#site-support

Email support@tryhackme.com

Well, no premium for me today I guess 😦

@bronze vale i was going to install vmware and there is about 40 different installations i can get, which one do you reccomend for a beginner?

If you’re talking about VMware downloads* I believe it’s called VMware workstation, which is the free version. Get recently released installer with a .iso file for Kali Linux

alright cool i already got the iso thank you

That's still probably a question for #general

alright lol

VMWare Workstation is really great, but it has a 30 day trial

Like when it comes to issues, I've had none, but I remember having some weird stuff happen with VBox even with my short stint with it

VMware workstation player is the free sorry*

what is my tryhackme ip?

is it the openvpn ip

The IP of your attacking machine, for reverse shells and stuff, is your tun0 adapter IP

your openVPN IP

my attacking machine meaning the ipv4 address?

Your attacking machine meaning the machine you're running the VPN on

oh okay

so the tryhackme ip is the ip that shows in openvpn

I mean I don't know the context for this

But probably?

im trying to set my lhost

in metasploit

That will be correct then

if it's a 10.x.x.x IP

oh

its not

It will be 10.x.x.x, but not 10.10.x.x

Are you on a linux machine?

in the metasploit room, question 9 in task 5 says to set lhost as my tryhackme ip

Are you on a linux machine?
@eager fulcrum im on mac

Are you using a VM to attack or are you running metasploit on macos?

im running metasploit on macos

Ok, you'll probably need to disable your firewall as well.
If you go to http://10.10.10.10/ it will tell you your VPN IP address

oh okay thank you

if i dont disable my firewall will that effect anything

Yes, your exploit will not succeed

Because the reverse shell connection will be blocked

okay

Most likely at least, it depends on the config

disabling my firewall is dangerous tho is there any alternative solution?

Most likely at least, it depends on the config
@eager fulcrum i'll try the exploit just incase

disabling my firewall is dangerous tho is there any alternative solution?
@simple needle Not particularly, but there's a reason most people attack from a VM

It's just your device firewall, there's not that much risk associated with it. Attackers till can't talk to closed ports.

i would attack from a vm but running just an iOS simulator slows the device a lot so a vm is most likely not gonna run

It's just your device firewall, there's not that much risk associated with it. Attackers till can't talk to closed ports.
@eager fulcrum okay thank you

I run a VM on a 2014 mid range business laptop happily.

If you have a tryhackme sub you can use the in browser kali or attack machine

I run a VM on a 2014 mid range business laptop happily.
@eager fulcrum oh wow

If you have a tryhackme sub you can use the in browser kali or attack machine
@sharp bear yeah ik but i unfortunately dont have a sub

i turned off my firewall and ran the exploit but im getting the error: Handler not able to bind to 10.x.xxx.xx

VPN probably isn't running correctly then

I really really recommend creating a kali VM and using that. Run the VPN directly in Kali.

i'll try that

thanks for all the help

what is the username for Nmap room

You're not meant to log in to that machine

yes

yes
@shy holly What do you mean by that?

I mean I am unable to login, and i need username and password for that machine a

You're not meant to log in to that machine

Oh okay

No, you do not.

You don't touch the VM for that room, other than nmapping it

not sure if i missed something but why are the ip addresses not shown right away anymore?

Skidy/Ashu won't disclose the exact reason

So it's probably security related

ohh... ok icic

Hello all, my apologies if this is not the correct place to ask, but how can I copy a flag from the in browser terminal to my own browser? I'm on a mac

There should be a button on the left hand side

Give the site access to your clipboard

yes sorry, this browser is in the room itself, in linux challenges

not my kali machine

SSH in.

ohhhh

You'll have a much better time.

https://tenor.com/view/smart-thinking-thoughts-think-ponder-gif-7713620

good call, thanks!

Im using parrot for refrence, How am i able to tell if my openVPN is setup correct and how do i run it if it is?

You mean as if you're connected to the network?

yeah

You can use any box to really check, but this room is good for testing connectivity

https://tryhackme.com/room/openvpn

ah alright cool thanks

Once you run the command on Parrot, open up a new Terminal window and let it sit in the background doing its thing

yeah its connected, thank you!

@naive dust @flint hawk http://10.10.10.10/ is good for testing your connection

Always up

dope

I couldn't remember what the page was on the top of my head 😅

@eager fulcrum VMWare worked 🙂

Well that's weird but good news

Thanks for all your help yesterday, I appreciate it

I try my best

Hi, room: Attacktive Directory, the Task 2 show how to install impacket. Kerbrute is also installed with the same repo, but i have discovered that the version of kerbrute is old, what to do? what's wrong?

update it

how? I mean which is the right procedure? the room show how to install impacket, if that is the main repo, how can i update it correctly?

Hello, is anyone responding to emails sent to hello@tryhackme.com?

Hello, is anyone responding to emails sent to hello@tryhackme.com?
@minor fjord Same here. still waiting.

@minor fjord they’re quite busy but the admins will be trying their best to get through them all. There’s only three people.

Oh okay :/

the tryhackme bot wont verify

"Your message could not be delivered because you don't share a server with the recipient or you disabled direct messages on your shared server, recipient is only accepting direct messages from friends, or you were blocked by the recipient."

derp

reread it

Are you only sending !verify and your token?

nah its cause i block dms

Yeah that'll do it 😅

done 🙂

hi, i need help with ssh, who can help me?

What do you need help with specifically? :)

i use kali in virtual machine, so i installed openvpn and started it. after that in task i should deploy a machine and connect to it via ssh. so i tryed to and it didnt ask me about username or password, it just said that fingerprint created and added. so i tryed to connect to that ip but whatever i do it said - go away

i just dont kno wht to do already(((

Are you using ssh username@machineip as the format for ssh?

im trying) but - wht username to use? it didnt ask and yes user@ip

Is this the learn Linux room?

yeah must be

Both the username and password are shiba1 :)

omg

OMG)))

someone really should change the explaining to that lesson))

any solution for this issue?

Yeah it’s a little tough, happy hacking @ionic lantern

i really thought that shiba1 was just for example)))

i cant connect to my vpn

@digital apex have you changed VPN servers

yea

and also redownloaded

and then tried

@deep trellis

Could you assist please

User is getting a handshake failed error on OpenVPN

They have attempted to switch VPN server and redownload the configuration file.

i m in middle of koth

;-;

Can you try typing killall openvpn and re-start it

it says no process found

Hm okay

Maybe try restarting your pc.

its solved

It’s solved?

i changed it again

killed all openvpn process

and it worked on us 1

Oh okay awesome

thx @bronze vale

Which server were you trying to connect to

Originally

eu 1

Strange, okay thank you

Is there a way to change the discord related to the TryHackMe token?

Not currently.

Why is there an issue with your token?

I changed my Discord account and linked my old account ... This is the subject of my email but I still have no response

You’ll need to ping one of the mods and kindly ask them to remove the token off your old account :)

Okay, thanks you

and again(( wht shell im using when logon?? echo says bash - wrong answer

Room, Task

welcom room/12

Since when welcome room has Task #12

well - it is learn linux (but in adress in link it is welcome room) / 12

Learn Linux Room

What task

12

You can't run su shiba2 ?

How do you specify which shell is used when you login?

su shiba 2 is not the problem at all)

Task 12 doesn't ask you to do that at all

But you can change the defualt shell after you login using chsh or just temporarily use another shell by just invoking it

[Task 12] su

Now that we have our next user password, it seems like a good time to cover su. su is a command that allows you to change the user, without logging out and logging back in again. For example if you wanted to switch to shiba2 while you're the user shiba1, you would type su shiba2 . You would then be prompted for a password and if you entered shiba2's password you would then become shiba2

Note: Typing su on its own is equivalent to typing su root.
#1

How do you specify which shell is used when you login?
[Task 12] su

Now that we have our next user password, it seems like a good time to cover su. su is a command that allows you to change the user, without logging out and logging back in again. For example if you wanted to switch to shiba2 while you're the user shiba1, you would type su shiba2 . You would then be prompted for a password and if you entered shiba2's password you would then become shiba2

Note: Typing su on its own is equivalent to typing su root.
#1

How do you specify which shell is used when you login?

Ah that task, my b

Try looking at the help

su --help

answer -s ))

Don't post answers here @ionic lantern 🙂

It's borked, halp

Restarted, regenerated, changed servers, looks like an issue at my end

@vernal ruin are you on EU1?

yes

That's the closest to me

@deep trellis Is EU1 broken on your end? That’s the second person who’s got an issue with it

For now you’ll have to use Non-Eu servers :/ thats the fix for someone else

My eu1 broke so I switched back to EU2

This was like 10 mins ago

Just gets stuck halfway

Yeah Eu1 is borked, that’s my second ping to Skidy so I’ll just leave it for him to fix in his own time.

First it was EU2 now EU1

I have tried with all the servers avaiable

Uh-oh

I doubt it’s server side but who knows

Is this how it should be ? Isn't the internal ip here

idk, it's just stuck at this point, looks like it doesn't know what to do with this server

I don’t have my Pc on to cross reference so I have no clue

I’ll check OpenVPN on my phone

Eu2 seems fine for me :/

I literally tried every sever available to me, it's weird

Can't figure out why this is happening in room BLASTER

There is no history.

Check the pins #room-help

@vernal ruin it's technical problem

There should be browsing history

It's not here.

It's a know bug yes

I once again kindly ask you to check the pins in #room-help

@vernal ruin ok

What makes a room subscriber-only or free?
Is it a choice the creator can make?

It is a choice but that's a question for #general

https://discordapp.com/channels/521382216299839518/521771811768107008/748488740501979206 this hasn't been resolved yet 😦 and If I don't resolve it within 2 hours, I will loose my 76 streak

halp

You can do walkthrough rooms on your phone

i cant find a kali linux http download

its all torent

Are you trying to download the setup file for kali @simple needle

I may already have completed all the walkthroughs

I did ask around and nobody else has had issues with Eu2, are you sure you've tried all servers?

@zealous yoke Are you available to assist?
Skidy seems to be unavailable at the moment and some issues are occuring with the handshake on openvpn.
Eu1 has seemed to be causing the most issues.

Hey

I'm about

Oh Skidy! :D

Busy but about:)

What's up?

Multiple people are complaining about this

https://discordapp.com/channels/521382216299839518/521771811768107008/748488740501979206

Eu1 is the only server has been reported

Has this been reported in the last hour?

Because I saw the issue and fixed it in the background.

Quantum just re-reported it so I'm not sure

Let me change servers for the last time rn and I will report back

Please regenerate your config too

Thank you Skidy btw ❤️

Noted, thanks ♥️

Are you trying to download the setup file for kali @simple needle
@bronze vale im trying to get the file for kali on virtual machine

This is more of a #general question but I will get the link for you

VBox or VMware?

Thank you Skidy btw ❤️
@bronze vale Thanks for dealing with it:) It should be fixed, I just double checked.

Awesome :)

https://www.osboxes.org/kali-linux/ @simple needle

I was just going to throw the full download link

Jabba, don't be a bot

Let the do some work 😛

Sorry for being nice 👉 👈

Excused

This is more of a #general question but I will get the link for you
@bronze vale oh sorry

thanks btw

I actually remembered the website on top of my head, so I just linked it quickly

VBox or VMware?
@bronze vale box

Yeah should be on the site Quantum linked

yeah it is

thanks guys

https://cdimage.kali.org/kali-2020.3/kali-linux-2020.3-installer-amd64.iso

To instantly install newest kali 64bit btw

I actually remembered the website on top of my head, so I just linked it quickly
@vernal ruin 😂

https://cdimage.kali.org/kali-2020.3/kali-linux-2020.3-installer-amd64.iso

To instantly install newest kali 64bit btw
@bronze vale oh okay im already downloading it but thanks

What is the time frame for the daily streak resetting?

It seems like I lose my streak if I don't get to it by lunch time

Imagine a timer, every time you answer a question, it resets and if the counter reaches 24 hours, you loose your streak

@round orchid

So how long do I need to wait before I can answer another question to increase my streak?

Midnight UTC?

You can answer anytime you want, and as soon as you answer, you have to answer the next question before 24 hours are over

Then I would just need to answer 30 questions to get the 30 streak badge?

@zealous yoke Is a new day* being calculated for everyone at the same time or it's different for everyone according to the first question they answered

Then I would just need to answer 30 questions to get the 30 streak badge?
I get the question, hold on

You have 24 hours from the last time you answered a question before the streak will expire (:

e.g. if you answer a question at 13:00 UTC, you have until 13:00 UTC to answer another to count the streak

Yeah I told him that, he want to know when does the "new" day starts

Ah

Yeah it's 24 hours from your last answer

you could answer 10 questions in a day

the timer will set from the time that you answer the last question (:

Okay Imagine this, I answered the first question 10:00 EST, and got 1 streak point. I answered another question at 15:00 EST and now I have until 15:00 EST next day to answer or I loose my streak. I have 1 streak point rn. He his asking that if now even if I answer another one at 16:00 EST and I have again 24 hours to answer, I don't get streak points just yet. So what's the "new" day for me to get the streak point. Is it 24 hours from the first question I answered that landed me streak of the day

@zealous yoke

From my understanding it would be the first time you answer a question that would addition to your current count, and then then the last time you answer a flag that would set the timer to 24 hours until it expires

@round orchid Does that clear it ?

Thanks CMN, I'm still a little confused tho

That’s my latest understanding of how streaks works in all honestly

I’d love to be able to get the time to write something formal on the help site and get outlines it all in all honesty

Hi to everyone! I have a problem with the Blue tutorial. I thinks there is an issue, i've already reported it. Btw, if anyone has the same problem, I tried to perform a vuln scan with nmap and it appears the machine isn't vulnerable to ms17-010. In fact, when I try to exploit with metasploit it fails.

Show me your metasploit options please

Are you connected to the VPN btw?

Yes, I'm connected. I set the RHOSTS well.

@vernal ruin @zealous yoke To me it still sounds like I would be able to answer 30 questions (in one sitting) and be awarded the 30 day streak medal

No, you won't. You can't get two streak points within 24 hours and you will looks streak completely if you don't answer the next one within 24 hours

Ah I re-read it, now i see what you're saying, I understand

How do I execute msfvenom if the command isn't found

use a different command that can be found

and that actually exists

ok now for real tech support. In firefox it appears that I cannot paste my clipboard into the kali web session

you have to allow clipboard access or something

^ Yess

This is best done by opening it into a new tab by pressing "Full Screen"

you should get a pop up asking you to allow clipboard access (:

use a different command that can be found
@toxic python
I tried to download from github but no success

i have no clue what youre trying to do

i just answered your question with no context

Hello, I wrote an email to the support two weeks ago about my account problems and my emails has not been answered till now but I’m not here to complain about that. I’m here to ask if I’m allowed to write a message to skidy? And ask him about my account problem?

Uh, I think they'd rather not be tagged and just wait for the email. That being said there are 2 people answering all the emails they get so it's understandable that it's slow.

I suppose you can tag Skidy since he's on right now and if he has time to answer, he may

@lime mica

Okay thanks

Hey I'm a student, but I don't have student mail id, I have my ID card though

email support@tryhackme.com

Okay

Unless it's absolutely critical, I'd recommend waiting for their response from support@tryhackme.com @lime mica there's only one (another person is away) answering the emails at the moment. I can assure you they're not ignoring, it's just rather a backlog if anything. Another email may not hurt, be ensure to enclude as many details to your problem as possible to aid in the response time ^^

Can any say what is 5% of swag? In this picture ?.

5% off the price of anything in the swag shop which is coming soon

Also #general

Soon™

Nah that was directly THM related, imo?

“VPN and other technical question”. Is that a technical question?

I mean idc either way but okie 🤷🏿‍♂️

So this might be a rough way too start out...but in the welcome room, I am just getting a 405 error when trying to view the webpage..

Which webpage? Screenshot?

This is the welcome room machine

This is the welcome room machine
@strong jay you're pasting in your Kali machine

Paste in the welcome room deployed IP

I am using the "Access on the in-browser Linux Machine"

Yep, you still need to deploy the machine in the welcome room

I cannot run my uploded machine, Im getting this error Problem converting VM. Check prerequisites.
Im trying to run Linux Mint, as I good remember i have setup static ip, machine have 15GB of storage, 2048 ram, Network adapter setup to NAT

@potent tangle I don't think that's on the supported list

I am using the "Access on the in-browser Linux Machine"
@strong jay The in browser linux machine is your attacking machine, the machines you deploy in rooms are the target machines

Oh, okay. I see what you are saying. I was reading it as deploy the VM in the browser or OpenVPN but this is a step BEFORE that. Thank you.

Welp, hopefully attention to detail and reading comprehension doesn't play a huge part in this Ethical Hacking thing 😉

Hey guys, im trying to connect with openvpn but i dont think its working

by going to an ip address checker its still showing my normal one

it does say im connected though

The access page isn’t always accurate

stupid me figured it out, i am not connecting to my own ip, im connecting to the ip i get after clicking deploy

(but my ip still shows me as being at home)

i guess my usual internet traffic doesnt go through openvpn

If you go to http://10.10.10.10 it will tell you if you’re connected

ı have a problem

"ssh: connect to host 10.10.29.118 port 22: Connection timed out"
"shiba1@10.10.29.118: Permission denied (publickey)"

thanks

@young sage are you connected to the vpn

yeap

im in

That access page isn’t always correct

Try redeploying the machine

i did but it didn't

by going to an ip address checker its still showing my normal one
i guess my usual internet traffic doesnt go through openvpn
@fast hornet That's correct, it would be a privacy concern if it did

!multivpn

@young sage

It shouldn't be tun1

yeah i was kinda worried about doing this on my main computer so i made a kali vm

i guess it wasnt necessary but at least now a bunch of the stuff is preinstalled

It's a real pain installing stuff on windows for it

what can I do

@young sage I gave you the steps

Please follow them

!multivpn

password "shiba1" ?

it says it in the room

I can't see the password

You don't get a password

You have to hack your way in

Oh I thought he was doing zthlinux since he thought the user was shiba1

To be fair they didn't make it clear at all

Paradon is okay. my head is gone

I hope you find it

Do username change requests need a specific template/rules to follow? Do I need to email from the address linked on my THM account? Should I specify a list of usernames, with priority on if one is allowed or not?

Also how long is the queue on tickets? 👀

you can check availability

https://tryhackme.com/p/usernamegobrrrr

I guess my question is, are underscores allowed? 😅

so I wanna use open vpn and im having issues connecting!

Someone answered you in general

yeah

still not working though

so when i connect i get an error saying there was a failure

hold on

i think i know what it is, im not using the server thats closest to me

I redirected them here since the problem seems to not be resolved with the OVPN room

looks like even using the server closest to me doesnt even work

weird.

Okay, we need more details to help you

Which OS are you using OVPN on?

Windows 10

Okay, so you downloaded your configuration file, imported it into the OVPN application, and what is the failure message exactly? Can you take a screenshot of what you see?

this

ideally you'd want to try this on Kali

so i should just download it on Kali?

because it did say we have to use OpenVPN if we wanna use our own VPN connection

Wait, do you have a Kali VM already set up?

yes

You don't run OVPN on Windows, just on Kali

okay

i used it on windows before so i thought it was on windows lol xD

You should be able to drag-and-drop your config file over to your VM and run it in Terminal with this command sudo openvpn --config <config path>. <config path> is where you specify where the config file is held.

Nah, OVPN is only used to talk to THM's servers.

After you run that command in Terminal, it's going to hang and at this point, hold down ctrl + shift + T to open a new tab in Terminal and you can continue on that way. The tab running OVPN is supposed to sit in the background.

ok

After that, open this page http://10.10.10.10/ on your VM. If it loads, you're connected

thank you!!!

No problem. Did you get it working?

im on the openvpn page rn

just trying to find the download for linux

OVPN is default installed on Kali

oh okay!

i never got to use kali for personal use before

i did it in a simulator for an class i took online last semesyer

so it could only have so much simulated features

my apologies for the confusion!

Welcome to learning. You'll be confused a lot.

school doesnt always teach you common sense and everything xD

i used testout for the class for college credit

We briefly touched on Pi VMs in one of my classes.

and got the ethical hacker pro cert. I learned to use metasploit, john the ripper, ettercap, etc..

nice!

Well, you should be able to get up to speed quickly if you already have baseline knowledge of tools.

alright so I clicked on VPN connections in Kali, and selected OpenVPN, let me send you a screenshot of what I have

I hope this is what i should be getting

im so used to windows

Don't use that

It will add broken routes

Just use the openvpn command line program, the OpenVPN room details how

okay!

Click on this

okay!

i got it open

Okay, so referencing the command I posted above sudo openvpn --config <config path> , (change config path to where the config file is) we will type it in and hit enter

When it does, your screen will probably look kinda like mine, but without the tabs

got another error, says i need to define the TUN/TAP device

should i specify the file name?

Yes

okay!

got it

All right, open up http://10.10.10.10/ in your VM and see if you're connected

not connected

😦

Try without —config

i just did 🙂

gonna see how it goes

command went through the command line

still doesnt work

Did you close the terminal? If not, don't.

nope i got it open 🙂

im getting error messages in the terminal too

Please can you screenshot that for us?

here you go 🙂

Are you in Egypt by Amy chance?

no in the US

Welp OK, that's not so normal. Is your Kali machine's system time accurate?

i found another way to install openvpn

yeah

What about regenerating the config or grabbing a new one?

i could try that!

hello all

is there a room for noobs to chat about noob stuff?

#general

How do I get the student discount?

Use your student email with your account. If you've already created your account, you can simply change your email.

Ok didnt work but found docs on it and just sent an email

Hi!
I am a new user and I am trying to complete my first room (Vulnversity). However I am experimenting some technical issues since the machine seems quite unresponsive. For instance even though I managed to "guess" the port open for web services, when scanning with nmap, this port appears as filtered. When trying to use GoBuster, the requests timeout.
I have doubled check that I am correctly connected using openVPN (both "server status" and "connected" are checked on the https://tryhackme.com/access page).
Does anyone have any tip for me?
Thanks a lot!

Access page doesn't always tell the truth @woven zenith

Can you reach 10.10.10.10 ?

Mhhh indeed

It seems I cannot

Then you are not connected

!multivpn

try this

Thanks a lot! Can you tell me where you found those instructions? I am running Windows 10 OS and I am assuming these commands are specific for linux systems

Is your attack machine W10 or a VM?

I am running Kali using WSL under W10. OpenVPN is running on W10. I cannot reach from any of the machines

run the vpn inside wsl

Do not run OVPN on W10, run it on Kali

Also, upgrade to wsl v2 if you are not already on it, cause wsl sucks

Do not run OVPN on W10, run it on Kali
@flint hawk Okay! Will do that immediately

Also, upgrade to wsl v2 if you are not already on it, cause wsl sucks
@vernal ruin I am already on wsl2, sorry for the imprecise earlier message

Yup, It's all right

Make sure to disconnect the vpn running on Windows 10, before connecting to wsl

It seems to be working just fine! Thanks a lot!

Awesome

Anyone around that can offer some help right now?

I

I'm doing the room "Steel Mountain". I got to the point where I need to use the exploit in metasploit, however, when I set LHOST it always uses eth0 instead of tun0

trying to figure out how to correct this

I’m trying to add routes in kali
So, the 192.168.193.0/24 is the internal network; from this one, i am trying to reach other networks. One of the task is to find which ones and add a route to reach them.

To find the network, I have a wireshark file that show as from the 192.168.193.0/24 network's hosts, we can reach 2 web server, with these ip address:

10.86.74.7
10.85.174.87

So, what I have to do is to add a route from my internal network to this 2 others. The problem is that I have NOT the gateway of this network, cause "How many routers there are in the network" is one of the proposed question.
So, If i want execute these command:
ip route add -net 10.86.74.0/24 gateway_address dev tap0
ip route add -net 10.85.174.0/24 gateway_address dev tap0

what I miss is the gateway_address parameter. I tried to execute the command without this parameter, or:

ip route add -net 10.86.74.0/24 dev tap0

but, of course, I got the Destination Host Unreachable error when I try to ping one of the host.
So, my question is: how can I find the gateway address? May be the use of the Wireshark file? And if yes, what Is there something I can search for inside it?

I'm doing the room "Steel Mountain". I got to the point where I need to use the exploit in metasploit, however, when I set LHOST it always uses eth0 instead of tun0
@red lance You can't specify the lhost ?

I set it but when I run it

it uses eth0

instead of tun0

What do you set it to

my machine ip address keeps not connecting multiple times in 10 min, Like it works for few seconds and not works after few seconds, When I ping the ip address, it's working only some times but not responding most of time

please someone help with this

!multivpn

@shy holly

So my tun0 is 10.10.31.182. I did set LHOST 10.10.31.182

when I run it I get

That's weird

[] Started reverse TCP handler on 192.168.243.128:4444
[] Using URL: http://0.0.0.0:8080/F7oEam
[*] Local IP: http://192.168.243.128:8080/F7oEam

try setting is to the interface tun0

set lhost tun0

ok

when it runs, it still shows my eth0 ip

192.168.243.120 is my eth0 IP

maybe I'm not understanding the output properly?

ahem maybe don't reveal your real IP

thats my internal

not too worried about that

Try restarting metasploit

did that

show me the options

msf5 exploit(windows/http/rejetto_hfs_exec) > show options

Module options (exploit/windows/http/rejetto_hfs_exec):

Name Current Setting Required Description

HTTPDELAY 10 no Seconds to wait before terminating web server
Proxies no A proxy chain of format type:host:port[,type:host:port][...]
RHOSTS yes The target host(s), range CIDR identifier, or hosts file with syntax 'file:<path>'
RPORT 80 yes The target port (TCP)
SRVHOST 0.0.0.0 yes The local host or network interface to listen on. This must be an address on the local machine or 0.0.0.0 to listen on all addresses.
SRVPORT 8080 yes The local port to listen on.
SSL false no Negotiate SSL/TLS for outgoing connections
SSLCert no Path to a custom SSL certificate (default is randomly generated)
TARGETURI / yes The path of the web application
URIPATH no The URI to use for this exploit (default is random)
VHOST no HTTP server virtual host

Payload options (windows/meterpreter/reverse_tcp):

Name Current Setting Required Description

EXITFUNC process yes Exit technique (Accepted: '', seh, thread, process, none)
LHOST 192.168.243.128 yes The listen address (an interface may be specified)
LPORT 4444 yes The listen port

Exploit target:

Id Name

0 Automatic

this is before I set my options

Set you options

msf5 exploit(windows/http/rejetto_hfs_exec) > show options

Module options (exploit/windows/http/rejetto_hfs_exec):

Name Current Setting Required Description

HTTPDELAY 10 no Seconds to wait before terminating web server
Proxies no A proxy chain of format type:host:port[,type:host:port][...]
RHOSTS 10.10.31.182 yes The target host(s), range CIDR identifier, or hosts file with syntax 'file:<path>'
RPORT 80 yes The target port (TCP)
SRVHOST 0.0.0.0 yes The local host or network interface to listen on. This must be an address on the local machine or 0.0.0.0 to listen on all addresses.
SRVPORT 8080 yes The local port to listen on.
SSL false no Negotiate SSL/TLS for outgoing connections
SSLCert no Path to a custom SSL certificate (default is randomly generated)
TARGETURI / yes The path of the web application
URIPATH no The URI to use for this exploit (default is random)
VHOST no HTTP server virtual host

Payload options (windows/meterpreter/reverse_tcp):

Name Current Setting Required Description

EXITFUNC process yes Exit technique (Accepted: '', seh, thread, process, none)
LHOST 10.13.2.224 yes The listen address (an interface may be specified)
LPORT 4444 yes The listen port

Exploit target:

Id Name

0 Automatic

and what room is this

so that is with options set

Steel Mountain CTF

now I will run it and show my output

msf5 exploit(windows/http/rejetto_hfs_exec) > show options

Module options (exploit/windows/http/rejetto_hfs_exec):

Name Current Setting Required Description

---

HTTPDELAY 10 no Seconds to wait before terminating web server
Proxies no A proxy chain of format type:host:port[,type:host:port][...]
RHOSTS 10.10.31.182 yes The target host(s), range CIDR identifier, or hosts file with syntax 'file:<path>'
RPORT 80 yes The target port (TCP)
SRVHOST 0.0.0.0 yes The local host or network interface to listen on. This must be an address on the local machine or 0.0.0.0 to listen on all addresses.
SRVPORT 8080 yes The local port to listen on.
SSL false no Negotiate SSL/TLS for outgoing connections
SSLCert no Path to a custom SSL certificate (default is randomly generated)
TARGETURI / yes The path of the web application
URIPATH no The URI to use for this exploit (default is random)
VHOST no HTTP server virtual host

Payload options (windows/meterpreter/reverse_tcp):

Name Current Setting Required Description

---

EXITFUNC process yes Exit technique (Accepted: '', seh, thread, process, none)
LHOST 10.13.2.224 yes The listen address (an interface may be specified)
LPORT 4444 yes The listen port

Exploit target:

Id Name

---

0 Automatic
@red lance when you run this, it doesn't work ?

msf5 exploit(windows/http/rejetto_hfs_exec) > run

[] Started reverse TCP handler on 10.13.2.224:4444
[] Using URL: http://0.0.0.0:8080/EpOGob
[] Local IP: http://192.168.243.128:8080/EpOGob
[] Server started.
[] Sending a malicious request to /
/usr/share/metasploit-framework/modules/exploits/windows/http/rejetto_hfs_exec.rb:110: warning: URI.escape is obsolete
[] Server stopped.
[*] Exploit completed, but no session was created.

I'm confused why it shows my eth0 for Local IP

I assume thats why its failing

Your eth0 address is your local IP address

So that shouldn't make a difference

@red lance what did you set for your LHOST? You should write out the numbers rather than using the interface names

Yeah he did

Is the learn linux room supposed to have tasks?

It's just sitting in my rooms uncompleted

But can't see a way to complete

Leave and rejoin the room* @lament sequoia

hi guys. I just signed up and subscribed :)
when I try to open my kali browser based machine I get the following error:

any ideas?

Are you able to terminate and redeploy

I will try that now

btw: what do I have to choose? trhackme attackbox or kali?

Depends on what you prefer :3

well, what's the difference 😄

Attackbox I believe is optimised for rooms so it should have all tools you'll need (excluding hash cracking tools) iirc

It is fairly new

so terminating and deploying as kali instead of attackbox worked

Okay, would you be able to terminate again and try attackbox for me? I just want to make sure this is not an on going issue so we can resolve it now

sure thing

I can confirm the attackbox is also working now

so it was the classic "have you tried turning it off and on again?" problem 😄

Awesome! Thank you for doing that for me :) Enjoy the rest of your day and if you need any more site-related help, I should be here :)

Yeah it fixes most things haha

thanks! enjoy the rest of your day too

:)

i keep getting this for vulnversity... the other rooms work fine, i can scan the server using nmap... but the webpage isnt opening up

You’re forgetting the port

Vulnersity’s web server isn’t just hosted at the IP. When you throw nmap at the address, you should be able to see a web server reporting at a port

Thanks Bloke#2439, that worked

You need to include that port

Example of how it might look is 192.169.0.1:1. <IP>:<Port>

Im having trouble trying to route to another network from my ip.
I really need help 😦

https://security.stackexchange.com/questions/192282/how-to-find-a-secret-gateway

Its basically this

Ive tried ip route [network i want to add] via [my ip network]

#general

got ya !

hey guys! i just logged into my account and found that i'm added to a koth game automatically? i did not click on any links and neither did i want to join a game! it just happened on its own!

Anyone else having issues when launching MSF from their Kali box?

I just fired up the box. This also happened to me last night. Initially, there was a message about needing to upgrade gem bundler 1.17 (or something like that)

Attackbox works fine. Re-trying Kali for grins, though I know I terminated my Kali instance last night.

You can google that issue and download the specific bundled version

There’s a GitHub thread that resolves that

I’d get it but I’m on my phone

I had to download that last night

and again today...

so, this seems to be a recurring issue on the Kali instances

Well the machine is not persistent

So it’ll happen every time

shouldn't the machines be updated so we don't need to do this every time?

Yes

@deep trellis are you available to take a look at this issue with the kali machine?

TY. I'm happy we at least have AttackBox as a fallback. I appreciate y'all doing what you do!

@deep trellis are you available to take a look at this issue with the kali machine?
@toxic python That's annoying, I've added it to my list of to-do's. Thanks for letting me know:)

I’ll link the GitHub thread for the fix in case you need it

nothing like a to-do list to make you feel alive...

Oh I think it’s just gem update —system I was thinking of a different error.

Here’s that one anyway:

https://stackoverflow.com/questions/55381711/msfconsole-pop-out-an-error-bundler-faild-to-load-cannot-load-such-file-b

The thing is my Linux won't do full screen even if I do virtualbox-guest-x11

Need help

#general

my vpn keeps falling, what can i do? this only happens with the tryhackme vpn

!multivpn

@shut gorge

!vpn

Is there a way to change the username on Tryhackme?

Is there a way to change the username on Tryhackme?
@sacred matrix in the future this will be possible on the site. Right now , you need to contact support and ask them nicely 🙂

Thanks @golden crag for letting me know... I'll surely try that one!

It's support@tryhackme.com for the email adres

once again thanks @golden crag

While configuration to OpenVpn I can't connect please help

All TAP-windows adapters on this system are currently in use

@cunning echo please check the pins

@eager fulcrum ??

In discord. The pinned messages.

There is a solution to the issue.

@eager fulcrum thanks got it...

How to check my MACHINE_IP for that room
After deployed it's taking too much time to show IP address

It takes a minute

You must wait that minute or two after clicking deploy

A machine has to boot.

Till IP address shows up
My OpenVpn current state: reconnecting

Is this normal

?

The VPN does not affect you deploying VMs in rooms.

But your VPN should not be reconnecting constantly.

Just got load up thanks

In the Throwback network youre tasked to scan the THROWBACK-MAIL and identify the Apache Version. When you do an nmap scan it shows that the machine is not a linux machine and it is running Microsoft IIS httpd 10.0

Make sure you're scanning the right IP

Mail, not prod.

Im not able to load up certain websites from rooms, anyone have this issue before? iv tried redownloading vpn config file, and changing browsers but still aint workin. I can also connect to 10.10.10.10 just fine

Not all VMs run webservers, what rooms?

its the juice shop one

https://tryhackme.com/room/owaspjuiceshop

On port 8000?

On maybe it's on 80

I'd scan it and see?

yea it seems like the request goes through fine and i can ping the machine, but the page is just all white

Proxy running?

im just on system proxy settings, should i be on something else?

this is the website

It looks like all the sites are constantly loading, I'd check your VPN and maybe try a different server or a regeneration

Tried that and had no luck, the built in machine seems to work fine though so I can use that. Am curious as to what it is though

Hi, I have a question in regards to the new OWASP Juice Shop that was implemented today.

Not sure what it is, but there is no question in regards to the submission.

Even if I hit submit it requires an answer, but there's no question in the first place?

Which task?

Task 3 - Task 8

Have that similar submission format.

What's the error?

I'd assume that's the flag you're given when you log in as an admin, within Juice Shop

It wants the flag?

Hold up lol

You will need to refresh or go to the home page if it doesn't display the flag automatically

@crystal osprey ty!

Authentication failure
@naive dust I'm getting the same error -- any tips?

Disregard -- I just restarted it a few times and it works now. Not sure what the issue was.

hi, i think i'm having some problem with the platform, i just got 8 day streak, but i still haven't received the 7 day streak badge.

hi, i think i'm having some problem with the platform, i just got 8 day streak, but i still haven't received the 7 day streak badge.
@wide furnace Sorry if I'm on the wrong channel, I'm new, I'd appreciate your help

Can anyone explain why I have uncompleted courses that I've already completed? I also lost 3% of course progress. It's not a good day! what happened?

anyone know why i am getting this exception when using windows exploit suggester?

That's probably a question for #general

i got it

If possible to VNC into the machine. Besides using The browser client. It's good and all, but sort of a nightmare when using a tablet.

It should be

Not sure if it's RDP or VNC, certainly used to be RDP.

Hmm. I'm guessing they're using tiger VNC for it so I guess I'll just have to do some digging. Not a bad thing though. It's always good to learn by exploring.

It used to be guacamole. I'm not certain that it still is, but it might be.

See which services are running

Also what's the difference between the Kali linux machine and the tryhackme attack box machine?

Best I can tell the attack box is the non-sub one

Someone please help me to recharge one month subscription of tryhackme . I try all the payment method and non of them work.

I am from India

I answered you in #544951750801752079

You may have to email support support@tryhackme.com also this chat is for ideas not support 😄
@bronze vale

Hi, I bought subscription for Throwback network, unable to download VPN configuration

@deep trellis

I'm trying to log in through SSH in the learn linux room I'm using windows . I'm connected tot the Tryhackme network but I get the notice network timed out

SokolXP, Skidy or Ashu will have to help with that, they should be with you soon

I'm trying to log in through SSH in the learn linux room I'm using windows . I'm connected tot the Tryhackme network but I get the notice network timed out
@naive dust what are you using to SSH

putty

Can you screenshot your putty screen please

@bronze vale

When i try to download vpn configuration i am getting this

@here Who from support is available?

LOL

No

BAD

😦

Ping!!!!!!!!!!

https://tenor.com/view/hello-there-gif-9442662

big rip

?

lel

im out here

👀

👀

-,-

👀

bootleg @ everyone

..

Lol

hi

💯

that's a good trick tho

Hahaha

welp he will be removed soon 😄

nice

:pingSock:

😂

👀

Hi

RIP

You just gathered everyon here. lol

hello team

BRUHHH

Damn we need slow mode here

https://tenor.com/view/pingu-excited-pinga-jumping-jumping-for-joy-gif-16237725

welp he will be removed soon 😄
@lone quail removing the owner?

https://youtu.be/RKW6rjnYEkc

PLEASE be CAREFUL when quoting others who have used mentions

Who pinged me?

Skidy owns the place lol

😆

xD the spam

haha

Skidy owns the place lol
@tribal ferry yes

Is the browser client image static (like a live cd) or persistent?

you turned tech-support into general chat Clap

pinged everybody

LOL

now that's what i call a privesc

Сдфз

was a joke haha @tribal ferry haha

Clap

HE ACCIDENTALLY PINGED HERE

lol @eager yew

ROFL

nice

.d

good trick

sakin lan

HOW

he hacked the system, we need to give him a role

So that means members can tag @here

no

@here

@vernal ruin nope

https://tenor.com/view/jerry-funny-animal-laughing-gif-13124924

Then what just happened

Oh my god he played the system

This is a freaking madhouse

@vernal ruin no, admin quoted member who tried to tag

why ping man

because the admin quoted

its 2 am for me way to early

Privesc happened

the tag worked

was i summoned here ?

😠

@vernal ruin no, admin quoted member who tried to tag
@errant basalt ah xD

when skidy quoted it worked

Then what just happened
@vernal ruin he replied back using here LOL

Then what just happened
@vernal ruin a mod quoted a member saying @here

owner > members

he actually find a hole in a chat

@everyone @deep trellis can you please qoute this message

Someone isn't able to download their VPN config ... that's what happened

200 IQ Privesc

👀

@naive dust so like just random shit now??? LOL

Guys stop flooding the tech-support chat, it was a simple ping. 🙂

hello yo computa has a virus

#general

@everyone @deep trellis can you please qoute this message
@cerulean mist nop bad boy

😳

lets keep this on topic

Please take all non-relevant conversation to #general.

@everyone @deep trellis can you please qoute this message
@cerulean mist nice try

@naive dust so like just random shit now??? LOL
@eager yew I think burning croissants perfectly represent this situation 😄

who the hell pinged me just now?

Why is every server member tech support 🤨

someone privesced mod

@deep trellis I sent you DM

who the hell pinged me just now?
@pulsar pier someone who can't download their VPN config

https://@FalconSpy#0512@getpinged.lol

fuck

XD

who pinged

works best with @everyone

who summoned me

🏓

oh crud

Why are all members tech support. I thought this channel is for the officials/staff only. lol

why the hell did someone pinged me again

who summoned me
@mortal vortex someone who can't download their VPN config

hello ur computer has a virus

sigh ok

just go to your profile page

@deep trellis type https://@everyone@getpinged.lol

I need that emoji in my life omg

https://@everyone@getpinged.lol

What the hell?

https://@everyone@getpinged.lol

STOP!

Did someone like hack this server or something

it doesnt even work

O_e did i get pinged....looks like i showed up at a bad time....

I was spammed here

Well i need support please

dont ping skidy unless u have something important he is busy

busy @everyoneing

@oak harness

and pls go #general to chit chat here is for #site-support

@naive dust I remember Stallman quoting something like that meme

Hmm can I ask?

Why do we have to migrate process?

What happened here?

hai sinfulz

hello 🙂

did someone accidentally @/everyone?

It was an accidental @here due to an admin quoting someone that did @here, that's all.

someone just pinged everyone

I'm watching

RIP

not accidentally

LOL

Ah 😛

skidy replied to a person who did @here

It was me 😅

Thanks gang, I needed this today

please move to #general :)

stop using @here

sokolXP big brain high iq discord 0day privesc

please move to #general :)
@warm spear they just wont listen 🤷‍♂️

Hmm I still don't know what we can get from migrating process

it's okay, I can mute

sokolXP big brain high iq discord 0day privesc
@naive dust Challenge accepted

stop using @here
@eager yew hey! sorry for changing your name, I'm on mobile. someone will unmute you very soon (I said an hour since I understand the confusion of being pinged) ✨ :)

Auch

Glad the storm is over

Hi

is there anyway to store config and make web kali persist data

?

Unfortunately no

And this is not a #site-support question more of #general

I hope someone will help me 😫

what was your question again? (and please don't ping here)

Why was I called here?

what was your question again? (and please don't ping here)
@naive dust Unable to download vpn configuration for Throwback Network

@flint hawk somebody pinged everybody but it's over now

SokolXP I did reply

I’ll@ping Ashu this time but please be patient

@vapid dawn Throwback issue here, unable to download VPN Config

I was summoned from the depths of the sea because of the ping

damn

If you send me the 3rd octet of the network you're on, I'll take a look

R.e. whoever is having an issue with the throwback VPN config download

Thank you Ashu ❤️

@oak harness this is for you ^

It is not generating anything

Tried few times already

@oak harness You can find the 3rd octet of your network by going to the room (https://tryhackme.com/room/throwback) and looking at the IP's shown in the overview.

It says I will have 20% discount if I'm subscribing as a Student

Hmm I'm 16 and is a High School Student

Am I qualified? ;p

oh ye I need edu email

!docs student

hey everyone, Skidy accidentally pinged @ here earlier. any more spam or mentions will result in a 1 hour mute :)

Oops, sorry about that guys.

Tried few times already
@oak harness on the network map in the throwback room, what IP address do you see?

Thank you @deep trellis, Ashu is helping me

its 10.200.20.***

ah.. a ghost ping

: /

hey everyone, Skidy accidentally pinged @ here earlier. any more spam or mentions will result in a 1 hour mute :)
@obtuse mason this is what happened, it was an accident dw :/

Thank you @deep trellis, Ashu is helping me
@oak harness ok:)

lol.. nah, I am not mad king, so i don't get salty about pings

!docs student
@bronze vale What about changing the email to .edu email? I created my account with regular Gmail Account

If it’s not on there you’ll have to email support

Sorry :/

Hmm alright

Thanks for your reply

lel

Hey, I just connected this morning and saw that in my complete beginner paths, those 3 rooms got reset for no reason ... :/
What am I supposed to do to get them back ?

When I go in "my rooms" i can clearly see that I've already completed the OWASP per exemple ^^

Oh, they have been updated

Thank you @deep trellis, Ashu is helping me
@oak harness Did you get it fixed?

@visual warren That juice shop is an updated version that came out yesterday

@deep trellis still not working

Yup, give me 2 more minutes.

I'm trying to log in through SSH in the learn linux room I'm using windows . I'm connected tot the Tryhackme network but I get the notice network timed out I'm using putty toconnect through ssh

Could you show me your PUTTy screen please

No

With the login information

Have you regenerated your configuration file?

no how do i do that?

Go to https://tryhackme.com/access and there should be a button that will regenerate it. Then, redownload the file and open it in openvpn. Make sure you're keeping openvpn open.

Also are you sure you're connecting to the right Room IP?

it should be the ip address at the top of the Learn Linux room

Are you able to ping that, smack?

i'm not at my computer atm

no wasn't able to ping it

You're probably not connected properly

Let me check

Yup, it works

It's your VPN then.

it works now

Okie

thanks for the help

hey; VPN not working

have regenerated .etc

EU-VIP1, will try others

How do you know it isn't working? Any errors?

no errors; connection gets established but cant ping anything

are you able to view http://10.10.10.10

yep

but not external stuff; google.com, tryhackme.com

I'm sorry?

i see the flag at 10.10.10.10

The VPN will not mess with your internet connection

Are you using the kali VPN manager?

but i can't access tryhackme.com via vpn

yes

Don't use the kali vpn manager

Use your terminal

it was working lastnight via vpn manager :/

It messes with your connection

ah okay

many thanks 🙂

The vpn room tells you how to connect correctly :)