#site-support

China

China is blocking OpenVPN connections, you won't be able to use vpn's in China.

Your only option is use the attackbox.

12vpx works, that's how I'm on discord right now

It doesn't matter, I can't tell you how bypass government restrictions is against our rules.

Maybe I can double up VPNs. I'm only sending browser traffic via 12vpx at the moment using a browser extension, but I could send everything over it.

Doubling up on VPN's won't work.

Is there a way to see a transcript within a time period? Either something like yearly activity but with room names, or a way to search completed rooms for the date completed?

Just made a payment for premium the site is stuck at this for about 30-35 mins, what should i do? The amount is also deducted from my bank account.

Open a new window and check if it's applied to your profile?

nope it's not

Then you'll need to get in touch with support I'm afraid via E-mail.

Should I close it, right now? Unsure about when the support team would reply to the mail.

Mailed them though

The reply could be slightly late.

Just don't refresh your page

It's night here🥲 , can't stay up for long.

Ok, the reply won't be within the next few days.

Is really what I meant.

Yeah can't leave it open, should I close it?

Yeah, I would.

If you refresh it, it will take more money.

okay

Having trouble navigating between paths. Any place where i can see current and completed paths?

why there is no more leaning path?

Paths have a % completion in the top right corner

but there is no more the order

like before were a litteraly path

Roadmap twas removed for whatever reason

nooooooooooooo

all right

thx

Hi can anyone please help me
i purchased the subscription 2 days ago but now when i try to click on start macine it gives me error
"Oh no, an error occurred while starting VM: You already have a machine running in this room. Terminate it before deploying another machine. "

#site-support message

Its not working , is there any other alternative

Ctrl + F5

still no response

when i tried it it gave this error in
ncaught (in promise) ReferenceError: csrfToken is not defined

Not sure then sorry

hello, as a premium user on tryhackme, can i use the attackbox independently ?

Hello, I have a problem when I copy the machine IP; it does not open in my browser, the openvpn doesn't work if I didn't open any vpn, and if I pinged 10.10.10.10, it will say 0 packet loss. I tried to install another VPN to open the machine, and it failed.

Try to close your VPN and then start open vpn

OMG , it works

This man IT supports

fr

Wdym?

It is for THM-related room or content use only and any usage outside of that would be in violation of the terms of use.

I’m experiencing an issue with my account security and could use some assistance. I recently shared my account credentials with someone, but even after changing my password, their device remains logged in to my account.

As there is no option for session management or logging out from other devices on TryHackMe, I would appreciate any help in resolving this. Is there a way to force log out all active sessions on my account?

So uh, you broke ToS, you need to contact support.

My vpn certificate is not loading

└─$ sudo openvpn 0alpha0.ovpn
[sudo] password for kali:
2024-09-24 02:50:09 WARNING: Compression for receiving enabled. Compression has been used in the past to break encryption. Sent packets are not compressed unless "allow-compression yes" is also set.
2024-09-24 02:50:09 Note: --cipher is not set. OpenVPN versions before 2.5 defaulted to BF-CBC as fallback when cipher negotiation failed in this case. If you need this fallback please add '--data-ciphers-fallback BF-CBC' to your configuration and/or add BF-CBC to --data-ciphers.
2024-09-24 02:50:09 Note: '--allow-compression' is not set to 'no', disabling data channel offload.
2024-09-24 02:50:09 OpenVPN 2.6.9 x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] [DCO]
2024-09-24 02:50:09 library versions: OpenSSL 3.2.2 4 Jun 2024, LZO 2.10
2024-09-24 02:50:09 DCO version: N/A
2024-09-24 02:50:09 OpenSSL: error:0480006C:PEM routines::no start line:Expecting: CERTIFICATE
2024-09-24 02:50:09 OpenSSL: error:0A080009:SSL routines::PEM lib:
2024-09-24 02:50:09 Cannot load inline certificate file
2024-09-24 02:50:09 Exiting due to fatal error

┌──(kali㉿kali)-[~/Downloads]

Which server?

Where do you live?

I tried IN server but it is giving error, this is EU regular1

Checked now, the premium is not activated.

Nothing we can do other than suggest to use the email

Yeah I know, mailed the team already, will wait

Hi, my college does not allow usuge of VPNs on campus. I belive they ahve blocked the ports used for openvpn. Is it possible to connect to the tryhackme network using a http proxy or something ? Thanks

No, what you can do is ask your ICT team if they can unblock port 1194 for the OpenVPN connection, you can talk to them about what TryHackMe is, and show them so they know you're not doing something unethical. (They may even like it and enquire about the Educational plan).

However for now you're only alternatives are to either use the attackbox, or don't do THM whilst on campus.

Okay thanks

Gave +1 Rep to @weary spindle (current: #1 - 2806)

Yeah, bypassing restrictions is usually frowned upon, and could be against your CoC.

Are there any best practices to stop my attackboxes from freezing? And what do you do when they do freeze? Like I can see that the performance monitor on the top panel has stopped moving.

When I press start the machine, the virtual machine does not come up and the screen is completely white. What is the reason

I've been trying to do linux funadmentals 3 for a while cause I just keep getting freezes and have to terminate and redeploy, or is there a better way?

Hey guys, how many emails do you normally get after your 2nd month of subscription that test your phishing awareness ("[Important] We couldn't charge your card") ? So far I've been getting them daily but I don't want to add THM domain to spam.

That’s not a phishing email. If we can’t charge your card that ends up happening after a few days it will cancel it if no payment can be taken

but it's all good and green on my profile's subscription section until 23rd of October (exactly 1 month after sub renewal and the first email) + the card number's ending is incorrect (+ I've just checked and the payment went through yesterday)

I mean, it would actually make sense to me that THM would do a mock email like this with a rickroll after clicking "Pay Now". I'll just leave it like this and worst case scenario have to undertake a quick chat with bot or support if this isn't an awareness campaign.

I may have missed it, but is there a way to have the browser based virtual machine in its own window? I have a dual monitor setup and would like the attack box fullscreen on one screen and then the questions/website on the other. I could probably have 2 browsers open, one with the questions and what not and the other with a fullscreen version of the virtual machine, I just didnt know if there was like a "pop-out" feature for the virtual machine.

Yeah, there is

#general message

Old UI, buttons still in the same place and do the same function.

Hello good morning! Can someone help me solve this problem? Please. I paid for the subscription, but it has not been activated and the debit appears in the bank. I have already opened a ticket but they do not respond.

Just wait for them to reply, is all you can I'm afraid.

AH, the full screen button opens in a new tab, very helpful. Thank you so much.

Minimize the split screen one or it will constantly reshape.

Gave +1 Rep to @weary spindle (current: #1 - 2808)

hello

i am begginer in tech so i wanted to know from where should i start what basics i need to learn

well this isn't the right channel to ask but if you're new in tech you would want to start with courses like A+, Network+, Security+ And linux

#cyber-and-careers

Hello, I am from Brazil and purchased the tryhackme annual plan, but the payment was not paid in installments on my card, does anyone know why this happened? I already sent a ticket 2 days ago but they haven't responded

What do you mean? The annual plan is paid annually - also I'm sure support will respond soon if you did have questions for them

What I mean is that when I went to buy it it was specified that I would pay £9 per month, but I paid it all at once. Thank you for saying that you will answer me soon, I feel more relieved about that

Gave +1 Rep to @gleaming flume (current: #41 - 201)

You can't split the annual up.

annual means you pay for a year

But why then does £9 per month appear?

Because that is the price per month, makes it easier to compare the price to the monthly plan when you list both the same way

Though when you actually go to pay it should show the overall cost

Now I understand, here in Brazil we are used to seeing this and thinking that they are referring to a card payment in installments. Okay, thanks for clarifying this

If I buy the Try Hack subscription now, would I have it until October 24 or October 1?

ok thanks

Gave +1 Rep to @ivory spruce (current: #11 - 697)

How to make the tryhackme theme black?

Dark reader?

I saw that some people who posted prints here have a Dark theme

I do not believe there is an official dark mode for the website, but there are tons of browser extensions that can achieve that, which is probably what people were using

I wanted to know how to put it on, my eyes hurt

Understood

does anyone know how long it takes to answer support or respond to tickets?

Normally 1-3 business days afaik

Thanks Hiro!

Gave +1 Rep to @gleaming flume (current: #41 - 202)

Hello,
I contacted THM more than 5 times concerning a failed paiement and never got an answer.
I can't buy vouchers & got debited amount of cash whithout received vouchers

This is just sad, and boring

When did you email?

hello, how streak freezes work on site? i got 1 with 7d streak, got another with 30d streak, used one few days ago (September 13), but don't see another one..

also, will i get another one with next goal (365days streak)?

It’s not an awareness campaign 🙂

If you drop an email to support we can take a look

Just a heads up the THM team are on a retreat so responses will be delayed through the week

Friday we will be off

Back to normal on monday 🙂

@west chasm when i am trying to change my server it is showing me server side error what is this??

@wispy chasm

@burnt steppe

Please don't ping random members of staff.

they have role thats why i ping them

I'm aware they have the role, but they're not on discord to provide help.

One of the members you pinged isn't even support.

okay then you tell me why site is showing error during downloading configuration file

I don't even know which file you're downloading.

Which file is it?

vpn

..

.

Again, there is multiple VPN packs, please be more specific.

when trying to download IND confg file

Try regeneration for it first.

tried same error

Change server

same when i am trying to download network config file in thm it is redirecting/r/500

can anyone help

I can't figure out how to inject HTML into XSS

Is there a video for that question

From which server are you trying to generate the OpenVPN config file from?

can you even use rooms without premium

62% is free.

good

can I earn money by cometing for free?

or are there even prices

Uhmm.. TryHackMe is not a bug bounty platform like HackerOne, Bugcrowd, Intigriti and the like.

TryHackMe usually have prizes when a new path is released, or during Advent of Cyber.

THM has a bug bounty

ah

can anyone help i am not able to download thm networks config file i have tried regenerate but not working

When I try to download the VPN config file for the wreath network it just gives me an error. I tried multiple times. Even regenerated. Still gets the same error. Can someone tell what might be the issue?

Leave the room via options and try again later

by later, how long do you mean?

15 min(s)

oh, ok. I'll try

hello, i downloaded openvpn conf file and connect tryhackme network , i verfied with tutorial now i want to acces machine with my own kali machine's browser but it doesn't open the website, can someone help me?

Can you clarify the issue with screenshot? You'll have to verify first.

@stiff night

@stiff night Try to regenrate the vpn file , it worked in my case

i tried it still didn't work

That page is intended.

You seem to be connected. Try using curl 10.10.10.10/whoami in terminal.

this is target machine

remove the tilde.

But you're connected.

The maintenance page is intended, it's part of the challenge.

See, you're connected.

aa okay thank you i thought this is not real page

Gave +1 Rep to @weary spindle (current: #1 - 2813)

First time I've seen that one. 😄

but it did not open this site

@Lale You need to add it to your /etc/hosts file

i did

@stiff night And you need to put "jewel.uploadvulns.thm" in the URL bar and not in the Google search

Try with http:// in front. Also which hosts file did you add it to? On Kali VM?

yes kali vm

it worked

thank you so much

I tried to connect to a room via openvpn and it connected for time but suddenly stopped and gave me that error i tried every solution like changing server , configuration file but no effect😭

2024-09-25 14:12:18 Note: --cipher is not set. OpenVPN versions before 2.5 defaulted to BF-CBC as fallback when cipher negotiation failed in this case. If you need this fallback please add '--data-ciphers-fallback BF-CBC' to your configuration and/or add BF-CBC to --data-ciphers.
2024-09-25 14:12:18 Note: cipher 'AES-256-CBC' in --data-ciphers is not supported by ovpn-dco, disabling data channel offload.
2024-09-25 14:12:18 OpenVPN 2.6.7 x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] [DCO]
2024-09-25 14:12:18 library versions: OpenSSL 3.2.2 4 Jun 2024, LZO 2.10
2024-09-25 14:12:18 DCO version: N/A
2024-09-25 14:12:18 TCP/UDP: Preserving recently used remote address: [AF_INET]52.4.198.155:1194

Hello, i've been trying to download the openvpn configuration file for the network wreath but every time i click the download button it gets stuck loading for a minute or two, then an unknown error pops up, has anyone experienced this before?

same issue for me
I have documented it here: #wreath-network message
I have no idea how that gets solved
I have opened a support ticket one week ago, but it has not moved so far

good to know im not the only one facing this problem, seems like there are other people with the same issue, i hope they resolve it soon

I think it would be useful it you would open a support ticket on your side too
I have a feeling that Wreath works for some users
Unless more people formally report the issue, I am afraid it will not get enough attention
In case you open a ticket, document also the subnet or subnets you had been assigned

how can i do that, im new here, never opened one before

on any THM web page, you have on the right bottom a THM bubble cloud: that is the interface to support
you can have a dialogue (right now with a bot, as THM team is away) but also create a ticket; that second option is better: you get a ticket number to track the issue, you can upload screenshots and you get updates by email
disclaimer: I have opened only one ticket so far, so I am new in that process too
Thanks for your help

Gave +1 Rep to @tardy arch (current: #2236 - 1)

thanks for helping, just opened a ticket, i uploaded the screenshots i'll be checking my email from now on, hoping this gets resolved

Gave +1 Rep to @upbeat quarry (current: #46 - 175)

Whenever I add a website to my /etc/hosts file, the site doesn't load and instead I'm shown my router info.

Is this in a VM?

or attack box?

Neither, just bare metal.

Ok cool

My guess is that your router has DNS rebind protection to prevent DNS hijacking

If so you’d have to log into your router and change the setting

Otherwise make sure your entry in /etc/hosts looks like
127.0.0.1 example.com

I am not able to connect my kali vmware with the server. I did download the .ovpn file and ran it but still i am not able to connect. Please help.

sorry didnt notice that page was broken

Hello, I need help, I'm get stuck on "Phishing Prevention" =>SMTP Status Codes question: Per the network traffic, what was the message for status code 220? (Do not include the status code (220) in the answer), even my answer is correct, please you help here thanks

the answer is : <domain> Service ready

if you have these characters < or > in your answer, try again without
also, to avoid showing answers or potential answers, please edit your previous message by || inserting double pipes before and after the answer like this ||

super it works

many thanks

need help with sighunt VM, I am trying to connect the Room's VM using attackbox but it is giving me a "Bad Gateway" error code

how much time has the target machine been running? you may need to wait a bit more than the 3-5 minutes mentioned in the room material
I'll take that back: the target machine is up and running for me with the AttackBox after 2-3 minutes

I actually tried waiting for 5-10mins but no luck even with using OpenVPN

at least can you ping the target VM?
any chance of a mix up with ip addresses?
if you nmap the target IP you should just have 2 ports open (see screenshot)
I have just checked I can also browse to the target from my local Kali VM

BTW, THM AttackBox just died on me, that could mean some trouble on THM infrastructure affecting your end too?

I emailed support and opened a ticket regarding a subscription problem I encountered, but no response.

If anyone from tryhackme can help, my ticket number #34715 and my username, elitte.

FYI: #site-support message

thank you Shy1

2024-09-26 05:10:44 OpenVPN 2.5.1 x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] built on May 14 2021
2024-09-26 05:10:44 library versions: OpenSSL 1.1.1w 11 Sep 2023, LZO 2.10
2024-09-26 05:10:44 WARNING: INSECURE cipher (BF-CBC) with block size less than 128 bit (64 bit). This allows attacks like SWEET32. Mitigate by using a --cipher with a larger block size (e.g. AES-256-CBC). Support for these insecure ciphers will be removed in OpenVPN 2.6.
2024-09-26 05:10:44 Outgoing Control Channel Authentication: Using 512 bit message hash 'SHA512' for HMAC authentication
2024-09-26 05:10:44 Incoming Control Channel Authentication: Using 512 bit message hash 'SHA512' for HMAC authentication
2024-09-26 05:10:44 TCP/UDP: Preserving recently used remote address: [AF_INET]54.76.30.11:1194
2024-09-26 05:10:44 Socket Buffers: R=[212992->212992] S=[212992->212992]
2024-09-26 05:10:44 UDP link local: (not bound)
2024-09-26 05:10:44 UDP link remote: [AF_INET]54.76.30.11:1194
2024-09-26 05:10:45 TLS: Initial packet from [AF_INET]54.76.30.11:1194, sid=ede64016 29344b5f
2024-09-26 05:10:46 VERIFY OK: depth=1, CN=ChangeMe
2024-09-26 05:10:46 VERIFY KU OK
2024-09-26 05:10:46 Validating certificate extended key usage
2024-09-26 05:10:46 ++ Certificate has EKU (str) TLS Web Server Authentication, expects TLS Web Server Authentication
2024-09-26 05:10:46 VERIFY EKU OK
2024-09-26 05:10:46 VERIFY OK: depth=0, CN=server

how do i fix this error

From which location are you connecting? Which THM OpenVPN server?

singapore

Which server are you connecting to?

Eu-Regular-2

My Attackbox is having trouble connecting, when I restart the machine it's fine for a little bit and then gets stuck in a loop of disconnecting.

hey i wanted to ask does THM offer discount for military people ?

Can you try another server and wait for ~2 to 3 minutes before generating your OpenVPN config file?

Haven't come across this type of discount, but THM usually offers some deals during the advent of cyber event around end of November or first week of December.

oh i just saw discounts for students so i Thought maybe they have for military people as well because alot of learning platforms does

thank you it work now

Gave +1 Rep to @ivory spruce (current: #11 - 698)

You might want to drop THM Support an email to directly inquire about it.

@quiet gorge

sure il give it a try

anyone is here to help me out for THM internal?

Hi, they haven't responded to my support email or ticket about my subscription never being activated. How do I request a refund? Is there also support?

Replies will be slow, until Monday.

Hi,I'm solving Phishing Prevention room but even answer is correct room doesn't accept the answer

Which question?

Per the network traffic, what was the message for status code 220? (Do not include the status code (220) in the answer)

task 6

Try and remove the "<>" from your answer

to be sure i look at the answer

okey

thx lot

it's done

np

Hi guys

i have a problem, i cant get on tryhackme user

it doesnt exsist

hey guys was having trouble finding the acme site for the pen testing course, would anyone possibly know how to find it`???

when i get into thm attackbox

lost password

?

no when i looked at all users i cant find tryhackme

also when i try to su tryhackme it says no passwd entry

What room and task is this?

https://tryhackme.com/r/room/linuxfundamentalspart3

task 4

i mean i coudlnt complete any tasks

since i have to be on tryhackme user

Did you start the VM for that room with the green "Start Machine" button, this machine is completely different from the attackbox

Then you can use the attackbox to SSH into the room's machine as covered in task 2

For what room and task is this specifically? "pentesting course" isn't specific enough for us to be able to find what you are working on

i mean i press green start machine button

and it doesnt open

It should give you an IP which you use to SSH into the machine

i agree, its walking in an application task 4 viewing page source

attempting to find the first flag ill give it a another try, just to be sure nothing has been overlooked

hmm, so are you having issues accessing the website entirely or just finding the flag?

finding the flag, ive done as following instructions, to view the google page source and find html flag from the comment,

Yeah im dumb, i forgot to use ssh to login

oh yeah i see now that flag i need to recover is from the acme website, misunderstood tho i still cant seem to find it

The task should walk you through how to find it, is there a specific step you are getting stuck on?

yeah its visiting the acme site cant seem to find it anywhere, to be precise task 4 step 2 finding the it support website

It should be the same site you have been using up to this point, specifically it wants you to look at the "news" page

hmm. alright ill run through it again

I got same error. Did they respond you?

for KOTH I can't ping the machine

is that normal or

Depends on the machine, not all machines respond to pings

But also #koth

ohhhhhhhh

I don't have perms to send msgs there

and also I think it's cause I'm not connected to the openvpn

is there an openvpn?

hmmmmmmmmmmmmm

I think you need to verify to access that channel

But also yeah you would need the openvpn

there's not bot channel is there

#bot-commands OH

I don't have the channel added

discord onboarding moment

how do i get there

https://tryhackme.com/r/access to download the VPN, if you don't know to use it then you might want to check out this room https://tryhackme.com/r/room/openvpn

pog

ty!

np

got it pinged!

aaaand I'm WAAY behind lmao

prolly going to be behind anyways cause I have no idea what to do anyway so

😆 Well I'm glad its working now for ya

tyyy!

My streaks keep resetting! I answered 8 questions yesterday, and today my streaks is back at zero!

I'd give that a read

👍

Is there a browser that the attack boxes are best in?

I tried Chrome and Firefox but they're always freezing

They tend to freeze when moving away from the window to do something else

I think the best method might be to have the attackbox full screened on one laptop and the lesson plan on another laptop entirely

Cause switching between tabs is what's causing issues

cant connect to thm vpn
when tried to download a new config file showed a 500 status code

i have a problem when i join this links , it's not open in attack box

http://printer.za.tryhackme.com/settings.aspx

any link in AD , I can not open it

Is there a guide on using a remote desktop viewer to access the attack box?

nvm it was pretty straight forward

But christ how is it even slower than the browser based one

Can type a command and execute before the screen has even refreshed

I use Firefox to connect to the AttackBox, like right now
No issue now or in other instances
I take it you have decent internet connectivity elsewhere?
Usually, if something strange happens in my browser, I would suspect my extensions and other non-default browser settings

do rooms get updated overtime as topics change at least when it comes to the core paths or are they replaced instead?

I've found it less of an issue if the attack box is full screened in it's own window. With the split view switching between the side of the screen with the room instructions and the side with the desktop viewer is what's causing the freezing.

It's even better with the room instructions open on my tablet and not minimizing the attackbox at all.

Switching window focus is what's causing issues

having trouble connecting my machine with openvpn, keep getting upv4 link local (not bound) and tls handshake failed
if it's relevant at all im using network manager

I have seen some users complaining about a side window not opening at all, but not related to the AttackBox I am referring here to rooms like Windows Fundamentals 1, where starting the target machine opens the target in Split View mode But, for that case, I did not get the end result of their troubleshooting
I understand that, sometimes, there would be error messages in the Console tab of the browser DevTools Maybe, if that is the case with you, that would give you some hints?
Here is an example of that problem I am referring to: #room-help message Yesterday, I asked @visual trellis about it, and he did not seem to push to the end of the matter so far

I don't think it's the same thing, this is more like the screen not refreshing. Like the attackboxes mouse curser not moving to track my own curser when in split mode.

Out of curiosity, what is the remote application you found there?

I just tried the default one in windows to test if you could remote desktop view into the attack boxes. I'm going to be trying Remmina on Linux when I get home.

you mean, using the public IP of the AttackBox? Which port are you using?

I didn't put in a port I just put the public IP of the attackbox in here and the username

Then it remoteviewed into a sort of login screen where I had to type the password. I started an X session though. There was the option to just start a terminal session, which is all I really need.

Terminal would probably be faster too

there have been message on Discord saying that the AttackBox can be reached on port 80 via VNC
I have tried that, but no luck Not sure which VNC viewer to use best though
I'll do some searching and update this post
I you have good remote connectivity to the AttackBox, I am interested in updates from you whenever you feel like it Thanks

Gave +1 Rep to @modest hazel (current: #2239 - 1)

huh never mind it just started working

I will try on linux tonight and try to update.

im assuming something funky with college networking cause i just pinged the server manually and it suddenly went through

Thanks
Here is one of these VNC messages: #room-help message

Weird that I didn't have to enter a port

yes, why I am interested in your experience

I have just used Breaching AD, one of the AD networks
Both on AttackBox and via VPN I could do the DNS configuration and browse to http://ntlmauth.za.tryhackme.com and http://printer.za.tryhackme.com
When using the AttackBox, make sure you have a network adapter for the AD network: in the case of Breaching AD, that is breachad If that network adapter is not present, run openvpn with the VPN config related to that AD network
Also, read the Pinned Messages in the Discord channel related to the particular AD network
Troubleshooting: regenerating the VPN file is usually a good idea if you cannot ping the DC

Is this from your host?

You can either ssh or VNC in to the attackbox

I've managed to connect to the attackbox in Remmina using RDP mode by just putting in the public ip, no port, and the username. Then entering the password when propted. However it's no faster than browser based it's still very laggy

With VNC protocol selected I get "VNC server closed connection" RDP works but laggy.

You'll need to specify the port for VNC IIRC

I put :80 at the end of the ip address if thats correct

It is.

Hang on till I try and find Bens post.

Port is 5091

Still not having much luck with that. So far my experience has been
Windows Remote Desktop Connection: Works but incredibly laggy unusably so
Remmina on Linux using RDP protocol not specifying port: Works but no better lag than the browser based on.
Remmina on Linux using VNC specifying port 80 and 5091: Just closes the connection over and over.
Posting update for @upbeat quarry

Thanks for the update
I have just used my Kali to connect with remmina/RDP to THM AttackBox: it works the same as you
See screenshot for weird observation:

• on the left: Kali, where I have opened a terminal window and Firefox window
• on the right: the in-browser AttackBox, with no Firefox opened!
  In both cases, I have logged in as root, but is like there are 2 sessions in parallel

Gave +1 Rep to @modest hazel (current: #1486 - 2)

I've found that SSH just into the terminal line is the least laggy.

Not too much lag at all actually

And right now I don't actually need a GUI

I SSH using Remmina in Linux

I think this will be the solution for me going forward until I need a GUI

(do you actually need a GUI?)

several rooms, like in the Threat Intelligence module, ask you to use frameworks on web sites displaying dashboards full of info
also, some other Windows-related rooms are GUI-based
but for all of these, usually in my experience, they give you RDP creds for diret access to the target machines

I forgot I can just ssh into it using the terminal

But can I double ssh?

ssh into the target machine while ssh into the atackbox lol

#site-support message

once you are in as root via your first session, you can create more users for addtional ssh sessions I guess

lol it actually works I am double ssh'd

at this point, why not considering using the VPN?

Can't.

I can't connect to the vpn due to issues create by the government of the country I live in (I'm not sure how much I can say due to discord rules)

but double ssh'ing works

@upbeat quarry I just successfully connected to the attack box in Remmina using the VNC protocol appending :1 to the end of the ip address.

I saw above in that conversation that Scrubz linked people were talking about port 5091 also being called 1

Yeah, Ben maintains the attackbox

thanks for the heads-up
I'll experiment with that then

Gave +1 Rep to @modest hazel (current: #1119 - 3)

Is a VNC connection limited to a small windows size? I don't see an option to specify the resolution like with RDP

tbh I think I'm just going to do the SSH x2 method. It's the fastest.

Reminna should hav a full screen button

Here's a question though. If I'm SSH'd into Attackbox that is SSH'd into the target, and I run an SCP to get a file. Who's machine will the file go to?

that is the ugly effect of the button to do dynamic resolution update with remmina

if you copy files from one folder to another is the same as scp over ssh you just add the ip and the path

Ok apparently the ssh connection will just randomly close on you?

It looks ok for me every time I do it

Attackbox

is there inactivity time out? I went to check the oven lol

I found a very minor issue with the text styling in one of the courses, do I post it here or shall I email it elsewhere? (it's the HTML inline styling)

If it's superscript etc it will probably already be flagged, however #room-bugs

Hello, I am totally new to TryHackme, so I want to know how to connect koth server to my machine

@weary spindle can you help

Connect to the VPN

@naive dust

Hello, have a question regarding my account. I previously created my first account with my student email, and made pretty good progress through some of the learning paths. TL;DR I was using a student account, but now my school has moved their email services to O365, and they removed my student email since i graduated in 2021, and I have lost access to this account.
Is there any way to get my data transferred over to my new account so I don't lose all of my progress?

How old is the new account?

stand by

I've connected with my kali machine

using openvpn

Then there you go.

Just interact with the IP as you normally would.

I cant seem to find a date in my account/profile info, but it has to be a few years old at least. I created this account originally, and then a transitioned to the student for the discount.

So you created two accounts?

I stopped using the commercial account, when I got a student one.

You can't transfer progress progress between accounts, you could have changed your email to the student email.

If it's easier you can log in to your student account with your username, and change the E-mail to a different email

Thanks for the support!

Gave +1 Rep to @weary spindle (current: #1 - 2818)

lol I just realized I have my old account in my Discord profile.

ssh: connect to host 10.23.21.7 port 22: Connection refused

What should i do

to fix that

Is ash open?

Ssh

If you want that changed to a different your other account DM me your token and name (of old account)

Are you referring to the discord token in the account details? I do not see any other type of token.

Finally got connected

now asking for password kali@10.23.21.7's password:

whats the password

@weary spindle how to get the passwordd

Correct.

please advise how to correct the ugly effect I get

Is it netural, the thm vm is very laggy for me

but expect that thm vm everything working fine

Depends™️

like?

What you're doing, how you're connected.

any mods here

need a quick help

@weary spindle

Ya?

apologies for bothering

thm vpn connection error

couldnt connect

TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
2024-09-27 21:42:51 TLS Error: TLS handshake failed

Which server, country and OS?

tried every soution

linux, us east

tried to rdownload the config file for in regular but gave me a 500 status code

so switched to us east

openvpn version 2.6.12

And what country are you in?

india

Hmm that shouldn't be the problem then - is it possible your local network is blocking the connection? Or perhaps you have unstable internet? That error indicates something failed on your side

TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
2024-09-27 22:10:02 TLS Error: TLS handshake failed

i can browse yt in vm

Yeah I already saw the error that you posted above - did you try a different VPN server?

yea

au ,us

etc

same error

might as well reinstall vm then

I mean, do what you want but I don't think that's the issue here

yea

trying all solutions

Are you running another VPN either on the VM or your host at the same time that could cause issues?

it says thers a issue with open vpn version

nope

can i change the site language ?

Only via browser plugins.

nmap is not working only for tryhacckme rooms

@weary spindle give me one 🤡

I tried scanning default ports one by one and it is giving me details but when I do multiple port scan it says - "all scanned ports are in ignored state".

What's with the clown emoji?

can you give me one please

i sent it by mistake

qsorry please

I don't know any.

My primary language is English

Even if you did change the language, the answers are still in English.

yes i know that, but i can't understand all things in english

because my primary language is arabic

anyway, thanks helping me

Hello, I got this error, but they also charged me but I don't have a subscription.? "The authorized amount $14 is less than collectable amount $16.80"

which flags do you use and which ports are you scanning?

Guys, where can I get more streak freezes?

You meant aside from reaching certain streaks (e.g., 30 days, 90 days, etc.)? It could be a prize when THM has an event, but its not something that is always available when needed.

Oh, ok. But they should give out more streaks though

If you reach out to THM Support, they would gladly restore your streak for you.

I'm not sure if there is a limit on the number of times they would though.

Fr?

Uhm... yeah? It's been a while since they've been doing it.

🥲🙏👍

Damn! The streaks I've lost... You think I might be able to recover them?

To my understanding, they can only restore the most recent streak you lost.

I solved the issue, it was the openvpn not working correctly.

hello, have dark mode option in tryhackme?

soon™️ otherwise use darkreader extension

hello i need help with payment methods
i need to update my card details but i dont see any options to update i only have two options
Switch to annual subscription and cancel subscription

bro why that ovpn aint working

i try to run in my terminal it then

and when i click connect to see if its connected in the access site

it does nothing

;-;

Show us the output please
And what do you mean by "does nothing"?

i am unable to buy the voucher in thm

2024-09-28 13:52:13 WARNING: Compression for receiving enabled. Compression has been used in the past to break encryption. Sent packets are not compressed unless "allow-compression yes" is also set.
2024-09-28 13:52:13 Note: --cipher is not set. OpenVPN versions before 2.5 defaulted to BF-CBC as fallback when cipher negotiation failed in this case. If you need this fallback please add '--data-ciphers-fallback BF-CBC' to your configuration and/or add BF-CBC to --data-ciphers.
2024-09-28 13:52:13 Note: '--allow-compression' is not set to 'no', disabling data channel offload.
2024-09-28 13:52:13 OpenVPN 2.6.12 x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] [DCO]
2024-09-28 13:52:13 library versions: OpenSSL 3.2.2-dev , LZO 2.10
2024-09-28 13:52:13 DCO version: N/A
2024-09-28 13:52:13 TCP/UDP: Preserving recently used remote address: [AF_INET]3.7.33.194:1194
2024-09-28 13:52:13 Socket Buffers: R=[212992->212992] S=[212992->212992]
2024-09-28 13:52:13 UDPv4 link local: (not bound)
2024-09-28 13:52:13 UDPv4 link remote: [AF_INET]3.7.33.194:1194
2024-09-28 13:52:13 TLS: Initial packet from [AF_INET]3.7.33.194:1194, sid=bcef281f 5ef8b629
2024-09-28 13:52:13 VERIFY OK: depth=1, CN=ChangeMe
2024-09-28 13:52:13 VERIFY KU OK
2024-09-28 13:52:13 Validating certificate extended key usage
2024-09-28 13:52:13 ++ Certificate has EKU (str) TLS Web Server Authentication, expects TLS Web Server Authentication
2024-09-28 13:52:13 VERIFY EKU OK
2024-09-28 13:52:13 VERIFY OK: depth=0, CN=server
2024-09-28 13:52:13 Control Channel: TLSv1.3, cipher TLSv1.3 TLS_AES_256_GCM_SHA384, peer certificate: 2048 bits RSA, signature: RSA-SHA256, peer temporary key: 253 bits X25519

2024-09-28 13:52:13 [server] Peer Connection Initiated with [AF_INET]3.7.33.194:1194
2024-09-28 13:52:13 TLS: move_session: dest=TM_ACTIVE src=TM_INITIAL reinit_src=1
2024-09-28 13:52:13 TLS: tls_multi_process: initial untrusted session promoted to trusted
2024-09-28 13:52:13 PUSH: Received control message: 'PUSH_REPLY,route 10.10.0.0 255.255.0.0,route-metric 1000,route-gateway 10.17.0.1,topology subnet,ping 5,ping-restart 120,ifconfig 10.17.29.239 255.255.128.0,peer-id 27,cipher AES-256-CBC'
2024-09-28 13:52:13 OPTIONS IMPORT: --ifconfig/up options modified
2024-09-28 13:52:13 OPTIONS IMPORT: route options modified
2024-09-28 13:52:13 OPTIONS IMPORT: route-related options modified
2024-09-28 13:52:13 net_route_v4_best_gw query: dst 0.0.0.0
2024-09-28 13:52:13 net_route_v4_best_gw result: via 10.0.2.1 dev eth0
2024-09-28 13:52:13 ROUTE_GATEWAY 10.0.2.1/255.255.255.0 IFACE=eth0 HWADDR=08:00:27:d2:26:79
2024-09-28 13:52:13 TUN/TAP device tun1 opened
2024-09-28 13:52:13 net_iface_mtu_set: mtu 1500 for tun1
2024-09-28 13:52:13 net_iface_up: set tun1 up
2024-09-28 13:52:13 net_addr_v4_add: 10.17.29.239/17 dev tun1
2024-09-28 13:52:13 net_route_v4_add: 10.10.0.0/16 via 10.17.0.1 dev [NULL] table 0 metric 1000
2024-09-28 13:52:13 sitnl_send: rtnl: generic error (-17): File exists
2024-09-28 13:52:13 NOTE: Linux route add command failed because route exists
2024-09-28 13:52:13 Initialization Sequence Completed
2024-09-28 13:52:13 Data Channel: cipher 'AES-256-CBC', auth 'SHA512', peer-id: 27, compression: 'lzo'
2024-09-28 13:52:13 Timers: ping 5, ping-restart 120
2024-09-28 13:52:13 Protocol options: explicit-exit-notify 3

this is what it says

and like when i go to access page and click refresh it doesnt tell if im connected

despite being running it on my terminal

thx for the quick response

Ignore acces page.

Seems like you are connected. Try curl 10.10.10.10/whoami in a new terminal, and if you get an IP address in response you are connected.

aight

it says kali

No.

it does bro

curl didnt work

the whole thing...

i can share ss but not in this chat ig

curl 10.10.10.10/whoami ? this command?

Yes

oh ok

wait let me try

no response bro ;-;

it aint working if i try that

For ss you will have to verify first.

@desert thistle

ok

You still have the terminal with openvpn open?

yeah

ok im verified now

─$ curl 10.10.10.10/whoami
curl: (28) Failed to connect to 10.10.10.10 port 80 after 134138 ms: Couldn't connect to server

Ok can you share ss of the openvpn terminal?

if your openvpn not working try again downloading new one, I had the same issue yesterday.

just did that

oh

check now

This one seems to be connected 🤔

ikr

but when did try curl it says nothing

do u know ? what seems the issue

Not sure. Try to close it all and try again.

bru

it never worked in my vm idky

im using IN config

should i try EU?

If your gonna regenerate config file male sure to wait 3 minutes before you download it.

ok

thx for yr help btw 🙂

ayo bro it worked

Awesome.

one more thing

now to connect to this room

i need type

ssh damainhall@<IP> ??

It's an option.

like is that command correct?

Yup.

bro i finally did

nice :)))))))))))

which room or where did u get get the password, im stucked at password from yesterday

ur time to help me

googling for tryhackme damianhall Logs321! brings you to Task 2 of https://tryhackme.com/r/room/introtologs

You have multiple instances of the VPN running at once
You can tell because it says "tun1" instead of "tun0"

what I mean is this

The authenticity of host '10.23.21.156 (10.23.21.156)' can't be established.
ED25519 key fingerprint is SHA256:K+1+OiwPLaszvBNIPSS/j144cyKQ0RBufkcQGa6u5t0.
This host key is known by the following other names/addresses:
    ~/.ssh/known_hosts:1: [hashed name]
    ~/.ssh/known_hosts:4: [hashed name]
    ~/.ssh/known_hosts:8: [hashed name]
    ~/.ssh/known_hosts:9: [hashed name]
Are you sure you want to continue connecting (yes/no/[fingerprint])? yes
Warning: Permanently added '10.23.21.156' (ED25519) to the list of known hosts.
kali@10.23.21.156's password: 
Permission denied, please try again.
kali@10.23.21.156's password: 

when i run ssh the ip to connect it asks for password now where do i found the password

also, im running the ovpn

iam just trying to connect with the access confg file not

any room

still asking for password

what to do

maybe we need to establish first that you are well connected to THM VPN
can you show the output of this command, that you run in a terminal window: curl http://10.10.10.10/whoami
please post the output of that command, possibly via as screenshot, like for me now

You are not specifying a user.

It will then use the username that you are using on your vm, which is Kali. This is most likely not the username for the target machine.

okok bro i fixed it

thx for the help anyways

its for intro to logs

Hi, i dont know why but i cannot curl webservers on port 80 via my openvpn setup:

• i can ping the machine
• i can curl http://10.10.10.10/whoami and get a valid ip address

But if i start the k2 machine im not able to get a response by the webserver -- on attack machine its working

@vagrant flame

check the link for troubleshooting in the message above
you may have a case where you need to adapt the mtu value
it would be more comfortable if you would troubleshoot this with another target machine than k2, which cannot be discussed in depth for 72 hours following its release last Friday (#1289302279283015730 message)

what does it has to do with tyhackme?

@timid talon

Done!

specailly thanks to @upbeat quarry & @timid talon ❤️

Gave +1 Rep to @upbeat quarry (current: #43 - 185)

now where do i get the password of koth ip

I have never played KotH
my understanding is that you are in a competition to compromise a machine, getting root and keeping others from ejecting you as root
in that context, I do not think you are given credentials: you either discover them or you bypass the need for credentials to get initial access

@halcyon jetty you're in the recording 👀
can you provide a guideline or smth im new in thm. a guideline about koth

also where do i get the password or wot

BTW, in case you are not aware, there is a channel dedicated to KotH: #koth

Thank you

Gave +1 Rep to @pastel tinsel (current: #7 - 885)

Hi I think there is a bug in the phishingemails4gkxh room
Task 6 question 2 the answer doesn’t work

Can you link the room?

hola! estoy teniendo problemas con la respuesta de "introduccion ala seguridad ofensiva, no toma ninguna respuesta, esta trabado

Hello! welcome to the server, we use English in this server only.

Hi! I'm having problems with the response of "introduction to offensive security", it doesn't take any response, it's stuck

Which part? 😄

literally the first question about defensive or offensive security

One of them is the correct answer.

(All answers must be written in English).

aaaah I didn't know, I'm so sorry, I thought it was a mistake on the page haha, I was writing in Spanish

https://tryhackme.com/r/room/phishingemails4gkxh

Yo guys i'm almost done with the Jr Penetration Tester path but i faced a problem in this section : Jr Penetration Tester > Network Security > Nmap Post Port Scans > Task 4 , once i wanted to write the answers they kept displaying that my answers aren't correct but i fact they are correct since i got them by solving the machine , so plz Help ASAP!!!!!

Please don't mulipost accross multiple channels.

hello guys , I am having problem with my voucher , when I try to redeem it nothing happens it just like refreshes the page. Did anyone face the same issue ? is the website broken rn or what ?

lol thanks it was the mtu 😄

Gave +1 Rep to @upbeat quarry (current: #43 - 186)

I am try buy premium but card keep declining i have tried 6 7 card, also try to buy voucher but it keep give me error declining the amount is been detected but it get back

And i have also try to contact the support but got no response

Im getting a VM Parsing Error when trying to start rooms. Can someone help me?

Sorry for the multipost, I just remembered this channel

Additionally my streak went away even though I did do about 9 questions yesterday

Ctrl and F5

Support don't work on weekends

worked, thank you so much!

Gave +1 Rep to @weary spindle (current: #1 - 2824)

I'll remember that next time

Hello I would like to learn hacks, how to learn

#start-here

what is the format for answering question on the tryhackme site cos it been 20 mins and im still on 1 question that i clearly know the answer too but it keeps failing it

You can see the rough format by looking at the *'s on the answer field, each one represents a character - what question are you stuck on?

do rooms regarding the main paths get updated overtime or do they simply get replaced?

@cerulean oracle Sometimes they're updated, sometimes they're replaced

Interesting. Only asking cause from what I’ve seen in the complete beginner path there’s some stuff that could def be updated

Hello,

I emailed support and opened a ticket regarding a subscription problem I encountered, but no response.

If anyone from tryhackme can help, my ticket number #34715 and my username, elitte.

Hi, accounts and subscription are only dealt with via email.

To add on what @weary spindle has mentioned, please be patient and wait for THM Support's reply before sending another email to avoid sending your ticket down the queue @solemn umbra

Hello, I don't know why I keep getting "instant termination" while trying to use the virtual machine in a split-view

Hi THM support. This is regarding ticket #34900. The breaching AD room, the ntlmauth.za.tryhackme.com is always down. Can you please assist? thank you in advance.

Look at the #breaching-ad look at the pinned posts

is support available here for voucher issues ?

Only via E-mail.

Thank you

Hello, is the support team back from retreat?

my payment for subscription is still stuck, ticket number: 33791

Tickets will be dealt with in order, they won't be answered on Discord.

Hello, i have a problem with paiement and voucher purchase... it takes money away and doesnt refund on the account and declines and paiement on the THM page.

Does anyone encoutered problems with purchasing vouchers ?

You're probably going to need to talk to support@tryhackme.com for payment related issues

GUYS I CANT START THE ATTACK BOX

IT SAYS I DONT HAVE ACCESS TO THAT ROOM

Do you need to shout?

Take a screenshot and show us.

ok

i joined the room

bro please help

i need to do this room

did u refresh?

yes

Which room are you in?

its the

opacity room

its giving me this for every room bro

my subsciption is on pause also

if thats whats causing it

Possbily well could be,

You'll need to contact support.

i'll just connect through personal vm

whatever

Enjoy!

sure

Anyone having issues with the east VPN hanging?
I picked up a fresh config from the site and still no luck for the east coast, but I can connect to the West coast no problem - Maybe my ISP blocking the IP?

┌──(*USER*㉿*SYSTEM*-[~/Desktop/THM/VPN]
└─$ sudo openvpn *USER*.ovpn 
[sudo] password for *USER*: 
2024-09-30 13:42:35 DEPRECATED OPTION: --cipher set to 'AES-256-CBC' but missing in --data-ciphers (AES-256-GCM:AES-128-GCM:CHACHA20-POLY1305). OpenVPN ignores --cipher for cipher negotiations. 
2024-09-30 13:42:35 Note: Kernel support for ovpn-dco missing, disabling data channel offload.
2024-09-30 13:42:35 OpenVPN 2.6.12 x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] [DCO]
2024-09-30 13:42:35 library versions: OpenSSL 3.3.2 3 Sep 2024, LZO 2.10
2024-09-30 13:42:35 DCO version: N/A
2024-09-30 13:42:35 TCP/UDP: Preserving recently used remote address: [AF_INET]52.4.198.155:1194
2024-09-30 13:42:35 Socket Buffers: R=[212992->212992] S=[212992->212992]
2024-09-30 13:42:35 UDPv4 link local: (not bound)
2024-09-30 13:42:35 UDPv4 link remote: [AF_INET]52.4.198.155:1194
2024-09-30 13:43:35 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
2024-09-30 13:43:35 TLS Error: TLS handshake failed
2024-09-30 13:43:35 SIGUSR1[soft,tls-error] received, process restarting
2024-09-30 13:43:35 Restart pause, 1 second(s)
2024-09-30 13:43:36 TCP/UDP: Preserving recently used remote address: [AF_INET]52.4.198.155:1194
2024-09-30 13:43:36 Socket Buffers: R=[212992->212992] S=[212992->212992]
2024-09-30 13:43:36 UDPv4 link local: (not bound)
2024-09-30 13:43:36 UDPv4 link remote: [AF_INET]52.4.198.155:1194
2024-09-30 13:44:36 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
2024-09-30 13:44:36 TLS Error: TLS handshake failed

Which OS, server and country do you live in?

Debian, East Coast, US

FYSA I am running a bare metal install, so no VM shenanigans.

quick question which i mailed but it may be answered here too so taking my chances
i applied for student discount and they wanted me to update my card details (already premium user) so do i need to cancel my subscription then i will get to change the details? because i don't see any option related to payment

Quite possibly, however the E-mail should give better and direct advice.

okay thank you

Gave +1 Rep to @weary spindle (current: #1 - 2828)

what time does the streak end? I 100% did a question last night around 10:00 CST but it says I did it today and now I lost my streak

^ I'd give that a read

I was within all those guidelines

Whelp then I dunno, streaks are based on your local time (or the time for whatever country your account is set to) and should reset at midnight

thank you! im brand new and i was like "am i actually so bad at this that i cant do this simple thing"

Gave +1 Rep to @weary spindle (current: #1 - 2831)

How long was your streak thus far before it reset? If it was more than 7 days, I think THM Support might be able to restore it for you if you drop them an email.

@spark berry

What are rooms specific for learning pwn in tryhackme ??????

Help me with the names for those rooms please ...for learning pwn

accessing to THM site suddenly become very very slow. Does anyone from Australia get the same issue? can visit other websites pretty quick so not my internet or browser problem.

taking ages to open a room.

and the room content just not display

forcing me to stop study early today...

Hi Qin, had similar, seems like someone had to give the webservers a nudge and things just picked up again.

As per the documentation, the web based attack box should be able to ping the DC but this is not the case with me. Please guide.

https://tryhackme.com/r/room/lateralmovementandpivoting

I am getting Destination Host Unreachable

first, make sure you start the AttackBox from the page of the network
then check if you have a network adapter called lateralmovement, like in my screenshot If not, run the VPN file for that network
confirm the network is in the state of Running
if you have the interface, and ping does not work, you could vote to reset the network
Otherwise, I would suggest you leave the network, and join back a few minutes later so that you are assigned to a different subnet

Hey i wanted to know if i can do the Lateral Movement and Pivoting room if i have 2 streaks days

trying to start my attackbox, getting this error

the kali box works, but the attackbox did not. Oh well

#site-support message

#site-support message

ty

Gave +1 Rep to @upbeat quarry (current: #42 - 191)

Did the "Go Premium" rates just change? It indicates $14.00 /month USD and is $11.67 USD at billing.

There seems to be an issue with updating the Kali VM. Tried updating on my other Kali box and had no problem updating, so doesn't look like it's a global issue.

I just ran a sudo apt update on my (not THM) kali system and got the error above

Yeah, actually looks like it's a problem with the package on kali.download/kali. I changed to /etc/apt/sources.list to use kali.mirror.rafal.ca/kali as a mirror and it worked

Another mirror that should work for anyone else: http://http.kali.org/kali

Edit: actually seems that second mirror is broken also

ah nice 🙂

I think you still pay for 9 months, so it works out 2 months free.

So the price is:

/ 9 if annual.
/ 12 if monthly

When I choose annually I do get the "Save 25%!" based on the $11.67 /month as it works out to $105.00 for the year. I am curious if the rates recently were reduced. The "Go Premium" page indicates $14.00 /month and $10.50 /month for the Annually option.

I think this might be a recent change.

Screenshot example.

I'm having a hard time trying to figure out task 8 in sql injection

Linux Kernel 3.13.0 < 3.19 (Ubuntu 12.04/14.04/14.10/15.04) - 'overlayfs' Local Privilege Escalation

im crazy or?

CVE:
2015-1328

doesnt seem to work

ignore the - was formatted incorrectly

check the number of stars in the answer field: I would think the answer starts with CVE and includes the - twice

Massive

Running into an issue starting the network for the https://tryhackme.com/r/room/cicdandbuildsecurity room. I've also been experiencing some slowness on the site from the start, just wondering how to get past the "Uh-no! Failed to start the network." error

Any problems being reported with ATTACKBOX mine keeps disconnecting

FETCH_ERROR when starting vm now

you seem to have encountered a problem similar to the one reported in this message, but for a different network: #room-help message
for that one, everything worked OK when I tried: I assumed it was an intermittent issue
so, I have just started the CI/CD network, and it worked for me using THM AttackBox: see screenshot
I would suggest you try again: possibly there was maintenance by THM on these networks; one way to troubleshoot is to leave the network via the options button and join back a few minutes later to land on a different subnet
I would also suggest you check #ci-cd-and-build-security :

• you will see many messages reporting issues over the past few weeks
• therefore, it is remarkable for me that this network worked at last

I can see I am connected using VPN in access page but when in a room it is showing i dont have access and attackbox is opening directly

sorry, but it is not clear what is not working
some rooms have the target opening on the right side of a Split View screen, a bit like THM AttackBox; for instance "Windows Fundamentals 1" (https://tryhackme.com/r/room/windowsfundamentals1xbx)

hi, I have small question if the 1 day streak freeze is "recoverable". If I have 250 streak and I used my 1 day streak freeze, it is restored on day 281 and I have it again or it is just one time at DAY 30?

hello all, i would like to change my pswd, but there is no such option in my account management. i log in with google account but if possible i would like to remove it and add a separate password. obviously without losing my current progress

@noble rover

You can't remove a Google account

你们好

English only please.

guys do you know any portforwarding tools aside from ngrok? It requires ur card info and I wouldn't like to share it, so I'd like to find one that is free and reliable. Thanks!

thanks

Gave +1 Rep to @west chasm (current: #98 - 75)

SUDO uid=33(www-data) gid=0(root) groups=0(root) How to obtain root privileges

SUDO uid=33(www-data) gid=0(root) groups=0(root) How to obtain root privileges

find / -perm -4000 2> /dev/null
/usr/bin/su
/usr/bin/chsh
/usr/bin/newgrp
/usr/bin/umount
/usr/bin/gpasswd
/usr/bin/chfn
/usr/bin/passwd
/usr/bin/mount

This isn't a chat for this channel.

where should I ask then?

#general

I set up a windows 11 machine for THM and it fails on all downloads. Any help? Have been using windows 10 for a year with THM.

Wait, what fails, are you trying to download from THM?

I just tried to download the configuration file for vpn today and the pop-up shows failed.

Ah, got you.

Change server, click the regen button, then change server back and click regen

Sorry, I don't understand

OK, thanks . I tried that and still get the same message

any other thoughts

i was wondering, if i am connected to the openvpn network can other users see my device?

check this: there is a section on "security tips"
https://help.tryhackme.com/en/articles/8991552-networks-explained-vpn-attackbox-and-security-tips

ty

this message is another version, more practice than theory, from an experienced user (@weary spindle)
#site-support message

it's good to know. i should probably not VPN in on my VM while at work and use attackbox instead. but the only service i'm ever hosting is msfdb which i should probably check my credentials on

The Machine isnt starting for some reason can somebody help?

Ctrl and F5

thanks

Gave +1 Rep to @weary spindle (current: #1 - 2835)

Hi guys, how are you? I wanted to know why my answer 'account is disabled' isn't being accepted. I'm not sure if I'm doing something wrong or if there's a bug. If anyone knows, I would appreciate it.

Did you type manually, or copy and paste?

manually

It's from Windows Fundamentals 1 in the section about User Accounts, Profiles, and Permissions.

Hello, my friend and I are attempting to add each other through the "add friends" feature found on the dashboard but when I try to add him, it states that the request was already sent. He doesn't see any friend requests on his profile. Could we get some assistance?

Check emails

do you get a streak freeze for every 7 days or is it just once

on a 90 day streak but i dont have time and i dont want to lose my streak

@potent cairn

check link above this message

hi all,
i am getting 500 Something went wrong error when i am downloading the openvpn file from Access can someone help me out to resolve this issue?

for which machine or network?
if it is for Wreath network , know that the network is not functional at the moment: #wreath-network message

yes for wreath netwok

too bad: as per that message I linked, you have to wait for the network to come back in service

Thanks @upbeat quarry this issue is only for wreath or is there any other network which also not accessible right now?

Gave +1 Rep to @upbeat quarry (current: #42 - 204)

from my experience, at this moment, Wreath is the only network having problems to the point it does not work
up today, I had problems with "Holo" and "CI/CD and Build Security", but a quick test today seems to indicate they are functional
the networks I have more experience with are the Active Directory networks, and they are all functional for me
I have no experience with "Bandit", and hardly with "Red Team capstone"
If you want formal answers I suggest you address your questions to THM support (check the THM cloud bubble on each THM web page)
also, read the messages in the channels dedicated to the networks (check screenshot), in particular the Pinned Messages

Thanks @upbeat quarry for describing this to me 😇

Gave +1 Rep to @upbeat quarry (current: #41 - 205)

thank you for your response. Still having the error, so I'll check out that channel again

Gave +1 Rep to @upbeat quarry (current: #39 - 209)

Anyone else having issues with Caldera? Pasting the Caldera commands into the Remote Desktop Powershell terminal is disabled for me. Not able progress beyond this setup stage

permission denied after i wrote the pass: let....

Did you read the error message? Its ignoring your key entirely because the correct perms aren't set for the file

i changed it to chmod 600

btw i knew the error it were a bad connection 🙂

idk how but it works after restarting my internet

I think I found a bug on the site. I notice that the "CompTIA Pentest+ path" is using https://tryhackme.com/r/room/burpsuitebasicsold (notice the old in the url) , there is already a room I already completed https://tryhackme.com/r/room/burpsuitebasics

there seems to be a duplicate there.

note: I already opened a ticket through the livechat on the website.

I just saw that a user named Sourav already reported this too on 03/09/2024

You could also put this in on the #room-bugs channel.

That would be the preferred channel by default. 😄

I thought it was changed ages ago, wonder if it defaulted back to old... @tawdry orbit

hello can anyone help me here? i just finish course in tryhackme then i print the certificate but my name was written wrong so i change then then i print again but is print the old name can u help me fix this issue please.Thanks

You can't change the name on the certifcate after it's been done.

Hello! I have OpenVPN config file, my OpenVPN connects me but I can ping 10.10.10.10 only for 1 second ... then I have no connection but OpenVPN does not write so. May be you can help me ?...

Also. When I nmap your server (EU-Reg-2) it says that port 1194, which is uses in config, is closed. Can you fix that?

Are you leaving the VPN open?

Yes. I leave

What does the VPN output say?

$ openvpn config.ovpn
2024-10-03 16:01:13 OPTIONS IMPORT: --ifconfig/up options modified
2024-10-03 16:01:13 OPTIONS IMPORT: route options modified
2024-10-03 16:01:13 OPTIONS IMPORT: route-related options modified
2024-10-03 16:01:13 Using peer cipher 'AES-256-CBC'
2024-10-03 16:01:13 net_route_v4_best_gw query: dst 0.0.0.0
2024-10-03 16:01:13 net_route_v4_best_gw result: via 192.168.0.1 dev wlan0
2024-10-03 16:01:13 ROUTE_GATEWAY 192.168.0.1/255.255.255.0 IFACE=wlan0 HWADDR=14:13:33:03:78:27
2024-10-03 16:01:13 TUN/TAP device tun0 opened
2024-10-03 16:01:13 net_iface_mtu_set: mtu 1500 for tun0
2024-10-03 16:01:13 net_iface_up: set tun0 up
2024-10-03 16:01:13 net_addr_v4_add: 10.9.195.48/16 dev tun0
2024-10-03 16:01:13 net_route_v4_add: 10.10.0.0/16 via 10.9.0.1 dev [NULL] table 0 metric 1000
2024-10-03 16:01:13 Initialization Sequence Completed
2024-10-03 16:01:13 Data Channel: cipher 'AES-256-CBC', auth 'SHA512', peer-id: 70, compression: 'stub'
2024-10-03 16:01:13 Timers: ping 5, ping-restart 120
2024-10-03 16:01:13 Protocol options: explicit-exit-notify 3

guys for real i tried everything and the machine still showing like that

what's the name of that rdp

it looks like it is remmina, an RDP client for Linux
it is available on THM AttackBox On Kali, you have to install it: apt install remmina

so i can connect my machine by that way?

yes

thx again mate i still remember u haha u helped me before

is that possible to connect from here?

you could, but that would be doing RDP from your Windows host: that will work
generally, it is not recommended to use your Windows host for your THM activities, although in this particular case you would be less at risk than connecting your Windows host to THM VPN
if you use remmina, start THM AttackBox, or your kali VM via THM VPN, and then type remmina: you will have small GUI where you would enter IP and creds
if you have time, use both
knowing remmina is a good asset

I have gone back to our messages of last Tuesday about the same issue: the target not displaying in the right pane
I have been wondering, do you have enough RAM on your PC? In the sense, do you have enough RAM allocated to your browser and not too many other things happening in your PC (what got me to think that way is that screenshot showing you had a game running too)
it would be interesting to see one day whether you have this issue when you start up your PC just with your browser navigating to THM
just an idea

I don't think their RAM would be an issue with this, network connection would be more important.