#site-support

wasn't having any trouble last night, but today the site is acting up

Yes, can you send me a screenshot of what you see?

Hi, do anyone has issue with openvpn network used for the lab (win lab) ?

because i'm doing some windows room that require that specific network, and it doens connect on the acess on my account i can't see any ip connected while i'm connected on my kali

Is your VPN active?

yes

if you mean the main no but the network yes

Which network?

lateralmovementandpivoting

i have the interface up on my vm

it pings nothing (intentional i guess due to win firewall dropping icmp)

Can you do ip a and see if the interface is there>

?

i've done that and the int is here

Did you press the green start machine button?

yes

And did it boot up the attackbox?

I click start machine and then the usual red bar d with the ip does not pop up. Site tells me that I have machines running, but I can't see them

yes attack box is booted up

Can you check #breaching-ad and follow the same steps

That is possibly the machine you need to use then.

Nope, I started the machnie in task 4 and got the red bar

why don't I then?

Terminate your attackbox

I don't get it when I terminate attack box either

Is your window small or full screen?

full screen

from the messages i've seen they have problem with the dns that doesn't resolve the domain name needed on the room but for me the problem is I cant ping the DC itself

The command to resolve the DNS etc is not anymore, you don't need that to resolve for it to work

my problem is i cant ping the DC

That page is broken.

The DC is Windows, so yeah..

but i have the interface on my vm

Did you put the nameserver $THMDC in /etc/resolv.conf

yes

is that good ?

yeah

Is there a link in one of the tasts?

wdym ?

http://distributor.za.tryhackme.com/creds

Can you visit that link?

when i am connecting to different service machine in network services room. then it keeps connecting me to ftp machine and not with other service machine. please help

nope but it won't work cause the dns resolver don't respond

Like I've said, the DNS resolve won't respond.

yes the fact that I can't communicate with the DC which is the dns resolver make it not working

please help me guys

I can't communitate with the DNS either, and I can still visit the link fine.

You're ignoring what I'm telling you...

sorry i'm doing lot of thing at same time wasn't my aim 😅

@weary spindle I appear to have the red bar back. Thank you

Gave +1 Rep to @weary spindle (current: #1 - 2596)

and my progress is back

thank you very much

Have you started the correct target?

hello, is anyone else facing any issues with getting a reverse shell while working via a VM? this has been a persistent issue for me.

Which room?

Hypervisor and vpn?

i'm using openvpn, smag grotto room

And which hypervisor?

what do you mean by hypervisor?

i have kali installed on vbox!

Hello There
Can someone check if could ping the thmiis in the lateralmovement room ?
I followed the same steps and all the machines are reached except the iis one

I'm in the phase where I'm supposed to use the admin creds and upload the payload all I got is an error stating

session setup failed: NT_STATUS_LOGON_FAILURE

Hello, I am not able to download my VPN configuration file, I have a "Not found" error

try regenerating

i have tried on mine and it's downloading fine

I tried, and I also changed the server just in case

Oh nvm
Server 3 is working
Niceee 👀

Hi, I am trying to do a threat modelling exercise on the Site pop-up and I have no idea how to progress as I get blocked almost immediately into it.

It's the "View Site" exercise in the Threat Modelling room, STRIDE Framework.

I click into a room, a chat bubble pops up and I have no directions on what next to do. Nothing is clickable on the page and no keyboard key changes anything.

I'm on Edge

Hello dears
I cant do BurpSuite room
because my pc get crash when I join in that room

Hey everyone,
I'm trying to get connected to the site with openvpn, but I'm having issues with my set up. I'm using a Kali Linux VM through Hyper-V on Windows. I've downloaded the file for the server and went through all the steps. I even have myself connected on the access page, and I'm able to see myself connected to the VPN on my VM and on the THM site. But when I try to do any tasks with my Kali VM, I never get any responses from the server. Using attackbox's works fine. I'm thinking this has to do with my firewall or window's defender settings, but I'm not really sure what to do at this point.

There are a few pitfalls with using WSL, other users too have networking issues with it. Perhaps, try installing Kali with Virtualbox or VMware.

Are you using your VM or the Attackbox?

Have you tried Firefox or Chrome (although Edge is based on Chromium)?

Should there be a need for you to generate a new OpenVPN config file, please allow ~2 to 3 mins after switching to a new server before generating your config file.

hi everyone, i have a problem with this room : https://tryhackme.com/r/room/wireshark [ task 11 q : Looking at the data stream what is the full request URI from packet 18?] I have put the correct answers ( i did some googling and also i know it is correct). Am I wrong or are there any issues with the question?

I have only linux in my pc

but the trouble is the room, no VM or Attackbox

because when I click on the first answer to input the answer my pc get crash

Understood 🙂

You need to change the"&" with "&"

It worked thanks

Gave +1 Rep to @weary spindle (current: #1 - 2598)

HI everyone I have few problem on TOR.I just cannot access some .onion website while it hints me that "You are trying to reach an onion/hidden service. To access eh5ulwvom7hlggrm.onion via web you will have to use the Tor Browser."

But I actually using tor to visit it

Is this for Tryhackme?

sorry about that

This isn't needed, a mod was already dealing with it

Hi all. I am on Linux Fundamentals Part 2 : Permissions 101. I am being asked the following questions.

1. On the deployable machine, who is the owner of "important"?
2. Output the contents of "important", what is the flag?

However there is no 'important' on the machine that I can find anywhere. In general it has been a poorly worded section of the module, but have I missed something really obvious? Thanks.

Are you on the correct machine?

It's not poorly worded at all.

it's the only machine in this section.

I just started a machine, SSH'd in and the file is there?

It's not letting me ssh in. No worries, I've moved onto the next section. Thanks anyway.

Gave +1 Rep to @weary spindle (current: #1 - 2599)

Can you verify and share a screenshot?

I've already moved on and started a new machine for the next section. No worries, thanks anyway.

Hi, i'm stuck on active reconnaissance - task 5 from Jr Penetration Tester. When i tried to use "telnet HOST PORT" command on 'Attack Box", it give "Connection closed by foreign host' despite i subscribed premium attack box. What is the reason, that's CLI Commande doesn't function ?

Have you clicked on the green Start Machine button anywhere?

It is separate from Attackbox.

Did you connect with telnet $IP 80?

Yes
Yes

Client command : Telnet [IP@ADRESSE](start machine) 80

Can you screenshot?

It needs to be done like this.

after typing

host: telnet: you need to hint enter once or twice.

i have a linux machine with openvpn installed, i connected once and disconnected after, but every time i try to connect, i'm not able to reach the tryhackme servers

what is weird is without using openvpn, if i go to 10.10.10.10 i get the 'if you can see this page you're connected, but it doesnt provide me an IP, and 'ip a' doesnt show a 10.x address

That might be the browser cache. Try with:

curl http://10.10.10.10/whoami

I am in Windows Fundamentals 1: User Accounts, Profiles, and Permissions. There is a question asking for 'What is the account description?' for the Guest account. However, it is not accepting the description from that user 'Built-in account for guest access to the computer/domain'. I tried searching for an answer on forums but it seems they recently changed just that question and it used to ask about the account status. A couple of Users pointed out that there are a lot of mistake on the Windows Modules, is this one of them or am I missing something obvious?

It's not looking for the guest account.

It's looking for a different account.

This is the question above it 'What built-in account is for guest access to the computer?' So what other account could they mean?

I know what question it is.

If it's the status then it defiently has one, if it's description it's a different user.

What built-in account is for guest access to the computer?
Guest
Correct Answer
What is the account description?

From the order the questions are placed in the assumption is they are referring to the account they just referenced. Is it just sloppy wording?

It's not.

The question What built-in account is for guest access to the computer? is for a standard Windows feature.

The account description is not for the guest account.

Then which account? It is following the question about the guest account, so I would naturally assume thats what it is referring to. As I said, sloppy.

That's your opinion.

The account is the first question.

And many others when I went to research the answer and found none.

They can be wrong too, it's ok.

Do you work for TryHackMe? If you do that is not a great sign that you are just unwilling to accept that the section could have been clearer, and instead automatically blame the user.
If I was to talk about one man, let's call him Bob, then I change to talking about another guy called Tim, and then followed it with the statement 'What do you think about him?', you would naturally assume I was talking about Tim, right? That is how this question section has been arranged.
Rather than this long conversation insisting I'm wrong it would have been much easier to say 'They were referring to the 'tryhackmebilly' account, not the Guest account.

I do not work for TryHackMe, my first sentence to you was "It's not looking for the guest account" followed with "it's looking for a different account"

You then told I was wrong.

"it's looking for a different account" is not the same as tryhackmebilly. Feel free to just ignore my questions in the future since you seem to provide them with such attitude.

Different account != Guest

I could be here all day explaining this to you, but there is no point.

I didn't tell you the account because I wanted you to use material and come to your own conclusion.

And when I told you the flaw in the order of the questions you told me it was not a flaw. Please ignore my questions in the future.

You should really look in, before you look out.

Also, if you did your research in this server, you'd see this was discussed many times.

And you should really not tell people they are wrong when they are pointing out a clear mistake in the logic of the question order on the platform. You seem more interested in being a smartass than actually helping. Another powertripping Mod....nothing new.

I'm not power tripping, I have not threatened you with any moderator actions.

You were being a smart ass. That's more than enough now.

Smart ass != power tripping...

Go away you fool

Now you're being rude.

Everything okay here?

Its justified. You have been nogthing but rude since I asked my question

You can discuss my actions with tim now. 🙂

I asked a simple question, pointed out a flaw in the order the questions on THM were presented and this guy just kept telling me I'm the one at fault. Mods should either help, or just ignore the question.

Let's take a step back and calm down. Everyone is trying to be helpful. Name calling does not make the situation better, so I advise you to not do that.

Then I advise you to not make people admins when all they are here to do is to try make new users feel stupid, especially since I had a very valid point.

If you are incapable of letting this give a rest, I will mute you. 🙂

So who do I point out the flaw to? If the admin tells me I'm wrong when I'm not, and then you tell me you will mute me, what is the point in having this site-support feature to begin with? There is no option to flag errors on the site itself like many other platforms have.

Please note: You can point out things in a respectable manner and be courteous to those who are trying to help. We are all here to learn and help one another. Toxic name calling we do not tolerate.

But you tolerate your admins trying to make users feel stupid, and you ignore any reports of errors on your site. Got it. Thanks for your time.

Gave +1 Rep to @tawdry orbit (current: #16 - 468)

If you have an issue with a moderator, the proper way to report it is mentioned in the #rules channel.

Have you taken note of the issue I highlighted in the chat with that admin or is user feedback discouraged?

you are correct, ty sir

Gave +1 Rep to @keen scroll (current: #39 - 196)

Don't use "sir", I am a student actually 😛

I agree that the moderator was being rude. This method for getting support is not the best. It seems like THM is mostly relying on the community to help each other, which is good but not perfect.

There's no obligation for the community to respond to every message, so issues like mine could just get forgotten in the influx of messages and never get support. Even if they find true bugs.

The @THM Staff role is not even mentionable so I can't call on THM staff if the community can't help me. i emailed the support email but let's see if they reply.

basically the issue is support is unreliable and inconsistent

There was no need for re-hashing of the previous conversation that you did not partake in.

I gave a suggestion, and they told me I was wrong, and spoke to me as if I didn't understand what they meant, Tim stepped in and dealt with it.

The roles not being mentionable are intended. Staff aren't on the Discord server to provide help, that's what the community is for. THM staff aren't paid to help in Discord,

The length of time for support to reply can vary, there is over 3 million users on the website, and if even 1% of the user base was to E-mail, that would be alot of E-mails for the team to reply to,

Also, as part of the team is present at Black Hat and Defcon, and they don't work weekends, it could be be anywhere between 4-6 day(s) for a reply.

Hey, this page keep on crashing on my browser. Can you check please.

Post the link please:)

I thought they were expected to provide support bc that's what the #rules made it sound like. I see now they're just here in case they take time out of their day to help us out.

I don't have a problem with that wait. I understand that there's a big customer base and using the community can be effective. I admit I jumped the gun on getting my issue resolved. Just got concerned it will never be looked at.

Hi, I just skip (for the moment) the room about Lateral Movement and Pivoting because I think there is a problem with this room I've switch to the room Persisting Active Directory and all works fine, dns, getting creds etc so i think there is a problem with this room.

Honestly, you won't be missed, and in the worst case scenario you are missed, if you post in here if it's been > than 8-9 day(s) more often than not, support will ask you to DM them your E-mail so they can look for it.

Can you share some screenshots of the errors in #lateral-movement-and-pivoting please?

Was this the issue you spoke to Ben about, in another channel?

Yes

Ah, Just wondering. 🙂

Alright, I wasn't aware of that process. Thanks for the clarification.

Gave +1 Rep to @weary spindle (current: #1 - 2601)

No worries! It's ok to be concerned.

Hey:) just to clarify a little bit, I work on the content team and we do try and check-in with the Discord when we can. This can take a little while I must admit because we also have the responsibilities of other tasks (plus timezones, etc).

If you are missed/or it takes a little time I apologise, it's a fast-moving Discord and sometimes it's just a little hard to keep a regular eye-on things. It's definitely not intentional if something gets "missed".

Support (i.e. via the email or chatbot is an official process and it will be sent on to us if applicable), but we also have mentors and community members who are very knowledgeable, but they also volunteer their time.

I can understand it can be frustrating / a hinderance so I do apologise for that overall

Hello:) sorry to hear. Can you say specificallly what task and question that you're stuck on please, and what you've tried?

Thanks for clarifying as well, Ben. That's all good. I think I'm used to the traditional form of customer support, more one-on-one and instant. My two cents, just explaining what y'all said in the rules might quell a lot of people's concerns.

Gave +1 Rep to @zealous yoke (current: #8 - 857)

https://tryhackme.com/r/room/winadbasics

It's loading ok for me, are you loading it in a VM or your host?

Host

Other pages working fine apart from this one

Do you have any errors in your browser console?

None

I tried everything

Clearing cache

Checking on private window

Everything

But its crashing everywhere

However its working fine on edge

I am currently using brave

Error: out of memory is an issue on your end.

Perhaps the temp folder for brave is full?

It is

I cleared that too

%temp% and temp

Both

I understand. Thanks for passing on your feedback - I'll circle that to the appropriate people:)

Try a reboot? (pc)

Done that aswell

Hey Mogam, out of curiosity, can you post the specs (ie. 4GB RAM VM (if you're using a VM)) & enironment details (i.e. it looks like you're using Windows?)

I am using my host, 16gb rem, ryzen 5 4600h, gtx 1650 (Not related, still just incase)

Understood. Thanks for sharing. I can't see anything immediately that'd be causing that. I'll take a further look and see if I can find anything

Yeah one more thing that I noticed that all the room of "compromising active directory" giving me same error

https://tryhackme.com/r/room/credharvesting
https://tryhackme.com/r/room/persistingad

Leaving these two links

Alright, it fixed now... I think my browser was causing it... I reinstalled it and its working fine now

will you guys and girls ever be adding a dark mode to the site? Sometimes i just wanna study late at night and the bright white kills my eyes lol

It's coming soon™️

Olá tem algum erro com as perguntas do site. Coloco uma resposta e sempre fala que esta incorreta? E agora oque eu faço?

Help me

Help me

I need help

Is there any way to mark something "done" without having to go through it? For example - I'm enrolled in the "Cyber Defense" path. However, I don't need any of the introduction rooms in the first 2 sections like networking, AD, MITRE, etc. But, if I don't go through and answer all the questions, it 1) the website starts me back in those introduction lessons when I login and 2) says the path is incomplete.

Customer Service: I simply don't exist!

This is sad😕

😂

support will get to your ticket when they are available 🙂

Que bom cara, que bom...

It means the answer it wrong, read through source material again, or use the hints. Or look up questions on google most have answers available to validate if it’s a system error or human error.

Mano a pergunta é: "Qual das opções a seguir representa melhor o processo em que você simula as ações de um hacker para encontrar vulnerabilidades em um sistema?

1- Segurança ofensiva
2- Segurança defensiva

Hey this Discord server is English only #rules

So I won't get service because I'm Brazilian?

This gotta be a troll 😈

Not at all. For moderation purposes, this Discord server only communicates in English 🙂

Have fun 😂

Dude, the question is: "Which of the following options best represents the process in which you simulate the actions of a hacker to find vulnerabilities in a system?

1- Offensive security
2- Security

I answered as the 1st answer which is the correct one, and it appeared incorrect

Screenshot 📸

I don't have permission

You need to verify your tryhackme account to send images

Just put the answer in English 😶‍🌫️ I apologize for the lack of education 🙂👍

Rule 5

#rules

am i cheating?

If your told the answer there is no learning. Making mistakes I part of the process.

But I already knew the answer, I just wanted to know why the site was giving my answer as wrong when it was the right one.

But I already solved it, thank you very much.

Good night

🙂👍

❤️

HI Team.I am unable to connect to vpn.Tried reinstalling the vpn but still not able to connect

Which server?

In-Regular1

I am using OpenVPN 2.6.0 x86_64-pc-linux-gnu

Have you tried a different server?

I tried the EU-Regular 2 but the same issue persist

Try Eu-Reg-3 but regen first.

okaaay

it worked

Thanks!

I created an account a couple months back and purchased premium, now going to sign in I couldn't log-in because I forgot my password so I tried logging in with google which wiped my entire account. Is there anyway to restore this? I also was just charged for premium and no longer have it because of this.

When you login with Google it creates a whole brand new account.

You'll need to contact support, who can help further.

hello, I am once again unable to view my attack machine info. no red bar

please help

Target machine or attack machine?

target

i wonder if maybe this occurs because I tried to start the attack box and target machine too close together

still there?

Targeted machine

you too?

@weary spindle you still there sir?

anybody?

whats up?

I had this issue the other day and it was fixed. now it's back again. Something with my account. Unable to view target machine information and my room progress is not updated when I refresh

@weary spindle

I get here "Investigating with Splunk" no entries to the index="main"? Does somebody know what i am doing wrong?

Hi, is there a possibility of updating the openvpn servers to use AES-256-GCM instead of CBC?

Is there a US East VIP server or are those of us in places like the Carolinas stuck connecting to US West for the moment?

Perhaps on HackTheBox forum, Discord server. You can download the starting point VPN configuration to access this machine ✌️

You should be able to, sorry but I haven't used it.
Again, try on the HackTheBox server for better help/guide

I checked just now and it only has US-West VIP at the moment.

You could add an entry for it in #feedback-and-ideas though.

I suppose it should be possible (I'm not staff though so there might be other considerations). However, the THM OpenVPN is not intended to be used to transmit personal and/or sensitve information so there isn't really a need for doing so.

Is there any darkmode available on the website?

currently no but the dark reader extension/addon/plugin works in most browsers,,, is open source,,, and works near perfectly with tryhackme

Alright, thanks. I'll have a look at it. My eyes were starting to hurt

Gave +1 Rep to @plush bay (current: #3 - 1861)

It is in-progress if I remember correctly, but not sure on the exact date yet.

Alright thanks!

Gave +1 Rep to @ivory spruce (current: #11 - 641)

What's the number of premium rooms?

I want to complete all free rooms first then possibly upgrade.

Hello i'm having the same BF-CBC problem i've seen other users having, but the solutions that have been suggested before havent been working for me :(

I reinstalling the vpn and I've regenerated and downloaded every region, but they all give the same issue

Did a quick check and it could be at 299 or 300.

You might want to focus your efforts on either red or blue first. Just a suggestion though.

Can you share a screenshot of the error message so we can better assist you?

@spice herald

Ahh.. it figures. Use the Communities edition of OpenVPN if you are connecting using Windows - https://openvpn.net/community-downloads/

Do keep in mind that connecting using your host to the THM environment is not recommended. While THM has put in place measures to detect any malicious / suspicious activities in its network, there may be instances where these might not be timely detected.

Thank you, this version is working for me! Can you clarify what you mean about connecting to THM with my host computer? I thought the VPN was meant to protect against that. Is the AttackBox on the website the only safe way to connect?

It's recommended to install a Virtual Machine to use and connect to the thm network with.

VPN in THM's case is only intended to connect your device or VM to the THM network so you would reach the targets.

Hi all. Question about the progress, the listing of rooms, and the progress reset function.
Recently I decided to reset all my progress, to restart from zero, kind of.
I managed to "reset my progress" and "leave", from all the rooms i was on.
But when i'm on the search page, with filter set as "Completed"', I still have the old rooms that I leaved previously.
The thing is these rooms do not have the green tick, but still show on the list of "completed". And I don't want to.
I don't know if it's normal. Any idea ? Or a way to make them out of this list ?

(It's not juste two rooms, there is 13 pages of old completed that i dont want to be shown

I think the green tick remains after you reset progress, as you don't get new points when you complete the room, it's maybe to keep you aware of what rooms is completed and what isn't.

why when i try to access machine the title be like
Title
OpenVPN - Check Connection
25days of cybersecurity

Can you verify your account and send a screenshot? That will make it easier.

I see. A bit annoying to know what rooms I've done, from my full reset, I admit. Of course i take notes of what i do. But still

Yeah, that's working as intended.

The green start machine button boots up a different machine to the attackbox (in rare cases it doesn't, it boots up a sandboxed machine)

what should i do ?

That depends, are you working in a VM or the attackbox?

attack box that given by tryhackme itself

Then you just browse the to the IP in the target ip address area.

The Title is just what the virtual machine attached to that task is called.

In which case, the room you're doing is for help on setting up the VPN on your host/virtual machine.

then i should connect to other room to change ?

This article should help you.

thx .i got it

Gave +1 Rep to @weary spindle (current: #1 - 2609)

Hi, just wondering if there is anyone from support here.. I'm doing the Red Team Capstone challenge, but alas seem to be running into issues with the e-citizen portal creating my email account.

What problem do you have?

It appears my e-citizen account provisioned but somehow errored out when creating the email account, I’ll attach a screenshot of the error

https://imgur.com/a/iIfBHyU

Sorry, wouldn’t let me upload the picture , hence the link

You'll need to verify do post screenshots in here

i am getting this error.
anyone have this solution!

Authenticate/Decrypt packet error: packet HMAC authentication failed

why in unattended room i must wait 10 minutes to open app?

most of the time in rooms is waiting for vm's...

Because services don't start immediately, much like your own pc, when you boot it up from a powered off state you need to wait.

i mean launched registry explorer 12 minutes ago and still waiting for app to start working

@tribal burrow

doesn't go past this, says restarting after a couple minutes

and same thing

send that part to double check 🙂

I don't have a lot of stuff you have 👀

it mid=ght due to diff server

I just regenerated and downloaded another VPN pack, lemme try with that

HMMMMMM

new errors...

work ?

nope

one sec

aye

where is openvpn .conf located lol

I gotta check

but I regenerated my eu2, and now THIS is the problem, and it's data-chipers, I checked

/usr/lib/tmpfiles.d/openvpn.conf here

uh. thats tmp

there's 3 entries

hmm... some of files need have config to change chipers and so

ill find it lol

aye, or I can try and update openvpn

whatever it is I'll figure it out tomorrow, Imma do something else

try make gui connection

try add this
data-ciphers AES-256-CBC:AES-256-GCM:AES-128-GCM:CHACHA20-POLY1305

@royal wagon

anyone help to fix the render issue with browser on brup pro >?

aye, I'll try

having dinner now

i mean replace

a ok

trying that out now

@tribal burrow still no workie lol

I'll try and figure it out tomorrow, gonna go get some rest now

thanks for the help though

+rep @tribal burrow

Gave +1 Rep to @tribal burrow (current: #25 - 341)

https://github.com/OpenVPN/openvpn-gui/issues/381 might shine some light also

So, the evidence zip from https://tryhackme.com/r/room/blockroom contains a trojan Trojan:Win32/LsassDump.A

It's a false positive.

Hello, I'm having some issue with Task 7 in the IDOR room (https://tryhackme.com/r/room/idor). I start the machine for the task and after starting a new machine a couple times, it gives me a 502 Bad Gateway error.

Which link are you accessing?

The link it makes for Task 7. It jsut supplies the machines IP
https://lab_web_url.p.thmlabs.com/

If you're doing this on the attackbox, just use the IP that is generated inside that.

So if it's http://10-10-10-10.p.thmlabs/ just use http://10.10.10.10

the IP alone?

ooo okay i'll try that right now

lol okay that did it

thanks

❤️

Hello, having problems with the Summit room, the url never loads after I press Start Machine, doesn't matter how long I wait

Restart machine then. It's working for me.

Unfortunately there’s no terminate machine button appearing for me
When I tried Summit a couple of days ago, I had to wait for the machine to expire

Can you share a screenshot of this? Might be worth reporting as a bug.

The link just looks like this

Machine's running

Which button did you click? Probably the attack box?

Green one, the room doesn't even show a button for the Attackbox

anyone facing connection issues with openvpn? i can't even get responses from a ping

Which room?

i thing either there is a problem or the machine does not response to ping request specially if it a windows machine it most likely. As for me it works fine

Hey There! I Know this is a bit odd, but It's been a while since I've used tryhackme, i've navigated to https://tryhackme.com/r/access and I've attempted to download the ovpn config and connect using sudo openvpn <filename>..

2024-08-11 10:50:46 PUSH: Received control message: 'PUSH_REPLY,route 10.10.0.0 255.255.0.0,route-metric 1000,route-gateway 10.6.0.1,topology subnet,ping 5,ping-restart 120,ifconfig 10.6.24.211 255.255.128.0,peer-id 67'
2024-08-11 10:50:46 OPTIONS IMPORT: --ifconfig/up options modified
2024-08-11 10:50:46 OPTIONS IMPORT: route options modified
2024-08-11 10:50:46 OPTIONS IMPORT: route-related options modified
2024-08-11 10:50:46 Using peer cipher 'AES-256-CBC'
2024-08-11 10:50:46 Preserving previous TUN/TAP instance: tun4
2024-08-11 10:50:46 Initialization Sequence Completed
2024-08-11 10:50:46 Data Channel: cipher 'AES-256-CBC', auth 'SHA512', peer-id: 67
2024-08-11 10:50:46 Timers: ping 5, ping-restart 120
2024-08-11 10:50:46 Protocol options: explicit-exit-notify 3

I've been trying to further my progress in the pathways, but have been unable to determine weither I should be utilizing the Machine or Network ovpn config, whenever I switch I've been having difficulties actually establishing the initial connection.

Generally Machines. For some rooms Network but in thst case I believe it will be explained in task 1.

Run the sudo openvpn configFile.ovpn and try to ping 10.10.10.10

That's connected.

Have you tried regenerating your key?

Why do they need to do that?

I'm sorry, I just noticed the output. Quickly skimmed up and down the channel to check previous posts

It is connected. No need

Hi))
I have little problem
I started doing "Wreath" room and use local Kali for this, after connect to ovpn I dont have access to network.
it's output troubleshoot script

[+] Re-running with root permissions
[+] Stable internet connection
[+] OpenVPN is installed
[+] tun0 exists
[+] tun0 IP is in the correct range
[+] Only one instance of OpenVPN is running
[+] Confirming connectivity
[-] MTU value failed at 1000, aborting MTU check

Can someone help me?)

Hi can you help me please : I've been trying to connect to the VPN for a few days but the terminal tells me that I'm connected and then there's nothing I can do with it.

From where should I start

complete beginner or pre-security

Wdym? Open another terminal, leave the connected one running as long as you are doing THM content.

Pre security > introduction to Cyber Security > complete beginner. #general message

alr

Try EU-regular-3. Regenerate file and wait 3minutes before you download it.

i keep getting fatal error when trying to connect to vpn

2024-08-11 16:56:05 Exiting due to fatal error```

it worked i fixed it ^__________^ yippee

i was almost gonna go insane cuz ive been itching to get on tryhackme

i havent been online in like 4 hours so i was losing it

I'm not getting access to THM network even though I am getting a tun0 address, can ping 10.10.10.10, but running operations such as dirb, gobuster, or fuff return a connection refused error. The openvpn acess details page displays:

VPN Server Name
US-East-Regular-1

Internal Virtual IP Address
0.0.0.0

Server status
Online

Connection
Not connected

I remove openvpn and reinstalled and I have regenerated certificates, nothing is working.

did u run it as sudo

yes

root?

never

just sudo

I resolved that issue, I am able to connect to THM VPN server but I am still showing "disconnected" when viewing my access to machines and yes the victim machine is spun up and I have an IP for that machine.

You can ignore the acces page. It's broken. If you can ping 10.10.10.10 you are connected.

True, but I am still unable to enumerate the machines via dirbuster fuff and burp. I get a connection refused error.

Sharing a screenshot might be helpful. You'll have to verify first (see link).

I ping and use nmap against these machines, the room is vulnervirsity by the way.

@devout drift

I dont see an option for images

nvm

Gobuster scan isn't working?

Correct

Trying to access the vulnerable webpage via burps built in browser throws an http error as well.

Right now it's trying to use the default port for http which is 80. The port should be 3333.

I am connected

I went back and re-read the task, I don't know how I missed that smh. Thank a lot!

Gave +1 Rep to @timid talon (current: #43 - 177)

When connected to the vpn, does it have to be the same ip in my kali to the attack box ip. I configured the vpn with the username.ovpn to my local server. So I need to repeat it with the new ip or does it work automatically when I change to a new room.

It works when you change rooms, the tun0 ip is assgigned to you.

Cool, so I boot up vpn with same file every time and it works cool. Thx

You don't have to close it when you finish a room either.

You can leave it running for how long you need it for

Maybe off topic but how long should a hydra crack take

I have a username and password txt I’ve found already.

If you have the syntax correct and the password is in the file, depends.

I always use -f so it stops when it's found.

Soz I found why not working there is a capture

hi on https://tryhackme.com/r/room/enumerationbruteforce when the visual http basic auth is shown and i send the info, the network packet is not being captured by the proxy

task 5

Can you elaborate further?

Have you set Burp to intercept?

sure

i will need to try with proxychains and curl

but with firefox is not working for me

Why do you need proxy chains?

for setting burp as a proxy

Why not just use FoxyProxy?

bro im telling you is not working in firefox for me

Sister, you've probably set something wrong, usually if you want help, it's helpful to list what you have tried.

Instead of X isn't working for me, I'll use solution Y

You did ask for help, then you decided to use proxychains.

Send a screenshot of what you're doing.

I put it on site-support because I think it's a bug

Worked for me ok.

any other request is capted by the proxy

so is a bug

For you, which could be user error...
Which is what I'm trying to help with...

Can you take a screenshot of burp.

let me show you with a serie of screenshots

one moment

when i press sign in that info is just sended to backend and no capted with burp throught burp is listening

what do you see in burp when you hit sign in?

nothing

Can you show me?

Go to intercept

this same

That package shown is one of those managed by Fierfox

I'll show you.

Yo I need some help in this room https://tryhackme.com/r/room/winadbasics. The deploayble machine just shuts down either when it's booting up or sometime before 5 minutes of use, and then just can't find and connection when i try to reconnect? never had this issue before and reloading doesn't help. server-sided issue?

Are you trying to RDP in to the machine?

not yet no

I'm mostly just messing around with OU's

but don't have the time to get to that point once i set stuff up

i'll keep trying in case it stops messing with me

ok thank you, i still having that issue but sure it is some configuration or something, i already solve that task by the method i told you, anyway thank you for helping

Gave +1 Rep to @weary spindle (current: #1 - 2614)

although it is with the default configuration of the attackbox

hi, im trying to connect to EU VIP 1 via VPN and it only keeps loading until says timeout, OpenVPN access details on THM says both server status and connection is connected/online.. whats going on 😦

Access machines page is borked.

However EU VIP 1 works because I'm connected to it now.

How are you connecting?

via ovpn file i got from THM access site

• openvpn GUI

Ok, with which OS, method and country do you live in?

win 11 home, czechia, method is 'machines' ? if thats what u mean

Do you have resources for a virtual machine on your computer at all?

u mean if hardware supports it?

Yes.

Hardware and the resources.

should have both, sys is
Ryzen 7 5800X
EVGA RTX 3080 FTW3 Ultra Hybrid OC 10GB
ASUS TUF X570-PLUS GAMING
G.SKILL 4x32GB DDR4 4000MHz CL18 Ripaws V

Yeah, I'd suggest getting a virtual machine, or using the attackbox instead of putting your host machine on a network full of hackers.

Checks are in place to ensure everyone behaves, but I would not run the risk.

This is my opinion, if you wish to continue and use your host, I'll suggest and help you connect.

oh.. i wasnt aware its less safe, in that case ill stick with attackboxes ofc 😄 🙂

It's a risk I'm not willing to take for myself.

can i suggest Exegol on docker with THM VPN? It's secure no?

understandable

Never heard of it/used it

try it and you'll never go on your kali again 🤣

how i delete my credit card from the website

i dont have an option for remove for some reason

@weary spindle

Have to email support

Support@tryhackme.com

Well I wasn't able to finish a c2room that was requiring me to scan a range, I curled 10.10.10.10/whoami and it worked, I ensured connection to machines and it wouldn't let me complete the task because I couldn't connect to the host range for some reason it wasn't reachable even though I was connected to the VPN.

Hi there!
I have a question regarding Authentication Bypass room in Jr Penetration Tester. I've noticed that we are supposed to use ffuf command there quite a lot. Also in previous room for subdomain enumeration. If I understand it correctly, this ffuf command is looking for text files inside wordlists and then doing enumeration depending on txt file and parameters we send in. However, in the exercise I usually get path to text files that is incorrect like 99% of the time.

Path in exercise: /usr/share/wordlists/SecList/Usernames/Names/names.txt With this path I always get an error from ffuf that the SecLists doesn't exists, so I needed to look for the files myself and found them.
My path: /usr/share/wordlists/wfuzz/others/names.txt or sometimes I need to go into /usr/share/wordlists/metasploits/...

I am not sure if that is my mistake or the scripts in the exercises are outdated, but I guess it could be confusing for some people.

Are you using the attackbox or a virtual machine?

VirtualMachine (UTM)

Yeah, that's why.

The material is written with the assumption that users are using the attackbox, where /usr/share/wordlists/SecList/Usernames/Names/names.txt is the path of that file.

Where it comes to VM's and users uding their own systems, it's up to you to find the full path etc, as setups will be different.

Right, it didn't come to my mind that this could be the case. Thanks for the explanation!

Gave +1 Rep to @weary spindle (current: #1 - 2616)

No worries, happy hacking!

Good morning all

Please I need admin help

Why do you need help from admin?

Or from anyone.
I am doing a task using the machine but I mistakenly close the machine

I am on Linux fundamentals part 1

And what do you need help with exactly?

How to reopen the machine to continue my task

On command.

Click the green "Start machine" button on task 1.

Okay, let me try this now.

Thanks, working now.

I appreciate your support.

The machine network not going through see my screenshot below

Is it network or general problem from the the machine?

Are you doing this on a mobile?

Yes

Yeah, it's not really optimised for working on mobiles.

Okay, I will try it on laptop.

Thanks.

4x32gb tf

you hosting a server park on your pc?

used to do photogrammetry, needed all the RAM available 😄

Oh wow thats cool

interesting for sure, pretty pricey tho 😄

😅

no matter, i left graphics behind to get into cyber 😄 😄

wish me luck 😄

At least you got a nice gpu for the hashes :)

And can run a "few" vms

Sadly the VM's will bottleneck on the cores

hope we're not spamming this channel, where we're not supposed to 😄 ?

We aren't but cant make the convo much longer here :p

i was thinking of getting a laptop, what would u recommend for cyber? i considered chromebook for cheaper option but it wouldnt handle VMs i guess

hence why i asked if we're not spamming 😄

Lets go to #quiet-conversation

what am i doing wrong?

im trying to find a file that was renamed and moved to a different directory how come its saying permission denied

idk what im doing wrong

im watching a video of a guy doing a walk through he did the exact same cmds and it worked for him

Did they use sudo in the video?

i figured it out i believe i was using the wrong directory but i do actually have something im confused about

"When was the file from the previous question last modified? (Format: Month Day HH:MM)"

it only shows dec 28 2022

shouldnt it be like dec 28 00:00

2022 is the year.

when he did it on the vid he got dec 28 06:29

mine just shows dec 28 2022

mine doesnt show the hour and minute

just the month day and year?

idk ima j copy his answer (which worked)

thank you!

Gave +1 Rep to @vague mango (current: #175 - 39)

hey guys i have a problem when I'm trying to use my coupon that comes after i signed up from my friend referral, any one knows how to solve ?

You'll need to email THM Support to assist you.

@eager fjord

no one is answering, i'm really on hurry

Support has a short wait, only they can assist you.

hello, could i ask to speak with admin or mod about 1 user pls ?

^ I've got them

hello I have a big problem
could someone tell me why when I'm in this /room/burpsuitebasics path my ram becomes completely saturated.
all the other room are okay
but this one fcked up my pc

Is this the place to report problems downloading the OpenVPN configuration pack for a room?
I've tried with both Chrome (127.0.6533.120 (Official Build) (64-bit)) and Edge (Version 127.0.2651.98 (Official build) (64-bit)) on Windows 10.0.19045 N/A Build 19045 x64

I'm not sure if this was brought up before but
https://tryhackme.com/r/room/careersincyber
room is genuinely so laggy. I spent about an hour trying to read then join back to complete then reload the webpage again or reopened the browser. I've tried this across my Kali VM, Windows machine, Linux laptop across different chromium based browsers with the same issue with and without extensions

Any other room is very responsive. Just wanted to hop in and let you guys know! Thanks

What is the problem exactly?

this is literally after generating a new ovpn config

how is there no start line when the start line is literally right there

Which server?

Which server is this?

Same

Hi, i cannot reach the CI/CD room network via Attackbox

Any news on issues with the red team capstone room?

Hmm, VPN server is the same in CI/CD room, Redteamcapstonechallenge

I got further than that and can connect to redteamcapstone challenge but cant get much further than that, its like the whole room is busted

Which subnet?

Is the network started?

Yes it is

Openvpn says its connected but i can't access 10.10.10.10 or the machine ip on the tryhackme page

and it says not connected on the access page

can someone pls help im on windows 11

You need to use the Communities GUI for OpenVPN, but I would not suggest putting your host on the network

what

now it says connected on the tryhackme page too

but chrome won't load the machine ip page

ipconfig on your cmd prompt and see if you have a tun0 interface

i ran it and i don't see 'tun0' anywhere

if thats what u mean

Then you're not connected.

i already tried reinstalling openvpn, redownload the config file, and restarted my computer

east coast didn't show connected on the access page, but west coast does

and it connects on openvpn, although i had to enable the insecure settings

what else am i supposed to do

Man u got any ideas

Yes

Use the communities edition of openvpn

Like I said previously

Dude it worked

thanks

i spent forever trying to figure this out

lfg

The problem seems to have disappeared -- its working now.

The original symptom was that if I browsed to https://tryhackme.com/r/room/mkingdom, select Windows, click "Download your OpenVPN configuration pack." it would result in an in-browser error message indicating that the download failed -- sorry don't remember the wording. At the same time I was able to download the VPN file from https://tryhackme.com/r/access, select "US-East-Regular-1" and click "Download configuration file".

That having been said, the file I downloaded from https://tryhackme.com/r/access doesn't connect, both last night and today (2024-08-14). I would attach the log file but I haven't figured that out. Are we allowed to paste logs inline?

[edit]
I'm using OpenVPN version 3.4.4 (3412)

Hey, room linux privesc task 6, i can't connect to ssh, the password is incorect, vpn is working i can ping the machine

Can you link the room?

https://tryhackme.com/r/room/linprivesc
task 6

What is the title of the machine next to the IP?

karen

workin for you?

No. in the top of the screen there's the IP and terminate button. On the left there is title of the machine.

yes, the objective of the task is to perform privesc, need to connect to the machine using ssh to train

ssh karen@IP
Password1

Password incorrect

you see the terminate machine button? next to it is the machine IP and next to that is the Machine name/title.

LinPrivEscSUDO

whats the IP?

On the task5, i can connect using karen and the password, but i cant on the task 6

10.10.82.4

works for me.

Still not for me, ill try later, happy privesc 4 you haha

sshpass -p "Password1" ssh karen@10.10.82.4

may have to install sshpass first.

thanks, ill try later

Gave +1 Rep to @timid talon (current: #42 - 180)

running whoami in the target machine should show karen. Then try to ssh into the machine

yep, just reboot evreything and it worked, just a lil bug from my machine i guess thanks anyway 🙂

Gave +1 Rep to @spiral tartan (current: #2180 - 1)

Need help with VPN connection

Getting error exit due to fatal error

Switch server and regenerate VPN config https://tryhackme.com/r/access

It’s saying internal virtal ip 0.0.0.0

connect with sudo openvpn '{path-to-file}, hit refresh and see if it updates

Wow that was it! Thank you sm!

It says I’m connected but I can’t ping my machine I’m working on

Can I message you @spiral tartan

Sure, might be slow with replies

Would someone here be able to help me get into my account? I am unable to receive the forgot password email address. I would also like to add that I changed the email for this account previously, however, I am unable to recieve the forgot password email from either account.

Nope...

wat...

@spark dawn TryHackMe's Email: support@tryhackme.com

Thank you!

None of the VPN serverse are working right now. I tried both WEST VIP AND EU1 VIP.

It's been a while since I've been on, noticed the data-cipher part still isn't fixed, so I corrected that. Still not connecting.

Looks to be a THM issue, my other VPNs are working fine with OpenVPN.

#site-bugs there is a wrong answer in burpsuite intruder task 10

How so?

the answer you get using burpsuite is q.rivas:pinkfloyd yet the answer it accepts is m.rivera:letmein1

Go to your user list in burp (payload 1)

check if the first in the list is blank

humor me, I had this issue, I can't say that it's for sure the case here.

run the pitchfork attack and youll see that the correct answer is q.rivas:pinkfloyd yet the answer it accepts is m.rivera:letmein1,

how can i inform the appropriate person? i am new to discord

How did you creat spoiler?

|| information ||

Nice

i have my own screenshot, but i cant figure out how to send it here

Gotta verify your account

can I see a screenshot from your payload 1 and 2, top of the list?

I don't doubt you got a different answer, I've seen it myself.

this is the top of the list, no empty feilds

to me it seems like they changed the answer, i treid to log in with my results and it worked, and i treid to log in with the supposed correct result and it failed

That is rather odd, you certainly don't appear to be seeing the same issue I found, thanks for showing the screens.

i just treid agan and it gives me a invalid password result for the supposed correct answer, only the result that i got is correct

and i can log in with my answer, how can i get ahold of an appropriate person who can unravel the mystory/bug

i thought that maybe i didnt make a correct attack, but why can i log in only with my answer? forget burp, try to log in using my answer in my first messege vs the correct answer and tell me your results...

First screen is with the "Correct" answer, Second screen is with your creds.

Please don't misunderstand me, I'm not saying that you are wrong, I'm just trying to figure out why you got a different result than what was expected.

Its actually kinda cool that you did lol.

by me its just exactly the opposite! how is this possible? if i get a wrong answer it might be my inexperience, but why does it work? and furthermore, why doesnt the correct answer work by me? only the wrong one does! how can this be?

Lol that's a great question!

what is the URL you are using?

Oh wait, Scrubz said that agains the TOS.

You can still tell me the site / url you are using. I just can't scan it / enumerate it myself, only THM staff can.

Just to be clear, the link to the room is : https://tryhackme.com/r/room/burpsuiteintruder

i am using the target ip address that i got from my target machine 10.10.166.67

so you are using http://10.10.166.67/support/login as the target?

jr pen tester
Burp Suite
Burp Suite: Intruder task 10

yup that's all correct.

correct with another /

Just added the answer... I don't know what else to tell you dude, post it down in room bugs, it will get some exposure to thm staff.

Not quite sure what the deal is, sorry I couldn't be more useful.

thanks for all your help, i dont see a room bugs option by me

Gave +1 Rep to @turbid gorge (current: #110 - 63)

where is the room bugs option, i cant find it?

thanks a lot for your help and advice

Np at all, like I said I'm sorry I couldn't be more help.

I pinged you from the room, if you have access you should be able to see it.

if not I can post on your behalf.

Why is it everytime I try to login in the attack box as soon as I get to the part of the room I need to download the zip files firefox becomes unustable and changes sizes?

Or even better how can I get the files over to the attack box without having to login to try hack me on it?

You can't log in to thm on the attackbox

I'm only trying so I can download password protected zip files for the lab

Which ones?

John the ripper

On the attackbox, browse to http://10.11.5.163:8080

I'm off now but is that a repository?

No, I host it on my kali, but is only on-line when I am.

on the attack box i was trying to use nano and i couldnt save my file like when i pressed ctrl+x nothing happened anyone knows why?

Without more details, no

which file for example?

authentication bypass room

i needed to do bruteforce attack

and it was valid_usernames.txt

Mmm and that was in the /root folder?

of the attackbox?

yep

Strange. Can you try again?

Maybe after restarting the attackbox

No idea why that occurs

You'll need to use sudo.

ahhh thx Scrubz

Gave 1 Rep to .scrubz. (current: #1 - 2627)

i did it

okay ill do that thanks

Gave +1 Rep to @weary spindle (current: #1 - 2628)

Wait for every time you are using Nano in the attackbox?

(I never use the attackbox so idk)

Probably just depends on the file

ahh

@shrewd wasp we can proceed here

So you should run the vpn file again, and make a screenshot of the output from the command

@shrewd wasp ill make a list with steps for you

ok bro

First, close all your terminals
1: sudo killall openvpn
2: sudo openvpn file.ovpn let this stay open!
3: in another tab: ping 10.10.10.10

If you follow this, you can ping :)

ip a | grep "tun"

Lets do that first

:)

close tab ?

Nah, you can do that in the ping tab

Leave the vpn tab open

i have to ctrl+z in ping tab?

Nah, close all tabs

Open a new one.

ok

Yeah

You're not killing the tunnels.

I'd just reboot the VM.

Thats strange, sudo killall openvpn should do that, right?

yes

i just reboot vm

nice

It should yeah.

now just run the VPN once, and leave it open, ping 10.10.10.10 in another tab

But the fact they've done it twice and ended up with even more tunnels.

Any idea why it doesn't?

brooo

i can ping it

yayy

yeyyyyy

now back to you question, opening the link

If you start the machine in the task, the word "machine_ip" becomes an IP

And you can open that link from your kali

(with the VPN running)

i have to close tab ping and open vpn?

You can close the ping tab, but let the openvpn tab stay open

Else you would terminate the VPN

And then you can't access machines on THM

bro i can do it

i can access website

thankyou very so much bro❤💕

You're welcome, credits to @weary spindle || +rep ||

Gave +1 Rep to @weary spindle (current: #1 - 2630)

Morning. I’m having an issue with the lateral movement and pivoting room. The attackbox does not have the lateral movement interface and cannot ping the DC

I’ve tried this room for a couple days and it spins up the same attack box without the adapter.

i have a doubt in https://tryhackme.com/r/room/maatrix can anyone solve ?

No, I've already told you that you're sharing a private room and we can't help.

Any help? Or is this a room support question

You'll need to check if your config is blank

Where do I check that?

Attackbox?

Should be a directory called network configs on the desktop

The lateral movement config is blank

Then you need to leave the room with options, wait 5 mins and re-join

I’ve tried this over the course of a week

With multiple attempts on loading the attack box

@weary spindle tried again. Same issue.

Hi,

THM Attackbox machines are very slow. Anyone else experiencing the same problem ?

Your network?

network is working well. I tested it

I want to use my kali through the TryHackme provided openvpn but all vpns are blocked in my country.

I would appreciate it if someone could provide a solution to this issue.

If you're a free user the machine only has half a core and 512mb of RAM.

Cloud environment stuck on Resetting for me. Can anyone help? 😮

I'm not a free user. I used a voucher to activate my account

I also thought the issue might be my computer's RAM, but actually, my computer's RAM is good enough to support activities on my browser and other tasks. I have 16GB of RAM

You're using a cloud based VM...

I'm using the THM Attackbox through the website by clicking start attackbox .

Doesn't change the fact it's a cloud based VM...

You're not running the attackbox on your host.

yeah, because vpns are blocked in my country

So your own stuff wont speed up the attackbox

So, my attackbox is working very slow.

AttackBox works fine for me. Did you check your internet connection?

hi,

yes, i checked my internet connection and it is working well

Did you try teminating and starting it again?

i wasn't doing my own stuffs on the attackbox, i was doing attackbox labs on it.

yeah, but it is not working

I've had weird behaviour of my browser (Firefox) where I thought the problem had to do with extensions, in particular the "Dark Reader" extension Deactivating (some) extensions may be one direction of troubleshooting

1. Try in Incognito with **all **extensions disabled.
2. Try a differnt browser

@weary spindle I opened a ticket

So, every day, I end up answering a few questions on THM Labs, but not as many as I expected due to this issue.

Try my suggestions this might solve that

okey, thank you

Gave +1 Rep to @unkempt blade (current: #2180 - 1)

For long term troubleshooting, on the attack box, keep a record of some ping delays, like ping google.com for instance, so you can compare one day to the next or previous: over time, this gives you a baseline, i. e. a way of comparing normal vs. abnormal behaviour
If you suspect a weird behaviour in another area of the attackbox, say the memory usage, you could baseline that with top, etc.

Thank you, I appreciate the clarity of the information you provided.

Gave +1 Rep to @upbeat quarry (current: #197 - 32)

Thank you, I tried your first suggestion, and it worked a bit better than what I was doing before. but the problem is still persisting.

Gave +1 Rep to @unkempt blade (current: #1451 - 2)

hi, can anyone help how to copy paste from a room into burpsuite on Macbook?

i pasted it into the built-in clipboard, usually i use shift+control+c/v to copy paste from the clipboard into the machine, but it doesnt work on Burpsuite.

can anyone help please?

Isn't the copy paste command for Mac Command + c/v?

yes, thats how i copy it into the built-in clipbaord.

but i cant use that to copy into the attack box

i figured it out, control+c/v. without shift

Haha hey hey