You can edit your config

Just add tun-mtu 1200

can you guide him how to

I just did...

I need help with openvpn, I am not able to connect to it
I tried almost every server but no luck

Good afternoon, in Linux Privilege Escalation, task 10 PATH won’t open the target vm. All other vms in the other tasks work fine.

I'm on the same case, since 20min It works

I can't send photos on this. Please does anyone have an explanation ?

I've never had that issue..

what does downdetector say?

am trying to use the configuration file with openvpn to connect to tryhackme network on ubuntu wsl 20.04 but i get an "Error opening configuration file : "path to the file i want to open". Please does anyone have a solution to this problem?

I think you need wsl-vpnkit ignore

Is your network mirrored?

where is the file located and what are you typing?

You'll need to verify your account to be able to upload images in this discord server.

Hi, I get a UDP connection error when trying to connect to EU VIP servers... I am able to connect to EU Regular 2. My subscription is still active. - Anyone else got simallar issues?

@thick hazel

Are there any known issues with EU-VIP-2 openvpn access

What is the exact error you are getting?

@ivory spruce read UDPv4 [ECONNREFUSED]: Connection refused (fd=3,code=111)

After switching servers, did you wait for ~2 to 3 mins before generating your OpenVPN config file?

Can you verify your account and post a screenshot of it?

oh it seems I'm not the only one. I'm getting this error right now:

2024-08-16 23:09:02 TCP/UDP: Preserving recently used remote address: [AF_INET]63.35.110.70:1194
2024-08-16 23:09:02 Socket Buffers: R=[212992->212992] S=[212992->212992]
2024-08-16 23:09:02 UDPv4 link local: (not bound)
2024-08-16 23:09:02 UDPv4 link remote: [AF_INET]63.35.110.70:1194
2024-08-16 23:09:03 read UDPv4 [ECONNREFUSED]: Connection refused (fd=3,code=111)

@thick steeple

@ivory spruce I will try and verify my account.. Though @fleet pine posted a simillar output

I can't connect either :/

Yep I have not changed openvpn settings in quite a while

Gave +1 Rep to @west chasm (current: #120 - 59)

ok thanks

2024-08-16 15:15:09 Note: cipher 'AES-256-CBC' in --data-ciphers is not supported by ovpn-dco, disabling data channel offload.
2024-08-16 15:15:09 OpenVPN 2.6.12 x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] [DCO]
2024-08-16 15:15:09 library versions: OpenSSL 3.2.2 4 Jun 2024, LZO 2.10
2024-08-16 15:15:09 DCO version: N/A
2024-08-16 15:15:09 TCP/UDP: Preserving recently used remote address: [AF_INET]3.254.253.220:1194
2024-08-16 15:15:09 Socket Buffers: R=[212992->212992] S=[212992->212992]
2024-08-16 15:15:09 UDPv4 link local: (not bound)
2024-08-16 15:15:09 UDPv4 link remote: [AF_INET]3.254.253.220:1194

@ivory spruce

yeah seeing that too

reported up stream

hopefully fixed soonish

Awesome

Thank you

oh was talking about the above vpn issue... for the red team capstone thingy dunno

No worries. 🙂

am assuming i need that fallback for it to work, i will try to find the config file and change it

nope you do not

oh... ok

big chance this is relevant to the vpn server issue the others is seeing too

try:
sudo openvpn “./drogon69.ovpn”

different error, it relates to data-ciphers

Now it works. This could be related to the server side issues at the moment. Wait for them to sort it out. I can ping you as soon as I know they’re fixed if you’d like

if you run openvpn --version what does it say???

2.4.12

wow you are using an old version.... well yeah for that version you need the cipher part in the ovpn file

Oh

Did you not do apt get upgrade and update

you need the cipher part for anything below 2.5

tried updating. doesn't ubuntu 20.04 support it?

did that.

wow you are even on an old ubuntu version

that version of ubuntu only has a single year more of support for those not paying for extended support

try and upgrade to ubuntu 24.04

but be sure to try and backup important data if you are gonna do that

am upgrading to kali usb boot midnight but just wanted to solve some challenges before. i was trying to connect using windows openvpn but that too wasn't working.

yeah the vpn servers is also having issues so you might be hitting 2 issues at the same time

i.e welp that sucks

so to clarify, the ubuntu 20.04 dosen't support the new openvpn?

yuups

that was released in 2020-04 i.e in april of 2020

newest ubuntu version that is lts released in 2024-04 also known as april this year

oh ok so the apps are made for the latest ubuntu versions, no backward compatibility I suppose.

yeah you get 2 years of some package updates on ubuntu lts then you get security updates only

if shadow recalls their release model correctly

technically you can install the newer packages but your chance of breaking your entire system goes through the roof if you do

what's shadow?

it's them lol

ello ello... shadow is shadow... they refer to themselves in third person

could do this https://www.kali.org/docs/wsl/wsl-preparations/#quick-method

i think there is a higher likelihood i run into problems using wsl.

Yeah, do what you feel comfortable using 🙂

openvpn is not working for mew I am using premium of thm also

just use the attackbox

when this issue will be resolved ?? any suggestions

no eta posted yet ¯_(ツ)_/¯

are kali users having similar issues?

not the same issue with openvpn version but the openvpn server for tryhackme being down yes

I am using kali

this openvpn issue is very frustating !!! ..

so you are facing same issues guys??

read here #site-support message

yuup shadow is

❯ sudo openvpn shadowabsorber.ovpn
[sudo] password for sam_tunder:
2024-08-16 21:17:03 WARNING: Compression for receiving enabled. Compression has been used in the past to break encryption. Sent packets are not compressed unless "allow-compression yes" is also set.
2024-08-16 21:17:03 Note: '--allow-compression' is not set to 'no', disabling data channel offload.
2024-08-16 21:17:03 OpenVPN 2.6.12 [git:makepkg/038a94bae57a446c+] x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] [DCO] built on Jul 18 2024
2024-08-16 21:17:03 library versions: OpenSSL 3.3.1 4 Jun 2024, LZO 2.10
2024-08-16 21:17:03 DCO version: N/A
2024-08-16 21:17:03 TCP/UDP: Preserving recently used remote address: [AF_INET]34.253.19.14:1194
2024-08-16 21:17:03 Socket Buffers: R=[212992->212992] S=[212992->212992]
2024-08-16 21:17:03 UDPv4 link local: (not bound)
2024-08-16 21:17:03 UDPv4 link remote: [AF_INET]34.253.19.14:1194
2024-08-16 21:17:04 read UDPv4 [ECONNREFUSED]: Connection refused (fd=3,code=111)
2024-08-16 21:17:05 read UDPv4 [ECONNREFUSED]: Connection refused (fd=3,code=111)
2024-08-16 21:17:09 read UDPv4 [ECONNREFUSED]: Connection refused (fd=3,code=111)
2024-08-16 21:17:17 read UDPv4 [ECONNREFUSED]: Connection refused (fd=3,code=111)
^C2024-08-16 21:17:22 event_wait : Interrupted system call (fd=-1,code=4)
2024-08-16 21:17:22 SIGTERM received, sending exit notification to peer
2024-08-16 21:17:25 SIGTERM[soft,exit-with-notification] received, process exiting

this is how it looked for shadow about an hour ago

it is a server side issue so we can no fix ourselves

ok

thanks for your response

does this affect the attackbox?

¯_(ツ)_/¯

not checked

apart from openvpn are there any other apps one can use to connect to the tryhackme's vpn?

no

why?

openvpn is their only vpn protocol

guess it wouldn't be fixed as soon?

lol, its working 😄

what os?

vpn

Doesn't matter

hi. forgot to cancel my subscription. Can I get refund by any chance?

You will need to contact support@tryhackme.com

ty

having a hard time connecting to my vpn for some reason

EU OpenVPN server?

EU > US see

Do the AWS rooms contribute to the leaderboard points?

No it does not 🙂

all dese htb folks... can't get no support/help wit the vpn... tsk tsk

This isn't HTB.

my fault thm... lil brother... lol

grammer police ass..

Sat Aug 17 09:46:28 2024 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
Sat Aug 17 09:46:28 2024 TLS Error: TLS handshake failed

Its not grammar police...

HTB == Hack The Box
THM == Try Hack Me

Two different platforms.

it's the same thing one thing is trying to push u further... stop it

try an help yes? why was my vpn working earlier yesterday, then stop...

I'd need more information in order to help you, without you being rude about it.

i'm not tryna respond to rudeness either... i got so many profiles loaded... i gotta load the vpn then connect to the server

i got 4 profiles loaded

eu to us... and they not loading for some reason

so i cant complete my lessons

Which OS?
Which server are you trying to connect to?
Are you using a personal VPN?
Have you tried to regen the VPN that works last?
Which country do you live in?

win 10 home. no personal vpn i tried to regen which is why i have 4 profiles now. and fo some reason i'm getting errors

it's pissing me off reading the lines and i can't decipher

i'm supposed to be able to do this

Are you using the communities edition of OpenVPN?

can't post snipits in here

I would not suggest putting your host OS on the network.

open vpn

Yes, the Communities or Connect?

There's two.

lemme check

the openvpn gui 11.50.0.0/2.6.12

i'm missing something, but don't know what

https://openvpn.net/community-downloads/

Use this one.

like i said, the same settings worked just yesterday. but today.. yikes

yeah i done unistalled, redownloaded from that page... but i'll keep trying. thx doe

and then when i get something close i can connect tryhackme@Insertiphere and then i get the password command and it won't let me type after that

just frustating... i guess i'll have to figure it out... but since i fucked up my streak i guess i'm not mad no mo.... but what changed... tried to dl the updates.. no bueno

Password feedback will be disabled.

can't continue my lessons... i'll figure it out.. but i'm not the only one wit da problem

Which country do you live in?

glad to know i'm not the only one suffering issues with the vpn, US MTU value faled at 100, aborting TU Check, Cannot load inlince certificate file, exiting due to fatal error

#site-support message

kali, US East, yes between US East and Us West VIP, US

and OpenVPN

issue started last night, figurd i'd give it some time but still can't connect. and my attack box is having similar issues

CI/CD Build Security room task 6 broken? I’ve tried like five times and reset the network once (on 46). And I never get the callback. I copied the code from the task, and I triple checked my IP. It doesn’t even hit my webserver, the pipeline just gets stuck.
Other feedback: for task 5, why suggest a script that only runs with a specific, relatively old python version? That’s kind of annoying and besides the point of the room.
Also, using the AttackBox doesn’t work: #subs-room-help message

i stand corrrected my attackbox is working

How do I join the KOTH discord voice channel? I'm playing some KOTH games today and would like to join it, but it appears to be locked?

The Burpsuite Basics room keeps freezing on me. All the other rooms are fine just this one doesn't work. I've tried different devices and different OSs but nothing works

You need to verify your account

i need help

i had an old .ovpn file when i try to connect with it i am stuck at the 2024-08-17 14:06:51 ++ Certificate has EKU (str) TLS Web Server Authentication, expects TLS Web Server Authentication 2024-08-17 14:06:51 VERIFY EKU OK 2024-08-17 14:06:51 VERIFY OK: depth=0, CN=server step and can't connect. now i created a new .ovpn file and connected with it successfully. but in both cases when i visit the /access page on tryhackme the connection status is "Not Connected" with no internal virtual IP Address. and when solving the mkingdom room their is a place where i submit a php file for reverse shell when i submit it and try to visit the file in the browser to open the reverse shell i got the following error in the browser "WARNING: Failed to daemonise. This is quite common and not fatal. Connection refused (111)". and the reverse shell never opens

and now the vpn is giving
2024-08-17 14:28:17 Data Channel: cipher 'AES-256-CBC', auth 'SHA512', peer-id: 89, compression: 'lzo'
2024-08-17 14:28:17 Timers: ping 5, ping-restart 120
2024-08-17 14:28:17 Protocol options: explicit-exit-notify 3
2024-08-17 14:28:34 Authenticate/Decrypt packet error: packet HMAC authentication failed

in the terminal

No wonder I did’t get the callback… 😐 When I logged into Jenkins in the next task, I discovered that the access token for GitLab is expired, so the pipeline can’t access the repository and never runs. Please fix this so I can finish the room!

The access page is broken so ignore it for now. So long as you can reach 10.10.10.10 using your browser, you should be good to go.

Okay thanks

Gave +1 Rep to @ivory spruce (current: #11 - 650)

👍 Thanks

Gave +1 Rep to @weary spindle (current: #1 - 2635)

Try to re-connect and see if the last line in the log goes away. If not, do a Google search on it as I seem to remember seeing it previously.

I did and got help in #room-help and the problem is solved

I had a firewall issue blocking everything

my openvpn is not working even today

can someone please help me

I'll try

What is happening?

Any error displayed when trying to connect?

i messaged you

My account is verified with email and phone number and I have my discord token. I still can't access the KOTH voice channel, as it's locked, and in the koth text channel I don't have permission to write. What else do I need to do? Thanks

Gave +1 Rep to @weary spindle (current: #1 - 2636)

When using an attackbox on Android none of my keyboard input is passed through the machine. Also, at a time when the on screen keyboard would usually appear, such as when trying to type into powershell, no keyboard appears. Anyone ever had a similar issue?

I'm on holiday at the moment so only have tablet access for a few days

You need to verify your account..

another day can't get no support from the community. i'll wait til monday to call i guess

Hey, All users in discord are voluntary, what issue are you facing?

can't connect to my vpn on thm

i was just connected yesterday

i've downloaded many profiles

my fault thm... lil brother... lol
grammer police ass..
Sat Aug 17 09:46:28 2024 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
Sat Aug 17 09:46:28 2024 TLS Error: TLS handshake failed

nm

i'm baaaack!

so sry it's connected

No problem, glad it’s resolved 🙂

Could I make a small site suggestion (QoL one)?

You can post any suggestions in #feedback-and-ideas

Looking for some help with the Red Team Capstone Challenge. The network has been reset and when I go to authenticate and verify my email, I keep getting messages saying there's an issue . Please see the following.

There was an issue with email access, the most likely cause is a network reset. Please stand by....
Creating email user
ssh: connect to host 10.xxx.xxx.11 port 22: Connection timed out
Something went wrong with user creation

Repopulating mailbox. Please stand by.....
[Errno 110] Connection timed out
Error: unable to send email

Your email has been recreated. Please wait 2 minutes then try to access your inbox again. If you still encounter issues, please contact support on Discord.```

This is preventing me from logging into the email address.

thank you

Gave +1 Rep to @ivory spruce (current: #11 - 651)

I tried it so much and tried with reinstalling the kali machine but it does not fix can anyone know

Note: --cipher is not set. OpenVPN versions before 2.5 defaulted to BF-CBC as fallback when cipher negotiation failed in this case. If you need this fallback please add '--data-ciphers-fallback BF-CBC' to your configuration and/or add BF-CBC to --data-ciphers.

Note: '--allow-compression' is not set to 'no', disabling data channel offload.

which command you use to run openvpn?

Openvpn and the file name downloaded from the tryhackme

Did you add sudo?

did u add sudo

Yes

i actually had that problem until i reinstalled openvpn completely

How to do it

Command for doing it

sudo apt-get purge openvpn

@patent seal

then sudo apt-get update and reinstall it

regenerate ur config js in case

and then try again

How can I reinstall the open vpn

I removed it and done the apt get update

@tidal barn

sudo apt install openvpn or openvpn3 ion rmmbr

No sane error

How can I upload the pic

2024-08-18 05:53:20 Note: --cipher is not set. OpenVPN versions before 2.5 defaulted to BF-CBC as fallback when cipher negotiation failed in this case. If you need this fallback please add '--data-ciphers-fallback BF-CBC' to your configuration and/or add BF-CBC to --data-ciphers.

2024-08-18 05:53:20 Note: '--allow-compression' is not set to 'no', disabling data channel offload.

@patent seal

Verify THM account to share media

Ok

2024-08-18 05:53:20 Note: --cipher is not set. OpenVPN versions before 2.5 defaulted to BF-CBC as fallback when cipher negotiation failed in this case. If you need this fallback please add '--data-ciphers-fallback BF-CBC' to your configuration and/or add BF-CBC to --data-ciphers.

2024-08-18 05:53:20 Note: '--allow-compression' is not set to 'no', disabling data channel offload.

This is the error

I was showing in open vpn

How about the last 5 to 10 lines of the OpenVPN log?

Try with sudo openvpn ronikarmahapatra.ovpn

ur not using sudo btw

2024-08-18 06:03:53 Note: --cipher is not set. OpenVPN versions before 2.5 defaulted to BF-CBC as fallback when cipher negotiation failed in this case. If you need this fallback please add '--data-ciphers-fallback BF-CBC' to your configuration and/or add BF-CBC to --data-ciphers.

This one shows you are connected.

Try to access 10.10.10.10 using your browser, and if you see your tun0 IP, you're good to go.

yes

✅

Great thanks a lot

no i am not connected

haha

how come

you are connected

do u read the tasks at all?

yes

at last it is not showing the connection is succesfull

i need to connect to the openvpn and i can acces the ip of the target ip address but it is showing

not found

Check the URL in the address bar, it's incorrect. Open the link again, it takes time to launch the room's machine.

@patent seal ^

You seem to be connected based on the terminal output.

Type the actual IP not just machine_ip

http://10.10.138.209

it's not working

Wdym? You are accessing the webpage..

right

i got it

The question indicates the username and password to use.

Yes I got confused, thank you a lot for your help guys

I am a beginner and have a problem when i download the openvpn file and run it in terminal everything works fine 10.10.10.10 also shows successful connection but tryhackme website is not showing any signs of connection access machine button is also red and not connecting after refreshing any suggestions please

How are you connecting?

With openvpn file

Which OS?
Which country?
Which server?

Using Kali linux and i am from india but tried all the vpn files

Which command are you using?

Sudo openvpn file.ovpn

i have this warning 2024-08-18 07:46:29 WARNING: Compression for receiving enabled. Compression has been used in the past to break encryption. Sent packets are not compressed unless "allow-compression yes" is also set.
2024-08-18 07:46:29 Note: --cipher is not set. OpenVPN versions before 2.5 defaulted to BF-CBC as fallback when cipher negotiation failed in this case. If you need this fallback please add '--data-ciphers-fallback BF-CBC' to your configuration and/or add BF-CBC to --data-ciphers.
2024-08-18 07:46:29 Note: '--allow-compression' is not set to 'no', disabling data channel offload.

Try removing all previous vpn files.

Going to Eu Reg 3, hit regenerate, then download a new one and try

okay

Thanks man it worked

Gave +1 Rep to @weary spindle (current: #1 - 2638)

Happy hacking.

@split swallow Thanks for helping me !!
my issue is resolved

Gave +1 Rep to @split swallow (current: #2184 - 1)

Anytime

Not sure if this is the correct spot for reporting a lab bug. Anyhow, I am on the last section in "walkinganapplicaiton" and I have found the flag, but when inputting it, it fails to acknowledge it resulting, sorry that is not correct.

It's not a bug, you've found a different flag.

more then 1 flag exists in that section?

Am I allowed to post the flag?

I am on the Dev Tools - Network section.

ill just keep poking around.

ahhh found it. thanks for the hint.

these are tricky

my next question... is there an easier way to go to the next lab, or do you need to go to learn, find the course, open the course, and resume? is there an option within the lab you finished?

On dashboard there's a "menu" with recent rooms and one with learning path which shows the next room in the path.

can any1 confirm that exploitingad vpn network isnt working for them

my vpn is working. - Windows 11.

it isnt even connecting on the attackbox in the room and i regenerated the .ovpn file and still cant connect on my own vpn

for that network though

my us-east one works its this that doesnt

oh i cant upload screenshot

https://tryhackme.com/r/room/exploitingad the vpn network required for this

ive done tasks in this before without issue

You'll need to verify your account to do so.

@worthy eagle

okay i can do that, can you confirm the vpn network exploitingad.ovpn connects for you though please

trying to connect thru shell.. but when it asks for my password, when i type try to type it in, it won't let me. and if i press enter it says password denied...

When using ssh (and often in other cases) the password you are typing is not shown in the screen, but you are typing it. Make sure you type it correctly, then press enter.

ah ok

Haven't done the room yet personally, but have seen folks being able to connect to it.

How do you add other badges to your name of certs that you've done?

I would imagine you'll have to contact a mod and verify or provide proof of your certification.

My tryhackme website is getting freezes after being on few mins. Can anyone help me please?

2024-08-19 15:25:15 TLS Error: TLS handshake failed
2024-08-19 15:25:15 SIGUSR1[soft,tls-error] received, process restarting
2024-08-19 15:25:15 Restart pause, 256 second(s)

I get TLS handshake failed when I connect to the vpn

@west chasm

Try changing to other vpn locations

[sudo] kali 的密码：
2024-08-19 15:35:23 Note: --cipher is not set. OpenVPN versions before 2.5 defaulted to BF-CBC as fallback when cipher negotiation failed in this case. If you need this fallback please add '--data-ciphers-fallback BF-CBC' to your configuration and/or add BF-CBC to --data-ciphers.
2024-08-19 15:35:23 Note: cipher 'AES-256-CBC' in --data-ciphers is not supported by ovpn-dco, disabling data channel offload.
2024-08-19 15:35:23 OpenVPN 2.6.12 x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] [DCO]
2024-08-19 15:35:23 library versions: OpenSSL 3.2.2 4 Jun 2024, LZO 2.10
2024-08-19 15:35:23 DCO version: N/A
2024-08-19 15:35:23 TCP/UDP: Preserving recently used remote address: [AF_INET]3.254.253.220:1194
2024-08-19 15:35:23 Socket Buffers: R=[212992->212992] S=[212992->212992]
2024-08-19 15:35:23 UDPv4 link local: (not bound)
2024-08-19 15:35:23 UDPv4 link remote: [AF_INET]3.254.253.220:1194
2024-08-19 15:36:23 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
2024-08-19 15:36:23 TLS Error: TLS handshake failed
2024-08-19 15:36:23 SIGUSR1[soft,tls-error] received, process restarting
2024-08-19 15:36:23 Restart pause, 1 second(s)
2024-08-19 15:36:24 TCP/UDP: Preserving recently used remote address: [AF_INET]3.254.253.220:1194
2024-08-19 15:36:24 Socket Buffers: R=[212992->212992] S=[212992->212992]
2024-08-19 15:36:24 UDPv4 link local: (not bound)
2024-08-19 15:36:24 UDPv4 link remote: [AF_INET]3.254.253.220:1194

Still unable to connect

you are using wifi or mobile data?

wifi

maybe network is slow .. or it is unreachable ..

or you might have connected to another vpn.

Or maybe some network firewalls from the Chinese govt.?

It might be that ， I can connect in another city before

T_T

Is the THM Attackbox too not working?

Very laggy

Hello, i want to subscribe to the premium plan as a student. I was wondering if i can have a student email to get the discount as well as a personal email to route the emails through? can i have two on my profile in any way or can i swap to personal email after i have the discount?

Why is burpsuite module so heavy on my PC? My ram usage literally jumps for 5GB while CPU is on 100% whenever i open burpsuite module

To my recollection, you'll need to subscribe first and the student discount will be applied later on. For more details, I suggest you drop an email to THM Support.

@cedar glacier

@hollow cosmos can you verify and send a screenshot of your tryhackme page?

I'm not able share the screenshot here. FYI, I'm new to this platform.

Yeah that's why you need to verify first

Follow the steps in this link :)

Got it

So if you open task one, you see a green button

"start machine"

Got it. Thank you 🙂

Gave +1 Rep to @stiff barn (current: #78 - 86)

hey guys im new

hi

@naive dust

Hi New, i'm Deditio

ohh hi

guys

But this is not the intros channel lol

oh

didnt see that sorry

Lets move to general

lol

ok

Hello THM team,

I'm not able to login to my THM account after some issue with the recent subscription issues, I've reset the pwd and received an email but when trying to login, with following error " Uh-oh! Your email or password is incorrect", how do I go about getting someone to assist?

You could email support

Shoot

The last one :)

@naive dust thank you

Gave +1 Rep to @stiff barn (current: #77 - 87)

You're welcome

the access page is showing a successful connection but the

the room is not showing the connection in access machine

Nah that access machines thing is broken

Dont worry about it

okay

Hello, I'm having some trouble with Task 4 in the Windows Event Logs room. The question is referencing "Example 8", but the task only has 3 examples. Am I missing something here?

Is there a way to reset the AttackBox? I have certain interfaces not loading up at all for some reason

as in VPNs

I tried terminating and starting again

Hello, the PtH academy module targets are not spawning..been waiting for almost 20 mins for them to spawn. Any help? Thanks

Which academy?

Hack the Box Academy - Pass the Hash module

Ok, can you ask in Hack The Box's server?

-.-' shoot wrong server..sorry about that

I am connected to the open vpn EU-Regular-1 server but after start machine and try to access machine its dont work its just ping but not work Advent of Cyber 1 [2019]

Does nmap give you results?

111/tcp open rpcbind 2-4 (RPC #100000)

only

So nothing for port 80?

https://prnt.sc/utsj6CGLw0it

http running on 3000

yes

Did you add the port to your ip?

https://prnt.sc/5mrQqZj3Uvww

If you wish to send a screenshot, please verify.

https://prnt.sc/0QKWN_A29qbh

https://prnt.sc/T6lM-KxSMMo_

I don't click random links, please veirfy if you wish to share screenshots.

I tried to upload a screenshot but i has no permissions

Yes, you need to verify, use the link above.

now its work

idk why its was stuck and not work

thanks you

hi can anyone pls help me with trouble to connect to gitlab in room CI/CD and Build Security

Please stop posting the same message accross multiple channels, it's spam.

Hi, today I completed room advent of cyber 2023 and when I try to download certificate I get new tab "about:blank" Same issue on different computer.
For test I tried download certificate from AOC2022 and I am getting XML file blah blah....<Code>AccessDenied</Code>
AOC2021 and 2020 option for certificates missing...I am glad I have a backup of it, but it's not great...It would be great to have site like Badges but for certificates

this is a screenshot link? 😭
Never seen it before but it seems safe on scans

I mean the certification program kind of works, decently, not that bad… Could you perhaps take a screenshot of the issue?

i am not able to connect to OpenVPN , i tried using different servers, but no luck , at first I thought its because of the UNI wifi (maybe they changed the configuration or something , idk).
i am getting something like this

Mon Aug 19 23:18:38 2024 WARNING: Compression for receiving enabled. Compression has been used in the past to break encryption. Sent packets are not compressed unless "allow-compression yes" is also set.
.
.
.
.
Mon Aug 19 23:18:39 2024 MANAGEMENT: >STATE:1724089719,WAIT,,,,,,

and after some time this error shows:

Mon Aug 19 23:23:43 2024 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
Mon Aug 19 23:23:43 2024 TLS Error: TLS handshake failed

First screenshot is AOC2022, second AOC2023

is the wifi sending incomplete packets? In other words is the connection stable?

I get the about:blank page too, but it loads it

Tried printing other certifications? Do they cause the same error?

Pathway certificate is ok

I mean there is some sort of missing privileges that are restricting you to access that page. Perhaps wait till someone answers here or send a request to the tryhackme support webpage ig.

I bypass it. Now i get my certificate but still it would be better to just click on download 😄

interesting to say the least. 😭 🙏

There is the way how I got it. I visit the pathway and read the Network output from Dev Tools.
I get: https://tryhackme.com/certificate/generate?certType=pathway&certAch=introtocyber
Rewrote it to:
https://tryhackme.com/certificate/generate?certType=room&certAch=adventofcyber2023
get: {"success":true,"url":"https://tryhackme-certificates.s3-eu-west-1.amazonaws.com/THM-EXAMPLE" }
and then replace the ID of certificate in THM-Example:
https://tryhackme-certificates.s3-eu-west-1.amazonaws.com/THM-EXAMPLE.png

wait wth

thats a vulnerability ☠️

IDOR

you can print all certs if so 😭

It's not, because the certificate exist....right? I did not tried it to non existing certificate. I think that it would not work.

Uh well someone would try it by then

Try to do it on another cert ethically

and then report it to thm staff

if it does work on other certs..

or other parameters/variables/objects

Of course it's not working. It would be really dumb mistake.
Output: {"success":false,"message":"You have not earned this certificate yet."}

Yeah alright well i mean a chance is a chance, you dont always know 🙏

sometimes the smallest misconfigurations could cause the biggest breaches.

Well... I did the same thing that the "Download Certificate" button does. The only thing I needed to figure out was the certificate ID, which I did, and then I just had to fill it into the URL. All certificates have the same URL, just each one has a different ID. Unfortunately, the certificate download process on webpage is somehow broken.

atleast theres a debugger for it now 😭 🙏

I see several posts here regarding the BreachingAD network, dating back to 6+ months ago. I'm using the Attackbox and launching it from the BreachingAD page (as specified). The interface that is supposed to be on that box "breachad" is not present, to be fair in some labs in the past I remember seeing this interface up when checking or the "lateralmovement". Either way.

Did anyone find the proper room to get the proper launch conditions for that interface in particular, another room that launches the same one, or find config changes/workarounds other than connecting to OpenVPN on another box?

Having the same problem with BreachingAD network

Womp womp. 🪦

does anyone how to fix it?

using kali linux in mobile

Is your phone rooted

no

I already guessed it happened bcz phn isn't rooted but is there any solution to this

Not without rooting it I'm afraid

praise be to god, I actually found a solution

😀

Hello everyone,

I'm using a virtual machine to run Kali Linux along with the VPN from TryHackMe, but the problem is that the THM machine is much faster when executing commands.

I've adjusted the RAM, VRAM, and other settings, but it's still slow. Can you help me with this?

oh? How did you manage to do it?

DevSecOps>Container Security>Intro to Docker

Task 5 > A Showcase of Docker Compose > The images are wrongly placed

this is much more likely to be seen by someone who could do something about it in #feedback-and-ideas

I installed open vpn in my phone not in vm and that worked!

what is the i

what is the answer of this question in SOC1.

V

Correct Answer
What groups have used spear-phishing in their campaigns? (format: group1,group2)

how to find the answer of specific question? I can't find the right answer of some questions.

This isn't a THM-related issue. Suggest you use the #general or #infosec-general channels.

In any case, does your host have adequate resources to run the VM (cores, RAM, storage)?

Hi, when I try to download the OpenVPN configuration pack for Windows (10), it keeps failing to download. Any idea what might be going wrong?

Have you downloaded a VM image for kali (or any other distro)? You can connect to OpenVPN via Windows, but it isn't recommended.

Like this (https://www.kali.org/get-kali/#kali-virtual-machines )? And then get the OpenVPN config pack for Linux, within the VM?

Hi, I was trying to download the openvpn configuration file from the site that was linked in a room my class has us do but every time i try to download the file, an error pops up on the top right corner. It simply states "An unknown error has occurred"

(https://tryhackme.com/r/access)

Well this is a classic, it starts working as soon as you try to contact support

Yes

Thanks.

Gave +1 Rep to @ivory spruce (current: #11 - 657)

Ahh I see, that makes sense - well GJ! I was wrong

can someone help? i can access 10.10.10.10 but i cant access my machine started from room i tried pinging, the pinging works fine i get reply from the machine

Okay so how are you trying to access it?

via browser i have connected open vpn

i am on OWASP top 10 room.

Okay and did you do an nmap scan first?

So are you sure you are on the right port?

machine_ip:8888 but i cant access i placed with ip address

Sure its port 8888?

And not 80

or 8000

or 8080

yes

its 8888 on site

Can you try 80, 8000 and 8080?

Just making sure

okay

yeah same

unable to connect

do you have the room link?

also in the access page it shows internal ip as 0000 is it okay?

https://tryhackme.com/r/room/owasptop10

task 7

You can reach 10.10.10.10 right?

yes

Try terminating the machine you deployed and start it again

yeah but displaying IP on 10.10.10.10 takes time

You mean curl 10.10.10.10/whoami?

i mean by browser

Oh

No problem I guess

the command displays ip

And here it says an IP?

Try terminating the machine and starting it again

yes i terminated

lemme try again

although i tried it 2 times already

Tag me when its done :)

sure

You starting this one?

The one that's grey at mine

Should be green for you

Uh @bronze vale

They are muted

lmao

Weird

-unmute 578562161459200001

🔊 Unmuted anasvhora

thanks

i tried reaching to a new machine

Yess

its same not loading

And you started it here?

i dont get it what you mean?

i clicked the link it has a web prectical

so

You need to start the machine in the task

So the button I had in the screenshot

yes i started the machine and got ip instead of "machine_ip"

Mmm

So you started the machine in task7. Right?

10.10.35.107:8888

yes

Dayum strange

Still cant access it?

yes

So you are trying http://10.10.35.107:8888

i am on my laptop VM parrot os

@bronze vale sorry for bothering again, but they are muted again?

They need to stop saying “yes”
Over and over lol

-unmute 578562161459200001

🔊 Unmuted anasvhora

okay noted!

So I think its against TOS if I try to access your machine

So I cant do that

mmm

Pretty strange

└──╼ $sudo ping 10.10.35.107
PING 10.10.35.107 (10.10.35.107) 56(84) bytes of data.
64 bytes from 10.10.35.107: icmp_seq=1 ttl=61 time=544 ms
64 bytes from 10.10.35.107: icmp_seq=2 ttl=61 time=566 ms
64 bytes from 10.10.35.107: icmp_seq=3 ttl=61 time=669 ms
64 bytes from 10.10.35.107: icmp_seq=4 ttl=61 time=569 ms
^C
--- 10.10.35.107 ping statistics ---
5 packets transmitted, 4 received, 20% packet loss, time 4001ms
rtt min/avg/max/mdev = 543.718/587.020/669.088/48.393 ms

this is the ping log so the machine is up correct?

thats ALOT of delay

because i changed server in fixning it i was connected it Indian server beofre

Which are you connected to right now?

Au

Mmm

Try an EU one

same ping

4003ms

Gosh

Still can't access the page?

ill try IN one, y, Cant access page

been stuck on linux pt2 for almost a week. kinda crazy trying to log into the ssh. i use the ssh tryhackme@ip of my terminal up top, enter password tryhackme, cuz they say in the lesson that's the password, i get denied about 3 times then kicked. then i use the ssh tryhack@ip they use in the lesson and it says no route to host. just kinda defeated at this point

sudo ping 10.10.35.107
PING 10.10.35.107 (10.10.35.107) 56(84) bytes of data.
64 bytes from 10.10.35.107: icmp_seq=1 ttl=60 time=411 ms
64 bytes from 10.10.35.107: icmp_seq=2 ttl=60 time=181 ms
64 bytes from 10.10.35.107: icmp_seq=3 ttl=60 time=159 ms
64 bytes from 10.10.35.107: icmp_seq=4 ttl=60 time=284 ms
^C
--- 10.10.35.107 ping statistics ---
4 packets transmitted, 4 received, 0% packet loss, time 3003ms
rtt min/avg/max/mdev = 158.548/258.745/410.936/99.882 ms

IN

Still much latency

Cant access it yet?

damn

finally

loaded

Nice

I guess it's the latency

oh okay

But at least it works now

Happy hacking

yup thanks for helping

Okay so

What's the room link?

where do i find that. still new. i'm on the lesson the gets me used to using ssh for the first time

Just copy the URL from your browser

https://tryhackme.com/r/room/linuxfundamentalspart2

log into the vpn, then click on attack the box, get everything loaded. ip at the top, click on terminal

then i do the ssh@ip@top

i type yes, get to the password

type tryhackme

get permission denied

Right, so can you ping the IP?

ping $ip

one sec

And if so, can you tell me the exact command you are using to SSH?

got disconnected from the machine but it's connecting again

ssh tryhackme@

and then the ip up top of my machine

That's the problem

Look

You need to start the machine here

See the "start machine" button?

At mine its grey

yea

Okay at yours its probably green?

If so, click it

it's loading now.

Alright

so you'll need to use `ssh tryhackme@^thatIP^

ah i see now. target ip address

Yepp

ty! that worked. finally!

Happy hacking :)

i lost connection again?? is there any other way to fix this?

the avg ping per 64kbps is something about 200-400ms

last weekend i had probs with the vpn. i just had to wait it out :\

ah! okay

i'll try reconnecting

yeah i ended up making like 6 more profiles to get the vpn to work and after some time just my original one worked again. so i realized prob no matter what i did at that time, had to wait it out.

Rebooting your VM

Or getting a faster internet connection :/

well on my host i get around 300mbps

Thats not bad

How much ping are you getting?

https://www.speedtest.net

199

That's not very good

Are you on Wifi?

Maybe you could try cable?

i use 5GHZ wifi from my phone but something's wrong with my host machine i guess

Possibly

usually i get around 300mbps currently its not even 3mbps

ill try rebooting my laptop and start VM and all again

will ping if i get the same issue

thanks for the help dude!

Yeah so that's the problem

Youre welcome

got ping down to 38-40 and download speed around 120mbps.. still not loading in VM

ill try terminating VM

still cant access page

@naive dust can i access this page from windows?

if i connect to VPN?

Theoretically yes

But I wouldnt do that

oh okay

not gonna try than

You could try, but I'm not a fan of connecting to a network full of hackers, on the host pc

lmao

lol true

i cant get it whats the problem now

should i change server to IN -> AU -> EU -> IN again ?

Would be strange

You could try and make a new VM

just did that

sorry you mean NEW VM install parrot in VM again?

Yeah why not

Or just use the attackbox

qouta for a day

1hr

finished

Oh wait

Maybe you can change your adapter

From for example bridged to NAT

Or just switch a bit

See if it has any impact

it was NAT i switched to bridge i got 100+ mbps after changing it to bridge

Ahh

http://10.10.10.10/ on this do you get your IP instantly?

Yep, normally yes

I'm not able to access any machine with VPN right now

But yes

my ip not showing in 10.10.10.10

You could do curl 10.10.10.10/whoami

In your terminal

yeah

got ip

Is that fast?

yup

instant

Mmm

lemme try another machine

You could try this:

sudo ip link set mtu 1200 dev tun0```

Not sure if that makes any difference

i tried opening another machine

Alright

i mean of task 5 which i completed erlier

it loads instantly

ohh like that

not a second delay

thats pretty strange

I have no idea what could be the issue then...

i'll try starting task 7 machine again

And its pretty quiet in here right now, so not much other people to assist

where are you from? i mean its not night there right i am not disturbing your sleep right?

Oh no

Its 1 PM for me

or in real times

13:00

1PM

Yeah PM

Always confused with that

great

well got task 7 loaded again

wth

Mmm

OSINT

Yeah do that

OH you are finding the whole EU

Can tell my country too, Netherlands

And now, good luck finding me between 18m people

And if you find me, we'll drink a beer together

i mean 18m is significantly smaller than 8b

fairly new user, studying and prep for CySa+003. ran into an issue with logging in. my login and pw werent accepted and the forgot password link/email isnt coming through, tried resetting it but I'm using my student email with wgu to get the discount and im wondering if that could be the issue. couldnt find a page for contacting support. any thoughts?

support@tryhackme.com

thank you, appreciate it

Gave +1 Rep to @timid talon (current: #40 - 190)

im having issues connecting with my vpn. It connects on my vm, but it says disconnected on the site. I tried generating and downloading a new vpn to connect to but that didnt work either still says disconnected on the site

can you curl 10.10.10.10/whoami and get an IP?

let me try

nah

im gonna try resetting my vm and try again

Just know that the acces page on THM is broken so it might say disconnected eventho you are connected. If you can ping 10.10.10.10 or even better curl 10.10.10.10/whoami and you get an IP, you are connected fine.

ok yea it worked

Hello, I'm trying to do the "Blog" tryhackme challenge but I'm unable to access the hosted site "blog.thm" but I am able to access it with the ip-address. This happens on both AttackBox and the VPN connection

and since the CSS is hosted on the "blog.thm" website it doesn't load CSS either

hi

i am working in Maintaining Your System: Automation page

i am working in Maintaining Your System: Automation page : Learn the Linux Fundamentals Part 3

When will the crontab on the deployed instance (10.10.118.100) run?

i am stuck

i run crontab -e

alright. Then you can find it at the bottom of th file.

m h dom mon dow command

@reboot /var/opt/processes.sh

i dont see any cron command inside

just think a bit out of the box.

does it mean 'never ' ?

i answer never, it's not right

No

its at a specific moment.

Question Hint

Take a look at the position and the value within the appropriate column

hmm seems like the hint is confusing

in the example : i saw below 0 */12 * * * cp -R /home/cmnatic/Documents /var/backups/

You got the answer right here.

@reboot

thank you Grustopher

thank you

thank you

Gave +1 Rep to @timid talon (current: #40 - 191)

?

Fair, still not easy

FYI its /socials email

Did you add it in the hosts file?

/etc/hosts

no

then you need to do that :)

add IP-address blog.thm to /etc/hosts

aaah

thank you

You're welcome :)

hey guys i can connect the vpn but thm doesn't detect this

what should i do

Hi, what do you mean doesn't detect?

Does it still show: not connected

At the top of the website?

yea

Oh that's broken

Don't worry about that

but target ip adress not pinging

Is the target windows?

Pinging is disabled for windows machines

By default*

idk its retro ctf room

Can you ping 10.10.10.10?

yes

Then your target is windows

Time for some enumerating!

oh okay there is no explanation that the retro ctf room is windows

That's why i m confused

ahh

if you do nmap with some OS discovery youll find out

okayy

thanks

You're welcome :)

I can't ping Fowsniff CTF

Can you nmap it?

yes all good

Did you have to use -Pn?

Yes

All good its finished thx @weary spindle

Gave +1 Rep to @weary spindle (current: #1 - 2647)

Hi guys can someone help me with openvpn it just won't connect

Which OS, country and server are you trying?

Linux Purple with Europe1

Go to Eu-3, Regen and download.

ok

still not

which country?

Hello!!

It's Been A Long Time, I'm Back Again To TryHackMe, But Having Issue With VPN, I'm Connected With OpenVPN, Got IP & Can Ping Machine, But thm/access Didn't Showing That I'm Connected!

This page is broken.

When i try to launch in browser vm from the START MACHINE green button. even the time for launching is completed but no vm iis launched in split view. I have to click start attack box this i Am shown different ip as shown in the pic below which means its the ip of the vm lauched by START ATTACK BOX.my question is what is happening to the vM launched by START MACHINE GREEN BUTTON.Hoping a swift reply .REGARDS

the target machines don't always have a split screen view included and are meant to be attacked from the attackbox or your own virtual machine

hence why a lot of time you run nmap from your attack machine against the target machine started by the green start machine button

I can't attach the pic here but red banner is showing different ip and machine which is launched by START ATTACK BOX HAS DIFFERENT U MEAN WHEN I WANT TO ATTACK FROM MY COMPUTER I HAVE TO USE RED BANNER IP?

Please don't shout at Shadow, she is helping you, she doesn't have to.

r u ok man who is shouting i m asking a question

i m new thats y i have to ask

Yes, Shadow told you why you're having an issue

Although that your new, still show respect, you don't have to use all caps

wow whats this whats wrong with using all caps ru guys kids com on

It's considered shouting, and rude.

wow thats fantastic

For attaching images you have to verify (see link). Clicking the green Start Machine button starts the target machine and the IP will show in the red banner. This machine is what you will be attacking. To attack you can either use the Attackbox or your own (virtual) machine.

@candid grove

Got it thanx man here people r offended by capital letters

Nobody Is, it's just rude.

I'm surprised by how edgy ppl are in here. but also not. I'm assuming that's a young "hacker" mindset.

can I see a list of VMs i have running? i have my attack box up but when i move to the next room it had a machine to start and I could not excede 3 vms. can I see what is running and select to end those VMs or do I have to wait for them to time out?

that happened to me too. i had to manually go through the room i had been in and terminate the machine at the top of the page, not just the open vm window.

Yeah two secs.

it seems like some of the room are p difficult. is it the norm, if I'm a newbie, to use walkthroughs? some of the answers i have literally no idea how i would ever had guessed some of this stuff...

https://tryhackme.com/api/vm/running

thanks

This link will show you in JSON format which rooms you have a machine open in.

oh right. that was helpful. i forgot about that.

Is there anyway to transfer my subscription to a different account? Just recovered my old one and wanted to transfer my subsciption to that one instead.

No, there isn't.

Thank, I was able to find what room I left them in and shut them down so I can keep going. My ADD is getting the best of me with all the rooms and notifications of new rooms to go explore

Gave +1 Rep to @weary spindle (current: #1 - 2652)

whats the difference between the VIP and regular for the vpn anyone know (in tryhackme)

Users and speed.

thanks

Gave +1 Rep to @weary spindle (current: #1 - 2653)

Hello, I do have trouble connecting with my vpn. I already switched servers and redownloaded configuration files. Despite Connection status is connected and I get an internal virtual ip address shown, I can't access target ips. The sites do load endlessly. Can anybody help?

did you run the file on terminal

maybe try differ vpn

you mean the correct vpn file with openvpn? Yes, used with root permissions

could just be slow

sudo openvpn file_name

Yesterday it worked after a few tries. Ok I'll do it. Attack box would still work but is slow

Thank you

@uneven rivet thats weird yea retry you can check by going to tutorial room it could just be the room your working on and forced to use the attack box dont close the terminal that is running sudo openvpn file_name

are you sure theres something running on port 80?

if you verify (see link) you can clarify your issue with screenshots.

@uneven rivet

hello guys, i'm trying to access to this room https://tryhackme.com/r/room/persistingad but the AttackBox don't have the interface persistad and i can't ping the THMROOTDC

hi guys can anyone please let me know how does the streak thing work depending on the time of the first question answered for starting a streak?

I believe it counts/resets from 00:00 local time.

Mmm. Resets midnight yeah

i had no questions answered today and i started studying and yet streak hasnt budged

budged?

i mean no increment

So if you answer a question, your streak increases

i did answer yes

Sure your streak didn't increase?

yes fully

Would be strange

Very strange

Didn't you answer a question today just after midnight?

my streak shows 9

Okay that's pretty strange

yep i did

And didn't it increase then?

nope

it increased yester i hoped it would today but idk the time confuses me

i did lose my streak twice now cuz confused 😭

Because of that?

yeah

Mmm maybe emailing support is an option

They can explain surely better

okay will do thanks

openvpn dosen't work even though I download the ovpn file for europe 1 and open it with the command sudo open filename(I use the actual filename).ovpn but then it tells me stuff about no kernel support and so so I regeneratet the file and got it for europe 2 and did the command again but same thing.

Use Eu-Reg-3

Regen first.

done that too

I've went through every single europe file

Okay so what did you exactly do?

You downloaded it. Then you have gone in the directory where the file is.

Download the config file then opening it and then getting an error message

Then you do sudo openvpn filename.ovpn

yup

in the downloads folder

Alright, can you share the error?

k

might take some time since I need to start linux first

should I share the error log?

Yes please

Or just a screenshot of the output of the command

But to send screenshots you'll have to verify your discord account first

@vague raft

ok

2024-08-21 11:42:14 DEPRECATED OPTION: --cipher set to 'AES-256-CBC' but missing in --data-ciphers (AES-256-GCM:AES-128-GCM:CHACHA20-POLY1305). OpenVPN ignores --cipher for cipher negotiations.
2024-08-21 11:42:14 Note: Kernel support for ovpn-dco missing, disabling data channel offload.
2024-08-21 11:42:14 OpenVPN 2.6.12 x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] [DCO]
2024-08-21 11:42:14 library versions: OpenSSL 3.2.2 4 Jun 2024, LZO 2.10
2024-08-21 11:42:14 DCO version: N/A
2024-08-21 11:42:14 TCP/UDP: Preserving recently used remote address: [AF_INET]18.202.168.160:1194
2024-08-21 11:42:14 Socket Buffers: R=[212992->212992] S=[212992->212992]
2024-08-21 11:42:14 UDPv4 link local: (not bound)
2024-08-21 11:42:14 UDPv4 link remote: [AF_INET]18.202.168.160:1194

here

openvpn --version | head -n 1

2.6.12?

?

Wat is your openvpn version

2.6.12

cat your config.

Or send it to me.

openvpns config?

Yes

ok

dosen't that like have sensitive infos or smth

That's why Scrubz said, send it to me ;)

He means, in dm

k

well I somehow need to make it 8k characters shorter

Oopsie

Send it in multiple messages

Or just upload the file?

Even better

dun

btw does the openvpn thing work differently based on the os

It still won't work

On which OS are you?

kali purple

Can you share screenshot of the output?

here

You keep getting the same errors?

yup

well I fixed one file but just up to the part where TCP handshake fails

I dunno how to fix that

try diffrent servers
i had rhe same error in us west and au and in but it suddenly worked in eu