#site-support

nah openvpn is fine, i would just like to download my config lel

my "download-config" request gets cancelled

may be a browser issue

i use brave

Try it on a different browser then 🤷🏿‍♂️

yea doing that rn

just thought they might want that info for compatibility work

nope, still an issue with firefox

request just doesnt happen

Why did I get a ping here?

Accident. Go about your business

Ok then

its probably not a me thing. Doesnt work in Tor either.

@vapid dawn sorry for ping. It’s still not working for this fella in different browsers and after regenerating config

😦

Give it a moment until ashu comes back 🙂

what server are they on

eu reg-2

worked after going to reg-1 and regenning!

ill take that and run

(pretty sure this didnt work before)

If i want to use ubuntu distro, what's the tools to install like metasploit, nmap .... ??

apt ?

john openvpn

brej who ponged?

Hello, I'm currently on kiba, I followed this article : ||https://research.securitum.com/prototype-pollution-rce-kibana-cve-2019-7609/ I changed the ip and the port||
but when I run the exploit nothing happen

im stuck in a login loop after a restart on kali linux

is there any fix?

Is it a VM?

yes

im stuck in a login loop after a restart on kali linux
@simple needle What kind of loop

when i login it just takes me back to the login page

no error shows either so the login credentials r correct

Guys, I’m having a problem when adding an hour to the deployed machine. Can someone help me?

you can only add an hour when theres under an hour left

is there any fix?
does anyone know of any fix?

You are in GUI right @simple needle

yes

this is the screen

Press Ctrl+Alt+F1/F2 to access the terminal and login with root. Then type apt update && apt upgrade and then reboot the system reboot

It seems like you updates were interrupted or something

@simple needle

i done that and i got errors

@toxic python> you can only add an hour when theres under an hour left
I know, but the machine expires in just one hour, even when I add the time.

i done that and i got errors
@simple needle what errors

Also, try googling the error, I'm sure there are tons of possible solutions there

@naive dust if you refresh the page is it still expired?

also what room? windows machines sometimes expire after an hour rn, but thats a known bug

Also, because it's out of scope for the channel, I have to ask you to move to #general

Also, I found something for you, https://superuser.com/questions/987969/cant-login-in-kali-linux#:~:text= Here are the steps that worked%3A ,login screen 2 dpkg --configure -a More

failed to fetch https://dl.google.com/linux/chrome/ etc
another failed to fetch```

Also, because it's out of scope for the channel, I have to ask you to move to #general
@vernal ruin okay thank you

also what room? windows machines sometimes expire after an hour rn, but thats a known bug
@toxic python every machine, about the refresh, I never noticed it. Sometimes I can access the machine after the one hour expire, so it may be a ui bug

yes, its a UI bug

Sometimes I am not able to access the deployed machines even when I am connected to vpn.. I tried killing the existing services running on my system but still same issue. Anyone please help me with this .. I already tried sudo killall openvpn... [Even from inside the deployed kali machine I am not able to access the vulnerable machine that I deployed in the room]

Guys is this ok?

Yes

ok thx

Not all machines respond to pings

Ohh okay sir

That doesn't really help

Please try to use screenshots, rather than photos of your screen. They're much clearer.

Okay sir from next time I will do like that

Please don't call me sir.

Please don't call me sir.
@eager fulcrum okay bro

Or bro.

Oh

No bro

Nor sir

Or bro.
@eager fulcrum then what to use😶🙊

Nothing. No need to use anything.

Nothing. No need to use anything.
@eager fulcrum anyhow.. I don’t know how much happiness I am feeling now.. I didn’t know that until you said about ping..

Hmm is there any rdp client I can use on Kali Linu

linux*

Remmina

Ask in general though please :)

Hmm I thought this thing is about tech

Anyway, thanks for your reply^^

hi can anyone help me every time i try to access a virtual machine through vpn and i paste the ip address it keeps saying sit can't be reached i very new to this.

Not all machines run a webserver

So you can't just put the IP address into your browser

hmm so what should i do

Follow the room

Work through the tasks in order.

i did i past the ip address like it says but it says still not working

Room, task, question?

Learn Linux

intro

it says i can deploy the machine

It does not tell you to paste it into your browser.

and in totroial it says to past ythe ip address

Keep working through the tasks

ok

It does not say that.

Learn Linux puTTY network error?

If you'd like support with an error message, please screenshot it and provide more detail. Thank you.

who ping me

@swift jay

!vpn

i just got an attempted to use the openvpn troubleshooting thing for thm and it gave me this

!multivpn

Reboot your system

That's the easiest way at least

Ok yea just reboot

i got it! thanks!

i need some help with finding out why i can't install open vpn

You're on Kali.

OpenVPN is preinstalled.

Yeah

Right

But i can't find it

What do you mean?

!vpn

It's a command line program. Follow that room.

right its sudo apt install openvpn right?

Well it just shows me 0 installation

OpenVPN is preinstalled.

right

You don’t need to install anything

Just do which openvpn

You’ll see it’s already there

PG13

ok\

thanks

?

For some reason i just can't figure it out

That path is not correct

Im on the metasploit box im following all the instructions correct but when i got to exploit or run -j i get “Started HTTPS reverse handler on https://192.168.4.56:8443” then i get “Exploit Completed, but no session was created.” Im not sure whats wrong isnt it supposed to create a session? Im running kali linux on a raspyberry pi 4

@untold cradle #room-help. Update your metasploit, and set your LHOST correctly

Not the right path?

Is the code of the path wrong

huh?

It's not code

OK

Wait

https://en.wikipedia.org/wiki/Filesystem_Hierarchy_Standard

Right and i'm using "/" which means its the correct one?

No

/ is the start, where everything is stored

If it's in your personal downloads file, it's /home/username/Downloads/filename

/home
Users' home directories, containing saved files, personal settings, etc.
(I SEE NOW)

Thanks for tolerating me

There's a room all about Linux

Not tolerating. Just helping learn 🙂

I have changed my lhost to the ovpn tryhackme gave me and updated metasploit but i am still getting “Exploit completed, but no session was created.”

@eager fulcrum I'm doing it just until this moment i was in the putty questions

@untold cradle Update metasploit, like I said before. And please go to #room-help for anything further

Alright

hey ive made sure that the box im trying to access is deployed and that my vpn connection is active, but for some reason every single box ive tried to do, i havent been able to connect to the webserver

i can do everything else, scan, ssh, ftp

Then the box doesn’t have a web server running

mm yes it does

vulnversity

running apache on port 3333

i've made sure i have no proxies activated, etc

Screenshot

Make sure you’re specifying port 3333

And what happens

nothing, doesnt even timeout

ive tried on other boxes that have webservers on port 80

i just cant connect

Do you have burp open

nope proxies are off

Is your VPN on in the machine you’re trying to get to the web server from

yep

Do you have more than 1 vpn running

ps aux | grep openvpn

ill check

Access page is unreliable

Ignore the access page please

James

I will request again

Remove access page plzzzzzz

I can't

I believe in you

You can

I’m cheering for you

@bronze vale

Help this man more

👀

I need to vacuum apartment

yes pls x)

Okie dokie

What is the machine IP?

10.10.19.178

Okay so

Have you ran the VPN script?

Wait before that

go to

http://10.10.10.10

Does it load

yep

Okay you can remove that thanks

It did show you your THM VPN IP, correct?

no, actually

but the rest loaded

Refresh and see if it pops up

What VPN region are you connected to?

US regular east 1

ive redownloaded the vpn file too

Okay do you mind temporarily joining US West for me

ok

Then go to http://10.10.19.178:3333/ and see if it loads

no change

Hmmm

You did redownload the file, correct?

yep

im connected to US West

Okay could you run this script for meplease

!vpnscript

I don’t think he has multiple vpns

Can you curl the webpage and see if you get the index back @tired tide

I'm not sure how to do that

curl {ip}:3333

Replace {ip} with the ip of the deployed machine

And lmk what get returned

a bunch of html code

@toxic python

Can you show it

Is it actually something or like a 404

Screenshot preferred

With a painting a close second

its very long

Looks like a browser issue then

Do you have JavaScript disabled in your browser or something

how would i check that?

Google enable JavaScript in “insert browser here”

what if they're using a different engine

it's on

im using firefox

this is pretty confusing

redownload firefox maybe? D:

https://www.google.com/search?q=firefox+enable+javascript&ie=UTF-8&oe=UTF-8&hl=en-us&client=safari

Follow the prompt on top

Clear your cookies and cache

Then try again

it was already enabled though

i tried, still doesn't work

You cleared your cookies and cache?

And it still didn’t work?

nope

Hmmm

You could tunnel your traffic through your vm to your host os

Jk uh yea idk then it’s a browser issue

I’m really not sure what else to try

Intercept the request with burp and see what happens when you forward it

See if it’s getting forwarded properly and returned properly 🤷🏿‍♂️

yeah cheers, thanks for the help

im trying to log into my account and i tried 1 time and got password wrong its locked me out for 5 minutes.......

Yep.

why

Security reasons, I would assume

bruh i have to wait5mins for a mis type

Close your browser window 😉

ahh thank u

use a password manager gg

hi, I got now to a challenge that requires FTP, and it seems like a mess when dealing with my firewall. Currently on my setup I open ports one by one, so far only did one, for netcat reverse shells. Do you have any pointers on how to configure my FTP client to keep this setup reasonable, or do I need to figure out how to get all or ranges of ports opened?

Run your VPN directly on Kali

can i ask a question that isnt about htb but is about kali n that

#general

This isn't HTB either

oh yeah i thought this was sorry

oh yeah

Good day i want to ask when i set up the open vpn where i can get my VM machine to type the commands

You can't

You have to hack your way in to that box

o shit

ye i know

but you need the SSH correct?

I do run my VPN directly on Kali

i have this open

Not all have ssh and not all of them give you the credentials

but when something connects to a port on the VPN proxy, the proxy tries to connect to my machine, and it gets lost

because I have a strict firewall in place

but you need the SSH correct?
@naive dust You need to hack in.

or is that not how it works?

@ornate swift ...vpn proxy? wat?

@eager fulcrum i need to run this

in shs

ssh

@naive dust Not in SSH

You're attacking the machine

Look at the writeups if you're stuck

https://www.youtube.com/watch?v=xl2Xx5YOKcI&t=1321s

You need to attack from your machine

but this person is in the Ssh

No

They are not

the internal virtual IP

AHHH

They're using a terminal on their machine

the internal virtual IP
@ornate swift wat

is what I was calling a "proxy"

an IP address is not a proxy

there's kali (in a vm) -> firewall on my host -> thm entry point -> target machine

That's not correct

the VPN is running directly in kali

There's no THM entry point

You're directly on the network, that's what the VPN does

ok, now I'm confused, because I had to do specific rules in my firewall to open my nc port

Kali doesn't have a firewall by default

no, but my host does

I'm running Qubes

It doesn't matter

Because the VPN should not be running on the host

So the host cannot see the VPN traffic

And cannot care

i am gonna use kali

need to pay 30

dollar

🐡

wat

no

Kali is free

Starting your machine.. please wait!×Uh-oh! You are not a subscribed user and cannot deploy this machine. To subscribe visit your profile.

You need to subscribe to access this feature - Subscribe here

what I used to get nc reverse shell to work is
in kali:

iptables -I INPUT 5 -p tcp --dport $port -m conntrack --ctstate NEW -j ACCEPT

in host:

iptables -I INPUT 5 -p tcp --dport $port -m conntrack --ctstate NEW -j ACCEPT
iptables -I FORWARD 2 -i $iface ${to_ip:+-d} $to_ip -p tcp --dport $port -m conntrack --ctstate NEW -j ACCEPT

haven't tried learning anything about iptables yet though, just used what I found on the internet

need to subscribe

need to subscribe
@naive dust To get THM to run a kali machine for you, yes

You can make your own vm for free

this

@ornate swift Kali doesn't ship with a firewall. Run the VPN in Kali. Everything will be fine.

I am running it in kali

And don’t mess with your iptables rules unless you know what you’re doing

the openvpn file you get from the Access page, right?

@naive dust Search up how to make a kali vm

shall i subcribe?

You’ll royally screw up your machine if you don’t know how to mess with iptables

I am running it in kali
@ornate swift Kali does not ship with a firewall, whatever firewall nonsense you're doing is your own problem. Disable it. Run the VPN ONLY in kali and it will all be fine.

Closed ports will still be closed.

Services listening on 127.0.0.1 will still only be accessible locally

@naive dust Search up how to make a kali vm
@wind wedge i think Oracle vm?

but notting happend

type into google how to make a kali linux VM

Follow the guide

It's no longer directly THM related, so anything further goes in #general

https://www.youtube.com/watch?v=aXo5dMffjds&t=325s

then i get this

Follow the guide

Virtualbox

Do you understand what I mean by "Follow the guide"?

Please go to #general for any further questions about this.

ok so i have kali

!vpn

now openvpn

i did

Follow the guide please

its online

Is there a problem that belongs in #site-support here?

not realy

Ok. So, please don't post here?

@eager fulcrum thanks for the help, indeed "kali does not ship with a firewall" was the answer, my kali had a firewall because it's an upgrade from debian (adding deb http://http.kali.org/kali kali-rolling main non-free contrib to apt sources) and the debian template had the firewall.

https://wiki.debian.org/DontBreakDebian#Don.27t_make_a_FrankenDebian

cleaning up the iptables rules in the host and changing the rule in kali to not be restricted to a single port fixed everything

lol

I just followed what I found online, https://www.qubes-os.org/doc/pentesting/kali/

but yeah Qubes has some bad design decisions

i spilled hot coffee on my crotch

#general @slim pollen

@eager fulcrum yea i noticed post-sending

So delete and send there?

this probably sounds really stupid but i'm a noob and i've been trying to figure this out for 30 minutes. I'm on mac and i'm trying to connect openvpn. every time i try import>from local file it says "profile import error". plz help

@acoustic aurora have you installed openvpn from brew ?

i installed it from here https://tryhackme.com/connect?o=vpn

I'd probably try regenerating your config

i did that a bunch of times already, it's still the same

i see

why not run your openvpn from a terminal

install brew on your mac by going here: https://brew.sh/

once you have the brew package manager you can proceed with the following command: brew install openvpn

ok i'll try that

make sure you have your thm openvpn config from here: https://tryhackme.com/access

i just downloaded a newer version of openvpn connect, and it worked. thank you so much for your help nonetheless :)

I'm having a bit of trouble with running a netcat listener in a VM. I'm walking through the OWASP room tasks with little trouble, except when it comes to netcat. I think the challenge is that I don't know which IP address to 'send' the payload to. On the browser-based Kali, it's easy as the address is right there (And that's how I passed previous tasks). So, How do I go about knowing which IP address to actually use inside the VM?
I tried simply googling my public IP, but that address didn't work. I tried the IP from ifconfig (Which was more of a 10.10.xx.xx style address, Didn't work. I even tried the IP for the OpenVPN profile but no dice. Any guidance would be awesome

Hey, does anyone here have any experience installing Kali on a Macbook Air (Early 2005) ? (Dual booting)

esqy do the command "ip a s tun0"

its your tun0 adrss that you need

Mmkay, I'll fire that up now. That issue was my 'F this, I'm going to bed' moment from last night :p

We all have them!

i know the feeling yeah

It's saying tun0 doesn't exist

are you connected to the openvpn?

Could it be that the VPN is outside the VM?

well, thats not the correct way to do it. if you are using a virtual machine, you need to run openvpn on that machine

dont run it on your host pc

Ahh, I see

I think I'm getting the picture now. Because my host machine effectively becomes a router for the VM... Yeah, I see

is it working now?

I'm just setting up OpenVPN on the VM, and I'll need to re-do the task and make the payload again etc.

which os is running on your vm?

Kali

that should have openvpn already installed , fyi 🙂

It's one that zSecurity made

well, let me know if it doesnt work, ill be happy to help further then 🙂

Wicked, thanks Owly

All working, Thanks again Owly

Hey all.. I've been doing thm rooms for a small bit now.. I've noticed that my latency and ping when connecting to any of the vpn servers is pretty bad due to which scans take forever.. Is it possible to reduce the encryption from my side by editing the .ovpn file and is this a good idea?

Don’t edit the file you may break things unintentionally

If you have bad ping, it’s most likely your ISP

Try increasing intensity on scans and make sure you’re on the correct region. If you think it’s an issue for THM try emailing support: support@tryhackme.com

Try increasing intensity on scans and make sure you’re on the correct region. If you think it’s an issue for THM try emailing support: support@tryhackme.com
@bronze vale no sir. Sometimes THM machines blocking the ping. I got the same issue previously. When I use -Pn with nmap, It showing the services

That message wasn’t for you and that’s normal, some machines don’t respond to pings and require -Pn to scan.

Also call me Jabba not Sir please :)

@bronze vale Okay Jabba😊

Sir jabba

Is it just me but room joystick is super slow. I've checked for multiple openvpns but everything is alright.

I've finished the room but ssh connection was super slow

I think I've figured it out. My vpn file was Vip one but at the moment I'm unsubscribed because of a busy summer.

linux walk through I'm unable to ssh its showing fatal error

connection timed out from CMD

Are you connected to the VPN?

Yes

its showing Deployed machine ip too

Check tryhackme.com/access

server status and connected both are checked

then there could be more then one connection to the vpn with your configuration file

anyone having issues with images loading in the tasks?

@cunning echo try typing ps aux | grep openvpn

and check if you initialized vpn only once

if there are more then once try killing it with sudo pkill openvpn

and initialize it again

Check tryhackme.com/access
@normal galleon that isn't accurate btw

There was a very useful BOT command on discord about trouble with vpn, killing processes but i cannot remember what the command was.

!vpn

not this one

@normal galleon got it thanks i just re-install Open Vpn and done that process all over again

looks like the in task images are hosted on imgur? is anyone else having this issue?

how to properly shutdown ssh and OpenVpn for no futher uncircumstaces??

looks like the in task images are hosted on imgur? is anyone else having this issue?
@normal eagle check if you dont have any browser extension blocking the image

how to properly shutdown ssh and OpenVpn for no futher uncircumstaces??
@cunning echo "sudo killall openvpn"

as to ssh, just type the commando exit?

i dont, it was working last night, and i've tried different computers

both on and off the vpn

which room?

learn linux

Check tryhackme.com/access
@normal galleon this page is completely unreliable don’t suggest them check this please

but i am starting to gather its not the hackme site, i cant seem to reach imgur

learn linux
@normal eagle works fine on my end

imgur loads fine for me aswell

its looking like my isp

sigh

traceroute gets to somewhere in chicago, then dies

That’s not your ISP then that’s just a router issue

Hop on a VPN and see if you can see things properly

@golden crag Im using Putty so just typing exit or logout than exit will work

its been a long while since i used putty but im assuming yes

You can just close the terminal that’s popped up too

openvpn to hackme doesnt route my internet traffic through it. . but a different vpn service works to view images. but of course it killed discord connection.

Openvpn for THM is a vpn tunnel

You need to hop on a real vpn

Wait you’re just trying to see the images in a room, right?

Not on a box itself?

right. looks like there is a disconnect between chicago and dallas datacenters.

internet providers, sheesh. lol

i did

it

touch test

echo hello >> test

cat test

hello

my question is what is the extension of test file??

huh

wrong channel but linux doesn't require file extensions, it uses file headers/magic bytes, the file command is useful for determining type of files

If it’s not the right channel why put it here

Anyone having issues with their machine disconnecting or is it my internet hiccupping ?

I used Burpsuite Profile in FoxyProxy but website loads forever

:/

John turn off intercept

Anyone having issues with their machine disconnecting or is it my internet hiccupping ?
@modern rune machine disconnecting from what

the browser kali keeps disconnecting to where I have to refresh the page to bring it back up

I used Burpsuite Profile in FoxyProxy but website loads forever
@rare roost you need to forward the requests

Then how do I able to get the request :/

ohh

ye

Thanks

the browser kali keeps disconnecting to where I have to refresh the page to bring it back up
@modern rune not sure have you tested your internet

it looks like it might be my internet even though discord doesnt seem to have an issue. Took the spped test site a while to connect to a server.

Hi, I am new to Linux kali, I was trying to connect to the welcome room with the OpenVPN but I get "TLS handshake failed" what may I do to fix the problem?

Hi, I am new to Linux kali, I was trying to connect to the welcome room with the OpenVPN but I get "TLS handshake failed" what may I do to fix the problem?
@verbal gyro may i ask, how exactly are you running it?

its an error i personally havent encountered yet

Regenerate configuration file @verbal gyro

And may I ask what server region you're running on?

tried eu2, same thing on eu1.

@deep trellis Anything wrong with OpenVPN on your end?

this is the message I get: lokali@Lokali:~/Desktop$ sudo openvpn EU1.ovpn
[sudo] password for lokali:
Sun Aug 30 10:52:49 2020 OpenVPN 2.4.9 x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] built on May 2 2020
Sun Aug 30 10:52:49 2020 library versions: OpenSSL 1.1.1g 21 Apr 2020, LZO 2.10
Sun Aug 30 10:52:49 2020 Outgoing Control Channel Authentication: Using 512 bit message hash 'SHA512' for HMAC authentication
Sun Aug 30 10:52:49 2020 Incoming Control Channel Authentication: Using 512 bit message hash 'SHA512' for HMAC authentication
Sun Aug 30 10:52:49 2020 TCP/UDP: Preserving recently used remote address: [AF_INET]18.202.129.195:1194
Sun Aug 30 10:52:49 2020 Socket Buffers: R=[212992->212992] S=[212992->212992]
Sun Aug 30 10:52:49 2020 UDP link local: (not bound)
Sun Aug 30 10:52:49 2020 UDP link remote: [AF_INET]18.202.129.195:1194
Sun Aug 30 10:53:49 2020 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
Sun Aug 30 10:53:49 2020 TLS Error: TLS handshake failed

It sounds like an issue with the client, not the server:)

Uh oh

Thanks, I'll see if I can trouble shoot

is there suppose to be "link local: (not bound)"?

Daniel do you have internet connection to your machine?

yes, running it through Whonix Gateway

everything works fine

Wut

Whonix Gateway?

Yeah, I installed Kali and make it run through Whonix Gateway

I'm so lost one second

Oh I see

My machine runs through internal network.

That's probably your issue ngl

@verbal gyro https://openvpn.net/faq/tls-error-tls-key-negotiation-failed-to-occur-within-60-seconds-check-your-network-connectivity/#:~:text=This is usually the result,or TCP port number 1194).&text=Another%20possible%20cause%20is%20that,for%20the%20openvpn.exe%20binary.

I’m currently working on the beginners learning path. I was over 50% complete, but when I logged in today I was at 40%.

hey i need help with openvpn

just a few short questions

can i access the website if im using a vm to use kali linux

Yes

You need to connect openvpn inside the VM @thick swan

alright then im having problems

yep

i did

and what problem that may be

urm

i cant connect to the server im trying to compromise

you know like the machine thingy where you deploy

then it gives u an ip?

What room are you doing

lemme see

https://tryhackme.com/room/vulnversity

this one

All right and at what exact step are you having the problem

task 4

as it requires me to connect to the server right?

like on the page itself

@golden crag so there was apparently a huge DNS outage this morning. that was my issue from earlier

Yes, and you can't access that webpage ?

Can you visit http://10.10.10.10

yep i cant suprisingly

it tells me the server refused to connect

also i checked the website for help and yes i have the line that the vpn tells me its connected
Sun Aug 30 12:04:15 2020 Initialization Sequence Completed

!multivpn

try this

alright imma see

thank you for your time and help

@thick swan The VM is not running a webserver on port 80. Work through the room, and perform the scans that it tells you to do

oh so when i connect its default is port 80?

so like i have to type 0.0.0.0:port number?

HTTP is port 80 by default

omg u right

im sorry for wasting ur time

im really sorry

i will check better next time

thank you!

Hello,
i'm doing the blue challange and i'm stuck at task 2 #5 connecting to the DOS shell
i'm getting this in the console where i have openvpn : Authenticate/Decrypt packet error: packet HMAC authentication failed
and
Did not receive a response from exploit packet
Errno::ECONNRESET: Connection reset by peer in metasploit
I've looked for a solution but tlc-auth doesn't exist as a command on my ubuntu it seems (installed openvpn with apt install openvpn) and i've tried generating a new ta.key as this seems to be the most common thing but that doesn't work as its not generating anything (openvpn --genkey --secret ta.key)
I'm also unable to find the config of openvpn on my system (/etc/openvpn/server and client folders are empty)
on ufw i have enabled port 4444 without restrictions.
I'm sorry if its a stupid question on my part
this is my version of openvpn
OpenVPN 2.4.7 x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] built on Sep 5 2019
library versions: OpenSSL 1.1.1f 31 Mar 2020, LZO 2.10

Authenticate/Decrypt packet error: packet HMAC authentication failed is not an error, it's a warning

Are you using Metasploit 5 or 6? @marble osprey

6

6 is broken

It just doesn't work

It's unrelated to the OpenVPN warning. The warning doesn't indicate a problem either

thanks Ninja i will get version 5 right away

i just tought this was the issue didn't think it could be from metasploit itslef

6 is still unstable

will keep that in mind for the future thank you 🙇

so i got a Email saying i asked for my tryhackme subscription to expire but i never canceled

Did you pay with paypal?

AEH

yeah

Paypal doesn't renew automatically

ok thx

Greetings. I'm working to upload a VM to develop a room. I've had difficulty getting a .vmdk or a .ova file to successfully convert. Does anyone have experience with this issue? Any help would be greatly appreciated. Thanks in advance.

https://help.tryhackme.com/room-creation/room-creation-overview

@trail spoke Make sure it follows these https://docs.aws.amazon.com/vm-import/latest/userguide/vmie_prereqs.html

@eager fulcrum Thank you, I'll try this now.

AWS likes to bully people

anyone know why this is happening? tried on parrot and kali, same thing. no googlefu results for it. am lost

actually im assuming this is not a tryhackme issue. where best to direct this question? my apologies

Hey all anybody able to help me with my connections speeds once I use the openvpn? I drop from 200 or so down to just over 10 down

The THM VPN won't touch your internet traffic

Well i somehow had 3 open. No idea how lol, i closed those all so I think it's better now. Just gotta make sure i close them when i leave for the night lol

yeah dont multi vpn

it gives alot of issues

Ya. It was murdering my ssh attempt to the linux box lol

!multivpn

hay

"Using SCP, FileZilla or another FTP client download flag32.mp3 to reveal flag 32."

but i can't find the file on my computer

You copied it from the box to itself

There is not a problem here other than user error

why the file does not appear under downloads folder

https://linuxize.com/post/how-to-use-scp-command-to-securely-transfer-files/

You copied the file

From the box

To the box

The file never left the box

ı dont unterstand

This is not a tech support issue.

thanks

@eager fulcrum , the web walk though for this room is dead the site no longer exists. Could you please remove it. Thanks
https://tryhackme.com/room/youcantsolvethis

No, I can't @frosty inlet

Who can?

The room creator, an admin, or muirland

Very curious what made you tag me here, rather than just posting it for everyone.

Interesting there should be a way to report dead links

Yep

I thought you were part of the admin team my bad

Interesting there should be a way to report dead links
@frosty inlet You mean by telling someone about it in one of the channels, like you're doing?

if you still want to see the writeup it's somewhere here https://deskel.github.io/
the creator migrated sites and all his links are dead now

No, just a simple button to report something wrong with the room like a web form

@celest sapphire thanks sir for the link

Less painful write up https://deskel.github.io/posts/thm/you-cant-solve-this

So I've been looking through this walk through and I am trying to understand how the person was able to hide or insert user comments on the txt file can anyone point me out to a good article or give me some sort of command that I can use. Thank you

I've been gooogling for like an hour now

https://linux.die.net/man/1/getfattr

https://linux.die.net/man/1/setfattr

Awesome thanks

Alright so question about Kali nethunter on the Nexus.
I connect to the THM VPN and it does the whole initialization successful thing
I open a new tab on the Kali terminal on my phone and ping the room I'm trying to complete to make sure it's up and it says that it's prohibited or doesn't return a successful ping at all.

Not all rooms respond to pings

Gawd damn that was fast

But no, this has happened multiple times from easy rooms to hard

He’s a ninja after all

But no, this has happened multiple times from easy rooms to hard
@soft owl The difficultly doesn't matter

And this room is supposed to let you ssh in and I can't

Maybe state the room?

My PC let's me ping but my phone can't

You can't be connected from two devices at once

It will break

I'm not

This is what I get

I probably should've scratched off the ips

Eh whatever

I probably should've scratched off the ips
@soft owl They don't matter

Not like they stay for very long

Would it be possible that the phone tower isn't letting me go through?

Like a firewall or something

If the VPN connects, then no

http://10.10.10.10/ See if you can load that?

I was thinking that too but wasn't sure

Alright brb

Yah no. Could it be something with nethunter?

Probably

:/

That's upsetting

You can use the OpenVPN android app for sure

It works really quite well

I didn't think of that 🤔

I use it with Termux just fine

THM's machines for free users will show ip after 1m15s but how about for subscribers?

It's the same

Ninja... I love you

Experience gets you this far

Mess about with stuff, good way to learn

I was just running ovpn from the actual Kali terminal

Didn't know there was an app for the phone

Doesn't even need root

Yah that's crazy

Honestly all you really need is python and a vpn connection on phones

Nope, you can't do Overpass without a rooted device

I don't think I've used overpass

https://tryhackme.com/room/overpass

im deploying vm for linux priv exc and taking forever to get in and when it does just hangs, tried terminating and deploying but same issue

Maybe your internet is slow?

You can try changing vpn servers.

its not on my side, checked my connection and tried other services. already changed vpn and tried redeploying. same issues

Idk the issue then, when someone from thm see this, they will help you.

@deep trellis Some help please

https://tryhackme.com/thread/5f45c0198bf6c763512d54cc

anyone knows why tryhackme isn't loading correctly

Check devtools

Assets are probably not being loaded

where is that?

Right click, inspect element

And then switch to the console tab

Szy, enter vc if you can

Can't

Not home

OK i'm in it

Send a screenshot

Can you scroll up a bit and send another one?

In chrome it'd tell the reason why it's not loading, not sure what's up with firefox. But it's defo having trouble loading assets

Either the CDN is risking or it's something on your end

*CDN is failing

Ctrl+shift+r?

Just try a Ctrl shift R

yeah just did didn't work

Other sites load okay in your VM? Double check that you don't have extensions like NoJS

yeah

Run firefox incognito / private

there's a bit of a waterfall on hacktivities but the files that don't load for you have a reasonable time

Didn't wokr

work

Not quite sure what else to suggest other then another browser like Chrome where it details the reason as to why files don't load I'm afraid

Well chrome works just fine

Mhm yeah that's an odd one pal

Not quite sure, at least it works in Chrome I suppose

Clear cache?

MAN

cache is disables

Ctrl+Shift+F5 overrides the current cache
Meant to Szymex

It's trying to load assets from http://assets.tryhackme.com

right which means?

Your time/date on your VM

your Windows PC is 3.06PM

your kali is 08:06AM

i see

I'd imagine a different date as well

That'll break SSL

so i should change is back?

Set the timezone & locale right, reboot kali and you should be golden

Change it to whatever timezone/region you're in and reboot

Press WinKey and type Date should be similar to Date & Time
Or Time, well ¯\_(T_T)_/¯

I'm not sure what's wrong

Well i'm getting siked by tryhackme

Fixed in #voice-general it was client-side / ISP DNS

@sharp quarry^

^

@deep trellis Some help please
@vernal ruin Responded, thanks for letting me know:)

np 🙂

Hello !
I’m having troubles with ssh
I’m trying to connect to a server using ssh -i id_rsa user@ip but it displays
“Load pubkey “id_rsa”: invalid format”

If I’m not wrong that means it thinks it is a public key even if it’s not...but why ?

@sharp bear In fact it's not really a problem

You can still connect without

But if you want to remove the warning anyway you can create a public key from the private key

Why do you set the url as https://tryhackme.com/jr/<room_name> in #announcements
It forces us to join the room instead of just checking the room :/
I joined 2/3 rooms that I didn't want because of this :'(
(of course I can still leave it)

@timber shore

!multivpn

thanks

hello i need some help with the room blue
i am unable to get a reverse connection
using the latest metasploit on parrot os

sorry for earlier

That's vague.

Elaborate please :p

this is what i get every time i run the exploit

Show me your options please

You're using metasploit6

Metasploit 6 is broken

Oh I didn't realise, thanks James

ohh i see , i will downgrade ...thanks for the help guys 🙂

is it broken for only some exploits or all cause i was able to get a shell and esclate earlier

I mean who knows

It's horrifically broken and that's all I've found

welp i guess i will have to downgrade

hello i'm having trouble with a machine connection for the room https://tryhackme.com/room/25daysofchristmas for Day 2

Day 1 consistently works with acces to :3000

ping works on Day 2, but no connection to port :3000 as specified in the instructions

Give it 5 minutes to boot

sigh....never fails that when you finally ask you are 5 secs from the machine coming up

apologies

is the boot speed so rate limited and different if you subscribe? 😉

It's not rate limited

The VMs just deploy with more resources

For NodeJS applications, they need it to start up quick

ok thanks

Hey! Quick question about nmap.
A bit of time ago I started work on the Ice room, and I started an all ports scan nmap -sS -sV target_ip. Because it was taking quite a bit of time I decided that I should increase the verbosity level to see what hits it gets during the scan time nmap -vv ...

While it was doing its thing I noticed something peculiar. I dont remember what exactly it said but I saw something along the line of:
Starting scan of 10-10-98-12.my_isp.ro (10.10.98.12)

I shut off the nmap scan, thinking I somehow was scanning an ip that is owned by my provider, terminated the target vm and after a bit it stopped being pinged.

After I tried to google why the ISP name showed up there and coming up with nothing, I came here to ask a few questions:

1. Why does the ISP name even show up? My best guess is that it's related to dns, but I don't know why.
2. Why would it even show up if I was connected via OpenVPN. Wouldn't the packages go first through the vpn server. Why would my isp even be involved past sending my packets to the vpn server.

Although I think the question that I am asking is: "Have I fracked up somewhere and somehow scanned an ISP machine?"

First: No, unless you put the IP in to scan it I’m 90% sure that it won’t scan it.

Second: I’m not 100% sure what you mean but the VPN doesn’t exactly affect your connection it’s not like it’s redirecting all your packets or anything.

And Finally: This is site related tech support, we didn’t make nmap :p

Ah, I didn't exactly know where to ask this but I figured this is the best place to do it. Sorry!

Also thank you!

I'm trying steel mountain. Both metasploit and python exploits doesn't work. Is there any I can reach out?

Wrong channel. Go #room-help or #room-hints .

Thanks

Hello I can't do the question 2 of the task 7 of this room : https://tryhackme.com/room/owaspjuiceshop
The last ip of the account isn't change :(
Edit: I think I have it ^^ sorry

what is problem?

you got the index page, you need to get the raw script

how?

go to the raw link in github and wget that instead

youre wgetting the actual github page

thanks

it happened

🙂

Is there a way to see what the results were for just before the leaderboard reset?

any ideas why i get this?

It tells you exactly what you need to do

im using the tryhackme vm

Yep

in Metasploit Task 7 it says to run the command run autoroute -h but when you do you get:

So sudo -u someOtherUser msfdb start @fallow crystal

in Metasploit Task 7 it says to run the command run autoroute -h but when you do you get:
@modern rune You can still answer it, that's not a tech support question is it?

i assume i have to create another user?

Nope there are some on the box

Let's go ahead and run the command run autoroute -h, this will pull up the help menu for autoroute. What command do we run to add a route to the following subnet: 172.18.1.0/24? Use the -n flag in your answer.

you cant flag using that long run

Read the documentation

This isn't a #site-support problem

how do I test a server? where can I begin?

VPN and other technical questions related to TryHackMe

hello, i have some critical concerns regarding my throwback lab network. the machines on the network (all webservers, services, ssh sessions) seem to keep going down and then back up repeatedly. for example i might be on a webserver and it will go down for 2 minutes and then come back up, the same issue is repeated on all services which causes me to think there is something wrong with the machines. i have troubleshooted to the best of my abilities, vpning into throwback from multiple different network connections, home, cafes, work, etc. the issue is repeated. not to mention, for the LLMNR sniffing section, it takes OVER 36 minutes for the NTLMv2 hash to finally be displayed! it is also unlikley to be openvpn, as no output is being displayed except, 'Initialization Sequence Completed' i have also tried this from both my kali machine and parrot os machine. this is extrordinarly frusterating as it makes it nearly impossible to do the room, i have to race to get shells all the time before the machine gives in. i would appreciate support and am wondering if i could be dropped in a different subnet. i await a response as i can barley touch the network right now.

That sounds like multiple VPNs

!multivpn

i will try this thank you

thank you that seemed to be the issue

i have a problem trying to ssh into a VM

this is the first time im trying to do so

lemme upload some pics

...

thats the output od ip addr on the VM

how do i ssh into it?

ssh user@10.0.2.15 is not working

the username of the default user in the VM in user

i get no output when i run that command

i am using virtual box, if that helps

and after some time, i get this:

connecttion timed out

is that machine still on?

are you able to ping it?

i just closed it

lemme try pinging it

redeploy it

and which room is this?

its not a room

i was trying to ssh into a VM i found called protostar

from exploit exercises

it seems like i cant ping it as well

n oresponse

you have to download the .ova file of that box you aren't supposed to ssh into machine

i got the iso

and booted a vm with that iso

they arent giving an ova file

have you enabled ssh on that vm

anyway this is not thm related so #general I guess

hmm

ah k

i gotta go now

thanks for replying!

VBoxManage modifyvm Protostar --natpf1 "ssh,tcp,,3022,,22"

i did that to enable ssh in the vm from my host machine

Setting a better password first ^^

Not sure about what I'll say, but I think that if someone is connected to the VPN he can only intereact with your VM (your virtual ip, from the VPN) and not with your local network
Unless maybe if he knows your password and he can connect (via ssh for example) to your VM/computer and then scan your network...

I can't confirm it, but it's what I think

https://twitter.com/h4x5p4c3/status/1300677992817987584

https://twitter.com/warlockrootx/status/1300400967515398144?s=19

Please take a look into this @naive dust

@deep trellis HTB staffs are looking into it

You’ve made the admins aware of it in other places like in general and on twitter

I’m sure they’ll look into it when they’re online

Thank you @zealous yoke

In hindsight, probably better to email them on support@tryhackme.com to make sure it isn't lost within here

Plus, it avoids bringing drama/issues from other communities into here (:

It's something they'd need to hear about if THM are sponsoring so that'd be grand if you could @rough mesa

👍

@zealous yoke sure i too never wished to post it here but this is getting damn seriously a bug issue so i did post here sorry for that

Yes and thm is sponsoring this event

Yeah of course, I understand (:

It’s a good issue to raise

Just want to make sure it doesn’t get lost in here considering the amount of pings the admins especially get 🤙🏼

If i connect to the VPN do I get always the same IP?

https://twitter.com/warlockrootx/status/1300400967515398144?s=19
@rough mesa We don't issue the prize vouchers upfront anyway, and are currently looking into whats going on. Thanks for letting us know though.

@deep trellis I tag you because I had understand that you're the woner of TryHackme and it's about https://tryhackme.com/room/ohsint which is a room form tryhackme
There is someone giving the answer of the last question on the ||twitter page|| here is the link of the the spoil : ||https://twitter.com/01010000_kumar/status/1279024849701056514||
I don't know if you can do something like ||deleting the comment|| or if it doesn't really matter 🤷

why can't I connect to openvpn

I've tried to reinstall the ovpn file

If i connect to the VPN do I get always the same IP?
@naive dust From my experience it seems to

@haughty light Try an other server an/or maybe regenerate it

@deep trellis I tag you because I had understand that you're the woner of TryHackme and it's about https://tryhackme.com/room/ohsint which is a room form tryhackme
There is someone giving the answer of the last question on the ||twitter page|| here is the link of the the spoil : ||https://twitter.com/01010000_kumar/status/1279024849701056514||
I don't know if you can do something like ||deleting the comment|| or if it doesn't really matter 🤷
@sly yoke I've contact that user asking them to remove it. I can't delete the comment tweet unfortunately. Thanks for letting me know:)

@rough mesa We don't issue the prize vouchers upfront anyway, and are currently looking into whats going on. Thanks for letting us know though.
@deep trellis thanks a lot

@haughty light Try an other server an/or maybe regenerate it
@sly yoke Didn't fix it

I've contact that user asking them to remove it. I can't delete the comment tweet unfortunately. Thanks for letting me know:)
Okay ;) No problem :D

Didn't fix it
@haughty light None server works ?

@haughty light None server works ?
@sly yoke Same error on all, so no

Which is ?

no, none of the servers work

I get the same error

So this means the problem comes certainly from you

What error is it

Hmm, when I try to start the in-browser linux machine, i get this error when starting the machine

Select another machine e.g if you’re using attack box, switch to normal kali. Then boot it up and once it’s loaded terminate it and boot the original one again

Hmm, when I try to start the in-browser linux machine, i get this error when starting the machine
@north basalt If this happens again, please give me the machines IP so I can investigate:) (Feel free to ping me so I see it)

Thank you ^^ I ended up getting past it and the problem hasn't happened after restarting the machine a few times so I think it's alright now. I'm just having issues typing in the Firefox Browser because sometimes it allows me to type and sometimes it just won't let me do anything keyboard related. But either way the Terminal works fine.

Anyone know how to see what the leaderboard results were for just before the leaderboard reset yesterday?

Not really tech support

@bronze vale Yeah, I wasn't sure which channel to ask in. There isn't a general support channel.

#general

All general questions go in general ;)

@bronze vale Sounds good. thanks again.

#general

hello guys

is there a way I can use to import tryhackme's icon?

svg file

in a css file

#general

Select another machine e.g if you’re using attack box, switch to normal kali. Then boot it up and once it’s loaded terminate it and boot the original one again
@bronze vale thanks for that tip, just had the same problem

is this supposed to be a general question ?

If bob says so

i am bob 🤓

wait

no

It doesn’t seem like a tech support question

im blob!

@bronze vale 😡

be like bob

And you’d get better responses in general so

hope it's not that crowded like usual

Hello, quick question for y'all. When I connect to a VM (specifically for the Learn Linux room), after my initial login via SSH, my session freezes. If I close the tab, and reconnect, I am able to send commands. However, certain commands simply freeze on my such as find /filename. The only way for me to get control back is to reconnect via SSH. Does anyone have any advice on how to deal with this issue?

I think it's a bug w/ VNC access atm. Double-clicking text causese that, if you just single left-click and delete ahead/backwards like normal you should be okay @north basalt a bit painful at the best of times

It happens across both VM's, are you using chrome by anychance Saia?

I'm trying to pinpoint the fault myself

Sounds like you have multiple connections to the VPN and/or a generally inconsistent/poor connection @misty cliff

!multivpn

Give the above a try and see how that progresses, make sure you're only connected to the VPN on one device at a time - and if using Kali in a VM for example, make sure you're connected in Kali/The VM itself, not on your host PC like Windows

@zealous yoke ok thanks, ill try the first steps. yes i am using a kali vm and yes i am only using the vpn on that device. but i also have my PIA vpn enabled, ill try disabling that and stopping any other VPN connections i have

Ah yes!

I'll hedge a bet that's your issue

Disabling PIA vpn and keeping the THM OpenVPN open should have you sorted ^^

@zealous yoke yes, that looks like it was it, PIA was the issue. Thanks for your help!

Solid! happy hacking pal

can anyone help me?

if eu is infact the file name and it is in that directory

then your extension is wrong

you got .opvn you need ovpn (:

omg

damn lol

hehe

v easily done (:

Good call

lovely mistake

9/10 times I'd spell it like opvn so I had to alias it in my bash config

yea need to do that

i added basic alias like update and root

Honestly, best thing I ever done

especialy www

Free version of attackbox gives New connection has been rejected with reason: Authentication failure

If I click the blue Full Screen button, I get the same but if I click the fullscreen button in the miniscreen I get noVNC encountered an error

Load another VM

Then terminate it

and reload the one you opened

Select another machine e.g if you’re using attack box, switch to normal kali. Then boot it up and once it’s loaded terminate it and boot the original one again
@bronze vale This

Lol when starting a target machine As a free user, you can only deploy 1 machine at a time (terminate the instance in freeattackbox first). I'm about to upgrade but I was testing whether this would work for free users, what is the point of free box if it can't be used?

That's a... Very very good point

I'm going to upgrade some1 else can test free experience

@deep trellis are you aware of this limitation?

I am getting an error while uploading my room
its shows another room on upload

Click reset

Log out and in

^ do that after if the reset doesn't work

thanks

I am new, trying to start the Kali Machine and I keep getting an authentication error, any help?

Select another machine e.g if you’re using attack box, switch to normal kali. Then boot it up and once it’s loaded terminate it and boot the original one again @grizzled crater

@deep trellis are you aware of this limitation?
@eager fulcrum Fixed 🤦‍♂️ How did I not see or increase this.

Free version of attackbox gives New connection has been rejected with reason: Authentication failure
@restive mica You'll be able to deploy both the free AttackBox & Welcome room machine 🙂

Nope @deep trellis

The error message above is from welcome room

Also I can no longer test free experience because I upgraded

Oh you were saying it's fixed now? Sorry I cant verify that

Thank you!! @bronze vale

Oh you were saying it's fixed now? Sorry I cant verify that
@restive mica no worries, it should be fixed now, will double check when I'm home.

hi i had an other account veried i lost now when i try to verify my account this one but it said an other account already verified with other account

What's your other account's name and identifier?

eg NinjaJc01#7746

flagmate#6958

hi restored the password how can i switch my token to this account

Can you send a message from the other account to prove it's yours?

Yes sure

Out of interest, why can't you just use that account then? @white oyster @naive dust

I just wanted to switch everything to one account

Ok, removing that now

!tokenremove @naive dust

Done, no more entry with UID "724290039554637826".

thank you for time

Hello,
I'm not able to access deployed machines on tryhackme.
I have downloaded and connected to my openvpn file.
I get no response when I ping the deployed machine even after 20 minutes.
Please help me.

Please do not spam in multiple rooms

Someone will answer you spamming in multiple chats will not help you get a quicker response

Hi. When i try to start the browser based Attack Machine i get connection denied reason authentication failure. Help me

Can you try redeploying the instance and seeing how that fairs you please?

Changes we made w/ the password today? @deep trellis I assume random creds are still being generated for auth or something

CMN I have a fix

Select another machine e.g if you’re using attack box, switch to normal kali. Then boot it up and once it’s loaded terminate it and boot the original one again
@bronze vale

having issues in the Ice room. I have the exploit loaded, and set RHOSTS to the machine IP but it keeps timing out:

I've terminated the machine and tried again with the same results

!vpnscript

boom, ty @eager fulcrum

VM is good idea

also #general

ok

My machine says it has an authentication failure, but OpenVPN is running well, and I've tried terminating the machine several times and still nothing. Any ideas?

Whoops

Select another machine e.g if you’re using attack box, switch to normal kali. Then boot it up and once it’s loaded terminate it and boot the original one again
@bronze vale

I can't do that I'm not a subscriber