You're not in the same dir as file

Use cd / to go to base dir

File should be there, use ls -la to confirm

Or am I in the wrong machine or something?

Which room are you in ?

Linux fundamentals part 3

Seems like you're still using machine from Linux fundamentals part 2 room 🙂

Ah yes

Thankyou

Terminate that machine and start one in Linux fundamentals part 3 room

I guessed it

Hahaha

Yes, thank you

I will try

Hi, is it just me or the msfconsole works veery slow in attackbox. it launches fine but when i try "search" or use a module it freezes for 2-3min, really annoying. system resources seem to be topped up too, so is the only solution to connect via openvpn using my own machine?

Yes but you can also try to use searchsploit it's faster 🙂

yes, ive noticed searchsploit seems to work fine, thanks

Gave +1 Rep to @ember osprey (current: #2 - 2986)

Hello, I'm new to TryHackme and I'd like to know how to connect my machine, because I can't do anything if I don't have a connection? I'm on Windows

You can learn how to connect your machine on the link below 🙂
https://tryhackme.com/room/openvpn

I've already done it but it doesn't work

Try to use community edition of OpenVPN if you're on Windows

https://openvpn.net/community-downloads/

Hello, i'm doing the box called Thompson. ||I will try to do a reverse shell without using msvenom but i'm stuck at this. I have a WebShell the cmd.jsp give it by kali and it still work but i can't find a reverse shell in .jsp then upgrading it to .war nothing works... can you help to do this please ? ||

im having issues with this room https://tryhackme.com/room/remnuxgettingstarted not loading

any suggestions?

#room-help

Might be more suited for #room-help

In any case, did a quick Google search and found this - || https://github.com/ivan-sincek/java-reverse-tcp ||. You can try the .jar payload if it would work.

Hello! I am new to TryHackMe, in room OSASP Top10 I found I couldn't access the webApp in the Challenge. Can any nice friend help me with this?

How ? What's the problem 🙂 ?

I am trying to upload a screenshot but seems like discord doesnt like it lol

https://help.tryhackme.com/en/articles/6495858-discord-how-do-i-verify-my-tryhackme-account

You will have to verify first 🙂

Can you provide a room link 🙂 ?

https://tryhackme.com/room/owasptop102021

Go to Task 2 and press green Start machine button to start the machine . machine_ip placeholder will change to actual ip after few minutes 🙂

Thank you! That worked

Oh and how do I copy paste between the VM and my computer? I found the keyboards are bit different and normal command c/v doesn't work as I think.

@upbeat igloo You can use clipboard 🙂
https://cdn.discordapp.com/attachments/521771811768107008/1313628477307617401/clipboard.gif?ex=67a13edb&is=679fed5b&hm=e2aa0702207e5d5b6c9452adc6d086ec3bbf3e66dfa1d44360346516141f0dea&

wow thank you!

I am connected to openvpn but still the website for this challenge is taking too long to open

Try to run this cmd sudo ip link set dev tun0 mtu 1200

Thanks! It worked.

Gave +1 Rep to @ember osprey (current: #2 - 3007)

can anyone help me , i'm trying to connect to openvpn of tryhackme but it doesn't work idk , i noticed that the file on kali is red and has a lock in it , how can i get it into normal ?

Delete the file and re-download.

i did and it's still the same

Could just be it isn't linked to an app/tool

how is that ?

how do I change the country in my thm profile i cant seem to find it in the manage account section

https://help.tryhackme.com/en/articles/6611897-changing-your-country-s-flag

Check this article 🙂

Thanks!

Gave +1 Rep to @ember osprey (current: #2 - 3015)

it doesn't work

guys i have a vmware machine how do i run the ssh on it so i can solve the lap with out limits

You need to connect to the VPN.

is there one here ?

any recommendations

https://www.tryhackme.com/r/access

how do i set it up

what should i do after downloading the file

open it with vmware

or what

https://tryhackme.com/room/openvpn

trying to connect

i have tried 2 server files

What os is in Vmware?

🐧🐧

Linux

Kali

Then run the vpn in that os

Not WIndows.

Hello, I submitted a room many days ago.
I'm waiting for it to be published, do someone know how long does it takes ?
Or do I have to do something ?

There is a queue of rooms, you'll just need to wait patiently I'm afraid

Oh okey, thanks 🙂

Gave +1 Rep to @weary spindle (current: #1 - 3377)

hello, i've just finished a the cyber security 101 learning path certification, i'd like to know if i can change the pseudo on it ?

I don't think you can change name once cert is generated 😦

oh

bc i got my pseudo on it and not my name

I don't think it's possible . You may be try to reach out to support but I don't know if they can do anything 😦

ok thank you i'll try to reach out to them

They can't.

Done!

I completed the Trooper room but it only showing that 50% of the room is completed. what can I do to resolved this?

Try to leave the room and re-join

Ive tried that for like 2 weeks or so. Ive even went on to complete other courses

Try to report it in #site-bugs then 😦

I just did, I just got the hang of navigating the discord.

im getting NaN% when uploading a VM in the materials page

what do i do? I have encountered this before but i guess it automatically got resolved

I think this is a visual bug,

Cc @zealous yoke

Now im seeing 'Problem converting VM'

This URL needs update

Not bad but I was going there and it send me to not found

I mean I know where to find it

but still I thought it's worth mentioning

i'm in Persisting Active Directory, Task 2, trying to run mimikatz.exe as Administrator as per the instructions and after executing the command to run the exe, it just hangs, any thoughts on a solution other than resetting the room?

My friend when he keeps trying to use openvpn on tryhackme on parrot os full install he gets ping 128 instead of sequence completeled it ain't working for him

please upload screenshot of VPN startup output
use link coming below so you can verify with Discord before

what the heck

@green tree what are you doing here lmao

@green tree

it's me btw @upbeat quarry

I need help with issue in tryhackme discord

can you upload screenshot as per msg: #site-support message ?

ok

screenshotofwhat?

@upbeat quarry

upload screenshot of VPN startup output, as I understand you are the one having an issue?

yea, so I ping it or what

oh

nvm

ok wait a sec

@upbeat quarry

I can' send pictures

@upbeat quarry are your dms open?

use this link to verify with Discord, then you can upload screenshots, hence no need for DMs:
https://help.tryhackme.com/en/articles/6495858-discord-how-do-i-verify-my-tryhackme-account

@upbeat quarry here

did you mean this?

vpn work well

what is the problem?

yea IK, and when I connect to the website, it keeps loading an infinite ammount of time

cannot see a screenshot 🙃

yea cause I deleted it

wait

please share a screenshot similar to mine so we can compare what goes wrong on your side

it had my ip the screenshot

wait

what is the issue?

does it need to looks the same?

cause here is what mine looks like

that message is meant for another user, having a different problem (mimikatz in other room), hence please ignore that 🙃

oh

nvm, here is what it shows

so the vpn is working but the page won't load

what is that .xcf format? can you just not upload a .jpg ?

you frensh?

I did

png one

our message crossed each other , no sweat 🙃

no

ok cause I saw some frensh in your terminal

so

how can I solve it?

the line I underlined in your screenshot shows that you are connected to THM VPN

yea but it doesn't work

can you ping 10.10.10.10 ?

see

first, can you ping 10.10.10.10?

it says PING 10.10.10.10 (10.10.10.10) 56(84) bytes of data.

but nothing anymore

it show as a non finished task

as if the computer was still doing something

change the server

like it doesn't give me the permission to write

can you ping anything at all, like 8.8.8.8?

the tun0 mtu 1500 is too high, and packets are fragmenting - thats why room html pages are failing

for a ping? 84 bytes of data?

PING 8.8.8.8 (8.8.8.8) 56(84) bytes of data. 64 bytes from 8.8.8.8: icmp_seq=1 ttl=116 time=39.2 ms 64 bytes from 8.8.8.8: icmp_seq=2 ttl=116 time=26.9 ms 64 bytes from 8.8.8.8: icmp_seq=3 ttl=116 time=27.8 ms 64 bytes from 8.8.8.8: icmp_seq=4 ttl=116 time=27.7 ms 64 bytes from 8.8.8.8: icmp_seq=5 ttl=116 time=27.6 ms 64 bytes from 8.8.8.8: icmp_seq=6 ttl=116 time=26.9 ms 64 bytes from 8.8.8.8: icmp_seq=7 ttl=116 time=28.0 ms 64 bytes from 8.8.8.8: icmp_seq=8 ttl=116 time=27.1 ms

well yea it workes

thats not on the VPN network

he told me 8.8.8.8?

ping 10.10.10.10

I already pinged 10.10.10.10 and it givees me this

check answer before: #site-support message

and nothing

ifconfig or ip addr or ip a output?

it's ip a for me

do you have more output coming in your VPN start up after what you showed, like it is restarting maybe?

you want the output?

I redo the command?

I want to know if your VPN is stable: if you have more output, maybe your VPN is unstable and restarting?

no, have you kept the terminal open after the VPN finished initializing?

when trying to open the website? yes

this tab should be always run

colse it when finish

VPN interface is on tun3 and not tun0

It looks like you may have multiple VPNs open perhaps? Looking at that output it says trying to set up tun3

wait lemme see

sudo killall openvpn ?

this,..

in fact there is tun3, but how lol

if so,how do I delete it

when you killed previous VPNs instances, did you do Ctrl-Z or Ctrl-C?

I didn't kill nothing

it sounds like they're just pressing X

use this and consider open only one vpn session

yes

but you restarted your VPN, right?

and leave it open, put it in the background

yes

how?

I kioled now all

I now only have lo and wlp3s0

am I not supposed to do it

?

good, start from this clean sheet, and then show ip a | grep tun

you want me to show my ip a output?

you can see running process by using ps aux | grep openvpn

after you redid the VPN start up sequence

her is what I got

fernando 152819 0.0 0.0 6332 2180 pts/10 S+ 23:46 0:00 grep --color=auto openvpn
fernando is a fake name I use lol

wait I;m still a beginner, what you mean "after you redid VPN start up sequence"

That's fine, that's the command you just ran.

Do the sudo openvpn <your_config_file> again (just once)

Then leave that cmd window open, then try pinging 10.10.10.10 again
EDIT: In a new cmd window

ok

FINALLY

I get responses from the ping

now let's see if it's working

YEAAAAAAAAAA

Thank you guys a lot, it's been a day and a half that I was stuck in it😭 🙏

check this THM document for future issues with VPN: https://help.tryhackme.com/en/articles/6496058-troubleshooting-openvpn-on-linux-and-mac

so I got the problem becauuse I use to kill the machine and vpn using the "closing" X button?

very likely

how am I suposed to close it then?

Use Ctrl+C To cancel (most) comands in the terminal

ok thank you

Ctrl+X also works for some, Ctrl+D if that doesn't work. Depends on the app

I can finally play ctf again, thank you guys

yes, you had multiple instances of the openvpn running. you can check ip a to confirm you should only have a tun0

Bonus tip: Ctrl+L to clear the screen (even works in metasploit)

in terminal there are process running either in foreground (as you see in terminal) or background (you don't see directly), read more about jobs, fg, bg, ps

what?

oh you want me to read about those?

yes

useful to pick up some experience with these commands, in your journey, but you can carry on with what you know

I'll surelly take a look at them

https://tryhackme.com/room/introtoshells
https://tryhackme.com/room/shellsoverview

These 2 rooms go deeper into shells + what they are and what they're for. Deffo worth reading up on because you will run into this kinda stuff on almost every CTF you do. They explain a few of those concepts (jobs,fb,bg) iirc.

But if you start doing those rooms and it all looks like gibberish then you might wanna do some of the Linux fundamentals beforehand.

I just finished networking and ome subnetting course

and now I am currently following the free walkthought of tryhackme

so do I need to finish it before reading that?

It's entirely up to you : ) Those are just 2 rooms I recommend before diving too deep into any CTFs. I'm pretty sure they are part of the standard pathways so you'll likely do them if you're following along with one of those

If you're unfamiliar with shells / working within the terminal anyway

oh okay, if they are in the default path why not, and why not doing them even outside that path

shell is the terminal right

and a question, reverse shell exploit mean taking control of the computer of the target without hijm knwing

Kinda, but not just that. Those rooms will explain more 🙂

Reverse shell ins't an exploit perse, it's more something an exploint may allow you to achieve.

Reverse shell just means the victim connects back to you, instead of you connecting to them.

oooooh

those talks about reverse shell?

Yes and more

discover interesting linux world

oooh they are premium, I have free account

np

I get the ressources from somewhere else

the name of a course?

You could start here? Idk if this is premium only sorry 😛 https://tryhackme.com/room/linuxfundamentalspart1

it's free and I already did it

just a min

only part1 free

Social Engineering is the term used to describe any cyberattack where a human (rather than a computer) is the target; for this reason, it is sometimes referred to as "People Hacking". For example, if an attacker wishes to obtain a victim's password, they could attempt to guess or brute-force the password — or they could simply ask you.

"ASK YOU"

lmao what

i figured it out, go into the win32 folder instead of the x64 and use that mimikatz

Does anyone know if it's possible to regenerate the certificate when you received one? When I created my tryhackme account i did not include it in the first place

As far as I’ve seen it is not possible. The only possibility would be to contact support, but even then I think I’ve heard it’s not really an option

Okay, thanks. I think I will try that

I don't think it is 😦

Can you provide a screenshot 🙂 ?

You can report it in #site-bugs channel 🙂

Hello, Who can I reach out with regards to Buying a Voucher exchange rate inquiry?

Try to reach out to support on the mail below 🙂

Thanks

Gave +1 Rep to @ember osprey (current: #2 - 3045)

@ember osprey I am still looking for streaks

Staff doesn't work on weekends. It's Monday today so expect an answer in the next few days 🙂

They can't change it.

When im trying to upload a VM im getting "Problem conveting VM". Can someone help with this please?

I think it's a temporary bug , it was already repirted a few times recently 😦

Im setting a CTF for educational purposes with a nearing deadline. Do you have any idea when will it be resolved?

you can do that, but then you will have the x86 version of mimikatz instead of the x64 version (maybe that does not matter here though), as per screenshot

Sorry but i don't know when 😦 . Try to report it in #site-bugs .

alright thanks!

Gave +1 Rep to @ember osprey (current: #2 - 3052)

guys i am currently solvin a hashing task and it tells me to use john the ripper where can i find that

Just type john in terminal 🙂

it comes with kali

is it operating after just typing that

the prog

No, you need to give it a hash/file and a wordlist with a rule.

here is a tutorial for john, covers almost everything https://www.freecodecamp.org/news/crack-passwords-using-john-the-ripper-pentesting-tutorial/

john <hash-file> --wordlist=<wordlist>

You maybe also need to specify a format if john can't detect it automatically

when not sure about the hashing type, you can use https://hashes.com/en/tools/hash_identifier or locally with https://github.com/blackploit/hash-identifier

who do i upload the task file hash.txt to my website machine

it tells me to download a file but it is downloading at my pc not the vm

Which machine are you refering to?

THM

You're using the Attackbox?

yes

Then you'll need to copy and paste.

the thing is when i am trying to do hashing command it tells me to write the path of the hash file

Yes

You need to create a new file on the Attackbox and put the hash in there.

A good way to do this is

echo -n "THEHASHHERE" > hash.txt

Swap ou tthe "THEHASHHERE for the actual hash

And keep in the " "

how to get the wordlists

locate rockyou.txt

It's already on the Attackbox, I can't remember where.

why it did not appear when tried the find command

What did try?

find rockyou.txt ?

no it worked thx

they are usually in /usr/share/wordlists/

i think the site is bugged since they updated the answer submit, it just won't let me submit this. the room is windows privilege escalation task 7

when i try to type _ it just auto removes aswell

for the flag

Try to report it in #site-bugs 😦

Need Help ASAP, someone is messing with my VM, im using the split screen function and someone has somehow accessed it

Is this a known bug

?

hello, i can not activate my student discount for the subscription, any ideas on why or how to do it?

Try to reach out to support on the mail below 🙂

thank you

Are you buying monthly or annual?

It didn’t matter. Worked as intended once I used the other version

I didn’t take one. I ended up trying the open the one in the win32 folder. Worked fine

Oh , even better 🙂 , keep up the good work 🙂

hello, i'm trying to renew my premium subscription which is paused at the moment but when i press the "subscribe now" button from the /subscription page it takes me to the /why-subscribe page with a "resume subscription" button that loops back to the /subscription page

Ha thank you. These rooms are awesome. I’m new to cybersecurity, interested in penetesting

Gave +1 Rep to @ember osprey (current: #2 - 3059)

hello i need some help

Then let us know, how we may be able to help.

i want to start the network but getting some error i'll send you the ss

Please verify your account and send in here.

done

see

how can i solve this @weary spindle

Leave the room with options and rejoin in 15 mins

ok

done thanks man

hello i just paid the premium month subscription but still no access to premium feature what should i do ? i emailed the support but still no repsond i paid 2 days ago for a renew

Only support can help you with payment related issues 😦

damn

i already contacted them but no respond

for 2 days

It was weekend , they don't work on weekends .

ohhh i didn't know

so from monday to friday

Yes , they will reach out to you as soon as they can 🙂

alright thankss

I cannot access this link, I tried different web browsers but no luck. https://10-10-202-62.p.thmlabs.com/.

Press F5 to refresh the page 🙂

Works fine for me

I tried every way 🙂

504 Gateway Time-out
nginx/1.14.0 (Ubuntu)

Refresh the page

It won't update automatically

It worked for you but not for me.

I just found the problem. When I click on the link, it doesn't work. It works with copy and paste 🙂 @ember osprey thanks

Gave +1 Rep to @ember osprey (current: #2 - 3061)

Glad to hear that it works now 🙂

Try writing the whole flag and then manually adding an _ where needed:

THM{HAHAGETPWNED} ==> THM{HAHA_GET_PWNED}

do it manually

I did but it removed the _ automatically everytime i added it. The whole reason why i got the error was because i was apparently logged out but it said i was logged in, so after i refreshed the site THE SECOND TIME(eventhough i did that before posting here) i was just randomly logged out and could not log back in for 5 minutes even with the correct login details.

probably some rate limitting error

^^ for the error with not letting you log in

Hi there,
I dont know if I am on the right channel. But I can not join a room. I click on the join button and it doesn't work

how to filter rooms to show only blue team?

Is anyone else noticing the "questions answered this week" chart is refreshing every second? Started noticing this after the Safer Internet Day Sale banner...

How 🙂 ?

Yeah me too 🙂

Check out SOC paths 🙂
https://tryhackme.com/path/outline/soclevel1
https://tryhackme.com/path/outline/soclevel2

huh i thought i was buggin

Nah , many users reported the same 🙂

I dont see the safer internet day sale now did they remove it?

Shouldn't be , it should be active for two more days 🙂 . Maybe you clicked x on the banner 🙂

where can i see it?

could it be cause i'm subscribed?

You should still see it at the top of your home page

Maybe a dumb question, but I remember there use to be something called "series" on THM and they were like a collection of rooms you would do in order, but I can't seem to find them. Did THM get rid of them?

Yes , they're gone 😦

Go to your sub page it should be still visible there 🙂
https://tryhackme.com/manage-account/subscription

hmmm nope

maybe cuz im using a voucher?

Might only be for non-sub and Monthly sub.

Well yeah it may be that 😦

😦

Maybe you can try to reach out to support if you're interested

I thinkg the new approach to that are Learning Paths

splunk 201 poison ivy question still broken, i wonder if u can modify your request w burp to input the correct answer lol

i miss the old one where it was just underscores and no text limit

hi where can i find my streak freeze count?

hover over ur current streak, you'll be able to see how long your streak freeze lasts for

i have been unable to solve this task bc jtr and hash identifier is not installed an d it is not installing

i got TLS handshake error with the following message. OpenVPN version is 2.6.12 on kali linux

2025-02-11 02:22:45 Note: --cipher is not set. OpenVPN versions before 2.5 defaulted to BF-CBC as fallback when cipher negotiation failed in this case. If you need this fallback please add '--data-ciphers-fallback BF-CBC' to your configuration and/or add BF-CBC to --data-ciphers.
2025-02-11 02:22:45 Note: cipher 'AES-256-CBC' in --data-ciphers is not supported by ovpn-dco, disabling data channel offload.

if further detail needed , i could provide

Delete your old vpn file , change vpn server and download a new vpn file 🙂

fail ,the same error occurred

Are you running the command with sudo

no

Run openvpn command with sudo

can i have a private chat with you bro

Try to download and run troubleshooting script
https://github.com/tryhackme/openvpn-troubleshooting

[+] Re-running with root permissions
[+] Stable internet connection
[+] OpenVPN is installed
[-] tun0 interface does not exist
Would you like the script to attempt a connection automatically (Y/n)? y
[+] Connecting....
[Warning!] Connection process is taking longer than expected to complete
[-] Failed to connect
Failure to connect to the VPN can usually be solved by one of the following options:
-Regenerating your OpenVPN config on the TryHackMe access page (https://tryhackme.com/access)
-Switching servers, then regenerating your OpenVPN config
-Checking your system time. If your system time is incorrect then this can cause issues with the authentication process
If none of these methods work, please ask for further assistance in the TryHackMe Discord server, subreddit or forums.
[-] Exiting
3 methods mentioned above i have tried but failed

Which servers have you tried ?

EU regular 3 EU-VIP1 EU-VIP2

You must delete your old file before changing the server and wait 5min after changing the server and downloading a new file

Are you a premium user ?

yes

Try with us east server

problem persists

Try with eu 4 regular

problem solved. the tls blocked was caused by GFW

VPN rules should be added to the configuration to bypass the GFW

So everything is ok now 🙂 ?

yes thanks bro

Gave +1 Rep to @ember osprey (current: #2 - 3081)

Hi there. I hava a problem with my subscription. My automatic payment with my saved card details isn't accepted and it's due two days. I have tried with multiple cards but nothing is working? Is anything wrong?

Is there an ongoing update on the payments or something because there isn't a problem with my bank(s)

You will need to contact support for the payment related issues . You can reach out to them on the mail below 🙂

Thank you

Can you Join this room? https://tryhackme.com/room/adenumeration . I can not. I click on the join button and nothing happens. I want to subscribe. But I won't do it until it is fixed

Are you a premium user ?

No. But I don't get any messages.

Then you will need to have at least a current streak of 7 days to join that room

OK

Thank you becasue I did not what to do. Since there is no error

Just complete at least one task per day for 7 days and you will be good to go to join this room 🙂

I have seven day streak freeze also I done some question yesterday but today streak is reseted to zero.. Why?

have you got it fixed yet brother..?

didnt try yet

i'm stuck at it too

old answer format was better

You can ask staff to restore your streak

Hello, I can't login...

OS: arch linux
browser: librewolf-bin (from AUR)
browser console logs: the txt file

I click the log in button after the site loads and enter my creds and nothing happens.
Yes I tried to disable all browser extensions except for "Simple Tabs Groups" and "KDE integration".
Yes I did log in before on this browser and did challenge using it no problem.

oh forgot the browser version... it's 135.0-1

that task should go as a ssh or root as i am

would love to know how does the leaderboard ranking work, some have less rooms more points some have more rooms less points and high ranked, some have a lot of rooms with less points and are high rank

Each walkthrough question answered - 8 points
Each CTF question answered - 30 points
First bloods - 80 points
Different rooms carry different number of points

thank you

Gave +1 Rep to @ember osprey (current: #2 - 3090)

To branch on from this.

If it's the monthly leaderboard, only challenge rooms released within the month give 100%

Any challenge rooms released > 30 days only aware 25% of the points.

yep thats what i was wondering, thanks

Gave +1 Rep to @weary spindle (current: #1 - 3381)

hi,can anyone help me ? i want to buy throwback lab,but i see that's a private room? how can i buy??

I think it isn't available anymore 😦

Is there a plan to offer CISSP training with a similar certification upon completion on the website?

Anything on this?

Nvm, I tried now and it worked... I don't know how or why but if it works it works!

Is there no way to enter a business name and address for the billing? It seems to just automatically use the information of the credit card for the invoice right?

hi, if I had 8 day streak freeze equipped, and I missed one day would the streak freeze update to 7 day or just altogether get zero/disappear????

It would go to 0

why is cyber defense path not in the roadmap between soc 1 and soc 2?

VirusTotal has deemed crackstation as malicious. 2/96 security vendors flagged this URL as malicious. I was getting "your connection is not private" error!! Any thoughts?

Hey, thanks for helping out in this channel. I'm premium but my room machines have not been working recently - I click the "Start Machine" in the task and it starts the machine but no split screen comes up. I try "Start Attack Box" at the top but it makes and connects me to a different machine. So I have the Task Machine I should be on running as well as a different Attack Box, but the Task one isn't visible. Am I missing something simple? https://tryhackme.com/room/itsybitsy

Cyber Security 101-Offensive Security Tooling-Shells Overview won't bring up the tasks. I have completed the whole path other than it.

Make sure to use https:// protocol

Try to turn anti-virus temporary if you use some from of anti-virus software 🙂 .

That's normal behavior. You wouldn't usually be able to access target machines in split-screen view . They're meant to be attacked and exploited using AttackBox/your machine 🙂 . Target machines in split view are available in some rare cases , such as in example rooms to show off the concepts or in rooms related to forensics/blue teaming 🙂 .

That path is a bit outdated . SOC1 and 2 are like upgraded and more up to date versions of that path 🙂

ah i see. I only asked because its difficulty is ranked as intermediate whereas soc 1 is easy and soc 2 is hard, so i figured it was only natural that it would fit in between

As it currently stands in terms of what seems to be considered up to date, the pen tester roadmap has a much more streamlined road before it gets to the hard path then

Yes your streak freeze is supposed to go to 7, I tried putting in a ticket for this same issue and it was closed as resolved since the only options for addressing the streak did not have an option for the freeze counter acting up. I guess the only option is to keep track yourself and put in a ticket whenever you need your streak restored as this seems to be the only option right now. They have a lot going on so maybe they will get to it eventually when they have the time.

hey guys, having problems joining the servers with real people

how do i get into this group? instread of getting asked questions about my knowledge and to complete tasks to join. aserver,

#general

ok so it's a bug ig, not a feature lol

Bugs are my favorite feature

but yeah just put in a ticket

Hi does anyone know why I can connect with open VPN, and can see the "Connect" page at 10.10.10.10. But when looking at the access page I see virtual IP 0.0.0.0 Not connected.

does anyone know a fix for this?

ok

There's a problem with the website , you're good 🙂

Ok, thank you!

Gave +1 Rep to @ember osprey (current: #2 - 3114)

Its almost the date on the certificate is invalid

Its almost acting like the certifiacte is out of date!!!

https://crackstation.net?

yeah

You're using attackbox or ?

view the certificate, who issued it

I used attackbox and then tried it on my main browser

should be let's Encrypt with a pub key: 057427b12b6fd594a7f52a18a0c0e86399212e63e5aa0eb76f444307b97c1798

This address ?
https://crackstation.net/

try clearing cache, because I have a valid cert valid until may,12 2025

Can you please verify and provide a screenshot ?
https://help.tryhackme.com/en/articles/6495858-discord-how-do-i-verify-my-tryhackme-account

Now its working!!! I wonder what happened!!!

Maybe you accidentally used http instead of https

you might have spelled it wrong and was going to a typosquat. or browser had a cert cached

I clicked the link in the room. but I did clear cookies earlier. I did copy and paste when making the request.

Well all it matters is that it works now 🙂

which room?

I did full scan and check all of security and everything looks good on that

Authentication Bypass room. Task 5 cookie tampering

Its so strange!!! Hummm!!!

yea, i see its correct in the Hint - this must be where you followed from? anyways, its working now. good opsec checking it when you got the certificate flag

I think maybe at one point of time, I made the request from Google on the attackbox and Google asked me to accept cookies then I rejected cookies. Then I tried to clear cookies to get the your connection is not private error to go away. It still didn't work but now without anymore changes, its fixed!!! But yeah!!! VirusTotal seems to say its malicious. I don't think anyone has any issues with it. But its now working..

It may be a false positive , feel free to use crackstation 🙂

Yeah!!! False positives happen alot.

the issue is fixed. try now

funny enough my sub ended, so ill just wait next time if i have the money for it, i was just redoing soc1 stuff to see how much i can do without hints

Thanks for letting me know though

hi all, is there any admins about?

I'm a mod, if that helps.

If i need to click on the hint button in a challenge etc, will it lower the points i recieve?

No. 🙂

Still, network issues are not solved for room 'breachingad' I'm trying to connect but somehow unable to ping.
refer CLI output as below.

oot@ip-10-10-88-77:~# nslookup thmdc.za.tryhackme.com
Server: 127.0.0.53
Address: 127.0.0.53#53

** server can't find thmdc.za.tryhackme.com: NXDOMAIN

root@ip-10-10-88-77:~# ping thmdc.za.tryhackme.com
ping: thmdc.za.tryhackme.com: Name or service not known
root@ip-10-10-88-77:~# sed -i '1s|^|nameserver $THMDCIP\n|' /etc/resolv-dnsmasq
root@ip-10-10-88-77:~#

Try to add that subdomain along with base domain to /etc/hosts

what will be the ip

It will be target machine ip

i'm in AttackBox

Do you have a breachad interface when you do ip a?

not showing the ip on portal

Which portal?

https://tryhackme.com/room/breachingad

Do you have a THMDC at the top?

FYI

root@ip-10-10-88-77:~# cat /etc/hosts
127.0.0.1 localhost
127.0.0.1 vnc.tryhackme.tech
127.0.1.1 tryhackme.lan tryhackme

The following lines are desirable for IPv6 capable hosts

::1 localhost ip6-localhost ip6-loopback
ff02::1 ip6-allnodes
ff02::2 ip6-allrouters
root@ip-10-10-88-77:~#

I didn't ask about that.

Go back to the task room.

Also in your terminal can you do the command

ip a | grep "breachad"

oot@ip-10-10-88-77:~#
root@ip-10-10-88-77:~# ip a | grep "breachad"
8: breachad: <POINTOPOINT,MULTICAST,NOARP,UP,LOWER_UP> mtu 1500 qdisc fq_codel state UNKNOWN group default qlen 500
inet 10.50.18.13/26 scope global breachad
root@ip-10-10-88-77:~#

Ok, now do you have a THMDC IP?

You'll get that when you open the room link on the network diagram

with this configuration, I'm trying to access the website which is mentioned. but somehow it's not getting access.
refer to CLI output.

root@ip-10-10-88-77:~# cat /etc/hosts
127.0.0.1 localhost
127.0.0.1 vnc.tryhackme.tech
127.0.1.1 tryhackme.lan tryhackme
10.200.20.101 thmdc.za.tryhackme.com

The following lines are desirable for IPv6 capable hosts

::1 localhost ip6-localhost ip6-loopback
ff02::1 ip6-allnodes
ff02::2 ip6-allrouters
root@ip-10-10-88-77:~# curl http://ntlmauth.za.tryhackme.com.
curl: (6) Could not resolve host: ntlmauth.za.tryhackme.com.

Yeah, ignore the hosts file.

Remove that edit.

ok

Now
Have you done the sed command?

sed -i '1s|^|nameserver $THMDCIP\n|' /etc/resolv-dnsmasq

root@ip-10-10-88-77:~# cat /etc/hosts
127.0.0.1 localhost
127.0.0.1 vnc.tryhackme.tech
127.0.1.1 tryhackme.lan tryhackme

The following lines are desirable for IPv6 capable hosts

::1 localhost ip6-localhost ip6-loopback
ff02::1 ip6-allnodes
ff02::2 ip6-allrouters
root@ip-10-10-88-77:~# curl http://ntlmauth.za.tryhackme.com.
curl: (6) Could not resolve host: ntlmauth.za.tryhackme.com.
root@ip-10-10-88-77:~# sed -i '1s|^|nameserver $THMDCIP\n|' /etc/resolv-dnsmasq
root@ip-10-10-88-77:~#
root@ip-10-10-88-77:~#

You need to actually populate the stuff.

so it will be nameserver 10.200.20.101

Or you can do this manually by sudo nano /etc/resolv.conf

do i need to add 10.200.20.101 in /etc/resolv.conf ??

nameserver 10.200.201.101

If that;s your THMDC.

root@ip-10-10-88-77:~# cat /etc/resolv-dnsmasq
nameserver $THMDCIP
nameserver $THMDCIP
nameserver $THMDCIP
nameserver 169.254.169.253
nameserver 10.200.20.101
root@ip-10-10-88-77:~# curl http://ntlmauth.za.tryhackme.com
curl: (6) Could not resolve host: ntlmauth.za.tryhackme.com
root@ip-10-10-88-77:~#

Stop curling it.

Read the task material.

nslookup za.tryhackme.com

Name server needs to go on top.

Check out the post in #breaching-ad it should be pinned.

Thanks now it works. for AttackBox instruction it tells to 'nslookup thmdc.za.tryhackme.com' which causes all confusion

Gave +1 Rep to @weary spindle (current: #1 - 3385)

That's how you check if you're connected to the DC.

Hi everyone, i think there is an error in the masterchef basics:

What is the URL encoded value of https://tryhackme.com/r/careers?

the answer is : https://tryhackme.com/r/careers

but i think https%3A%2F%2Ftryhackme%2Ecom%2Fr%2Fcareers is better

Yes , you're correct 🙂

That's bug on the THM side

alright 🙂

Yo guys! 👋

I’m trying to get into website hacking (pentesting) and was wondering if anyone knows a good YouTube course for it. Looking for something practical, not just theory, and preferably beginner-friendly but still useful.

This path is a good choice for you then 🙂
https://tryhackme.com/path/outline/webapppentesting
Maybe freeCodeCamp on YT has something for you also 🙂

am i the only one who has problems with the vm?

Are you a premium user 🙂 ?

no, i am not

In that case AttackBox doesn't have internet access . Use https://who.is/ on your machine with your browser 🙂 .

thanks, i will try it out now

worked just as fine, thank you!

Gave +1 Rep to @ember osprey (current: #2 - 3132)

is there any channel where we can raise a ticket for certain problem?

What's the problem 🙂 ?

I am having problem buying annual subscription and the support team of THM is worst they response so late and didn't even help me out just sent a message "
Hey there,

Apologies for the delay!

Please can you retry payment now and let me know if the issue persists!

Kind regards,"

I retried and same issue still persists

its so annoying they aren't even helping me out 😭

Only support can help you out with payment related issues 😦 . Try to reach out again .

and the main problem is that after 8 hours the 25% discount wont be available anymore

I tried contacting them. The response team is not interactive at all. The main problem is time is running out and i may not be able to get discount after few hours..

Sorry to hear that but only they can help you with payment problems 😦

thank you for assistance i was just looking for someone incase there is any staff which can help me out here

Gave +1 Rep to @ember osprey (current: #2 - 3134)

They're not the worst, they're just busy with E-mails.

@weary spindle I mean waiting for hours and all you get is "please retry" isn't helpful at all. And I don't want this to be a controversial topic but there are organisations which too gets multiple email and still reply a meaningful message within few hours or even minutes.

Hello, can I receive a certificate that includes the name of the educational institution?

Certificate uses your Full name from the site 🙂

Is there no way to get it for the institution

Well you can put that institution name as your Full name

And will it be possible to print it?

Really

It is possible to print the certificate

Thanks for the idea. I'll find out later if this works.

Gave +1 Rep to @ember osprey (current: #2 - 3135)

Thanks

Guys, have a little problem here i've finished the OWASP Top 10 - 2021 and it's stuck at 50% completion

Try to leave the room and re-join

If the problem persists report it in #site-bugs

All right thanks

Gave +1 Rep to @ember osprey (current: #2 - 3136)

Hey everyone, so I am trying to make a payment to subscribe but the payment is not processing. Paypal is also not showing in the payment options. I have already raised a ticket but no response yet from THM team.

Only support can help you with payment issues you will have to wait for them to respond 🙂

Gotcha, I will wait then.

Yeah, same problem here, nothing happens when I click on the button to switch my monthly subscription to the annual one with the discount. I hope they will extend the offer for people having the issue

Yea man let's hope it comes out that way

Hello. Every time I try and launch start attack box it says free users can only use attach box for 1 hour a day when I’ve only used it for 10 mins

Once you start it per day you can't restart it again . Free users can only launch it once per day .

Dang, now I have to wait an entire day to complete this assignment

Is there a work around @ember osprey

Use your own machine via VPN connection 🙂

I have access to VM’s on a website called cyber.org

Would that work.

No you need to connect with your VM to THM network

Okay

Do you know how I could open the vm in the next task instead of terminating it

You can learn how to connect your machine to THM network on the link below 🙂
https://tryhackme.com/room/openvpn

Right now I’m on the second task in offensive Penn

And was on the first going to the second and at first it day u have 2 vms open

Hello there, It's been about two days since I paid for the premium subscription of THM. Suddenly, I lost my premium membership. It's been barely two days. I want to issue a support ticket, but apparently, my other support ticket regarding another issue has yet to be picked up. So, I can't create a ticket about this issue until the other ticket gets picked up. Any help?

Only support can help you with payment/sub. issues 😦 . You will need to contact them directly via email .

ohh i see, can we reach out to them using this mail support@tryhackme.com?

Yes 🙂

Alright thanks mate

Once you open the attackbox for the day, immediately expand it to full screen. This puts it in its own browser tab so you can leave it open while you traverse through the tasks and open/close task specific VM’s. This way you can maximize your hour of attackbox time. Otherwise you’ll need to learn to host a local virtual machine which has its own challenges but there are many walkthroughs for this on YouTube etc.

Hey folks. I finished the Web Application Pentesting path and when I generated my Certificate it gave me the option of using my hacker name or my real name. I put my real name in there and it still generated using my hacker name. Is there a way to reset it? I had plans to add the Certificate to my resume.

Hi, i have a problem regarding my subscription, i already cancelled my subscription last 2 month but today it suddenly charged me

Afaik, it can’t be regenerated. But selecting the name is a new feature so try writing and email to support about it

Ok will do thank you. Though maybe if it's new I should just keep it as it is? Do you think the name really matters in this case?

Gave +1 Rep to @torn wren (current: #84 - 90)

Support@tryhackme.com

I guess it’s up to you. It’s only a certificate not a certification so I think it’s more about having completed it. If you want to keep you name and hacker name separate then I guess it could be a problem to use it

Hmm I'll sleep on it then thank you Ronin.

I think that cert will use your full name from the website but once it is generated it can't be changed 😦

Thing is I actually put my full name in though like it had me write it 😭

It's all good

Please restore the old answer bar,
instead of focusing on learning, now I have to waste my time on asnwer formatting, cant copy paste, if one character is out place, i have to waste minutes to put it properly,
Please switch back

Hi, I'm trying to access the Shells overview room, but no task is displayed is it normal?

Do you have some anti-virus software

Yes

I'll try to disable it then

Yes , it may be blocking the content 🙂

Thank you that worked

Yeah it is a false positive just make sure to turn your AV on again once you finish the room 🙂

Of course thank you again!

Gave +1 Rep to @ember osprey (current: #2 - 3156)

Hey im doing the room breaching AD cant access the following link the hostnames and DNS are well resolved though tryna do a LDAP pass back attack
http://printer.za.tryhackme.com/settings.aspx

Which subnet are you in?

Hey i did resolve it thank you for the prompt response

i cant connect to openvpn,give me some advise please

What's the problem 🙂 ?

i cant talk about it clearly,i just tried many vpn servers but i cant connect

How , what's happening 🙂 ?

are you robots?

No , should be real

openvpn is down for me,almost all openvpn servers

Can you plase verify and provide screenshot of what's going on 🙂 ?
https://help.tryhackme.com/en/articles/6495858-discord-how-do-i-verify-my-tryhackme-account

but how can i show screenshot for you?

You will need to verify first , follow instructions from the link above

ok thanks

hello

my windows fundamentals 3 room wont load the VM

How 🙂 ?

i mean it loads but the screen is black

it wont show the windows

Do you have browser extensions or ad-blockers ?

i do have ublock...but on rooms 1 2 it worked fine

ok after 2 restart it worked

thx

Oh no, an error occurred while starting VM: PARSING_ERROR

Any idea anyone?

Try to refresh the web page 🙂

Godsend as always, cheers KGB

Does it work ?

#room-bugs please.

sry

It's okay. 😄

Yes sir!

Hello guys im having trouble connecting to the VPN, ERROR : TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)

Delete the old file , change server to some other server , wait 5min , generate and download a new file 🙂

will try it

Try it and give us an update , wait few minutes after generating file before downloading

I found the key that I believe is correct but the site doesn't accept the answer, I've looked in several places and following the steps this is the only one I've found, in fact I've done the error check and it didn't say there was any error.

No , it isn't flag meant for this room 😦

It's a flag for another room

what do i do now?

Find the correct flag 🙂

There should be a link to framework page in page source

Ok, thank you!

Gave +1 Rep to @ember osprey (current: #2 - 3177)

@frigid zinc Any update 🙂 ?

Yes! I found, thanks

Gave +1 Rep to @ember osprey (current: #2 - 3178)

Congrats , great job 🙂 🚀

now im gettin another error: cannot load inline certificate file

What's the problem ?

i edited the message with the error

i can't upload screenshots

You need to verify to upload screenshots . Follow instructions from the link below 🙂
https://help.tryhackme.com/en/articles/6495858-discord-how-do-i-verify-my-tryhackme-account

If you're on Windows use VPN community
https://openvpn.net/community-downloads/

I've done that

Which server are you using ?

EU2

Try to use delete that file and use EU3 or 4

Hey so Im trying to buy the premium in THM but it just doesnt go thorugh It just stays in the subscription page

hello i have a problem in Shells Overview room. it wont let me do tasks even though i am subscribed

Hey
I have a problem with VM it’s show me black nothing to see I can see IP and I terminated it and refresh the web

When I press to view in full screen didn’t work with me VM didn’t work

which is room is that?

should I be using machines VPN or networs VPN for windosprivledgeesc room ?

machines VPN

Alright I guess im not loosing my mind then. Still not working from my side on WSL. Idk whats going on

yeah windows subsystem for linux is well known for handling networking stack badly for openvpn making it near unusable for tryhackmes openvpn hacking

get a full fledged vm like with virtualbox or vmware instead

will do. yeah I am able to network with the machines but I cant complete the exploit. sounds good I was lost

I'm having the same issue in osquery:the basics 😦

screenshot shows what I have when I start osquery
can you post similar screenshot of what you have
please use link coming below to verify with Discord so that you can upload screenshots

@echo current

Hey, i was trying with the SMOL room today. While i enter the url to add smol site to/etc/roots it's not responding. anyone facing the same issue, or am i going wrong somewhere. pls help!

you mean /etc/hosts, right?

oh yeah! exactly, srry my bad

is working for me now, thanks!

Gave +1 Rep to @upbeat quarry (current: #16 - 573)

what happened with verifying and screenshot???

just now realized i forgot to verify, lol😂

show the /etc/hosts file of the attackbox please

yeah you need to add a line in that file under tryhackme.lan
with this contents
10.10.43.36 smol.thm

oh shit! ya; didnt realize that!
Thankyou so much! 😁

no problem

enjoy the rest of the challenge

I have a problem with edge on fedora and website login. Anyone had similar issue?
Credentials are entered, captcha verified but when log in button is pressed this is what I see.

also there are tons of errors in webbrowser console

Is there a way we can see what and how many Vm's are running for my account. Got this error " You can deploy only maximum of 3 machines at a time"

One is ungoogled chrome and the second one with more errors is edge browser (both are stock clean without addons). The same system, I have no idea what is happening here. Press images to open in full for details.

Sigh, probably some linux shenanigans as edge on windows works ok :/

You will need to contact support on the email below for payment related issues 🙂

Yes , go to this link 🙂
https://tryhackme.com/api/vm/running

What's the problem ?

i tried all server

@ember osprey

Are you from 🇨🇳 maybe ?

it can be used two days ago and i changed nothing

yea

Users reported VPN connection problems from 🇨🇳 , i think that there's some blocking of vpn traffic on their side 😦 . Your only option may be THM attackbox

do you have a point time that chinese users can use VPN connection

I don't think so

do you work in thm? does any explain for chinese users? just vpn traffic what i can get?

Can someone help me with this....

Your only option may be to use AttackBox on THM 😦

My current plan is 374rs one I dunno what's the other 499rs one