#site-support

The bot is our friend

There's a reason it has CM 😆

Not at all because I dared Dark to do it

I thought I did it?

Show us what you're doing on the other shell

and #room-help

oh sorry

how does the bot work? i am curious

probably wrong channel for that

@naive dust It works like any discord bot

i am new to discord as well

😅

That's a question

!github

Huh, that actually worked

how do all bots work lol

Who knew

Bot are programs that can act like users

how does it listen and provide all these informations lol is that an example of automations

They have a command prefix and a set of commands

Discord API

!help

#####	HELP	#####
{required args} | [optional args]

> Room
vpn | Learn how to use OpenVPN to connect to the network.
multivpn | Learn how to look for duplicate instance of your OpenVPN connection.
writeup {room_code} | Get the writeups for a room.

> Help
staff | Displays all staff commands.
help | Displays all commands.

> Fun Commands
skidy | Sends Skidy's emote.
ashu | Send Ashu's emote.
dark | Send a random Darkstar quote.
honk | HOOONK!
boop {@user} | Boop someone!
shibe | Sends shibe!
spaniel | SPANIEL
xkcd | Send a random XKCD comic.

> Social
github | Get the bot's Github link.
twitter | Get the Twitter link.
reddit | Get the Reddit link.
website | Get the Website link.
social | Get links to all our socials.
tweet | Get THM's last tweet.

> Leaderboard Commands
leaderboard | Prints the leaderboard.
monthly | Prints this month's leaderboard.

> Rank Commands
rank {username} | Get a THM member's rank.

> Verifying/Role Assigning Commands
verify {token} | Verify yourself to get your roles.

> Rules Commands
rules | Sends the rules.

If you want to learn how discord bots work in general, do some research

Believe it or not, it's really not as hard as you'd think. I made my first one the other day. The Discord API is, uh.. but it's easy enough to get something running

im actually scared lol

?

so i did 'sudo apt install openvpn' command in my Downloads directory in kali

i did the locate command on openvpn afterward to see where exactly the file was downloaded and there was multiple paths

openvpn is already on kali

my question is what is the exact path i need to put when i do the sudo openvpn command

sudo openvpn <path to config file>.ovpn

umm 😟

openvpn is a program

You need to download your config file

on kali?

Yes.

what command?

OpenVPN needs to know where to connect to, and needs some cryptographic stuff to authenticate you to the tryhackme vpn server

What do you mean what command?

and in what directory?

??

To accomplish what?

to download the config file

You need to download it from the tryhackme website

!vpn

Follow this

and i just got logged out of my THM account for trying to change my passwrd too many times while in another browser in another computer (kali virtual machine)

Close the browser session and start a new one

so i did it and got something like this and checked the vpn in the network section in the settings menu and the vpn tab says that no vpn has been configured is this normal, or is it that the vpn was not shown because it was configured in the terminal, and one more question, how to i turn it off now in the terminal?

Ignore the kali network section

Control C to disconnect

so i need to start a new terminal tab and keep that one open if i want to keep the vpn open right?

That's the ideal

what if i type clear?

You can't type in that terminal tab if the VPN is running

Or well

Either nothing happens, or it breaks spectacularly

Try it

You can type

But you can't run commands

There's a running process in that tab already

so i have foxy proxy installed in my firefox inside my kali machine and when i used it to check my ip its showing my exact ip address linked to my exact location and when i tried to connect to http://10.10.36.181 it worked.

??

Is there a problem there?...

shouldnt my ip have changed since im connected to a vpn

That VPN serves as a gateway into the THM network

It's not an anonymising VPN

And the rest of your traffic will still be being directed normally

ahh how do i change the ip address shown in my firefox or how do i anonymize my traffic?

Use an anonymising VPN...

That has nothing to do with THM though

Similar to @random ravine 's question earlier, anyone know how to paste a link into tryhackme's browser - based kali machine?

i was working on the metasploit room in THM and i found an error related problem in the task 7 "makin' Cisco proud" question #2 that asked : "Additionally, we can start a socks4a proxy server out of this session. Background our current meterpreter session and run the command search server/socks4a. What is the full path to the socks4a auxiliary module? "

i did the command twice and it did not work

this is the result i should've gotten but idk why it did not work for any reasons

Unable to get reverse shells in

From win10 machine

@grim quail #room-help

it took me a long time to connect to the vpn

not knowing that am suppose to use this command

sudo openvpn Downloads/cyberflamez.ovp

currently doing the tmux room https://tryhackme.com/room/rptmux on questions 6-8, when i create a session then detach from it using the shortcut, it doesnt appear when typing "tmus ls". instead i get this message

@raw rampart is it your own machine?

normally this is a problem with your tmux config .... (if you're doing everything right)

or you're(/something) is killing it

does it even say it detached?

that's what it should looke like 😉

my kaspesky suddenly detecting these as trojans

@digital yarrow maybe because it genuinely is malware?

You're complaining that your antivirus picks up readily available exploits as exploits

no i'm complaining

that there is kali in all those viruses

Yes because it's in a file path for kali

Probably you used WSL or something

not familiar with the WSL acronym

Basically. You downloaded or installed something. This isn't directly tryhackme related. Not for this channel.

well most of us downloaded Kali for THM

and thought maybe someone else encountered this issue

@digital yarrow no.

A VM won't be picked up

Because the files don't exist on the host OS

sorry @eager fulcrum

Hey, i've been having an issue with booting up my kali machine on THM. I was having this issue a couple of days ago as well but sometimes when i try to turn it on it lets me in as normal but then kicks me out after liek 5 minutes. Other times it just doesn't let me in.

here is the error

Get this when trying to turn on my Kali

I try clicking 'Reconnect' but that just brings back the eroor

error*

Whats your THM username?

Hackmaster007

cringey Ik😂

Did you terminate the machine?

yes

Because I can't find it running

Ah

If that happens again, please @ me and leave it running

ok will do

@deep trellis

it happened again

the machine is still online

@deep trellis but there's only 35mins left on the box before it terminates

my username is Hackmaster007

You know you can extend them right?

ik but for me its unclickable

dont know why

refresh

i just did that and know the machine isn't deployed????

now*

@deep trellis but there's only 35mins left on the box before it terminates
@void bramble Hi there

Is the machine still online?

I refreshed it and it's offline

So you were using it, and then it gave you that error message. 25 Minutes in or so

Yes

It looks like someone reset your machine's password.

Looks like I am moving up randomized password functionality to this week

Oh

So will I still be able to use the machine?

Yes I think so, going to further investigate incase I am wrong

Sorry about that.

Ok, just wanted to say i
When I got that message I clicked home and the it showed me recent connections with the box ip??

Don't know if that's significant

Nah it's cool

It was like a white window

Guys I am having real issues with access to internet while on the VPN.....this is killing me now. Please can someone take a look at this for me? I cannot hit anything externally on the VPN. Which means I have to kill my VPN which if you are already on the box and accessing the victim machine is a real pain.....

Cloning into 'firefox_decrypt'...
fatal: unable to access 'https://github.com/Unode/firefox_decrypt.git/': Could not resolve host: github.com

That's an issue with your setup

The VPN is set up not to interfere with your internet traffic at all, only traffic to the THM network goes over the VPN

I have my Kali as VM running on a bridged connection. Works absolutely fine off the VPN

Yep, it's an issue with your setup though

sudo traceroute -d 8.8.8.8
traceroute to 8.8.8.8 (8.8.8.8), 30 hops max, 60 byte packets
1 10.9.0.1 (10.9.0.1) 23.211 ms 23.009 ms 22.922 ms
2 * * *
3 * * *
4 * * *
5 * * *
6 * * *
7 * * *
8 * * *
9 * * *
10 * * *

Yep can see it is an issue with my setup....No it is hitting the gateway and not going anywhere

It shouldn't be going via that route, so there's something up with your routing on your VM

I have simply used the VPN config file from the THM site

So missing something here

the VPN config only routes traffic for the VPN

Destination Gateway Genmask Flags Metric Ref Use Iface
0.0.0.0 10.9.0.1 0.0.0.0 UG 50 0 0 tun0
0.0.0.0 192.168.0.1 0.0.0.0 UG 100 0 0 eth0
10.9.0.0 0.0.0.0 255.255.0.0 U 50 0 0 tun0
10.10.0.0 10.9.0.1 255.255.0.0 UG 50 0 0 tun0
54.76.30.11 192.168.0.1 255.255.255.255 UGH 100 0 0 eth0
192.168.0.0 0.0.0.0 255.255.255.0 U 100 0 0 eth0
192.168.0.1 0.0.0.0 255.255.255.255 UH 100 0 0 eth0

That first route is wrong

Ah so looks like for some reason when the VPN is up the default route is is the preferred path

Yeah get that. But I haven't set any routes. Simply used the VPN config file

Hi, I’m having trouble receiving my verification email from tryhackme. I checked spam, regular inbox, everything. Nothing came. I did the resend option countless times and nothing still came. Dark even told me to make sure my email was inputed correctly and I made sure of that. If anyone can help, it’ll be much appreciated!

I recommend emailing support@tryhackme.com about that

Yea I did that yesterday afternoon so still waiting on their reply. Just wanted to know if anyone could help in discord, thnks

That first route is wrong
@eager fulcrum deleted the route and all good
sudo route delete -net 0.0.0.0 gw 10.9.0.1 netmask 0.0.0.0 dev tun0
just not sure why this route would have been created. But thanks for the assist Ninja

Hi guys, in RP: Webscanning, part 3, i should start OWASP-ZAP. But it seems this is not by default installed on the KALI machine?

@rich frost Not yet, but it is on the replacement

sudo apt install zaproxy should do it

Cheers, thanks 🙂

hello all. im having an issue connecting to the welcome 'test machine'. THM says im connected to the VPN (OpenVPN on Ubuntu 20.04). After deploying the machine and waiting upwards of 10 minutes, it's not pingable and i get no website.

Then you're not connected

!multivpn

this is sooo frustrating

@deep trellis It's happening again

Thats actually a new error hm

Taking too long to respond?

this is sooo frustrating
@arctic hull Whats your username?

right. i had two running, killall'd them. when i sudo openvpn <conf.ovpn> , there are two openvpn tasks that are running:

That's fine

Those two are correct

There's one instance of sudo

MartianManhunter

I'm probably redo-ing this box like the 10th time

I've now switched off my Mcafee VPN

Good

didn't realise it was still on...

urgh

re-deployed the weclome machine, waited a few minutes for it to boot up. still not able to access the VM. this seems to be an external issue actually.. does the IP scheme of my local network matter at all?

sorry, should clarify i can't ping the welcome machine either.

Show us the output in your terminal for the VPN

Welp that looks connected

Regen your config and try again

nvm me

@eager fulcrum I have just disconnected my VPN and reconnected and checked the routes, and the default route is back again....

Destination Gateway Genmask Flags Metric Ref Use Iface
0.0.0.0 10.9.0.1 0.0.0.0 UG 50 0 0 tun0

That's not something the VPN configs do

That VPN server, eu regular 2 right?

Which is really weird. Is it to do with me starting the VPN through network manager rather than through the shell command?

This IP - 54.76.30.11

not sure which one that is pointing to

Yeah don't use network manager

I have no idea what that is, I'm guessing public IP?

Ah ok

Yeah don't use network manager
@eager fulcrum yeah just confirmed it by checking the routes before and after.....Weird how network manager automatically adds the routes...Thanks mate.

new config file generated in use. redeployed the machine: no go on the connection.

im going to try a couple things externally. thanks for the help so far, i'll report back one way or the other

Yeah don't use network manager
Network Mangler. FTFY

hi everyone, i never received the verification mail ¿any ideas of what to do? i've checked spam and my inbox, i also resended the code a couple times

Hi

I am still not able to complete Brainstorm. I noticed a bug submission for it here https://discordapp.com/channels/521382216299839518/685858111952781324/717902093863878696 but there is nothing under Known Issues on the room and the room appears to still be acting up.

Is there some update?

I'm having some issues with a Kali vm I built on a laptop. I'm running OpenVPN from the VM itself, logged into tryhackme from that VM, access shows connected and rooms are pingable. But nmap scans are failing in more than one room and I know from the first step of the writeups that I am doing the right scan. Any ideas?

I know it's just the VM I made because if I launch the Kali vm from THM it works fine, but I don't see networking-wise what I've done wrong, especially since the access page says I'm connected and pings are successful.

if my internal ip address is 10.2.x.x, and the Welcome Test machine is 10.10.x.x, is that going to cause me not to be able to ping or access the deployed machine(s)?

Nope, all is well (:

what about ip routes? should 10.10.0.0/16 be routed to my default gateway?
10.10.0.0/16 via 10.2.0.1 dev enp6s0 metric 1000

That looks right yes

10.2.0.1 will be the vpn gateway

nvm this

i connected to the EURegular1 and it works

i think my network and the vpn tunnel network both being 10.2.x.x was causing me the problems

that's what i get for trying to be different on my network lol

@zealous yoke @minor parcel any ideas how I can troubleshoot the nmap network issue?

What's the error message?

@wild steppe , i do not. I'm very beginner myself. if i had to guess, it sounds like something with routing between the host and the kali vm

nmap "host seems down...try blocking ping probes" error

but they're not rooms blocking ping

Then you're not properly VPN'd

what could I do to fix it? I can ping the rooms, the THM Access page says I'm ok

I did sudo openvpn when connecting too

I mean, if you can ping them and nmap ignores it

yeah the same terminal pings ok so I know the room is up all the way, just nmap fails

but it's multiple rooms

I don't know what else to try if the access page says I'm good and ping works

Considering nmap makes the same ICMP echo requests

!multivpn

ok so I went through that, it was 3 lines with grep on the bottom, I did steps 2-4 and then redid 1 to see and it's 3 lines again

the lines are: sudo openvpn...

openvpn

grep openvpn

I don't understand the second one without sudo if I'm not running that

Ok

So

One is a sudo process

sudo is a program

it runs as root

sure, the multivpn says "more than 1 and not grep"

the other is the openvpn process that the sudo one spawns

ok

The multivpn really needs updated

That guide was written before Kali switched to non-root user

haha ok

I have a troubleshooting script here that should be going on the website soon

Would you like to test?

Or is it all working now

yeah!

no still not working, I am back to where I started before coming on discord today

Ok, let's see if this sheds any light

inb4 it either doesn't work or gives us nothing

Download that and run it

Putting it in the same directory as your config is a good idea

But not essential

maybe a dumb question but was it just supposed to be ./thm-troubleshoot from the same directory?

@barren birch script is beautiful

That copy has a mistake in it...

Just fixed it now 😆

Did it work for you?

however, (and im only saying this becuase it tripped me up) if your THMtunnel internal address and the machines ip address on teh same subnet (10.2.x.x/xx), a warning might be nice

let me download it again to be sure, but the first version worked for me as well

I've not updated the copy in here

And yeah, it does not do that. Might look into that check 👍
Thanks

in that case yes, it worked

@barren birch what am I doing to run that script when it's in the same directory as ovpn

Huh?

@barren birch sure thing 😄

@wild steppe sudo ./thm-troubleshoot

that's what I thought but it gave an error

did you make it executable?

chmod +x thm-troubleshoot

oh duh, no

haha

Heh, that helps 😁

just a tad XD

so this is weird, it ran and everything was good but the "your THM address" is blank

Can you screenshot?

Now that's an interesting one

Can you screenshot the results of ip a show tun0 for me?

that matches the THM access page

do you still wanna see it?

Please

Because it indicates my regex has messed up

can I just paste it or do you really want a screenshot?

i think the it's actually showing your local address, not the thm address.

That should just be showing your THM IP @wild steppe, so screenshot, if you don't mind?

thm-troubleshoot

Ok, 11 is in there, why on earth is it not showing

ip a show tun0

Can you do ip a | grep -oE "10\.[2|4|8|9|11]\.[0-9]{1,3}\.[0-9]{1,3} @wild steppe?

@minor parcel Right, that is an easy fix

Other than there being a duplicate range

But I shall do some testing for that in a later version

I'm not sure it's doing anything unless it's slow. I just have a > after hitting enter

That's because I copied it wrong

@wild steppe add a " to the end

That ^^

Sorry, copy and paste mishap

ok done, is it supposed to show something?

it should show one or more ip address

@minor parcel give this a shot

@wild steppe It is, which means regex is being stupid

it didn't show anything, just returned to my user prompt

ip a | grep -oE "10\.[2|4|8|9|'11']\.[0-9]{1,3}\.[0-9]{1,3}"

Try that one?

Really shouldn't be making a difference

But it is

no same thing

@barren birch that worked

ifconfig shows what I'm guessing is the VM's IP, the loopback, and the tunnel

and the tunnel matches THM access page

@wild steppe does just 'ip a ' work?

Yeah, it's the regex @wild steppe

For some reason it's not liking matching more than one character

is that related to why it appears that I'm connected but nmap doesn't see anything?

No, it's just the display

The actual connection will be working fine

yeah I still don't understand why I could ping but that doesn't work

Hm, are you connected by the way?

The script indicates that you are

yeah, still connected

Oh goddamnit

Sorted it

ip a | grep -oE "10\.(2|4|8|9|11)\.[0-9]{1,3}\.[0-9]{1,3}

Try that for me?

• with a " at the end

with an endquote 😛

Yes...

With a closing quote... 😅

yeah that works

matches THM

ah, i see the difference in the regex now. it looked the same at first

Yeah, I got the wrong brackets for it 😆
This is why you don't script at 0300 kids

I dunno if this matters but when I switched back to the vpn tab it had a bunch of decrypt packet errors

haha

Now, interestingly, I am very surprised that it let you past the range check

Oh, I see what happened there

@wild steppe do us one last favour and try that one?

(Then screenshot that VPN tab for me and I'll diagnose it myself 😆)

Oooh

Run that script and show me what happens

Then do sudo killall openvpn

And run the script again

I reckon I know what's going on here

blank again on first run

How on earth does that happen

Ok, kill the vpn and try it again?

yeah on that step, it says try to connect y/n?

Tell it yes

tun0 does not exist before that

And yeah, that happened because I forgot to fix the display at the end 🙄
Did the rest of them

And yeah, just tell it to set it up itself

That means that it will also be checking for certificate errors

It sounds like your certificate has errors

haha everything is good again but blank ip

Yeah, blank IP will now be fixed on my local copy

should I regenerate?

oh ok

I cannot type tonight

Ok, can you do sudo killall openvpn again, then start the VPN manually and show me the errors?

yes

well the manual vpn start is fine, it as after awhile with running the scripts that it started to give errors

I'm reconnected, run the script again? nmap again?

That is really odd. Yeah, try nmap again

What box are you scanning?

rp: ps empire

Now, does blue respond to pings...

There's the question

Can you ping the box?

yeah I can ping it again

Can you nmap it?

I didn't let the nmap finish but it was starting to time out

Ok, anything in the logs?

nmap 10.10.111.5 -A -T4 --script vuln
nmap 10.10.box.ip -A -T4 --script vuln

ha that's weird

Oof, that could take a while anyway

Try nmap -Pn -vv 10.10.111.5

yeah that works

Sounds like the command might have been an issue

why would vuln script literally think the box isn't pingable?

The box is Windows

Blue should respond to ICMP

I don't know if Dark turned off the firewall, or just changed stuff on it

I took that from a writeup when I couldn't get it to work and it still failed

But Windows doesn't do nicely with being pinged, generally speaking

Try your command, but add -Pn?

I think I did and got the same but let me do it again

That working?

yeah, retransmission cap hit

it's about to timeout

It sounds vaguely like your connection isn't liking the intensity of that scan

Anything in the OVPN log?

so you pointed out something I should have realized..when I said it did this with two rooms, I mean this one and Blue forgetting it's the same vm

Haha

yeah there's a bunch of mute reply warning stuff in the ovpn log

Can you screenshot it?

yeah

There was an error going around that was fixed by adjusting the transmission time

@deep trellis if you get a sec, mind checking that? It's a new one to me

Either way, it's working if you don't do anything like a -T4 scan @wild steppe?

let me take that out and just try the vuln script

👍

well...

thanks for your time today haha

Did that work? 😁

yes lol

Haha, fair enough

I took out the t4

Well, gave me a chance to give that script a dry run

So ta for that 😁

that script is cool though,let me know if you need a guinea pig again

Hehe, thanks

I've gotta logout, see you guys...

i have a problem connecting via openvpn

How so?

What's wrong? We need more detail

getting to it 😉

i did sudo openvpn name.ovpn

and i see a tun0 in my ifconfig

inet is the same as destination though

and it wont let me get to my machines

also whatismyipadress.com still shows my non openvpn ip

Get to your machines? What do you mean?

It's not that type of VPN

It doesn't change your IP address, it doesn't anonymise at all.

ok

but when it try to go to the machines website (10.10.xxx.xxx) it will not let me get through

Are you sure it's running a website?

ok got it had to close browser 1st

thank you 🙂

Will there be new ways to pay subscribtions? Like ideal or molly?

wait nvm this is not for tech support

Uh... what?

Localhost is whatever computer you're using at the time

Yes, you could do that, in a variety of different ways

Not really THM related though

Nope.

^^

I mean, you can ask in #general

Oh sorry my bad

But yeah, the server is TryHackMe related 🙂

Hey guys, I'm very new to Linux and pentesting. Just started the basic linux tutorial room and im trying to ssh into my VM as per the tutorial however whenever i try to connect through Putty om having a connection error 'connection timed out' im following the exact instructions but it just doesn't want to cooperate. Any ideas?

You connected to the VPN @zenith bear?

Apparently i wasn't! Thanks mate, i think i musn't have connected properly.

All good now.

Hello there. Shodan.jo room task 4 question number 2 needs to be updated. Am I right or I’m missing something?

On the in browser machine page https://tryhackme.com/my-machine should I be able to choose where the machine spawns? Clicking on "United Kingdom" doesn't give a drop down like it appears it might.

@narrow charm yes

Thank you

@normal garden I dont believe that you can change that you might be able to by changing where your vpn is but it might also be that it can only spawn in the UK

@normal garden Coming soon™️

@naive dust What is the issue you're having?

@naive dust Please do not DM me - if you require assistance I'm more than happy to assist you within this room.

Hello, anyone able to help me out?

Don't ask to ask, just ask the question

yes sir

hello im trying to scan a machine in the room basic pentesting and nmap is saying that the host is down I try to ping the Ip and I dont get any response, and yes im connected to vpn.

@radiant jasper not all machines respond to pings, try scanning with the -Pn flag to skip ping check in nmap

hello im trying to scan a machine in the room basic pentesting and nmap is saying that the host is down I try to ping the Ip and I dont get any response, and yes im connected to vpn.
@radiant jasper When it says the host is down it also suggests to use -Pn flag just in case??

Naughty, I just responded to this... you're doing it again

I am slow at typing

haha

I was going to comment too.

anyways, I've been having some weird problems when doing stuff on the labs. I'm using my own Kali Machine, fresh install.
While working on Steel Mountain there was absolutely no way the intended Metasploit exploit would work. I did check if everything was ok (I'm not total beginner just in case), I followed walkthroughs, I followed livestream from @grave leaf, but nothing seems to work, weird, even when it's supposed to since my install is fresh and all the steps are recreated the same way. Then I tried manual exploitation but I would always not be able to do certain steps on the machine like running malicious file, again, weird things. I moved on and now I'm on Jenkins but there is also weird stuff going on and at this point I'm not convinced that the issue is on my side. Nmap scan will not return results, even using flag -Pn. I also tried different flags but nothing comes back. I also tried going straight to the first intended ip:port on the browser but there's no answer. Some stuff works but a lot of them doesn't. When I check writeups to certify myself I'm not doing something totally weird, I'm not.
My machine doesn't not seem to be the problem since I tried similar stuff to boxes on HTB and there's no problem.
My guess is that maybe there's something related to the connection pack I was assigned (I did download new one), restarting machine does not work.
Any idea on what to do next?

I do remember experiencing some troubles on past machines but now I do not remember exactly what

Maybe the IP that I'm assigned (always the same one so far, even with new connection pack) fell into some kind of filtering or something, is that possible?

Similar to @random ravine 's question earlier, anyone know how to paste a link into tryhackme's browser - based kali machine?
@mint gust solved, you have to enable clipboard if you are using chrom

@manic sinew to me that looks like a connection issue. Did you see anything weird in the openvpn log?

hm, I did not dig to deep into it, I close the connection and open again and appears connected, maybe I can paste it somewhere to get some help? I'm not too expert on these issues. First I'll see if I find something weird by myself

you should be able to paste it here, it it's too long it should automatically upload it as a file

alright so, on my big message I talked about 2 machines, Steel Mountain and "Jenkins" (actually, Alfred). Nmap -Pn wasn't showing results. I tried to restart the connection with THM, restart my machine and Alfred but nothing. Now for whatever reason it is detecting the ports. I don't see nothing weird on the openvpn log but I'll paste it here.

about Steel Mountain, I deployed it to try to see if the issue there was fixed but not

of course now we get to a point where the issue could be the connection or something that I'm doing wrong to pwn the machine, and I don't want to spoil, but from my perspective there's nothing wrong on my side. Showing the steps that I'm following to "pwn" the machine could maybe point out the error

The Mayor (also mentor) did try to help me the other day during his livestream and before but we couldn't find the issue

it's basic exploitation but it just doesn't work

openvpn log (I censored a bit my ip):

No need to censor local ip

can't somebody start poking my machine around? what if I have a vulnerable service open and my machine is on bridge mode?

VPN is on the VM right?

yes

connects fine from what I see

room/jokerctf is broken

please fix

@distant acorn how is it broken??

@celest sapphire any idea? It's a bit frustrating to spend hours and have the feeling that the fault is on the other side

I cant connect vpn

lxd is crashing

How so @naive dust

tried restart the box, still crashing

lxd for that room is known to be buggy

You’ll have keep redeploying and hope to get lucky

i tried redeploy 3 times, still no luck

Please respect Rule 1 @naive dust. We can help you here if you get a bit more detail

@zealous yoke I cant connect to OpenVPN its showing error

What’s the error?

disconnection. and im using Linux machine

!multivpn

Try that

I’d recommend sudo killall openvpn and connecting in one terminal only to make sure

Hey @zealous yoke, is there a way to receive another ip? I would like to grey out this option from the source of my problem

@zealous yoke thks let me try

@manic sinew iirc you get a different IP after regenerating the config

hm, I did regenerate and got the same one, that's why I was asking. I'll try once more

regenerate button keeps giving me the same one always

maybe it was switching the VPN servers that gave different IPs

yes I did that, got new IP but problems still here

huh, that is really weird

mind passing the output of ip a?

6: tun0: <POINTOPOINT,MULTICAST,NOARP,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UNKNOWN group default qlen 100
link/none
inet 10.9.33.173/16 brd 10.9.255.255 scope global tun0
valid_lft forever preferred_lft forever
inet6 fe80::6dc2:b699:5c67:ab5/64 scope link stable-privacy
valid_lft forever preferred_lft forever

full output if possible

1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000
link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
inet 127.0.0.1/8 scope host lo
valid_lft forever preferred_lft forever
inet6 ::1/128 scope host
valid_lft forever preferred_lft forever
2: eth0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UP group default qlen 1000
link/ether 00:0c:29:70:0f:dd brd ff:ff:ff:ff:ff:ff
inet 192.168.78.207/24 brd 192.168.78.255 scope global dynamic noprefixroute eth0
valid_lft 1317sec preferred_lft 1317sec
inet6 fe80::20c:29ff:fe70:fdd/64 scope link noprefixroute
valid_lft forever preferred_lft forever
6: tun0: <POINTOPOINT,MULTICAST,NOARP,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UNKNOWN group default qlen 100
link/none
inet 10.9.33.173/16 brd 10.9.255.255 scope global tun0
valid_lft forever preferred_lft forever
inet6 fe80::6dc2:b699:5c67:ab5/64 scope link stable-privacy
valid_lft forever preferred_lft forever

hmm, so it's not colliding with the other network

I'm using nordvpn on my main machine, not sure if could be

Don't do that

It tends to break stuff

might be that

at this point what I'm using to "check" if things are working or not is launching the intended exploit from msf in Steel Mountain

guyz i cant to cant connect to vpn

You're going to need to be a lot less vague than that

can't believe it worked

it was the damn vpn

@naive dust less vague.
#site-support message

why it comes like this, whn i try to connect with vpn

You needed to start with that

Don't make us keep asking for badic information

Are you in Egypt?

indain

Check your system time and your network connectivity.

@eager fulcrum let me try

Hi,

I keep getting theWARNING: Failed to daemonise. This is quite common and not fatal. Connection timed out (110) error on the vulnversity room and i cant seem to fix it

plesae help

That means you're not listening correctly

Or you didn't set the settings right in the shell

#room-help

i put it on port 443

and just do nc -lnvp 443

so

I mentioned 2 things

And you've partially covered the first.

uh, ive changed anything in the reverse shell code apart from local ip and port

i havent

Local IP set to your VPN IP?

i use in browser

cos my vm is weird

Set to the 10.10 address of the kali browser machine?

oh

i used the local

ill try it

The local is 10.10

oh i did the one that said 173. whatever

Ninja, A weird no response thing happened with me while trying to open www.tryhackme.com onto chrome

(Diagnosed a little bit, It was only happening with my particular IP)

check Ping Log here: https://pastebin.com/M3kxYLrX

*Fixed automatically after 5mins.

Wanted to know, if my Ip got banned (I done nothing, just randomly opened thm on random time) or was website down?

okay! It's again happening with me LIVE!

Site is up

If you were IP banned, there would be a good reason. And you'd be told

Issue is on your end

Not tryhackme's

sry to bother u but its still not wokring

working

ohh okay!

❤️ I'll check!

sry ninja but its not working

i feel rly bad pestering u

I can't tell what you're doing wrong because I can't see what you're doing

ah ig

IP needs to be the 10.10 IP of the kali machine

yup ive done that

Not of the machine you're attacking

wait

how to i check the 10.10 of the kali machine

ip a s

i feel so dumb lmao

thanks

❤️

Working?

VPN keeps dying again - when performing scans

Checked multivpn?

leme check

Yeah, only 1 instance running

Only connected from on device too?

Reconnected?

Happend a few weeks ago, exactly the same thing, dies -> reconnects -> scan -> die

Weird. I'm out of ideas.

hey ninja

i put the reverse shell code im using in a pastebin

https://pastebin.com/vsJtF9KT

but sadly it still dont work

I don't know all the information here, I can't help much more

oh

the known issues say thats a thing

so are there any communities that'd know

Known issues for what, vulnversity?

yup

Specifically says what?

it just says the error message im getting

cos u know u can click options then known issues

its in there

last one

Yeah there's no detail there and that error tends to be user error

It's probably from when anyone could add a known issue

ooki

wait omg

i got it working

tysm ninja!

❤️

i appreciate the help

I am trying TryHackMe for the first time. However, when I connect using Openvpn to the Simple CTF and then click on Deploy, although it says I have an active machine, no virtual machine window appears for me to complete the task in. What am I doing wrong?

@naive dust For the vast majority of machines on the site you don't get in browser access

You're given an IP address and told to hack your way in

That's the case for Simple CTF

OK, that's helpful, thankyou. And for your swift response!

VMware 15.5.6 is out, sorts the CAPS LOCK issue, incase anyone else had that issue

Oh boy did I

They might as well rename 15.5.5 to 15.5.CAPS_LOCKED

+1

Hey Guys, just trying to complete the rpburpsuite room but I can't get the answer right for task13 #1 and I have tried everything. Can anyone help if they have got the answer and where abouts it may be hiding please 🙂

No stress, I found the answer thanks

@zenith urchin Good for you and also if you have any questions in future you can ask in #room-help 🙂

Thanks

Can anyone tell me how to configure
my router for openvpn>/??

@cursive lagoon As we said, you don't configure your router at all

then how do i fix it?

Fix what?

We can't help you if you don't tell us what's wrong

openvpn works one network and doesnt work on another

Not a tryhackme issue

hey there, does the tryhackme network is sometimes overloaded / unstable ? preventing some revers shell success ?

then i m not geting any support?

@cursive lagoon You're not getting support for a problem that you have a solution to. Use the other network.

@pearl hill Nope.

@eager fulcrum thanks

If you're not getting a reverse shell, you're either not connected properly, doing something wrong, or not running the VPN directly on kali.

the other one is too slow and not my own

I suppose the error is indeed on my side @eager fulcrum thanks for the info 😉

@eager fulcrum ?

@cursive lagoon Quite clearly that wasn't directed at you, seeing as it doesn't relate at all to what we were discussing

??

You don't have to do any setup on your router to allow openvpn

Do you have a specific question to answer?

Or would you like to show us what's not working, with screenshots and enough information that we can try to help you?

here is the output of openvpn username.ovpn:
Wed Jun 10 23:36:02 2020 OpenVPN 2.4.9 x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] built on Apr 21 2020
Wed Jun 10 23:36:02 2020 library versions: OpenSSL 1.1.1g 21 Apr 2020, LZO 2.10
Wed Jun 10 23:36:02 2020 Outgoing Control Channel Authentication: Using 512 bit message hash 'SHA512' for HMAC authentication
Wed Jun 10 23:36:02 2020 Incoming Control Channel Authentication: Using 512 bit message hash 'SHA512' for HMAC authentication
Wed Jun 10 23:36:02 2020 TCP/UDP: Preserving recently used remote address: [AF_INET]3.104.196.208:1194
Wed Jun 10 23:36:02 2020 Socket Buffers: R=[212992->212992] S=[212992->212992]
Wed Jun 10 23:36:02 2020 UDP link local: (not bound)
Wed Jun 10 23:36:02 2020 UDP link remote: [AF_INET]3.104.196.208:1194

There are no problems there.

there is moree

w8

Then show us more.

Screenshot

The whole thing

here

Check your system time, it needs to be accurate

If you're in Egypt, it won't work at all

i am from b

bd*

??

my time is accurate

it works on another network..

Ok, then the issue is with your network

Outside of what we can really help you with

should my time be gmt 0?

Your system time should be UTC, and then whatever offset you need

oh ok

yha

thanks for ur help

#general this isn't directly tryhackme related

my bad

Saw tech support and thought it mean tech overall

this is why there are descriptions to the channels

Hi guys, im trying to do the rpburpsuite room. im trying to do the sniper attack Task9 #12. Nothing is coming back, and im getting these errors. The room is deployed. Ive got 40mins left on it. Not to sure whats going on

Did you turn off url encoding?

yeah its turned off

Seems like a #room-help question more than tech-support. This is probably an issue with user configuration.

What are you trying to run it on? If it's Windows, you may need to modify defender settings.

ok cheers.... Im in Kali on VMware

Let's move to #room-help and see if we can sort it out. 🙂

so TLS handshake error with openvpn, no way around it?

the vpn is blocked in my country

Wait for TCP VPN or subscribe and use the subscriber kali. Egypt? @tawny cliff

yup

Those are your options then.

alright, ty

You could try tunnelling your traffic elsewhere first but VPNs inside VPNs often go wrong

i'd imagine so that's why i haven't tried it

can you explain this question

@naive dust it wants you to list the number of ports under 1000. So if port 21, 22, and 8080 and open, the answer is 2

i was scan in nmap and there is 23 53 80 81 139 445 @surreal yacht

under 1000

@naive dust I think your question is better suited for community-help or community-hints depending on what you're looking for

hey 🙂 here, at "learn Linux" room, tesk 11 they ask me to execute the binary file "shiba1", whare I can find it? thanks

https://tryhackme.com/room/zthlinux#

#room-help but shiba1 should be in the home directory of shba1 iirc

Cant find this directory, i will ask there, thanks

i tried setting up the openVPN for Linux...i did everything that was said but after i 'apt-installed' the directory was not there

it just...did not exist

any help regarding this? if yes, please ping me along with the answer

You just need to sudo apt update && sudo apt install openvpn

then use the openvpn command with the path to your config file @spark lodge

!vpn

i see

now..what is the default path for the config file?

It'll be wherever you downloaded the config file too

i see

thanks for the help..

umm..i did that

still nothing

@zealous yoke

@spark lodge If you downloaded the config it'll usually be in your Downloads folder by default

its empty...

cd ~/Downloads && ls *.ovpn

If it's not there

Try downloading it again, and check where you're saving it..

how do u download it?

apt install openvpn?

Your config file

Not the OVPN client

oh i didnt get it

https://tryhackme.com/access

thanks ill get it

what should i do after getting it?

sudo openvpn ~/Downloads/*.ovpn

Then open a new terminal and use it

ok

what bout the client?

What client?

apt install openvpn

sudo apt update && sudo apt install openvpn -y && sudo openvpn ~/Downloads/*.ovpn

Use that instead, just to be safe

ok thanks a lot

and after that...i can start doing the room?

Mhm

through any browser?

Depends on the room

If it's got a webserver, yes

its a room that has got machine IP

That doesn't mean it has a webserver

Which room?

https://tryhackme.com/room/picklerick

It has a webserver, but you'd be better starting with tutorials

i see

Learn Linux, being a good bet from the sounds of it

any begineer suggestions?

https://tryhackme.com/room/openvpn
https://tryhackme.com/room/zthlinux
https://tryhackme.com/room/rpnmap
https://tryhackme.com/room/ccpentesting

In that order

wow thanks

i havent done the 'welcome' room yet XD

It would certainly help with the VPN

yep

is the TCP openvpn out yet?

Not yet @valid fossil I'm afraid

ok

Not a TryHackMe-related issue friend

Fully serious

Hey boi´´´

´´´

Thu Jun 11 14:04:00 2020 UDP link local: (not bound)
Thu Jun 11 14:04:00 2020 UDP link remote: [AF_INET]54.76.30.11:1194

That wasn't direct to you dw @valid fossil, there was another whose just left

That looks right @split horizon

idk you replied after me last messeging so

does it?

They deleted messages

give it a few seconds it sometimes takes a couple of seconds to get past that

ok

It looks like it because messages have been deleted

yeah mb

cmn is

its suck for 5 - 10 mins at that now

Mhm

switch vpn server, regen config and try that (:

already done

also restartet networking etc

including switching vpn servers?

yeah

i was usin europ1 now im on europe #2

!multivpn

use sudo killall openvpn for the 3rd step

yeah
@split horizon if you are in Egypt, openvpn is currently blocked

no

i killed all sessions

and restartet

seems stuck again

are you using virtual machine

ill doo a full restart now

no

Linux or Windows?

kali

newest version

@barren birch break out the troubleshooting script

ill restart now cya

Uh, gimme a sec. On my phone

thm-troubleshoot

I do not believe that worked.

Hopefully will be the latest one though.

Hi, I'm currently working through the Linux Challenges. I've realised there's no sound coming out of the machine at all. Do I have to do this on my own box via OpenSSL so I can move it back to Windows to open the file for flag 32?

Download it to your local

@summer basalt There's a large number of ways you can grab a file from the box.

Thanks 😄

@barren birch should I download youe file

sorry guys, I don't know if this is the right channel, but how do I change my billing to take place on the last day of the month?

anyone know?

You will have to wait until your current subscription ends and then renew it on the day you want

You can't specify billing dates - it is 30 days from whenever it's been started 🙂

will I lose my stats, etc?

Nope!

wow thanks 🙂

You just won't have subscriber benefits e.g. if you're in the middle of a sub room you can't complete it

ok

@split horizon I mean, if you've not sorted the problems then yeah, give it a shot

good news though

thanks 🙂

any time ^^

enjoy your evening 🙂

and you! Thanks!

Hello!

Is there any known issue with Hackpark? There are serious timeout kinda problems every time, even restarting the box. My Openvpn shows no errors and I do not have any other VPN on. Sometimes the web server loads automatically and sometimes takes very very long, also the shell ends up dropping

!multivpn

Hackpark dies after an hour, but other than that it was stable for me

all the boxes dies after an hour no?

also the button to add 1h almost never works

even adding the extra hour the connection dies

It doesn't work for hackpark

For every other room, more or less, it works fine

I had the same on Steel mountain

There's avery very small number of exceptions

Which tends to be windows boxes

I see, anyways, I did kill openvpn process, will give a try again

@barren birch [+] Connecting....
openvpn: no process found
[-] Fatal Error: Inline Certificate is invalid

your script is printing that

openvpn: no process found worries me

Inline Certificate is invalid

Means you need to switch server and generate a new config

before i killed all openvpns

should i run it before?

Can you screenshot the output?

after exec the openvpn before this time?

Whichever

one sec

-] Script is being run as a low-privileged user
Would you like to run this script with higher privilges automatically (Y/n)? y
[sudo] password for xyz:
[+] Re-running with root permissions
[+] Stable internet connection
[+] OpenVPN is installed
[-] tun0 interface does not exist
Would you like the script to attempt a connection automatically (Y/n)? y
[+] Connecting....
[-] Fatal Error: Inline Certificate is invalid
Please regenerate your VPN config on the access page (https://tryhackme.com/access)
If errors persist, change server then regenerate the config.
If all else fails, ask for further assistance on the TryHackMe Discord server, subreddit or forums.
[-] Exiting

where from is your script taking my connection file?

download path?

If it doesn't find the config in the current directory, it'll ask you to tell you where it is

Meaning they're in the same folder?

Either way, you have a dud config file

Regenerate it on a different server and try that

the tun0 is still missing

do i have to create it myself

or should openvpn do it

The script will kill the connection that it opens if it detects errors

Are you using a new config file?

yeah

[+] Stable internet connection
[+] OpenVPN is installed
[-] tun0 interface does not exist
Would you like the script to attempt a connection automatically (Y/n)? Y
[+] Connecting....
[-] Fatal Error: Inline Certificate is invalid
./thm-troubleshoot: line 8: 2201 Killed openvpn $ovpn < /dev/null &> $ovpnoutput
Please regenerate your VPN config on the access page (https://tryhackme.com/access)
If errors persist, change server then regenerate the config.
If all else fails, ask for further assistance on the TryHackMe Discord server, subreddit or forums.
[-] Exiting
xyz@xyz:~/Downloads$

Then yeah, run the script, and let it create the tun0 for you

its still not working

Same thing?

yeah

still saying tun0 not there and certificate is not right

Ok, could you please run it manually for me, then take a screenshot of the output

Preferably an actual screenshot

ok

Sounds like something wrong with the generation. I know there were changes made recently

the thing is i guess my ip is in the screenshot 🙂

lemme check give me a sec

It should just be your VPN IP

idk what ip it is but not mine

@vapid dawn could I get you to check this quickly?

That's after regenning and switching servers

of course i restarted pc too // unfortunately i dont have any option to test on other devices

Is there anything missing from that screenshot by the way?

em i guess not lemme check

just did one from the first line too

but its basicly all the same

Oh, I'm just trying to figure out where the heck my script was pulling the certificate error from

Do us a favour and check your system time actually?

TLS could be that

uff that could be it

its a wrong time zone

does that matter 😮

Right then. Do my a favour would you?

i try to change it

if thats it 🙂

Before you do

Give that version a shot

yeah lemme try

what do you need me to check @barren birch ?

same result

in new script

Could you check the screenshots from @split horizon @vapid dawn?
VPN problems. Script is currently indicating a certificate error. Wondering if it might be timezone related though

timedatectl set-timezone Europe/Berlin is not working

im not a linux pro is this the right syntax?

you're running it from linux right?

what geographic location are you in?

countries light Egypt block OpenVPN

yes

Europe Germany

your current time on your system should be 20:59

is that right?

it should be yaeh

but it isnt

cause i set a wrong time zone on kali install

i tryed changing it with timedatectl set-timezone Europe/Berlin is not working

but sadly no results

why don't you tried following this: https://www.tecmint.com/synchronize-time-with-ntp-in-linux/

Also, @split horizon, mind copying and pasting the stuff you screenshotted in here? I have a little testing of my own to do

should i c&p you the stuff of the screenshots

xyz@xyz:~$ sudo ntpdate 1.de.pool.ntp.org
11 Jun 23:07:21 ntpdate[4113]: no server suitable for synchronization found

should i c&p you the stuff of the screenshots
@split horizon If you could paste it as text that would be great 😄

one sec

can i pm you it i dont wanna spam it here

I have a couple of things to check with that script. It's still getting improved

you decide

Yep, sure

if its ok that i post it in here

its a long text

Either works for me

hu Jun 11 23:09:22 2020 OpenVPN 2.4.9 x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] built on Apr 21 2020
Thu Jun 11 23:09:22 2020 library versions: OpenSSL 1.1.1g 21 Apr 2020, LZO 2.10
Thu Jun 11 23:09:22 2020 Outgoing Control Channel Authentication: Using 512 bit message hash 'SHA512' for HMAC authentication
Thu Jun 11 23:09:22 2020 Incoming Control Channel Authentication: Using 512 bit message hash 'SHA512' for HMAC authentication
Thu Jun 11 23:09:22 2020 TCP/UDP: Preserving recently used remote address: [AF_INET]34.253.19.14:1194
Thu Jun 11 23:09:22 2020 Socket Buffers: R=[212992->212992] S=[212992->212992]
Thu Jun 11 23:09:22 2020 UDP link local: (not bound)
Thu Jun 11 23:09:22 2020 UDP link remote: [AF_INET]34.253.19.14:1194

some later theres a message that he tryes again

and then prints the same out

Perfect, thanks 🙂

@vapid dawn the site you showed me // after this sudo ntpdate 1.ro.pool.ntp.org or this sudo ntpdate 1.de.pool.ntp.org its prints sudo] password for xyz:
Error resolving its: Name or service not known (-2)
11 Jun 23:12:35 ntpdate[4263]: Can't find host its: Name or service not known (-2)
Error resolving prints: Name or service not known (-2)
11 Jun 23:12:35 ntpdate[4263]: Can't find host prints: Name or service not known (-2)
11 Jun 23:12:44 ntpdate[4263]: no server suitable for synchronization found

you have internet connectivity right

yep

(Script would definitely have caught that one 😁)

im also chatting from same laptop soo

🙂

might be your ISP blocking NTP packets

before all this, did you try regenerate your server?

** config file?

yeah

tryed EU 1 EU 2 and VIP 1

also are you running it from inside a VM

or just a host

?

host

and from a home network and not a corporate network?

usually i use the web kali host but there is a box that need packages thats not running on the web one cause its not saving any changes on restarts and stuff

home network

firewall is not catching anything too

why don't you use the GUI to change your time settings?

not showing time settings in settings

Is this a VM?

no

what distro of linux are you using?

kali

newest version

https://forums.kali.org/showthread.php?28621-How-do-you-change-the-time-in-kali&highlight=timezone

https://superuser.com/questions/870068/how-to-set-system-time-on-kali-linux

try checking those

Kali is funny with times -- I was messing around with it when I was testing this

the gui is olny showing american time zones

This isn't going to fix it, for the record, but it helps me in terms of improving the script for future use. Could you possibly run this copy once for me? Just to check that it gives the right error for people with your problem 🙂

yeah

Thanks ♥️

im pming you results

Hi all, I'm trying to see a video in the hackpark room but is too slow.

Do you know how can I solve this ?

How can I change my username? The registration process removed special characters, and I'd like to switch to a different username, if possible.

Coming soon

@eager fulcrum Ok, thank you.

i mean i have wrong time on my kali

still works just fine

Wrong time zone

Right time

might be

hii i have a problem. i can't put my answer in the "RP: tmux" task number 1 and Question number #3 and #5 i follow all the clue hint, the question, the cheatsheet, everything i can find but it still sead my answer is wrong why is that?

and number #6 just know did the same thing
pls anyone help @everyone

asking everyone isn't a good idea @dull creek also... maybe try one of the following rooms: #room-help , #room-hints and if you don't get an answer there try #692465827143876689 . This channel is only for stuff that are of technical kind.. not for questions that are filled in (probs) incorrectly

ok

@dull creek Try the full name of the key #3

@flint arrow he's been redirected to the help channels 😉

I saw now, apologizes

Please Guts, how can I get a Discord token?

logged into shiba3 and this popped up, is it required?

No

It is located on your profile on the THM site in the "Other" tab @fossil dome

@zealous yoke Thanks 😁

howdy