done to ensure content stays up-to-date

Could you provide a valid reason why this will never happen? I'm curious because open-source collaboration is a fundamental aspect of security, ensuring that content remains accurate and up-to-date through continuous community contributions and rigorous checks.

I'll wait.

Blackout is more than likely doing their job.

Like I said, I'll wait

It feels like you're demanding to know the reason why you're not getting what you expect to get?

Thm don't have to provide a reason, for doing something the way they would like.

I'm not demanding a reason; I'm simply inquiring to understand the rationale behind the decision. It feels like your comment is making unsolicited accusations, and I'm looking for a constructive discussion. Thank you but that will be all @weary spindle

Gave +1 Rep to @weary spindle (current: #1 - 2426)

Are you asking for an alternative way to submit content findings? You can send your idea to: https://tryhackme.com/feedback

I'm just simply asking Blackout a question

Tim is the QA manager.

The best checks in the world don't help if they frequently don't result in actions, like here

#room-bugs message

or here

#room-bugs message

here

#room-bugs message

or here

#room-bugs message

and five minute fixes like changing one four-letter word for a different one, if ever, take >1 month to be implemented (red team recon). In rooms people pay for that is. In addtion to providing free QA to a for-profit business.

+1 @errant breach

Although it can be considered fundamental aspect of cyber security. We have a dedicated team for this that do checks frequently. Especially if anything is missed we get reports and are raised. Anyway I could be wrong and you're more than welcome as to suggest it to #feedback-and-ideas as others have stated 🙂

I will look through these and get these raised

@wind wedge While having a dedicated team is valuable, open-source collaboration leverages the collective expertise and vigilance of a global community, often resulting in quicker identification and resolution of issues. This decentralized approach can enhance security and ensure more comprehensive updates. Suggesting feedback to a specific channel seems dismissive

It's not dismissive, it's how TryHackMe have dealt with bugs found in rooms.

LOL. And thats better, right? Ok. Job done Check

This conversation is no longer context for this channel. 🙂

Blackout have provided you with an answer on why it's done the way it's done, this channel is for support. 🙂

Like I said, check

🙂

There is no sense in carrying on this conversation.

I'm not TryHackMe staff, so arguing with me won't get you anywhere,

Im not the one carrying on the convo 🙂

Have a great day 🙂

You're not thm staff yet you feel the need to include yourself into a conversation between THM staff and a user, needlessly defending the the former as if they paid you, while they're still writing an answer to the latter. Can't have it both ways.

+1

..What's your excuse?

Alright, this conversation has run its cause. Let's move on. Feedback link is available for your ideas on how to improve reporting content findings.

That's only the ones easily findable through search because they contain 404. I don't know what the process is at THM but it's utterly broken in so many ways. Bug reports are more often than not outright ignored instead of at a minimum acknowledging them. I could compile a long list of reported but unfixed issues just from 2024.

And when paid rooms are completely broken for weeks, like currently with minikube certs or the splunk one, instead of showing basic courtesy to paying user by putting a note in the rooms "this is broken, sorry for the inconvenience, please come back later", user's time is being wasted. Because of course people first try to figure out what they might be doing wrong, they Google, search the subreddit and server, before eventually maybe asking here, or just moving on.

That's the absolute 101 of customer service that's lacking here: communicate! Proactively. If you inconvenience users, make it as little as possible.

I unsubbed for those reasons.

I couldn't agree more with your points. The lack of proactive communication and acknowledgment of issues, especially for paid rooms, is indeed frustrating and undermines the user experience. Your detailed observations highlight the critical need for better customer service and responsiveness. Thank you for articulating these concerns so well! I only hope the THM team is not dismissive per usual.

Gave +1 Rep to @errant breach (current: #50 - 147)

Hello all, trying to connect to THM using VPN from my VM, unfortunately , I am getting an error TLS handshake failed. I ran the THM troubleshooting script and it says "not connected to internet". However, I am able to use firefox and ping websites. any help is appreciated 🙂

try and see if any of the other vpn servers work

tried, no luck

which vpn server are you on currently???

tried US-East/West-Regular-1

hmmm

Tried recreating the ovpn file and downloading it again?

yes

Hi everyone! How come we can't download file to be able to follow rooms properly ? It's the 3rd time it's happening to me and the first consequence is the waste of my time. I tried different methods and nothing.

I'm unable to download the required file for Brute force heroes room. I've already wasted an hour only to figure it out

Any help ?

What happens if you download it?

It says : unable to connect

An error occurred during a connection to tryhackme-vm-upload.s3.eu-west-1.amazonaws.com.

Is your browser blocking it?

I just downloaded it fine.

Nope but let me check again

If you can't, I can send you it.

I removed all my browsers configurations and still nothing. Unbelievable

Hi. I am connected to Wreath network VPN but the first machine 10.200.73.200 is not responding.

hii. so when i have started thm i can able to share room completion on my linkedin. but right now i just solved the new launched ios room, when i try to share it on linkedin it is showing cyber security training as an logo. why i can't able to share the original logo. or is it the default on for that room?

hi can someone help me , it wont let me switch to the windows machine it just keeps opening on linux

hi

everyone

i am having issues using attackbox

can someone help me

Guys i lost my thm streak what to do

is there room voice here to play ?

Depending on how long your streak was, you can drop an email to THM Support and they should be able to restore it for you.

@desert thistle

What specific issue are you having? Also, are you a subscriber?

Which machine doesn't allow you to do so?

Have you tried voting for a reset?

i am enrolled in the jr.penetration tester path

and even if i follow

the instructions and how to perform task i can't do the same in attackbox

or linux

Hi guys, i need help to answer the question below, no matter what is my input the system outputs wrong answer.

What will be your role as a Junior Security Analyst?

Which specific one are you referring to?

This happens when I register for a CTFE or when I press the button to see the IP address, black screen appears and I have to restart the site. What is the reason for this? It only happens on this site. How can I fix it?

(+ I use plugins like ublock, could it be because of that?)

the Auditing and Monitoring room , you start wit the linux machine then have to switch to windows and i cant get it to switch

So, Can anyone solve this rdp issue how to connect as it's not connecting via rdp

You on the vpn?

Yep

use reminna.

@weary spindle I was recently connected through rdp I can also able to access the Windows via rdp but it shutdown showing network disconnect due it's because of my net issue? You see I am connected via Hotspot my wifi is currently down.

I also tried that but the same issue over there

Could be the hotpot isn't good enough

Yea I think show

Hello, I have a question. When you click on "View Profile" below your name, there is a description. How can you change it?

ho sorry, thank !

hey guys, im currently trying to SSH into the room, but getting an issue "Permission denied (publickey)" I've looked online and tried a few things, but im not exactly advanced with linux, (its my first time using it), I've noticed that when im trying to SSH, it doesnt even ask for a password, like it does with othersw in the tutorial im watching, is there something i am missing?

Which room?

Intro to offensive security, the hacking fakebank one

this is the command i am attempting

ssh tryhackme@10.10.141.115

Which room are you doing?

https://tryhackme.com/r/room/introtooffensivesecurity

You don't ssh in that room.

That's why it's not working

oh right

Im having another issue then, i cant even access the fakebank link, i assumed that was because i hadnt SSHed

now i feel stupid lmfao been trying to figure this out for a little while

try rdesktop

best sol is you use windows RDP client along with using openvpn client of windows to connect vpn

Hey anyone here tried snort challenge the basic room i have some doubt if anyone could help

Hello, sorry to hear about this. Do you have a room example that is problematic?

I was looking for solutions other than resetting. The problem was fixed after letting the time run out and starting the network again. Anyway I completed the room. Thank you 😁

Gave +1 Rep to @ivory spruce (current: #11 - 588)

why the onboadring wants your phone number

Looking for where to report an issue with a room, not sure the best place to do it.

https://tryhackme.com/r/room/metasploitexploitation - Task 5

Hint states - The target is missing the MS17-010 patch. But NMAP OS scans come back with "No exact OS matches for host" and when running the MS17-010 scanner from msfconsole, you get the following "Host does NOT appear vulnerable."

Ignore that above, I fixed it how you fix 90% of computer problems, turn it off and turn it back on again. Terminated the box and rebooted it and it's now showing OS version and being vulnerable to MS17-010 exploit

Discord?

hello

I need help

I've got the same problem lmao, thx for ur answer !

Gave +1 Rep to @cursive pollen (current: #1400 - 2)

Shoot?

i have aa problem with ransomware

have u ever seen this extension . PARAHAT

I am really annoyed by this text size variation

kindly do something about it difficult to read

Many rooms are having this issue idk if this is the issue related with site or within the rooms

Think it's super script.

Hello, i'm having an issue in wazuh lab, i connect the vpn connect to the wazuh dashboard and get this issue

Error getting the authorization token

3002 - Request failed with status code 400

issue with API with wazuh manager ( config may have an issue)

the website new account onboadring

You can leave the number out

or enter dummy info

bruh

@tawdry orbit i am having issue related to Network VPN tried every possible troubleshoot.

i want to connect to breachingAD

Can you download the VPN file at all?

yeah i did

not able to connect

Follow the steps I have in the pinned posts of #breaching-ad

i have followed the steps the main issue i am facing is this.

You need to verify to post screenshots.

2024-06-21 12:34:58 Initialization Sequence Completed
2024-06-21 12:34:58 Data Channel: cipher 'AES-256-CBC', auth 'SHA512', peer-id: 0
2024-06-21 12:34:58 Timers: ping 5, ping-restart 120
2024-06-21 12:34:58 Protocol options: explicit-exit-notify 3

That's fine.

Just minimise it

okay but on access page it says i am not connected

That's broken, just ignore it 🙂

okay

now i am not able to ping DC then

followed the step no gain

may be its bricked state

???

Which subnet are you in?

the network is 10.200.27.101

Nah, everything is working.

Can you go to the link in Task 3/4?

Nope

did you follow the steps in the pinned posts in #breaching-ad ?

followed and revised again

─$ nslookup 10.200.27.101
;; communications error to 10.200.27.101#53: timed out
;; communications error to 10.200.27.101#53: timed out
;; communications error to 10.200.27.101#53: timed out
;; communications error to 10.10.10.10#53: timed out
** server can't find 101.27.200.10.in-addr.arpa: NXDOMAIN

`nslookup thmdc.za.tryhackme.com
;; communications error to 10.200.27.101#53: timed out
;; communications error to 10.200.27.101#53: timed out
;; communications error to 10.200.27.101#53: timed out
;; communications error to 10.10.10.10#53: timed out
Server: 192.168.1.1
Address: 192.168.1.1#53

** server can't find thmdc.za.tryhackme.com: NXDOMAIN`

It's still not using 10.200.27.101 as the nslook up

because i am not able to connect to it

Is there an issue with openvpn again? adding the data-ciphers line fix isn't working and I can't find anything different.

Which server?

US west vip 1

Try a new server

I tried regular west too, I'll try east.

Even though I solve questions on the site, my score does not increase. My account has a bug. Can you help me?

Some rooms don't grant points.

I redownloaded the config file and renamed it, that seemed to have worked.

No, it is one of the rooms that give points, but I solved 570 rooms today, I think the account got bugged because I solved too many.

What's your site username?

Dogu589

We're looking at a solution for this. Thank you for reporting. 🙂

Gave +1 Rep to @pulsar sphinx (current: #2106 - 1)

Are changelogs for rooms a thing? I've found a flag that isn't an answer to anything, was hoping to review changelogs and see if it was the answer for an old task/question.

Gave +1 Rep to @tawdry orbit (current: #16 - 455)

I'm using Firefox and every once in a while TryHackMe sites just freeze. Not to the point of 'Page Not Responding' but just earlier a confetti animation froze mid animation for about 5-10 seconds before finishing.

Does anyone know the reason for something like that?

I cant use firefox in either the attack box and virtual machine given in the Threat Intelligence Tools room so I cant use phishtool to check the emails

Internet access in the Attackbox is restricted for subscribers only. You could use Thunderbird or view it in your attack machine or VM for the purpose.

That room is a standalone vm, and doesn't have internet connection at all.

The whole point of the exercise was to use phishtool though. I can use thunderbird fine but that's only a viewer nothing more. Luckily I was able to find hashes through properties of the file itself and I thought the attack box should have an Internet connection regardless since you get free 1 hour a day. I then tried to then transfer the email files across via python3 server from the vm to the attackbox vm then dump the files into phishtool which didn't work since there was no Internet connection lol.

No. We don't suggest taking files that could be harmful to your system, if something goes.wtkg it's not THM fault.

Also, it's good practice for sandboxing.

I didn't use my machine I used two vms that are from thm, the vm given in task 5 and then the attack box

Yeah, the task 5 machine doesn't have Internet because of the files.

Yeah makes sense

Hei 👋 I'm trying to access the Red Teaming learning path machines, haven't done this in a while and maybe I made a mistake with the VPN connection or something. I'm on a Business Subscription and used EU-VIP-1 and 2 but I cannot access the machine from Weaponization Module (final task) and I can't find a separate vpn package that should be downloaded for this learning path 🤷‍♂️

If it’s a normal lab room the normal openvpn would be fine. Which room in the module are you doing?

Weaponization, Task 9, machine: Win10Office2016-Installed ... I assumed EU-VIP-1 or 2 should've worked since there isn't anything separate but I can't seem to reach the machine.

Are you able to connect to 10.10.10.10

Yep, I think the issue is with the machine itself, seems like that :8080 web server didn't start 😅 I was able to connect backwards from that machine to mine on port :80... I'll give it a restart, maybe that fixes the issue

Yea it’s possible you just got unlucky with a machine that don’t wanna connect 😄

Could be, nevertheless thank you!

No problem, ping me if any issues 🙂

is there a dark mode?

Not yet

Google dark reader

il have to use force dark then lol

thats better

not the best looking

but itl do

It has been 5 min

also question is your vpn just for general use or is there a spesific use case

The VPN lets you connect to the THM network on which the target machines are based.

I see

I am on the "Intro to Web Application Security" page. There is an animation in it. I tabbed out to check something and when I came back in the entire page is blank and it looks like this. The other windows I have in my browser refresh and appear to be working okay. I cannot however right click in the THM website and refreshing does nothing.

Okay, it has reloaded.

It's reloaded and I managed to answer one question correctly and begin typing the answer to the next question before it froze again.

I guess one thing that's worth noting is that I do have Ublock Origins installed. Does that interfere with the site?

Disable it for the TryHackMe domain just to reduce potential interference. Then try again. Afaik, there's no ads on THM.

hi hi. guys i getting restart pause error if i tryna connect the server with openvpn. how to fix it
is anyone there who know?

Which THM OpenVPN server are you trying to connect to?

which?

bro hahaha mow many are there

i have downloaded

and trying to connect it

i dont know which one

In the access page, it should show to which server you are connecting to? THM has OpenVPN servers in IN, AU, EU, US, etc.

aah i got it

just a min

i'll check it out

EU-Regular-3

Try EU-Regular-2 or EU-Regular-4 and wait for ~2 to 3 minutes after switching the server before generating your OpenVPN config file.

ok i'll try right now

ups

its working

@ivory spruce thank you dude you are the bestt

Gave +1 Rep to @ivory spruce (current: #11 - 589)

Glad I could help. I just lurk around here often and happen to read stuff. 😅

hahaha 😄

hi guys i got this problem and i tried a lot to solve it and i just end up in dead end , ERROR The requested URL could not be retrieved

Which url?

with room

https://tryhackme.com/r/room/creative

and i've tried with another room and i got the same problem

and used another browser

Are you trying to access http://creative.thm ?

yes

Did you add the IP to your hosts file?

no

That's why, you need to add the ip in your hosts file, so it will use the URL instead of IP.

alright thank u

I have questions regarding certificates, say I earned one:

• can I generate both with my real name + username?
• are they accessible by any users on the platform or are they completely private?
• can we generate them more than once (say I had a typo in my name and want to re-generate my certificate with my proper name)?

Thanks in advance for the assistance!

No, when a certificate has been generated. It can't be changed

I see, can we generate both with real name and username?

Users can access the certificate if you give them the thm flag on the bottom right corner.

No, only one.

gotcha, thanks, Scrubz

Gave +1 Rep to @weary spindle (current: #1 - 2445)

you're an amazing support ❤️

This might be more suited in #room-bugs

Gave +1 Rep to @ivory spruce (current: #11 - 592)

My streak seems to have been reset but I have been active for the last 6 days?

how do i get my vm to connect to openvpn, it keeps saying tls handshake failed

Which country are you in?

Which server and os?

uk, eu vip 1, parrot os

Should work.

Are you using sudo?

yes

sudo openvpn /home/username/Downloads/ovpn file

nvm now it says tls key negotiation failed to occur in 60 seconds

Hello I have a small issue also with VPN. The connection seems to work well but the website doesn't show me that I'm connected. I have a container with the vpn and I can ping 10.10.10.10 on it but outside the container without the vpn I can't
I also have another issue : my attack with metasploit don't work. I always have a problem during the attack where things like shell can start even if I follow step by step a solution found on google. I don't know if the problem is related

well sounds like the major problem is because of using the openvpn in a container instead of host system

hello im trying to connect to the vpn but i never connects

Which THM OpenVPN server are you connecting to?

EU-regular 3

Which THM OpenVPN server are you connecting to?

Mh I'll serach in that direction ty

Gave +1 Rep to @plush bay (current: #4 - 1781)

Try EU-Reg-2 or EU-Reg-4 and wait for ~ 2 to 3 mins before generating your OpenVPN config file.

try using a virtual machine

Have you answered at least one question in each of those days you were active?

its connected thank you

Gave +1 Rep to @ivory spruce (current: #11 - 593)

EU-regular 4

I would have thought so, can't really remember what I did but the streak was there yesterday so I guess it thinks I didn't yesterday (23rd) but activity tracker says 28 events, so unless none of those were classed as questions I'm not sure what happened

Hmm.. not sure if timezone does come into play here. You can also drop an email to THM Support to inquire about it.

They can restore your streak as well.

I'm just no certain if there is a limit to said requests.

eu vip 1

Good evening, for the life of me I can't figure out why I can longer connect to the wreath network. I ran the bash script tool and it says "Something went wrong -- please ask for further assistance in the TryHackMe Discord server, subreddit, or forum " Anyone have any tips? I can connect to a machine but not to the Network Wreath

Can you try connecting again? If it doesn't work, can you re-generate your OpenVPN config file?

Have you tried joining it again?

Sooooo many times all day long

After generating the network, have you generated your OpenVPN config? I'm not sure if you can re-use the previous one as you might be assigned to a different subnet this time around.

Yes I would hit regenerate, then download the new config file, still no luck

Is the file empty or not?

the vpn would say its connecting but the Open VPN Access Details connection shows not connected in red and I can't ping 10.10.10.10 or hit the machine

pretty sure I cancelled my subscription it just renewed again for a year how do I cancel this

@sullen lava

At everyone who had or have problems to connect. Make sure there is no other vpn running(!)

Actually when I go to the access page it's said that I'm connected and I have an IP, but on others page the button "access machine" is constantly red

"Access machine" is your Attack box IP .

If ur using ur own one that field still red.

oh ok, I guess my memories were wrong, thank you !

ur welcome ✌️

Hello, I keep getting this pop up on Active Directory Basics , what should i do?

Did you go to the page?

yes , and this the page , should I send an email or I can get help over the discord?

Yes please 🙂

Ok , thank you.

Gave +1 Rep to @weary spindle (current: #1 - 2447)

I'm toying with creating a room or two but have a question about VM creation. Your docs give limitations on supported OSs (e.g. Debian 8, Ubuntu 20.4 or less) because of AWS conversion limitations. However, the AWS support page (https://docs.aws.amazon.com/vm-import/latest/userguide/prerequisites.html#vmimport-operating-systems-linux) indicates that modern releases of OSs are supported by AWS now (I know they certainly were in the dark ages last time I tried a conversion a couple of years ago). So is this a case of your documentation hasn't caught up, or are there other limitations in play?

The AWS list is likely more up-to-date. What OS and version are you planning to upload?

Hey i can't start the Bandit Challenge, do i have to be connected to the network first?

Read the task material, it will tell you how to start 🙂

Thansk, actually i can't even download any VPN config for networks. The dropdown menu on the Acces page does not list any configs. Do you know something about this?

Is no server available?

No, not on the networks tab. The machines tab show the regular vpn configs (eu-regular-1, ...)

You need to join the rooms before you can download the network vpn pack

If you're a free user you need a streak of > 7 to join it.

I have premium access

And i joined the Bandit room

I normally default to Debian 12 - I have nothing built yet. I suppose the best way is to try it and see 🙂

I left the room and joined again. Now i can start the machines of Bandit but on the Access page there is still now available vpn config for the bandit network room.

And the dropdown for servers doesnt work?
Sorry for the questions but I dont wanna go in the wrong direction.

Oh after reloading / waiting some time the config for bandit room is available.

May took some time 🙂 Thanks

Hello for the life of me I can't figure out why I can longer connect to the wreath network. I ran the bash script tool and it says "Something went wrong -- please ask for further assistance in the TryHackMe Discord server, subreddit, or forum " Anyone have any tips? I can connect to a machine but not to the Network Wreath

Hello

Hello, I'm currently working on the room "Ad enumeration" (https://tryhackme.com/r/room/adenumeration). Previously, I have completed the room "Breach AD". I can't connect using VPN (because I'm using a secure network), so I have to use AttackBox, but the issue is that the interface "enumad" does not appear when I launch attack box from the ad enumeration page, so I can't access to the network, setup the dns or anything. Rather to have "enumad" interface, I keep having "breachad" interface set up. What I had try to resolve this issue acutally: logout/login, change browser, reset network, restart attackbox, use Kali WebBased instead... Does anyone have an idea about what I can do to solve this issue ?

Subject: Issues with TryHackMe OpenVPN Connection

Hi everyone,

I've been experiencing issues with my OpenVPN connection to TryHackMe. The VPN connects via UDP, but I often encounter slow and unstable connections. It takes a long time to establish SSH connections, and 19/20 times it gets stuck completely right away.

When I had similar issues with HackTheBox, switching from UDP to TCP solved the problem. Unfortunately, TryHackMe doesn't offer a TCP option. Has anyone else faced this problem? Any suggestions on how to improve the connection stability?

Thanks in advance for your help!

Hmm...try ens5

How are you connecting to THM OpenVPN?

What exactly do u mean?
I "sudo openvpn xyz.ovpn"

xyz.ovpn is the config filed downloaded from thm.

Server is EU-Regular-2, tried different ones. Didnt change. Pinging works. THM says im connected.

Looks like it's not the right way

Problem solved: someone suggested adding config "tun-mtu 1500 and mssfix 1400" to my .ovpn file and it works.

You'll have the breached for as long as you're in the room, they're all separate.

Open your Edu configuration and see if it'd empty

hello

Yes I know, but I have completed Breach AD, so I’m not supposed to have this interface anymore right ? And also, since I have joined « enumeration AD » I’m supposed to have the new enumad interface ?

About Network Configuration on the Desktop of the attack box, it contains enumerationad .ovpn but if I try to force the launch by using sudo openvpn, it give me an error that says « cipher not specified »

Guys where can i find CTFs?

On the website.

I am trying to start the network in the CI/CD and Build Security room. Current status is "Network state:Stopped". Clicking the Start button I get the error Uh-no! Failed to start the network.. Is there a known problem with this room? Tried with Chrome and FF but no difference.

I had a similar problem in the bandit room. Try to Leave the Room via the Options button and join again.

Having problem in connecting with ADEnumeration network openvpn config file.

2024-06-25 08:51:06 OPTIONS IMPORT: --ifconfig/up options modified
2024-06-25 08:51:06 OPTIONS IMPORT: route options modified
2024-06-25 08:51:06 OPTIONS IMPORT: route-related options modified
2024-06-25 08:51:06 Using peer cipher 'AES-256-CBC'
2024-06-25 08:51:06 Error: problem with tun vs. tap setting
2024-06-25 08:51:06 Exiting due to fatal error

@unborn jewel That fixed it, thank you!

Gave +1 Rep to @unborn jewel (current: #2111 - 1)

2024-06-25 09:10:14 WARNING: Compression for receiving enabled. Compression has been used in the past to break encryption. Sent packets are not compressed unless "allow-compression yes" is also set.
2024-06-25 09:10:14 Note: --cipher is not set. OpenVPN versions before 2.5 defaulted to BF-CBC as fallback when cipher negotiation failed in this case. If you need this fallback please add '--data-ciphers-fallback BF-CBC' to your configuration and/or add BF-CBC to --data-ciphers.
2024-06-25 09:10:14 Note: '--allow-compression' is not set to 'no', disabling data channel offload.
2024-06-25 09:10:14 OpenVPN 2.6.9 x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] [DCO]
2024-06-25 09:10:14 library versions: OpenSSL 3.2.2-dev , LZO 2.10
2024-06-25 09:10:14 DCO version: N/A

I'm trying to use openvpn to connect but this error occured, can anyone help me?

is that the last text shown in the terminal or is there more?

if you can see this line, you are connected

Last one

I’m having an issue connecting to one of the TryHackMe VPN servers, preventing me from ssh’ing into the target box from my attack box. I can’t figure out how to fix it and TryHackMe support has been very sluggish at getting back to me. Halp.

I’m on the Nmap module, and every time I try to ssh into the target box, the connection times out.

I’ve changed the VPN server to southeastern US, and refresh this connection, then regenerated the OpenVPN key and downloaded it after. Nothing.

Did you try
"sudo openvpn newvpnfile.ovpn" ?

I have not. I will give this a try. Thanks!

Gave +1 Rep to @steep pelican (current: #858 - 4)

is US-East 1 openvpn servers down because when i try to connect via openvpn my kali says the initialization sequence is completed, but tryhackme says I'm not. Also when i try to ping the built in machine for the Nmap room it only pings once and stops. Speaking of Nmap when i try to tcp syn scan the given machine it says the host is down. thanks

After connection have u tried to refresh the whole thm site?

yeah

still says im not connected.

i reset the given machine

hopefully that works

if that doesnt i might have to reset my ovpn file

yeah that didnt work either

And or stop the process on your machine and reconnect.

i did that once already. ill try again tho

Any other vpn runnin'?

no

im at a loss tbh

If u r connected on your machine, can u ping 10.10.10.10 ?

that stops too

pings once and stops

100% packet loss

U ve been done any changes on your network?

no

I guess no

it worked on friday lol

i was on vacation and havent used thm in a while

and just got on now this

its weird

A little yes. Just restart your vm ?

But if there is one ping for request and no response u could be right that the server is down.

How did you stop the process?

on your machine.

when you mean stop the process as in stop ovpn from connecting?

or trying too

@languid pier sudo killall openvpn

what is the average response time for tickets ?

Unknown right now, however they don't work weekends.

i did the solution you suggested in adenumeration channel and it worked

Usually 1-2 days depending on ticket. As scrubz said if on a weekend it will take about 3-4 days

Apparently we are waiting for it to get fixed...

So I tried that command, and it’s not working

i'm also having vpn issues
originally in my linux vm, it's giving a tls error
I've already searched through the pins, tried all of the solutions there to no avail
But i've went onto my pc, installed openvpn and it's just giving me a timeout, even when connecting to my phone's hotspot

is there something I'm missing or is my internet and hotspot simply just too slow?

the ovpn version is 2.6.7 but I did change what it did, but also the ovpn troubleshooting script just doesn't run and i must be missing something because it says its not found even after doing chmod on it

and also is eu-3 the closest to the uk or are any of the other ones closer?

anyone? its been an hour now

I am having issues accessing tryhackme using openvpn.
Following is the output of the code
2024-06-26 03:25:45 WARNING: Compression for receiving enabled. Compression has been used in the past to break encryption. Sent packets are not compressed unless "allow-compression yes" is also set.
2024-06-26 03:25:45 Note: --cipher is not set. OpenVPN versions before 2.5 defaulted to BF-CBC as fallback when cipher negotiation failed in this case. If you need this fallback please add '--data-ciphers-fallback BF-CBC' to your configuration and/or add BF-CBC to --data-ciphers.
2024-06-26 03:25:45 Note: '--allow-compression' is not set to 'no', disabling data channel offload.
2024-06-26 03:25:45 OpenVPN 2.6.9 x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] [DCO]
2024-06-26 03:25:45 library versions: OpenSSL 3.2.2-dev , LZO 2.10
2024-06-26 03:25:45 DCO version: N/A
2024-06-26 03:25:45 TCP/UDP: Preserving recently used remote address: [AF_INET]3.7.33.194:1194
2024-06-26 03:25:45 Socket Buffers: R=[212992->212992] S=[212992->212992]
2024-06-26 03:25:45 UDPv4 link local: (not bound)
2024-06-26 03:25:45 UDPv4 link remote: [AF_INET]3.7.33.194:1194
2024-06-26 03:26:45 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
2024-06-26 03:26:45 TLS Error: TLS handshake failed
2024-06-26 03:26:45 SIGUSR1[soft,tls-error] received, process restarting

Hello, I'm trying to access my old account that I've forgotten its password. I know my username and email but when I say I forget my password, I don't get any email on what to do. Can someone help, thank you.

Hey, I bought subscription for 1 month on 19th june and after that everything was good but today when I opened my tryhackme account, it asked me to buy subscription, even though I have already paid for subscription on 19th

Do drop the THM Support email for this one as they will have visibility on this.

@uncut sky

Have you checked the spam folder?

Which THM OpenVPN server are you connecting to?

Youll also need to contact support.

Ugh.. do note that this is the forum and not the official THM Support channel. Thus, most folks here are volunteers although there are a couple of THM Staff (but not from their Support Team).

Try EU-Reg-2 or EU-Reg-4 and wait for ~2 to 3 mins after switching THM OpenVPN server before generating your OpenVPN config file.

Sorry i was just getting impatient but I’ll try those other servers after work

Well I have tried EU-6 EU-1 and IN-1

Ok

Question : how do you change the taskbar on an attackbox

its doing my head in

Wdym?

I want to move this

I know nothing is saved

but I need to move it

edit the panel and move it to the bottom if needed.

Hi guys. Having an issue with openvpn for Breaching AD network. Connecting trouhg CLI, getting IP but cannot pin 10.10.10.10. Regular VPN is working normally. I would really appreciate some guidance))

Do you have the VPN running?

Negative

Is it erroring?

Nope, no errors, getting "Initialization Sequence Completed
", receiving IP within THM range but still cannot ping 10.10.10.10. Tried to regenerate the cofig file several times.

Same result

Yeah. it's on a different box

Go to #breaching-ad and follow the pinned posts by me.

Tnx

Gave +1 Rep to @weary spindle (current: #1 - 2454)

I think I have the same problem except it’s the nmap room

It says the same sequence initialization complete but it say I’m not connected to the Machine

Where does it say you aren't connected to the machine? What is the room URL?

Hold on

I’ll take a screenshot. And it’s the nmap room in the beginner path

https://tryhackme.com/r/room/furthernmap

Ignore that, it isn't always accurate

ah ok

only thing is. when i lauch the given machine and i try to ping it, it pings once and then stops

im guessing mabye its set up that way because you need to use nmap on it?

open a terminal in your vm and run curl 10.10.10.10/whoami
If that returns an ip like 10. xxx.xxx.xxx., then you are good

is it supposed to be stuck?

What task are you doing? Some machines don't respond to ping, but those are generally windows

When you connect to the VPN, do you keep that terminal window open?

task 14 practical and its question 4

yeah

should i close it?

no no, keep it open

Ah I see, did you answer the first question yet? You know the answer based on what you said earlier

no. i was saving that one to the end. now that i think about it i should have prolly did it

but like when i try to scan the givem machine it says "Host is down"

what is the IP?

oh the curl came back

said failed to connect to port 80

well 10.10.10.10 port 80

10.10.45.135

can you try nmap with 10.10.142.238

What command should I do

nmap ip

Oh Ight

Says “host seems down. If it is really up, but blocking our ping probes try -Pn

can you run ifconfig in your terminal and look for a tun0 ip

I think there is an issue with your VPN connection, I mangage to run an nmap scan with your target IP

Found it. Which one do you want. The inet one?

the one with10.xxx..

Well there’s two with those. One is named inet and the other is destination

Oh wait nvm I’m goofy

They both the same

The ip is

10.6.83.84

can you try the nmap scan again and add -Pn

That one worked for some reason

There’s 3 open ports

That’s actually weird

there should be more than 3

can you run sudo ip link set dev tun0 mtu 1200 and then do the nmap scana gain?

So now there’s 5. If scanned 995 filtered tcp ports with no response.

Should I also run -vv

To get more information

there are only 5

Looks like you're good to go

Oh ayeee

Your the best gonzo

What was the actual problem tho.

Was my tun0 not right or something

That's your homework, go have a look what that command does 🙂

feel free to DM me if you have any questions

Bet

to use a kali vm, is there anything other than running openvpn with your config file that I have to do? I have an ip on my box but nothing on my access page. maybe I am doing something different but I couldda swore this was how I always accessed the labs

Got an ip on http://10.10.10.10 ?

10.6.74.24 but cant ping it or nothin

Can't ping 10.10.10.10?

if I open a browser in the vm I can load 10.10.10.10. but I used to be able to just use my pc for the browser stuff nd use my kali vm as a little attack box and everything was connected

it has to be something painfully obvious I just have been away for a few months lol

Should I be using a bridged connection or NAT for my VM?

Are you running the VPN in the Kali vm?

indeed

From the VM you can ping 10.10.10.10 ? What do you mean use the pc for browser stuff?

basically I would browse THM website and access the rooms on my hardware and use the kali vm to access whatever i needed to instead of the attackbox

and it was super ez and seamless

Yes, should be possible. what's the issue?

Og ignore the acces page. It's broken. You seem to be connected to the network.

intredasting

maybe I am misremembering the nature of how everything was connected

Thank you!

Gave +1 Rep to @timid talon (current: #112 - 59)

I'm having a problem starting this room, it never loads content
https://tryhackme.com/r/room/obfuscationprinciples

What browser are you using? Browser plugins? Can you try it in incognito mode?

I tried it in incogontio and still the same, using Chrome latest version, win 11

I have many plugins on Chrome. Anyway, I just downloaded Firefox (first-time install) and tried to start the room but still same error (not loading). Any idea?