#site-support

Yayyyyyyy

Thank you 🙏

If you can verify your account to the THM discord bot, you can access the #sal1 channel where you can ask the helpful folks there.

Thanks!

Gave +1 Rep to @ember osprey (current: #1 - 5992)

Hello est-ce que vous pouvez me dire comment on met le site en français pour mieux comprendre car je suis pas bilingue XD merci

Hi! i'm trying to connect to tryhackme via openvpn. i get connected to the network as i can see 10.10.10.10 but the same does not reflect on the portal. so when i start a lab, the machine gets created on a different subnet which i cant reach

hello, i am actually having an issue while trying to create a private room. i am having problems while uploading a virtual machine so i kind of need some help. is there any1 with experience in making private rooms with virtual machine in them?

Hi I have had an issue with a room the last couple of days. I had started it but didn't finish it and now when I try to add the answer I get a red text pop up error message that "something went wrong" and the "try again later" (so I have been trying over the last few days). I have also tried to reset my progress (no error is given but nothing happens), have tried to leave the room (same error), and have tried to open the attack box (just to see if it would work - same error right after the normal booting up message). I am at a loss of what else to do to fix it on my end (note that I have been able to use other rooms normally). Update: I have tried logging out and loggin back in but it is now rejecting my auth codes. Update 2: waited 30-60 minutes and was able to login normally and now everything works.

Which room is this? You should be able to reach it even though the target is in a different subnet (unless it is the Asia VM)?

Have you followed the requirements like disk space, RAM, etc? Haven't created a room yet though..

Nuke it

Hello

Hello, is it just me or is there a problem with copying stuff off of and into deployed machines?

https://media.discordapp.net/attachments/680459914828972076/1212924500560191488/clipboard.gif

It doesn't show up in the room I'm in

The volatility room doens't have that tab

then do Ctrl+Alt+Shift

Clutch, thx

Gave +1 Rep to @upbeat quarry (current: #8 - 1061)

Which rooms do you think are broken?

Something is malfunctioning on the BurpSuite Intruder room. The machine deployed that hosts the server keeps going down and makes the url inaccessible. Restarted it and only worked for a few minutes until it failed again. This is using the attackbox btw. Even with the foxyproxy extension off

Hello, every time I try to open a machine it says "As a free user, you can only deploy 2 machines at a time (terminate the instance in undefined first). Subscribe to remove this limit." I checked and no other rooms have any open machines. I tried logging out, refreshing, using other browsers and even used a VM but nothing worked

nevermind. I used the code for terminating all the machines and it worked. Thank you!

Alert Triage With Splunk 502: Bad Gateway

Is anyone experiencing the same?

why no work

In the room https://tryhackme.com/room/yara On task 10 for Valhala, the intended Hyperlink has changed for Valhala lookup from https://www.nextron-systems.com/valhalla/ to https://valhalla.nextron-systems.com/

In the same room and task, the answer to question 2 has changed

Machine probably isn't fully uo yet , press F5 from time to time to refresh the page

I ran those commands but nothing changed. I am still not able to connect with the thm rooms

@ember osprey if you are available, can you please help me in debugging this issue?

Which THM OpenVPN server are you connected to? Can you show the last few lines of your OpenVPN connection log?

I am connected to the IN-Regular-1

Try to change server . I'm on eu-regular 3 , works fine

Tried to change the server. But still the same EU-regular-1

hey.. is there anything else I should try?? I changed the server, I am getting connected to 10.10.10.10, and also getting the ping response from the machine. However when I try nmap or access it via web/curl. I am not getting any response.

i cant connect to a attack back

Hello everyone

One help me

hey, just a quick question, Can we disable or hide this piece of absolute garbage ?

You can disable it in preferences.
Go to manage account -> preferences -> disable echo

thank you so much, I feel free doing rooms again

Gave +1 Rep to @karmic seal (current: #2127 - 2)

https://tenor.com/view/bye-run-escape-i'm-free-gif-11382490427273674918

any solutions to fixing the webpages for the room everytime i try access it i get like 5 minutes before it dies again ive tried changing servers, terminating the machines, restarting my vm nothing seems to help

Helo zeldris

I did maybe Ill try tomorrow and I am just killing time for Lateral Movement and Pivoting still not working (last I tried 7 hrs ago) DC not pingable even tho using Attackbox and follow steps correctly

thanks

Hi @fast veldt - raised a Bug Report here: #1434495401049854093 message
Let's see if a member of the awesome THM team members or the room author manages to take a look and come back with something!

Can anyone help me with the openvpn connection error?

I have lost all hope barely using THM anymore. Not just because theirs rooms are broken. But also because my skills improved dramatically in recent days and now I prefer HTB machines they are more realistic and better in quality.

What's the error?

Guys, i have a question. How can i copy text in attack box termianl and paste it to answer bar in tasks on site? I tried ctrl+C and saw that, tryhackme info says that i need to use ctrl+shift+c to do that, but it didnt work too. I cant copy and paste smthg in or out terminal machine, and its huge problem when it needs to copy hash or smthg like that to answer the question.

Have you tried using your mouse instead of the keyboard shortcuts? That usually works for me

Yes, its working, but when it needs to start machine with just coding(not attack box) mouse is not working

Have you tried restarting the attackbox? Sometimes it does stupid things.

I have this problem like month or even more)

but only now when it comes to hash rooms it become a problem

Knowing how to find and read docs is one of the most important skills in any technology field 🙂

https://guacamole.apache.org/doc/gug/using-guacamole.html#copying-pasting-text

NoVNC (attackbox) should be in the menu on the left hand side iirc, if it doesn't work automatically.

https://media.discordapp.net/attachments/692456966802374687/921063860318924800/clipboard.gif

For the AttackBox @visual swan

Thanks guys)

In the room https://tryhackme.com/room/mitre Task 4 "Which Detection Strategy ID would you implement to detect compromised cloud accounts in your organization?" Im pretty sure that answers is "DET0879" (source https://attack.mitre.org/techniques/T1586/003/)

Hi guys i have a problem with AttackBox, each time i tried to start it, an error occurred (Oh no, an error occurred whilst starting your machine. Please try again in a few minutes.), What should I do ?

Try to relog

So far, I've encountered errors in:

• Safezone ( The 2nd privesc part || html page in inaccessible.|| After tunneling, the page shows || 502 bad gateway || even if you login with the || hardcoded credentials) ||
• Coldvvars (The privesc vector || tmux session || doesn't have the root shell)

Yet another broken room I guess

Same password worked for everyone in every writeups walkthroughs and all. But not for me.

I tested for hours with all the password from base camp but none worked then I read walkthroughs watched videos and guess what this password working for everyone I tested this password explicityly and it not working

Tried restarting machine too but not worked

i cant join any room why ?

even after clicking 😔

VM not working again. “Invalid Login” on the one in Firewall Fundamentals. I’m done THM… ain’t got time to waste… you lost a paid sub today.

https://tryhackme.com/room/linuxfundamentalspart3
I cant access the access.log, so i cant solve the question "What is the IP address of the user who visited the site?" on task 8. What do I do?

do you have access.log.1 ?

Yeah, but the IP in that log doesnt match the questions ip address

and it cant answer the other question either, since theres no file matching the questions length either

what IP did you get from access.log.1

127.0.0.1:81

but the questions only has 2 digits first, so xx.x.xxx.xxx

which doesnt match

you have a different access.log.1 than mine
this has happened before, and you can check here: #room-help message
you can take the answer from there or access my instance at 10.201.117.152 (I'll leave it running till you say OK)
[back in 45 minutes 🙃 ]

a picture of the terminal and questions

ah, do i just ssh into it or?

yes

thank you! you can close it now, thats crazy that this worked

Gave +1 Rep to @upbeat quarry (current: #8 - 1064)

Is it one of the network rooms?

Hey all, on the Upload Vuln room in web hacking fundamentals. I’ve added the /etc/hosts record to the correct IP .. however when I navigate to one of the web pages to exploit file upload I don’t get directed there, all I get this the following

Please read the instructions in task one. You must access this server with one of the following virtual hosts:

• overwrite.uploadvulns.thm
• shell.uploadvulns.thm
• java.uploadvulns.thm
• annex.uploadvulns.thm
• magic.uploadvulns.thm
• jewel.uploadvulns.thm
  Refer to the instructions in task one for more information

I’ve referred back to task one and done everything correctly, any ideas please?

terminate that instance and try again, it will probably work later
reported at least twice in #1333993673381253162:

• #1414530336737460345 message
• #1414933047941267466 message

Tried that too 🤦‍♂️ ok thank you.

are you using THM AttackBox or your own local VM through THM VPN?

THM VPN, completely forgot about the AttackBox I’ll try that thanks.

rather my point about that question is to make sure you clear the browser cache and reload the web page, so that there is nothing left from the previous settings of /etc/hosts next time you start a new instance
the same precaution would apply if you use the same instance of THM AttackBox, hence the same instance of browser, after starting a new instance of target VM

Oh yes I did, flushed dns and cache.

AttackBox throws the same webpage

I’ll keep trying tomorrow. Appreciate your time.

sad 😢
in the 2 instances I mentioned earlier in #1333993673381253162 , a couple of hours passesd between failure and success, but I cannot say whether that is relevant at all
however, as I have made more tests beyond these 2 bug reports, I am pretty confident you will eventually land on a target VM that will cooperate nicely with you 🙃

guess what: i have an instance running correctly
tell me if you want to use it (I can keep it running for 1 hour)
IP is 10.201.83.102

Yes please I’ll go there now thank you.

It’s working thank you.

Are there other TryHackMe rooms like https://tryhackme.com/room/lofi

Uhmm... Am I the only one who somehow got an extra day added to their streak?

Is something going on?

Is there a way to check how long I have spent on a learning path before I get the completion certificate?
I know it says how many hours on the completion certificate however im wondering if there is a way to see how many hrs ive spent for example at 80% completion or for a specific section of the learning path. Thanks

Echo is the best. Glad he is here, just my feedback

Not yet unfortunately

Everybody did because of clock change

Check out Advent of Cyber rooms , every has at least one lfi challenge

just a quick remark for the room Public Key Cryptography Basics, in Task 2 "RSA" there's a typo in the part "Numerical Example", which is probably a LaTeX typo for the math formula (the $ symbol)

In the room metasploit:exploitation whenever I create the session with the target machine, the meterpreter colse the session immediately and. "Reason: Died". Help please 🙏

nop i cant even join in any room

in my vm

btb

a lot of possible explanations here, the most common one is a problem of cache on you side, to solve this try to join a room while being in private navigation.
an other possible explanation could be about your network, are you connected in an other network like an office or school network that uses a proxy or other protections ? If this the case you may want to try to connect from an home /private network
an other possibility can be on your side do you have an angry anti-virus or web blocker ?

and now the context is coming in thanks I wrote a whole book for nothing

Gave +1 Rep to @sudden seal (current: #3243 - 1)

well i was checking on my normal web now sry

is your VMs connected to internet (ping 8.8.8.8) successfully ?

yep

try to connect from an other browser or in private navigation to check my cache theory

does proxy chain affect this ?

might be depends on the rules and configuration of your proxy chain

but if you can access google from your vm you should be able to access THM

oka let me recheck everything once more

I mean I'm not sure since I didn't build your network infra

i just joined the room from my system and then opend from the vm now its going well , will check it and update soon

oka

Thanks for your time

nice I did nothing and the problem solved itself. Conclusion : I am God

(humor)

attackbox automatically terminates itself

day by day I hate to start using tryhackme

yes indeed, that an automatic process to manage the number of instance open on their server I guess very annoying but you have an alternative which is the VPN connection

i have been trying to connect to a website via my vm 10 mins later still buffering 🙂

I have developed and submitted one room last month, what's the process of getting it approved?

my vm is not deploying in tryhackme ,it shows try again in few minutes,tried a lot of times but not working

Certificate error connecting to openvpn, I download it but seemingly needs base64 wrapped in the cert tags but when I download the file there's an opening and closing cert tag with nothing in between

Oh I guessed as much. Thanks for clarifying. Will this be rectified by the team, or can I go ahead and open a ticket for it?

Gave +1 Rep to @ember osprey (current: #1 - 5994)

Weird!

Can you share some screenshot?

I just used another region, the one region I definitely thought wouldn't work did work lol

Plase ,could TryahackMe try to make the copy clipboard available for the rooms. Thanks

use this #site-support message or that #site-support message

what is going on guys

is the site still unstable

why dont the machine open in split screen

??

It depends on the machine if it has a splitscreen

some machines do, some dont

You can suggest it #feedback-and-ideas

Hello,
I'm new to the Discord and not sure where to ask this but I'm in a big mess because I'm trying to get started in cybersecurity on my Mac — it's the only tool I have available to do it (and preferably without dual-boot). To learn the basics I watched a few videos and I'm currently following a guide to get started on the Kioptrix Level 1 machine (a classic, I think, for noobs like me, but you have to start somewhere).
However, I'm on macOS and for x86 virtualization the only VM available is UTM. Here the horror begins: I currently have no way to access the IP of that machine using any scans I know (arp, netdiscover, Wireshark, etc.), because it's as if the virtual machine is hidden and I can't find out anything about it or even run a simple scan to discover the IP.
I'm open to any ideas — I've been struggling with this for five days with no success. (I've tried bridged and shared modes; I haven't tried VLAN because I don't see the point.) Any solution to communicate with the VM and obtain its IP — since I plan to scan the ports afterward — would be very welcome.
Thanks a lot, and ask me for anything you need because I really want this to work. Thank you so much.
Paul-Emile

I have never touched a Mac in my life, hence i cannot help for that
if you want to learn cybersecurity using THM platform, there is the solution of using the in-browser attacking machines that THM provide, as everything happens in your browser
finally, I think you are more likely to get feedback on this topic by posting in #general

thank you a lot i will copy my message in the general chat and thank you a lot :)))

Hi. I played and won King of the Hill before in the past, and now I don't seem to have access to it anymore. It keeps saying only intermediate and advanced players can play it, though I already did it. What changed? I wiped all of my cookies from my broswer, did that affect it?

check this: #general message

It said I need to be at least intermediate, though I've ALREADY played and WON king of the Hill, so why am I now not able to play it?

I went back and read it again...it was in the settings of my account. Somehow it got bumped back down to novice. I changed it and now I have access gain! THANK YOU SOOOOOOOOO MUCH!!!!!!!!!

I'm trying to copy from my machine to the target machine browser window (Windows) but no matter what I try (ctrl+shift+c/v, ctrl+c/v, etc), the clipboard does not seem to be shared so I cannot copy and paste. Does anyone have a fix for this? This is getting quite frustrating as this issue constantly comes up through rooms..

In the room metasploit:exploitation whenever I create the session with the target machine, the meterpreter colse the session immediately and. "Reason: Died". Help please 🙏

make sure than when you run show options that you have the LHOST set to your tun0 IP address

I set LHost to the local machine ip

local machine has many ip tho

do ip a

and find the one that is like 10.21.x.x or something

The connection happen but died instantly a couple of times

wonder if it's bugged or something, that's the only thing i could think of

It bugged my brain

😃

this whole room is the problem

first, the directions of the task 5 says set payload 2 however we need to set it to payload 3 not 2 then there's a smb login connection error or sometimes timeout (I guess switch off the task machine and switch on again and again until it works)

do Ctrl+Alt+Shift

make sure you use the VM relevant to Task 5, as there are several VMs in this room
possibly, you have to terminate the previous one and start a new one

yeah I know just a bit of lag in network but with some patience it's possible to have this thing working

still the error with the task directions about the payload number but it's ok for someone who reads

btw here we didn't need to stop the machine and start again in a normal case

Hi , i keep getting disconnected, is there any issue with thm?

but I think this is my network that is not great atm

If you're talking about the attack box or the machines of your rooms, some disconnections may happen however not continuously

exactly

so you can't connect to any machines at all ?

i am in the in the middle of working and then boom, i am out

do we know why? it is not custom

yes in this cases this might happen sometimes because this is an automatic way to the server to manage the number of connections, when there are a lot of connections the server probably closes some of them that are active for a while and sometimes it cuts you out

are you using THM VPN?

not at the moment

thks Evix

but now this is fine for me, and I'll be moving on the next task

where has the attackbox gone, please ?

check under your table, just kidding just click on the "show split view" button at the top of the page

Does anyone know TryHackMe's support email address?

@hazy hedge

check msg above

Has to soc1 program just been changed/updated?
I was almost complete with the program yesterday at 72%. Now today I'm only at 31%,

Okss thanks bro

Gave +1 Rep to @upbeat quarry (current: #8 - 1069)

do you guys see a BreachingAD OpenVPN config file? For me it just shows "No options", but I have a premium account

you need to join the room first

ah I see, I have to start the network in the room first. so I guess the config file will only work as long as its up....

Helo help me

Same thing happened to me. I was literally in the final challenge module and now I'm suddenly at 44% with a ton of new modules I haven't seen

When I opened the path today (on a different browser), it suddenly showed a new layout and a bunch of new modules that weren’t there before. My progress dropped from over 90% to around 44%, and some of the rooms I previously completed like the DFIR and Endpoint Security Monitoring ones seem to have been replaced or removed.

Hello, somebody know how to fix it? I decided to countinue a room two weeks later (Active Directory) and after launching vm attached to task I have this screen [https://imgur.com/a/ev0xXnN]. A tried another room with tcpdump and problem appeared again.

I cannot bypass this screen with button login. When i click it, it shows a message "Invalid login"

Hello, I took out a one-year subscription, but I forgot to cancel the renewal option, so it renewed automatically, even though I no longer need it. How can I get a refund? Thank you in advance.

Hello! Room itsybitsy https://tryhackme.com/room/itsybitsy is not loading the attached VM. After waiting for an hour yesterday and another hour again today, I still receive the "Kibana server is not ready yet".

Troubleshooting performed:

1. Restarted and started VM several times
2. Cleared browser cache and tried launching again
3. Tried accessing over attackbox
4. Tried accessing over VPN with US-East profile
5. Tried accessing over VPN with EU-Regular-1 profile

Any support would be appreciated. Thanks!

Hello, let me check for you.

Loads fine for me. Which VM region is set as the default in your account?
https://tryhackme.com/manage-account/access
Make sure that the VPN Server selected aligns with the VM region.
Example:

VPN Server: US-East-Regular-1```

@tawdry orbit That's interesting.

My VM region is currently set to US East. I'm currently still using the EU-Regular-1 VPN server but I first tried using US-East-Regular-1 for VPN. Same process I did yesterday and still waited for 1+ hours with no change from the "Kibana server not ready" message.

It loads for you on attackbox as well? I still see the "not ready" message there too. Very strange.

Just terminated my attackbox and spun up a new one to see if that fixed it, still get "Kibana server is not ready yet" 😢

For the SOC L1 path it has been revamped but you can access the old path here:

https://tryhackme.com/path/outline/soclevel1legacy

@unkempt folio @naive linden

Hi, I am new here. Quick qs: Is there any way to know which badge is awarded for completing which room? Couldn't find it in the Badges page.

Yeah, when using the AttackBox's Firefox. Does it not change after refreshing the web browser page? The "Kibana server not ready" message should only briefly occur in the first 5 minutes.

I solved the issue. I changed my region to EU-Ireland for VMs and used the EU-Regular-1 VPN connection. Took only 5 minutes to start up and get access.

Not sure why the other route was giving me so much trouble, but I'm glad I can get there now.

Thanks for the help!

Gave +1 Rep to @tawdry orbit (current: #17 - 575)

Glad it works now. 🥳 For consideration: it should also work on VM Region US East + US VPN Server. That's what I tried.

I suggest you disable all your browser extensions for the moment, clear browser cache and reload the web page

check this pinned message from #soc-level-1-path : #soc-level-1-path message

check message just above

Is anyone else having issues with the website throwing error messages when they start the vms? I have tired multiple times to start AttackBox, even restarting my whole computer but I keep getting told there is something wrong

@rigid bane

please provide screenshots
in order to upload screenshots, you first need to verify your THM account with Discord using the message just above

got it thank you'

Gave +1 Rep to @upbeat quarry (current: #8 - 1071)

did that but I got it working. I cleared my cache and cookies and that worked

does anyone having this kind of issues "static-labs.tryhackme.cloud took too long to respond.", when trying to access "view sites" activities ?

Hi there, can someone point me in the right direction. Course linux fundamentals where you run your maschine. I get this error: "The requested connection does not exist. Please check the connection name and try again." VPN is connected.

Why is the THM website so slow?

Just came here to check if there was something wrong

same...

Same

Seems better now 🤞

We are aware of a problem with the site and working on resolving it. 🤞

For me it works fine now

Thank you, however, I do not have permssion to send messages there

Gave +1 Rep to @ember osprey (current: #1 - 5995)

What does that do exactly?

You need to verify your role here

gives you a clipboard box

I would like to access my old tryhackme account, but do not have access to the email anymore for it, what can I do?

I'm verified on here as level 8 but can't actually use the account

i don't have the button to connect to an attackbox help

is there any reason why my machine just terminated? itself?

Perhaps the machine expired. AttackBox & Target Machine have a expiration timers. If you need more time, you can click over "Add 1 hour" button (For the target machine) or click "+" icon to increase the AttackBox expiration timer.

I am sure there was around 1.5h to expiration

how do i manage to copy paste from the page to the virtual machine deployed?

just select the thing that you want to copy in the vm and then ctrl v in the answer box of the task

I want to do the opposite

and if you want to copy from the task to the vm then it's a simple ctrl c then in the vm right click

Is not working for me

but I mean for this box I don't even know why you need this side

cause i want to wget and copypaste the python link

since hash_id.py is already in the folder (ls)

you don't need to wget, it's already here

just ls the task file in vm

and there will be a hash-id.py

oh i see just noticed

then just use python3 hash-id.py

but for the future i might need to do it

then paste your hash and keep moving on

so wanted to fix it anyway

let me check it out and i'll tell you

k k

tysm

Um my phone is somewhat not working so I can't access my 2fa can I get a hint please.

Am I allowed to use Sim Swap?

I tried my best and nothing seems to work so I guess either you ssh or else Idk

i see, thought it was an issue on my end

tysm for the help tho appreciate it

Dear there,
in AD: Basic Enumeration room. I can not ping 10.211.11.10 via AttackBox .
Can anyone give me some help?

10.211 ? seems the wrong network address

it should be like 10.10.something.something

if in doubt check the ip address of the machine to be sure

Confirm that you can see the 10.211.11.0 subnet in the command output. If it is in the output, your machine should be able to communicate with the target network. Moreover, you can use the ping command against the target machines.

the room tell me ping 10.211.11.10

ok let me check what task of the room are you in ?

thanks for your help
this room: AD: Basic Enumeration

https://tryhackme.com/room/adbasicenumeration

well did you start the network for this room

and did you respect this note of the directions ?

I am a premium user, yes , I start that one . but the first time I use atackbox and vpn at the same time. how can I do now?

stop one of the two types of connection then check with the route command if you see the ip address of the workstation

I stopped the vpn 30 minutes ago, attack box still not work now.

type the command tryconnectme

Please specify the OVPN connection as listed in Task 1 of the network room:
what can I type to here?

Please specify the OVPN connection as listed in Task 1 of the network room: 2

L I don't seem to be able to find that VPN connection.
Please make sure that you have joined the room and that the network has started.
You can visit Profile -> Access -> Networks and use the dropdown to see if you have the Network VPN Server.
If you have joined the room and still don't see the VPN there, please contact support.
root@ip-10-201-2-160:~# ping 10.211.11.10
PING 10.211.11.10 (10.211.11.10) 56(84) bytes of data.

Ok , I will do it next time, thanks

oh my bad I did see

but you find out the OVPN connection listed in the network room

so it should be ok now

Hey I was doing the HA Joker CTF challenge room and when comes to the last part which is Privilege escalation in lxd I got this response "Sorry, home directories outside of /home needs configuration" Does anyone have any idea about it? How to solve it?

Hey, not a big issue, but on the threat intelligence tools room (cyber threat intelligence), task 6, the first question asks the domain and await the answer scnet.com, but they renamed their domain for some reason and it's now whpserver.com ( can share screenshots if needed)

Do CTF have to be done in a certain amount of time?

wrong channel oops

Oop

not you

https://tryhackme.com/room/splunk101

I cant connect to the splunk instance's IP in the attackbox.

It always brings me to a https site ( i tried different settings in the firefox with no avail.) What is the solution beside using openvpn to connect?

Depends on how much time you want to allocate, but it is a good idea to set a limit (unlike me). 😅

my streak isnt updating. its in the repair phase and ive done multiple questions and the number wont update

Is there an issue with starting attack boxes at the moment? keep on getting Oh no, an error occurred whilst starting your machine. Please try again in a few minutes.

Any issues with the site? Just been logged out mid room while working on it and it won't let me log back in? Can still see my profile pic at the top of the page and can view it back won't log into the main site?

Cancel ^ started working again

hello guys, where can i talk about subscription issue??

yes i am also facing this issue from 5 days,

i think if i face this problem continuous than i think i should unsubscribe thm, bcoz this is the waste of money if we cant use service after paying for it

I cant type in powershell on the Windows Priviledge Escalation room any hints .Thanks

is there any issues logging on at the moment? I keep getting "Something went wrong", even when trying to reset my password

nevermind, changing browser helped

Hey guys! I’m new here and just started learning cybersecurity.
I’m still at the beginner stage, but really interested in ethical hacking and defensive security.
Looking forward to learning and contributing here! 🙌

Hi everyone! I logged on today and saw that I went from 47 percent done to 26 percent done in soc level 1. I noticed all the modules changed? What happened?

I finished yesterday intro to endpoint and I was going to do corewindows processes and it’s not there anymore:(

Check #announcements

Thx

Unknown Error Occurred when starting SOC simulator phishing

doing lateral movement but THM is not giving me the network configs

I tried leaving the room

and joining

Leave the room and rejoin after ~30 mins for you to be assigned to a different subnet.

Can you provide more info on this?

Or screenshots?

THM Support is your best bet.

@tight hinge

Can you verify your account and create an entry in #1333993673381253162 with screenshots?

@round needle

Hi everyone, I would like to report a bug, am unable to access socl1triage room it throws the following error:

Error 500

ChunkLoadError: Loading chunk 4353 failed. (error: https://tryhackme.com/static/js/async/4353.87a746d9.js)

It's now sorted out.

Hi everyone, did they delete the room Buffer Overflow Prep, i am trying to complete the offensive security path and it was my next room and I’m mightily struggling with the following rooms in the path.

.

Hi, there is an issue with invoice for certification. It doesn't have my name and my EU VAT number and it got rejected by my accountant as invalid. I raised a ticket with you, but no answer. This is a serious issue as a lot of people would like to expense their certification costs.

When did you reach out to THM Support?

4th November, ticket number: #47371206

Did you send a follow up since you created the ticket?

No, as I was not sure if anyone picked it up. I would expect to get some automated follow-up email that it was assigned to someone, or status changed, so I would have a point to contact. Not sure if sending follow-ups to general mailbox is a good practice. I hated that when I was doing tech support, but I never let myself or my team to keep a "new" ticket to be "new" for more than 24h.

To my knowledge, standard response time is 3 to 5 days.

Hey guys I am having a connection time out on the firefox from the attackbox, any idea on what to do ?

OK, got it. I'll wait patiently then, but I don't think I'm the only one facing this issue. I would imagine that not everyone interested in your certifications is ready to pay from their own pocket and then not being able to expense that, so maybe other users of this forum have found some workarounds...

hey there, i am new here

i'd like to know why attackbox is so slow. (Because of my PC or tryhackme server?)

please..

The Attackbox is a bit slow. 😅

thank you so much

can i connect using my own machine?

yeah u can I think by using openvpn

😔 tksss

Oh.. by the way, I'm not THM Staff, but simply a volunteer.

I just remembered that they recently launched the refreshed SOC level 1 path so the response time might be a bit longer. In any case, I don't think yours is a unique use case so THM would have a ready solution for sure.

Unfortunately we do not customise invoices and unable to update them. You should have also received an automated response regarding that we received your query and will get back to you.

https://help.tryhackme.com/en/articles/7887878-personal-or-business-vat-invoices

hello i try to connect to OpenVPN but it says "trying to connect " then fails

it says connection timeout

1. But, by law, you need to provide a valid reciept of sale. This "Reciept from TryHackMe LTD" which I received in payment confirmation email is NOT a valid receipt or invoice. There is not even YOUR details, only a name, no EUNIP, no company adress, no company registration number - nothing. It's worthless...
2. I'm a contractor, so I don't need a Business account, because there is NO TEAM. It's only me, one person company/self-employed. How can you demand me to pay extra if I'm unable to use it. That's simply not fair.

how can i link my thm account to discord?

TryHackMe provides standard receipts for all Personal accounts. These receipts confirm payment but are not VAT invoices, as VAT invoices are only available for our Business plan.

If you require a VAT invoice or a custom invoice with company details (EUNIP, address, registration number, etc.), you’ll need to upgrade to a Business plan

The “Receipt from TryHackMe LTD” you received is valid proof of purchase for personal accounts and meets all legal requirements

@hot pulsar

follow the instructions from the message just above

I suggest you refresh the VPN file, download it and try again

cheers

Ty i am new to this can u tell me how to disconnect now it is my first time using linux and i don t know how to

Gave +1 Rep to @upbeat quarry (current: #8 - 1073)

if your VPN was started in a Linux terminal window with openvpn <VPN_file>, just do Ctrl+C

ty

Gave +1 Rep to @upbeat quarry (current: #8 - 1074)

I tried both regions and neither are letting me start the intro to phishing room

I have same error

me too

the room does not work despite changing the location, browser, even using a vpn does not help

Hi Ntr, my apologies for this. What certification was this for? I've forwarded internally to see what can be done

Anyone else having issues with VM and attackbox not loading?

ditto! i'm not sure what to do. i'm moving on other rooms in the SOC 1 path in the meantime.

I've had a few times timouts when reloading the page in SOC L1 rooms 10-15 minutes ago

Hello, i cannot link my discord to the app , says my username is not a valid handle

make sure to give the handle not the display name. Click on your name on the bottom left and provide the bottom username of the 2

yep that's what i'm providing but they are expecting the old format with the tag

mine has no tag

welp, then we need to wait for someone more experienced in this to answer :))

Hi, I bought this certification voucher from your recent offer 30/40% off. My goal is to get PT1 certified first, then I was also thinking about SAL1 or perhaps there will be PT2 later on, so I am interrested to buy vouchers in future. I just need this receipt/invoice to be accepted by my accountant, that's all I care about. I think you should consider to have another business offering for self-employed contractors, as I don't need team related stuff/dashboards etc. I'm happy with this single user premium access, as it's just me who is using it so it's a bit tough to justify almost 5x increase in seat price if I will never use all those teams/bigger businesses related features. The only business feature I need is to get business invoices. That's all. I can pay a bit extra for that, but not 5x extra. Perhaps you could do a self-employed bundle: premium yearly access + voucher + business invoices, as I'm sure people like me are here to get new skills and certifications so they can get their next contract. You can even charge a bit extra for that, like 10-20%, but 5x extra just for invoice is just out-of-reach for me, as I'm currently in between contracts, so I have plenty of time to study, but have look twice on every Euro spent... 🤔

Great suggestion, if you go to https://www.tryhackme.com/feedback then they will receive your suggestion

I'm having an issue when trying to run hashcat on the AttackBox
clCreateContext(): CL_DEVICE_NOT_AVAILABLE
this seems to be a hardware issue according to Echo

What exact command are you providing?

that one hashcat -m 5600 <hash file> <password file> --force

Have you tried removing the --force flag as the Attackbox is running on a virtual machine / environment (and is abstracted from the hardware).

Good evening , Having trouble to fire up tryhackme vpn , any problems with it , or am i just the only one ?

It looks normal to me. Have you tried restarting your machine?

yes , can do it again 🙂

What error exactly?

Timeout when trying to connect

restart and no result

I’ve been having issues using the OpenVPN access. I’ve tried a ton of things but for some reason the attack IP won’t respond to pings. Any ideas?

Your OpenVPN log indicates that you are connected

Which room are you working on?

I’m on the “retro” room

I have not tried a different room. I can try that

If it is Retro, Windows boxes or targets do not respond to ping requests by default (due to Windows firewall).

This worked. Can’t believe I didn’t think of that. Thank you!!!

Gave +1 Rep to @ivory spruce (current: #12 - 891)

@wind wedge since you closed my ticket, let me reply you here: This is not about a personal subscription invoice, but a certification invoice.

I believe certification invoices are separate to subscribtion invoices, as you do not have a separate premium certification and business certification. Price is the same, right? So why whould I not be treated equally?

I bought this certification voucher from your recent offer 30/40% off. There was no mention that I will not receive a VAT invoice for it.
My goal is to get PT1 certified first, then I was also thinking about SAL1 or perhaps there will be PT2 later on, so I am interrested to buy vouchers in future. I just need this receipt/invoice to be accepted by my accountant, that's all I care about.

Please don't treat me as second class citizen because I bought premium yearly plan first. I believe you can even buy a voucher without any annual subscription, so clearly it's a different product and I don't understand your position.

Sorry to hear that you feel that way but this goes for all B2C users.

Certification vouchers, are processed through the same billing system as Personal subscriptions. This means they fall under the same rules regarding invoicing. We provide standard receipts for these purchases, which serve as valid proof of payment.

Your query has been raised to the team. However, we’re unable to update the invoices

So you're saying that even a business user that has a team of 10people and buys 10 vouchers in bulk will not get a VAT invoice? That's simply not possible to expense under EU law, so I don't believe it.

I have more that 20 different certifications under my belt from many different vendors and you're the only one that creates such unnecessary and hard to understand problems.

It is slightly different and I understand where you’re coming from but unfortunately this choice was made by the higher ups and has been that way since 2023. I don’t know why that decision was made but we just can’t physically update invoices either

Well that's not actually accurate, because there is no VAT invoice issued yet. You issued a receipt, so technically you could create a PDF invoice based on that receipt and deliver it to me and your accounting, but I understand you're not willing to do this because of your internal procedures that are not disclosed publicly and no one is informed about this before purchase.
If that is your final decision then it's ok to close my ticket, but I want you to know that I feel this is not right and I feel obligated to inform wider audience about this.
Anyway, thanks for your time on this support case. I know you personally wanted to help, but are blocked by internal rules.

Gave +1 Rep to @wind wedge (current: #51 - 209)

i connected to the attack box using VPN, it's speed is significantly improved

but using VPN, can I use GUI (tools like wireshark, burp)?

Can anyone help me access target machines using OpenVPN, I did everything the page told me including downloading and import the config file and then connecting via it. The tryhackme.com/access page tells me I am connected and also displays the correct IP address that was assigned to me by ovpn but when I go into a room it shows me that I am disconnected and I can't even access http://10.10.10.10.

Is it a server specific error? Cuz I am on the newly made ap-south-1 server.

When doing ip addr do you see your tun0 interface?

I am on a windows machine.

Oh wild

why would I need config files if had linux, think about that.

I'm sorry I hate windows I only use linux 🙃

LOL

You do need the ovpn config file too

yeah but the setup in linux is a lot easier than in windows.

Of course, by using the VPN your whole machine is connected and every apps too

Last time I used windows and OpenVPN I just used the gui app and uploaded the conf files, that was all

It was pretty easy

I did the same thing, but it only shows I am connected on the tryhackme.com/access page and nowhere else.

Can you do ipconfig

And see if you have the tun0

I think it works like that on windows

what is tun0?

The name of the interface

Like eth0

For ethernet

Maybe different on windows 🤔

But tun0 is the thm interface

I have wireless.
and I can see a section in ipconfig saying that Unknown adapter OpenVPN TAP-Windows6:
and then blah blah and IP address same as the one shown to me by the ovpn gui

wait...

Ok yeah it might be the equivalent to tun0

are you talking about wintun??

Nop

Just the interface name

Unknown adapter OpenVPN Wintun:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :

Do you an IP starting by 10.x.x.x?

See*

nope

the ipv4 there looks something like 192.168.x.x

Mmmh yeah you should have another IP for the VPN connection starting by 10.x.x.x

And OpenVPN is just saying you are connected?

yep

Can you ping the machine?

but can't see any 10.x.x.x ip there.

lemme see.

ping the target machine or ovpn one?

The target yeah

yeah I can ping it

You said you are on windows, are you using exegol or just really your windows?

Oh sweet then you are connected

win 10 x64 idk what exegol is

Else you shouldn't be able to ping it

i can even tracert it

1 348 ms 83 ms 81 ms 192.168.128.1
2 * * * Request timed out.
3 82 ms 75 ms 77 ms 10.48.175.176

Trace complete.

Exegol is like Kali Linux but in docker version

I have something similar called WSL but I haven't set it up yet.

With wsl you can get a Kali Linux image that's pretty good

I know but the task at hand is hurting ma brains.

Cause just using windows will be pretty hard to do pentest, better using pre configured environment like Kali Linux, parrot os, blackarch or exegol

xDD

These are the screenshots of the task at hand, it seems like them servers are messing with me!

@brittle garnet bro, check these out.

@velvet dust Moving here as is the correct channel. Did you deploy the VM in the task? It will be a green button

Not sure if this is the right place to report this but twice now, I've had a popup asking me to sign in to start hacking today, but I'm already signed in. refresh fixes but its pretty disruptive since the popup takes up half the browser screen and I cant continue the room I'm in

Hello, my instance terminated by itself and its happen all time in daily. its so annoying and i dont enjoy my time on this platform. i did reset all settings of my browser and deactive all extensions. even without dns settings it keeping same.

After that time machine will terminate itself. just control this time. you can add +1h when timer is under 1h

Actually when i start machine its happening in 5-10 minutes. I mean its not about that timer.

I research tryhackme website support page about this issue and that written solutions doesnt help.

i don't know then.

anybody having trouble logging in? I've been seeing this since this morning with un/pw credentials: "an error has occured, please try again" , "send magic link" doesn't seem to be working for me either

i did, i had refresh the page 3 times to get in

Thank you for reply 🙂

Gave +1 Rep to @slate cosmos (current: #2131 - 2)

hihi i can't log in to wreath network

I've suddenly lost the ability to login to my account. I keep getting errors whenever I attempt to login with username and password or generating a magic link.
I attempted to send a support ticket request and recieved an error also.
Is there a direct email or person I could contact? I need access to some rooms for my assessment.

Network labs is still down

pining DC Ip still not workinf

for two weeks

Lateral Movement And Pivoting

Any update its been two wreks

is it my fault or the lab fault

everytime i use hashdump it died

5 sessions

Are you using 2FA?

Where did you send your ticket?

Hello, I am unable to access Network room. On the website it said that after 7-day streak I get networking rooms access but when I try to open the room it says I need to subscribe. I have 8-day streak.

hihi i can't seem to access openvpn wreathv2 coz of cipher issues

can anyone help pls

I am able to access only the first one under Networking room.

No I'm not. I can't send a ticket either, it just comes up with errors on Firefox and Chrome. I've resorted to asking on their Discord for help.

Apologies I thought this was my study discord

what happens if you regenerate the VPN file and try again?

please provide details, as it works for me using THM AttackBox as per screenshot

maybe this clarifies the situation:

• some rooms are networks, and a few of them, like "Breaching Active Directory", are available for free users with a 7-day streak (check screenshot #1)
• other rooms teach you about networking, like "Intro to LAN", but are not network rooms Among them, for instance (check screenshot #2):
  • "What is Networking?" is a room available for free users (no need for a streak)
  • but "Intro to LAN" is a premium room

Ohhh I understand now. Network rooms are different types of rooms than the normal room. Thank you

Gave +1 Rep to @upbeat quarry (current: #8 - 1075)

I have been finding it difficult to remotely access the Windows terminal of both Windows Escalation and Windows Local Persistence Rooms tasks from my Linux machine, despite confirming that the RDP and RMU TCP ports are both open. Can someone help me out, because it's really slowing me down from achieving my daily tasks?

how do you RDP into the target VM?

I recently updated my machine and my xfreerdp is now version 3+

thanks
in the terminal above xfreerdp, it looks like your VPN is restarting: do you have continuous output for your openvpn command, after Initialization Sequence Completed?

Gave +1 Rep to @cedar skiff (current: #1605 - 3)

I wasn't connected online when I sent the screenshot. But I will send another while connected now

when your VPN is connected, please run THM VPN troubleshooting script from here (https://github.com/tryhackme/openvpn-troubleshooting), in case you have the MTU issue

Hi,

I tried doing the same in Attackbox but DC still unreachable even waiting for more than 10 minutes for setup, I have been experiencing this for the past two weeks

I am on Asia btw

so that must be it? but will try again later @upbeat quarry

thanks @upbeat quarry

⬆️

can you confirm you can ping the 10.10.43.28?
also, have you run THM VPN troubleshooting script to check for the MTU issue?
check screenshot: using Kali and THM VPN, I can use your command to RDP into your instance if I drop the /sec:tls option

using THM AttackBox, I suggest you troubleshoot using tryconnectme
about connecting from Asia, check my screenshot: is your Server Region set as Asia Pacific like mine is set as Europe? if so, as Asia Pacific is currently under Beta (and it should work 🙃), I think if would be worth trying with another Server Region

Yes, ping is confirmed, troubleshooting the vpn says error while loading the link so im in the process of creating an account on github

no need for an account on GitHub
attached is THM VPN troubleshooting script

hello

Noted

check screenshot: I switched my Server Region to Asia Pacific and I had the warning that Networks are not available in this region yet. Please use Europe (Ireland) or US East (N. Virginia).

i cant connect to the SSH in any room

VPN is connected

but the ftp i can login

you can ssh to a THM room is the instructions for the room document that ssh is available for that room

check the room instructions as per this: #site-support message

ssh is available the room name "Year of the Rabbit"

port open

then the issue may the credentials you use with ssh?

i dont know i have credentials user and password

maybe these credentials work for the ftp service but not for the ssh service?

the ftp have different credentials

I have not done the "Year of the Rabbit" room, hence I am a bit in the dark here
just an idea: if you think you have valid creds for the ssh service, can you check if the ssh service is on a different port than port 22?

the ssh port is 22 i check the write-up , everyone can connect easly to the ssh but me i cant this problem in all rooms of tryhackme i think a problem in my VM

time to run THM VPN troubleshooting script to check for the MTU issue from here: https://github.com/tryhackme/openvpn-troubleshooting
if you have the MTU issue, the script will solve it for you, and that may clear your ssh issue

This is what I get while trying to troubleshoot the Vpn

thanks @upbeat quarry y problem fixed

do sudo bash <name_of_tshoot_script?

Gave +1 Rep to @upbeat quarry (current: #8 - 1076)

use before .chmod +x <path-to-script>

I have done that before, to make it an executable file

maybe uploading/downloading the script file with Discord disrupted the formatting
I think we should not spend too much time troubleshooting that syntax error
instead, back to Github, if you have the option to access the script from source, possibly creating a Github account (although I did not need one), I think it will be a more efficient way
other option, I upload the script to a file sharing server, like wetransfer.com

Okay
I will visit the sever

Can I have your upload link for easy access?

https://we.tl/t-6ok12HAX6I

Noted, my pc down for now
I will try it later and give you feed back. Thank you for your help so far

Gave +1 Rep to @upbeat quarry (current: #8 - 1077)

I'm back online @upbeat quarry

I have been able to download the file using the link provided here

The current error i’m getting

I am bit mystified 🙃
there is the traditional situation of transferring a text file between Linux/Unix and Windows because one of the two uses 2 characters for a new line while the other one uses only 1 character, but most often that discrepancy is handled these days by the applications, however the error you are getting seems to point in that direction
can you upload to THM Discord your version of the script file, so I can compare?

I'm currently experiencing this error from the script you uploaded in a text file

Are you saying I should upload it here for another check from you?

yes, please

also, with that script file you have, can you screenshot the following:

• open the file with vim: vim <script_file
• screenshot
• to exit vim, enter :q [that will appear on the last line of your screen] If you struggle with exiting vim, just close the terminal window
  context: I am curious whether the contents displayed by vim shows ^M at the end of each line

Noted
My Discord is lagging on my pc that is why I haven't sent it yet

let's make better use of our time:

• the troubleshooting script is very valuable, I feel, maybe later you can run it successfully
• back to the RDP issue: simply run sudo ip link set dev tun0 mtu 1200, as that would probably solve any MTU issue
• then try RDP again

Okay

Check it out mate

the command is sudo ip link set dev tun0 mtu 1200 (there is no IP address in that command)

Okay

Wow!!
Thank you so much
It finally connected.
One last thing I hope this would resolve the evil-winrm that also failed to connect earlier.
Lastly, may I know what might have caused this for future avoidance

I am confident the MTU issue will solve evil-winrm too
about explanation, check this message from Scrubz: #room-help message

Okay
Thank you so much
It did solve it

@upbeat quarry I need your help on this mate

which room is that?
also, can you just try to run pytyhon3 secretsdump.py without any arguments, just to see how your python executable behaves on your box?

Windows Local Pesistence

on Kali, just run impacket-secretsdump or /usr/bin/impacket-secretsdump
what is your version of Kali?

Noted

that shows that secretsdump is implemented correctly on your system
now, you just need to run with the right syntax/arguments

Can it be /usr/bin/impacket-secretsdump secretsdump -sam Sam.bak - system system.bak

?

running the command in Kali is: || impacket-secretsdump -sam sam.bak -system system.bak LOCAL || as per screenshot
can you screenshot ls -l *bak to make sure the registry files you saved and transferred have a reasonable size?

Okay

readding the screenshot, but blurred this time to avoid spoiling

The virtual machines won’t start

Output of ls -l of both Sam and system

similar to mine, so you're good I believe

refresh and clear browser cache?

I'm still getting this

you missed LOCAL at the end if I read correctly?

Yeah
You are right

Thank you mate

@cedar skiff a suggestion to improve your productivy:

• use a proper screenshot application to provide screenshots, rather than pictures of your computer screen
• personallay, I use Lightshot (https://app.prntscr.com/en/index.html) on my Windows PC, the free version (I do not need more)
• benefits:
  • cleaner
  • you will get used to document your work, that will come handy when you need to be formal

Noted
I appreciate that

I put the correct password but i cant login

@upbeat quarry

you had a different username earlier: #site-support message ?

this is another ctf

Fowsniff CTF

looks like the target ssh server does not like the creds

earlier, here #site-support message, you did not get the prompt back when sending the creds to the ssh server, pointing at the MTU issue
now, the symptoms are different

on VPS
or on Ubuntu system?

you need to know passwords by each user you set.

So question to the site administrators, what is being done about the errors? When I try to log in, errors, everything gives me errors. I have to reload the page to get to where I need to be. I've never had these issues before so I was hoping these would be resolved by the time my 1 month subscription ends and that I am able to subscribe for a year without having to worry about these issues.

https://tryhackme.com/room/owaspjuiceshop Is it possible task 5 Q1 & Q3 and whole task 7 is broken ? It wont give me flags even though I completed the tasks. Answers found online wont work either..

I have a short question regarding the fundementals of getting into cyber, I really want to build a strong foundation before touching any niche, is there recommended resources for IT/networking/OS and etc?

Hello, help me please(
I start attack box -> loading -> black screen(

Did you access the juice shop through the Burp Suite browserr?

If yes you won't get the flag from the browser, I will advise you to open the same juice shop on your normal browser and refresh it each time you have it hacked through the Burp suite

ah! Good thinking! I will try that

is there a way to change my account's country flag? Even if I change my associated phone number it doesn't seem to swap.

You gotta contact them and ask
https://tryhackme.com/contact

I canceled the subscription, but it shows as 'scheduled cancellation.' Does this mean it will only be fully canceled on the specified date?

I’m currently having an issue accessing my account. When I try to log in on my computer, I receive an “an unknown error occurred” message. I’m still logged in on my phone, but when I attempt to complete any task there, I get the same “an unknown error occurred” message and the task won’t complete. Even when I am trying to contact them through their website I still get the same. I have no idea what's wrong, it started yesterday 11/7/2025 and is still going on today. I'm afraid ill lose my 91 day streak. EDIT: I can login on edge, but not on chrome, so weird.

something happended to the open vpn

and I can't seem to connect to openvpn anymore

What would you suggest when Ctrl+Alt+Shift doens't work? I'm having trouble getting that view popup for some odd reason

Are you on an annual or monthly sub? I'm guessing your sub will expire after said date as these are paid for in advance.

You can follow the instruction described here to change your country flag -
#site-support message

Did restarting the Attackbox not help?

You may get the answer you need if you post this on #cyber-and-careers

This could be a result of continuing upgrades, but if you post an entry on #1333993673381253162 , THM Staff might chance upon it.

.

Ctrl+Alt+Shift does not work for me any more
I do not know why, I suspect something has changed on the side of THM in the way they now implement Guacamole
I have experimented with it on 3 different boxes, where I am pretty sure it used to work before:

• https://tryhackme.com/room/windowslocalpersistence
• https://tryhackme.com/room/windowsfundamentals1xbx
• https://tryhackme.com/room/linuxfundamentalspart1
  the only workaround I have is this past message: ⁠#room-help message⁠
  I have just used it for Firefox and confirmed that it still works for me with these settings as per screenshot
  However, the solution for Chrome did not work for me (and it used to work in the past)
  please note that there are security implications with resorting to the Firefox settings, which I do not fully understand, and that is the reason I preferred not to use that solution in the past
  conclusion: no easy and straightforward solution to this problem

[-] MTU value failed at 1000, aborting MTU check [-] Something went wrong -- please ask for further assistance in the TryHackMe Discord server, subreddit, or forum

i am getting this error when i run the openvpn troubleshooter, it shows connected on the tryhackme page but i am unable to access any of the ips (the machine ips and even 10.10.10.10)

Well, hello there.
Room: Splunk: The Basics
Link: https://tryhackme.com/room/splunk101
VM started about 15 Minutes ago but unable to access the Splunk Lab in Task 2 that is also up since about 13 minutes. I've looked it up on discord and have seen several reports of that but found no proper answer to that. Is it a general issue where we cannot do anything but wait for a fix or do you guys have a suggestion?

are you using THM AttackBox or THM VPN?

The THM AttackBox. Ouh and pinging it works from the VM

I have started an instance for me using THM AttackBox (Kali flavour), and it works for me as per screenshot
what is your Server Region, under THM > Manage Account > VM and VPN Settings > VM Region, like mine is Europe currently as per second screenshot

It should be EU, but let me make sure

yeah, its still EU Ireland

lemme try it via the Kali VM, maybe that makes the difference

maybe check if you can access my instance: http://10.10.124.41
[back in 1 hour, I'll keep my instance running for you to play with]

would be an interesting test, I will test that first

thats funny

that one works

so it seems like the lab-instances themselfes have issues

Thank you, I'll use that as workaround

finished. Thanks a lot!

Gave +1 Rep to @upbeat quarry (current: #8 - 1078)

Hello I keep getting this error when I try to start a machine:
"Oh no, an error occurred whilst starting your machine. Please try again in a few minutes."
Does anyone know how to fix it?

clear browser cache and reload?

Just tried that didnt work

which room is that?

CAPA: The Basics

I dont know if its related but I cleared progress and left the room now it works

Thanks for the help!

Alright, I was able to get the correct flag for task5 Q1 but same task Q3 doesnt like the flag now. This is https://tryhackme.com/room/owaspjuiceshop
I am on firefox browser this time as suggested earlier instead of burps

Got it done! had to try different angles

will do that, thank you so much

Gave +1 Rep to @ivory spruce (current: #12 - 893)

hello, vpn is extremely slow. Im currently trying to complete some challenges (for example lazyAdmin) but the pages (with the correct path) are not loading and it keeps giving the connection has timed out error

does the task in threat intelligence for soc is outdated? coz uncoder.io doesnt takes input as ioc and provide output in kql queriess...

hello when i try to join a room it tells me 'To access material, start machines and answer questions you need to join this room!'

hello hello, recently in the website I am constantly seeing this error message. How do I fix this?

Log out then log back in.

who wouldve thought

Thanks

For the past two days ive been trying to use attackbox (im premium) and it keeps saying failed to connect. No vpn is on, nor is the foxyproxy extention. After a long connecting... it shows me Failed to connect to server/ Any help please

I often just clear the cookies and reload the page

same here, it was fine for me like an hour and then the connection kept time out

btw I like your profile pic

shaw

Hello!
I've lost all my progress on SOK L1.
I reached the level with SIEM. But why did it reset me back to the beginning? Please restore my progress.

@thorn grove Without a computer you are severely limited in what you can do. So far that it might just not be worth it to troubleshoot individual cases until you can actually get a computer

But I couldn't afford it

But that doesn't change it

Should I left this website

I am keenly interested

What device DO you have available then

I have a smartphone

if its an iphone, you can just give up now. If its an android phone it might support nethunter (kali on android), which will still be a pain, royally so, but could be made to work

Yes I have Kali

I am working on it still

What do you mean reset? How much % completion did you have previously? THM recently refreshed its SOC L1 learning path, so that could be rhe reason.

Im I the only one who has constant VPN connection issues?? this is the only platform that disconnects after 30mins

.

If it is recurring, suggest you create an entry on #1333993673381253162

Guys I got a problem, when I start both of my attackbox and vulnerable machine(Moniker Link in this case), I am unable to use the attackbox, I only see vulnerable machine in both the tabs. Can someone help me?

I tried using RDP also, but it is not working. When I try to open the attackbox later, it shows failed to connect

im starting the attackbox

to check

can you /verify and send a screenshot?

i see both the attackbox and vulnerable machine

you can switch with the little buttons at the bottom

@heavy forge

After taking sometime, it is asusual

Thank you though

Thank you @deft quartz

Gave +1 Rep to @deft quartz (current: #54 - 206)

no worries

Good afternoon, Has anyone come up with a solution/workaround for the issue of Kali not being able to connect to the TryHackMe VPN since Kali's OpenVPN upgrade? I'm using OpenVPN 2.6.15 & OpenSSL 3.5.4 and I still can't connect my VM to the VPN. I've tried to roll-back to OpenVPN 2.5.11 but that didn't solve the connection issue either.

yeah i've the same problem but with the script on github it helped me, but when i try to restart my machine nothing works anymore

https://github.com/tryhackme/openvpn-troubleshooting

y

try to connect ure machine with the config vpn on the web site THM and withe the command sudo openvpn "FILE CONFIG" when its good use the script maybe it works for you

i dont know how % i ve completed, but im in the siem class.

Hello Guys im facing an issue when doing the Room Log Analysis with SIEM

It seems that there is an issue with Splunk

Fixed : I have started again the machine which gives me a new IP (new instance) and it works dunno why on the previous there is an issue if someone can check

I've tried using that script and it doesn't resolve the issue. It gives a few basic recommendations, re-download the .ovpn config, change servers and try again, etc, but none of that worked. sudo openvpn <file>.ovpn used to work just fine until Kali upgrade their OpenVPN version in an update awhile ago. I was just hoping that someone at THM had figured out how to let their system authenticate with the newer OpenVPN version. Thanks for the suggestion tho @north tree

Gave +1 Rep to @north tree (current: #3252 - 1)

Do check the new SOC L1 learning path so you can see what changed.

check screenshot #1
no issue for me with

OpenVPN 2.6.15 x86_64-pc-linux-gnu
library versions: OpenSSL 3.5.2 5 Aug 2025, LZO 2.10

upgrading my openvpn version was as per screenshot #2:

sudo apt update
sudo apt install openvpn

🥲

U tried to run sudo openvpn <file>.ovpn, run the script and it doesn’t work ?

Recently upgraded kali here and I cannot reproduce the problem

Still broken

anyone else having issues connecting?

West-Regular-1 and US EAST for VM, unable to connect. I did all the troubleshooting steps such as redownloading my configuartion adusting MTU to 1200 and reboot, im still unable to connect. to the machine or ping 10.10.10.10

how long did you wait? room instructions suggest to wait 4-5 minutes
I had my instance working within 5 minutes of launching as per screenshot

which VPN server did you try other than West-Regular-1?

I tried EU, but i can try a different one again. i stuck with west regular as that is the closest to me

first get one VPN server working, afterwards you can optimize based on location
can you share the output of your openvpn output?
what is your OS?

it was working just fine which is why im so confused, i've completed 5 rooms in the last week with no issues, and then i was just about to complete the 6th one and got disconnected. Its happened before but i was alway able to reconnect.

i just switched to EU and trying again.

Im running arch

also, im unable to share photos rn on the disc, do i have to confirm something with a chat bot to be able to send?

well, i feel stupid now.

It's working, thank you

I dont know why the US server stopped working for me

THM VPN servers are sometimes a bit ... weak on the reliability side, hence my suggestion is to be stubborn 🙃

how much time are you giving the target URL to be ready? room instructions suggest to wait 4-5 minutes, which was OK for me as per screenshot

That makes sense, im a cybersecurity student and was suggested this to get practice so its my first time using it

i cant post the image, but i was able to get in thank you

@molten edge

just follow the instructions from the link above so you can upload screenshots next time

Thank you

sorry, wrong link wait for the correct one 🙃

i do see a discord token as wel

@molten edge

right above is the right link with the right instructions
sorry for the confusion 🙃

Thats okay thank you, and finally completed the room as well ahahaha, appreciate all your help

I'm working on the Threat Intelligence Tools room and the machine is so slow. It won't open anything, just keeps hanging up. I can't even get the browswer on the machine to open. Did I miss a step somewhere. I'm not new to THM but its been a while since I've been on.

@visual adder Too many emoji too fast — please slow down.

if terminating and restarting your instance does not help, I suggest you try changing your Server Region under Server Region, under THM > Manage Account > VM and VPN Settings > VM Region

Thanks! I just tried that but no luck. 🤷‍♀️ Its weird. Maybe I'll just try coming back later. I appreciate the help.

Gave +1 Rep to @upbeat quarry (current: #8 - 1082)

VM for that room behaves OK for me
maybe this will help: do not launch Thunderbird from the "Thunderbird Mail" icon on the desktop, instead select an email file by right-clicking and selecting "Open with Thunderbird Mail" as per screenshot

one more thing: do not use the browser from the room VM, instead use your regular browser to reach third-party resources like Talos Intelligence

l'll go try that. Thanks!!

Gave +1 Rep to @upbeat quarry (current: #8 - 1083)

where do i go for help if i am stuck on a training ?

I pushed through Osint levels 1-2, but the third level has a question that everything i try is comming up incorect.

my Lan and OSI module arnt working.Keeps telling me to start machines and answer questions. I dont have any access to the machines and theres no questions to answer. Please help

Pardon everyone, newbie here, like level -1 new..
in the offensive security Task 3 (pre security path), what does it mean by...

"The first section of the output tells us the URL_BASE we scanned, which is just the URL we gave the tool. It also shows the location of the wordlist file used by the tool, which contains common page names that will be tested during the brute-force attack. In this case, the tool uses the default wordlist included with the tool, located at /usr/share/dirb/wordlists/common.txt. There's a copy of the common.txt file in your desktop as well, if you want to explore it."

How do I use dirb on the existing file, I tried it but doesn't seem to work, bit unsure...pls help

Is login broken for anyone else?

magic link form broken as well with 403

nvm worked now

is there any walkthorugh for threat intelligence for soc room the walkthroughs are old the mentioned steps in its is outdated ..

Evening , got a errotrmsg whem starting try hack me . According the msg i need to report it .

Critical Error
ChunkLoadError: Loading chunk 2460 failed. (error: https://tryhackme.com/static/js/async/2460.ae4d3cc7.js)
Please contact support mentioning the message above if the problem persists.

Take me home

Try clearing your cache and restart your browser

Have you tried that yet?

OWASP JUICE SHOP, TASK 7. I get the XSS popups for all three questions, but no Flag is being shown. I lost my streak because I could not close this room. I am pissed. Why is the flag not working? Anyone have this issue?

Hi

is this wrong? (Windows Fundamentals 1)

pretty sure thats the only answer

nvm its supposed to just be "Bitlocker"

Glad you figured it out

there's no "___" on that part so I didn't know

Yeah, a few of them are like that but most have the format

alright that's nice

Is it by design to show Pay Wall Rooms when selecting Free Only in the filters Search? Kinda Annoying not gonna lie..

Hi. Quick question, I'm trying to complete the updated SOC Analyst L1 path. Done everything except the File and Hash Threat Intel room. Managed todo everything but the only thing holding me back is the question "When was the first time the file was recorded in the wild? (Answer Format: YYYY-MM-DD HH:MM:SS UTC)" whenever I input the the right answer, it keeps saying "Uh-oh! The answer you provided may not be in English. Please review it and try again". Any ideas?

You can always try to refresh the page reinput the answer to see if it works

I've tried that. Still no change.

oh you can always check on medium to see how they input it

Tried that. Still the same answer.

uh have u tried restarting ur pc and seeing u can reinput it