#site-support

Im talking about the VM im running on my own pc

Yeah, connect to the VPN directly from that VM

Otherwise you will have issues with reverse shells, hosting webservers and stuff like that.

Alright

hi I'm having an issue with File Upload Vulns room

when deployed the machine and open a browser I got a 503 Service Temporarily Unavailable error

also when I try to connect to demo.uploadvulns.thm the URL si not resolved

Did you add it to /etc/hosts like the tasks tell you to?

yep

There's a whole task dedicated to adding it to /etc/hosts

And if the URL is not resolving, you haven't done that correctly

uhm I guess I got what could be happening

And if the URL is not resolving, you haven't done that correctly... got it, let me check that

thanks @eager fulcrum

this is my current /etc/hosts after apply the instuction command : echo "10.10.141.159 overwrite.uploadvulns.thm shell.uploadvulns.thm java.uploadvulns.thm annex.uploadvulns.thm magic.uploadvulns.thm jewel.uploadvulns.thm" | sudo tee -a /etc/hosts ➜ / cat /etc/hosts
127.0.0.1 localhost
::1 localhost ip6-localhost ip6-loopback
fe00::0 ip6-localnet
ff00::0 ip6-mcastprefix
ff02::1 ip6-allnodes
ff02::2 ip6-allrouters
172.17.0.2 c3cbc8cc44f0
10.10.141.159 overwrite.uploadvulns.thm shell.uploadvulns.thm java.uploadvulns.thm annex.uploadvulns.thm magic.uploadvulns.thm jewel.uploadvulns.thm

but the URL still not working

It didn't add demo

So demo won't work

Fri Nov 27 21:36:07 2020 ERROR: Linux route add command failed: external program exited with error status: 2

openvpn said i connected

but when i was pinging a machine no responses

You have multiple VPNs running most likely

Kill them all

!vpnscript

nope

i have 0

thats the problem'

You could argue, or you could try it

You didn't include the full output, so I'm going off what little information you provided

But that error is usually seen when you have multiple VPN connections running at once, and it breaks ALL of them

im rebooting hold on

Well that's not what I asked you to do

So I give up. You argued, then didn't follow the basic troubleshooting.

damn ight

works now

ping -c 2 demo.uploadvulns.thm
PING demo.uploadvulns.thm (10.10.141.159) 56(84) bytes of data.
64 bytes from demo.uploadvulns.thm (10.10.141.159): icmp_seq=1 ttl=61 time=317 ms
64 bytes from demo.uploadvulns.thm (10.10.141.159): icmp_seq=2 ttl=61 time=316 ms

Ok, so it resolves, but I don't think you're told to use that URL?

but, when try to resolve by browser, got the same 503 error as before

Did you read the task?

Please note that demo.uploadvulns.thm will be used for all demonstrations; however, this site is not available in the uploaded VM. It is purely for demonstrative purposes.

yes I read

Ok, but you skipped over that sentence?

Because you're not meant to be able to load it

it's working exactly as intended

Hey quick question, I updated burp suite with the shell script and now I have 2 versions of burp on my kali machine. How do I remove the version installed with the shell script?

#infosec-general

ok. so, how suppose I be able to upload an image, as is described in the task?

task 4 is showing that URL

`Now, let's put this into practice.

Open your web browser and navigate to overwrite.uploadvulns.thm. Your goal is to overwrite a file on the server with an upload of your own.`

please read all of the text.

got you, thanks @eager fulcrum

gpg2john command not found after installing john?

getting connection timing out when connecting to my victim machine

I already set LPORT 2468

maybe im doing something wrong but idk

Screenshots please @naive dust

ok

#infosec-general as it's not THM related. Issues here are usually site or VPN related.

hello, please would you help me to fix my problem with openvpn to connect to tryhackme network , In fact my openvpn can't connect and I find this in the log 'routines:get_name:no start line', I believe that it is an issue related to the format of certif but I can't fix it, any help please.

oh sorry then

Go to THm, regenerate your certificate, wait 30-60 seconds, and download it again

@novel token

I started my attack box and it errored saying "Failed to connect". I disconnected and tried to relaunch and it says I can only connect once a day

Yep that's the case

@naive dust 1. That LHOST is incorrect

What's the LHOST?

2. The port is not open on the target machine or you're not correctly connected to the VPN

!vpnscript

LHOST needs to be your VPN IP, ip a s tun0 to show it

why did i get pinged lol

would it be 17 ?

same thing, i got this error: 27/11/2020 à 23:17:45 EVENT: X509::parse_pem: error in cert:: error:0909006C:PEM routines:get_name:no start line

ooof the vpn is getting 30 mbps max

sucks

Then try a different server

The THM VPN doesn't touch your internet traffic, therefore this is not a TryHackMe related issue.

I already tried them all, and i got same problem

Did you definitely wait 30-60 seconds before redownloading?

yes

probably something else as i have 10 gbit

After pressing regenerate?

yes, sure

Again, not tryhackme related.

yea prolly

So it doesn't go here.

-__-

k

So would I need to connect to port 64 or 17 based on my ports here in this pic?

No.

Your LHOST needs to be set to 10.2.51.220 because that's your VPN IP

But please run the VPN script

Because if it's timing out, you're not properly connected most likely.

do i need to get out of icecast interface?

to run !vpnscript

Click the link and it tells you what to do

Open a new terminal

!vpnscript isn't a terminal command

@halcyon flint Why are you replying to a completely unrelated message?

How do i donwload the vpns script from here?

Click on it

And then click download

There is no download button

Then click the green download button

And then listen to termy instead of me

you can use this command to download it wget https://raw.githubusercontent.com/tryhackme/openvpn-troubleshooting/master/thm-troubleshoot

and then chmod it

chmod +x or chmod 777

x

but don't run commands strangers on the web tells you to without knowing what they do first, this command will send a get request to that url and save it to a file

you can check the url yourself, to be sure it is safe

Especially if it’s elf telling you something

dang

i just ran it

he has owned me

so chmod +x then the path?

or chmod 777

chmod +x is better

okay now i chmod

then what

execute it

./file

have you done learn linux room?

i get this

Then pray to the vpn gods

invalid file (bad magic number): Exec format error

yes

I already completed Get Started and NMAP

I'm on metasploit

Are you using a Linux vm?

Yes

Get out of metasploit

parrot os

yes i'm out of metaslploit

im in the openvpn troubleshoot interface

There’s no interface

Can you show a screenshot

it asks for sudo if you dont run sudo iirc

just type Y

oh wait

you are in normal terminal

that is correct

you used wget in which url?

unzip {file}

Yea why do you have a zip

What is going on

Who am I

the one you gave me

O

wget https://raw.githubusercontent.com/tryhackme/openvpn-troubleshooting/master/thm-troubleshoot

I am Blob

Ok unzip that bad boy

NT AUTHORITY/SYSTEM

little alien elf can you please help me

I feel so powerful

I’m not an alien 🤬

I’m a blob

i meant Termack

lol

poor blob

blob is helping

He’s not an alien either

he told you to run unzip in the file

Why does Blob always get forgotten

you sure?

Not really no I thought you were a video game character

do i cd inside Downloads to do the unzip command?

You should already be in downloads

But if not, yea

ok did i do this correctly?

yee

Okay now what lol

cd into openvpn-troubl....

ok

then run chmod to change thm-troubleshoot file permissions

and run it

Then pray to the vpn gods

do i cd into master or the zip one ?

master is a directory

zip = file

cd stands for change directory

okay do i chmod it first before i cd into it?

you need to change the permissions of the file

if you don't specify full path it looks for files in the directory you are at the moment

the file inside the master directory?

thats the file you want to run isn't it?

yes

how do i run

./file

sudo ./openvpn-troubleshooting-master

That’s a directory

nonoo you don't want to run the zip file nor the directory

Not a file

You want to run the file

oh god

im confused now

Go inside the master directory

iam look

Perform the stuff the alien elf is telling you

Change the permissions on the file that isn’t the read me

And then run that file

okay

so whats the run command

just chmod'd the file

./file

sudo ./file

oohhhhhhhhh

so pretty

Type y

Then hit enter

lol kk

nother error

it says my username should be your_user

How do i edit the username

it needs to know the path of the file

how do i tell it

normally /home/<user>/Downloads/<username>.ovpn

so first run ./openvpn-thm-troubleshooting then /home/user/Downloads/user.ovpn

Read the prompts

And answer them

Instead of just pressing enter

It’s good to understand what’s going on and you’ll learn a lot

Heck yeah!

Thank you guys!

now what

well

go back to metasploit lol

and finish the room

now it should be working

man

so much to do

so little timE!!!

how do you know im a man?

im an alien 👽

It;s an expression i sincerely apologiz3e

im just kidding

Thank you for your help sincerely!

I am Blob

Curious: how much would it have cost in real life to fix such a simple issue like this on a real scaled company ? For your time and remote assistance?

Okay stil getting the same thing

do i have to go through the same steps again and reconfigure my LHOST and LPORTs?

i think the LHOST is wrong again

but well, maybe the machine timer ended

redeploy

and do the steps again

sounds good. I'll be back getting some dutch bros!

Yea the lhost is wrong tho

How ?

It needs to be your VPN IP

But metasploit is telling me to add victim ip?

As RHOST yes

Remote Host

Vs Local Host

Local = your machine

Ohhhhhhh drrr

bruh

my attacking machine cant open firefox

does it have internet?

like i cant go to github

Only subscribers have internet access on the AttackBox

bruuuh

(if I'm inferring what machine you're attacking from correctly)

yea

hi i would like to know how to apply the student discount, thanks.

!docs student

@winged dock

ty!

And i'm back

here we go again

funny

the pc i just db_namp'd was named Dark PC

My VPN connection is unstable

Can someone assist me. I am trying to add a new exploit to msfconsole but it is not sitting and msf is not seeing it

running msf6 on Kali 2020.04

Ask in #infosec-general .

my VPN instable

!vpnscript

Wait you have multiple vpn on.

!multivpn

Restart your vm and try again. If that didn't work try the things that said in your right terminal.

Yes restart

restart, restart, restart

So I get to the the 'run-j' and after running the sessions or jobs command it doesn't list my jobs

and i can't connect using sessions -i 0

is there a way to block ssh COM3 to a managed lvl 3 cisco switch?

or disable it

completly?

Wrong channel

oh, sorry ... first time being here in a really long time, could you point me in the right direction?

#infosec-general

ty1

Hi, I have issue, while connecting to RDP the VM is very slow and not responding fast

Can anyone tell me how to start with try hack me for beginner

So how long do I need to wait for a reply? I emailed support almost 2 months ago for a student discount but looks like sub it not worth my money

If you don't get reply within a week then send one again.

im facing issues connecting to a room

Intro Exploit Development

++ Certificate has EKU (str) TLS Web Server Authentication, expects TLS Web Server Authentication
2020-11-28 11:53:49 VERIFY EKU OK
2020-11-28 11:53:49 VERIFY OK: depth=0, CN=server
2020-11-28 11:54:49 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
2020-11-28 11:54:49 TLS Error: TLS handshake failed

how can we resolve it ? i am getting this while connecting to openvpn

Are you in Egypt or another country that blocks OpenVPN?

No , it was working fine on kali 2019 , but now i am using kali 2020 and getting this

Make sure your system time is accurate down to the second

system time is corrected but still the same problem

How do you copy flag from attackBox?

Enable clipboard access

getting bad lag trying to connect to Linux Walk Through machine

Can you explain a little more?

was working fine, then ssh session stopped responding to keystrokes, so I tried restarting the machine, then I got connect timeouts

it most certainly shouldn't be tun1

!multivpn

You're running multiple VPN connections at the same time, which breaks all of them

whoops

that explains it. thanks

working now 🙂

what if I want to connect to a VPN via another VPN

example I'm in China and the tryhackme VPN is blocked, so I need to have my computer's internet traffic go through NordVPN or ExpressVPN or similar in order to reach tryhackme's VPN

Specifically you were running the THM VPN twice

yes

bad

Bypassing the VPN restrictions are illegal, so we're not going to help you

alright

I am in Australia and I use NordVPN service for extra privacy. Can I keep my same computer connected to NordVPN and THM VPN at the same time?

It might not work, and it's best not to

You're using WSL2 right?

yes

If so, connect to the THM VPN just in WSL, not in Windows

Bear in mind you're effectively using a VM

ok

thanks James I was able to finish the room 🙂

Not sure why I don't see the questions once I join the room. Any thoughts? Saw them before that

having the same problem again

Change the port

And make sure that is your tun0 IP

set LPORT to what port?

A port that is not in use

do i have to be in the msf6: prompt or the iceheader prompt

Is the VPN running directly in parrot?

or does it matter?

yes

it is

If so, you're already using port 4444 for something else

yes

You have something listening on 4444 already

yes i do

So... why?

not sure

Well, stop that thing

how??

IDK what it is

Probably metasploit

i have all these ports open look

wat

You only care about 4444

if they say connected its being used right

Also are those ports or unix sockets? Those are different things

Just reboot

Fastest way to fix it

idk

i ran netstat -na

insdie metasploit

Just reboot

Fastest way to fix it

same thing is happening

i went step by step

and also, i already download my configuration file

do i need to be rooted to run set LPORT

or does it havre to be inside metasploit

icecast

That's the wrong LHOST

You don't need to change LPORT

thanks

WSL1 or WSL2?

where can i see it?

https://github.com/microsoft/WSL/issues/4555

thanks

wsl --set-default-version 2

i ran that

in powershel

if you'd like my help, you need to answer my troubleshooting questions

i am reading it

What is the correct LHOST set?

isn't it the one i'm connected to on try hack me ?

this? ::

the 10.2.51.220

should be that one yeh

that's the one i'm connecting

it's not

you didn't set the lhost

you need to set it

i think you put it on tun0 instead of setting the ip iddress

You used 10.0.2.15

Which is a virtualbox default NAT IP

i see

okay re doing

same thing happening

okay so i ran wsl --list inside powershell of my main hardware computer

and i got this

you dont use icecast after setting lhost

does this mean i need to enable/download the distro

you need to use icecast, then you set the options

waht really?

yee

so first i ran
-msfconsole

-use icecast

-search multi/handler

-use 6

-set PAYLOAD

-set LHOST

-use icecast

-set RHOSTS

-run -j

-doesn't work

it is metasploit room?

yes

oh

let me see

after NMAP

Thank you!

hmmm

yeah still not wroking

now i get this error

type use exploit/multi/handler and type show options

@civic lodge

Your name sounds like Turmeric that orange powder plant

no offense

im genuinely laughing right now

well, i'm gonna be honest, i don't know why its not working for you

try to redeploy the machine and try it again

if it doesnt work maybe someone smarter than me can help you

I will try, thank you

@naive dust When you change module, it clears the settings

So setting LHOST for multi handler and then changing module means you don't keep that LHOST value

Multi Handler is not something you need to run rn

You need the icecast module

use icecast

Then set LHOST, RHOST, then run

okay will try that

Hi, my room won't deploy. Nothing happens once I've pressed 'deploy'.

refresh the page and try again

I have done numerous times. The last room was completely fine, only getting trouble with this new one.

the ip doesn't show up when you click deploy?

maybe logout and log in again

No, and once it's pressed you can't press again and nothing happens. I'll try that an and get back to you. Thank you.

Logged out and logged back in and the machine is still running. Website seems to be lagging slightly.

Seems I have to log out and log in for the machine to apear

same thing

F*****KKKKKKK

and im inside ice cast

these are my settings inside icecast

change the lhost

to what hsoe

i keep using the set LHOST tun0

i just changed the host and still the same thing look

did you try selecting the architecture for the payload? it's just a suggestion, but it might work or not

set PAYLOAD windows/meterpreter/reverse_tcp

set payload windows/x64/meterpreter/reverse_tcp

does this make a difference

trying it now i'm waiting for my nmap to stoop

stop

oki dokes

I think my errors corrected itself. Another quick query. Is there a way I can copy and paste my answers from the VM to the answerbox? It's a pain having to type hashes lol

ctrl shift c on the vm from the command line

ctrl v on your answer page

^

It's not working lol

there is also a small box on the side of the attackbox, does that not work either?

Didn't see that clip box! Awesome thank you

no worries

apologies for forgetting

terminate and redeploy the target machine. You only get a few attempts

Okay

Here i go again

restarting VM

runnining sudo openvpn Downloads/rokie.ovpn

just noticed a small mistake in network services 2 room task 9, second to last question, by default it tests select version(), not select module()...actually select module() returns an error message:

Module options (auxiliary/admin/mysql/mysql_sql):

   Name      Current Setting   Required  Description
   ----      ---------------   --------  -----------
   PASSWORD                    no        The password for the specified username
   RHOSTS                      yes       The target host(s), range CIDR identifier, or hosts file with syntax 'file:<path>'
   RPORT     3306              yes       The target port (TCP)
   SQL       select version()  yes       The SQL to execute.
   USERNAME                    no        The username to authenticate as

msf6 auxiliary(admin/mysql/mysql_sql) > set password password
password => password
msf6 auxiliary(admin/mysql/mysql_sql) > set username root
username => root
msf6 auxiliary(admin/mysql/mysql_sql) > set rhosts 10.10.246.154
rhosts => 10.10.246.154
msf6 auxiliary(admin/mysql/mysql_sql) > exploit
[*] Running module against 10.10.246.154

[*] 10.10.246.154:3306 - Sending statement: 'select version()'...
[*] 10.10.246.154:3306 -  | 5.7.29-0ubuntu0.18.04.1 |
[*] Auxiliary module execution completed
msf6 auxiliary(admin/mysql/mysql_sql) > set sql select module()
sql => select module()
msf6 auxiliary(admin/mysql/mysql_sql) > exploit
[*] Running module against 10.10.246.154

[*] 10.10.246.154:3306 - Sending statement: 'select module()'...
[-] 10.10.246.154:3306 - MySQL Error: RbMysql::NoDbError No database selected
[*] Auxiliary module execution completed

not sure if that's the channel to report it

it's just stuck now

😭

You’re exploiting the multi/handler which you’re not supposed to do

That's what TryHackMe is telling me to do ?!? 🤷‍♂️

that's if you upload your payload and not if you use the exploit that generates the shell already

let me quickly have a look

is that ice room @naive dust ?

Metasploit Room

those are on a per user basis, let me have a look for you

so you using the correct exploit, right? can you do a show options for me

Why do all of you have elf hats

Not right now

i don't lol, it's a christmas picture

I am away from my machine

ahhh okay

But I will soon

Last time I did a show options I got this

the one above?

Yes

i remember icecast not being the most stable exploit

I'm doing every step as said by their room

yeah, the room was written almost a year ago, and it was using msf5

stuff changed in msf6

Darkstar needs to fix it 😤

you can downgrade your msfconsole to version 5 and you should be able to do it, but the exploit in itself it's iffy

and doesn't work 100% of the times

it's not about you doing wrong, it's the exploit in itself that is miserable at times.

How i do that ?

as long as you have the correct RHOST, LHOST and port it should work just fine

I'll run show options when I get back home on like an hour

Wat time zone u in?

GMT +0

it's 2:30 am

Ouch

U might be asleep by then

Farewell mate, till tomorrow

pretty much, but there should be someone to lend a hand

You were amazing 👏

Much appreciated

if there's no one give me a ping tomorrow

no worries, glad to help (if i can lol)

hello

Hey

how can i get some very cool like u ?

Huh? You mean roles?

yeah

!docs verify

I am getting connection timed out error

Both in PuTTY and CMD

Connect to the VPN.

It's connected

Hi team, could u pls confirm if THM has any discount for black Friday?

It's showing error

Any help would be great

Regenerate or switch server.

Also, it's recommended to use Linux in vm for this.

What does the error say behind ... the error? lol. I.e. What does the red text say in the connection dialogue?

I would check the VPN config file or connection settings. Don't know what Kn1ght101 is, but, I would try re-downloading the configuration file that's used to connect to the VPN and try again... Just an idea. Also, if you can connect to other VPN's, you know it's an issue with that particular configuration or connection.

It's not connected

You need to regenerate your config

Wait 30-60 seconds and redownload

Okay

I'll try

okay so still same thing

here is my show options: @stone roost

Would a mod be able to help me with resetting my pathway. havnt been on in months. Just want to start over from scratch.

Please and thank you

Is there an issue with the CORP room with the Net.WebClient command?

@naive dust redeploy the box and try again. In first screenshot you used 10.0.2.15 which vbox default ip iirc.

Try downloading the file on your machine then host http server and use your webserver address to download file there.

Exactly what I did and am doing. Just wondering if it was a room bug

I am pulling it from my machine and then running Import-Module

Rooms don't have internet connection to them except the attackbox.

if you are referring to the configuration-file, i have done this already. it's in my downloads under rokie.ovpn

True, just weird why they wrote the room script to go and grab it from github if they know they dont have outside access from sandbox

then i open terminal and i sudo openvpn. downloads/rokie.ovpn

then i open a second terminal and run msfconsole

then i cd into use icecast

then search multi/handler

then run use 6

then set the payload

then set the lhost

then set the rhosts

then run

and still no connection s

no meterpreter 😦

Show screenshot of options again.

Okay, do this redeploy the room you are doing this time wait 5 mins then change lport to something else cause 4444 looks like its already in use and run it again.

okay

So by redoploying means i need to terminate the attach machine and also restart the openvpn in the background??

Nah just terminate the room machine and then start it again.

Make sure to change rhost and lport this time.

okay now i get this

!vpnscript

Have you tried this?

yes already chmod'd the heck out of the file rokie.ovpn

Do you have any other vpn's running?

don't think so just 3 net cards

Ice room right?

yep

Okay, I tried with your icecast ip and it didn't worked and then started separate machine and it worked there.

So, terminate the icecast box then start it again and wait 5 mins before you run the exploit. Also, make sure you use the right rhost. Looks like it breaks itself after few attempts.

okay terminating icebox machine and awaiting a new ip address

okay just got a new IP address

now i wait 5 mins?

Yup. Let it load itself.

do i run the set PAYLOAD, set LHOST, set RHOSTS all inside icecast or mutli/handler?

Exit yourself from metasploit. And do the steps again. You only need to change rhost and lhost.

No need to change payload.

okay

it stuck now

at the prompt

look at the very bottom

You are using wrong lhost. That's vbox default eth0 ip.

Also, let's move this #room-help .

Can someone help me with a challenge please.. how do you get the bash history up? I have a flag in the bash history and I can not get there for the life of me (new Linux user)

This channel is for vpn and other tech questions related to tryhackme.

Ask in #general or #infosec-general .

Oh shoot sorry

hey! what's up with enum4linux command? Is it not installed on attackboxes?

it keeps on saying command not found

then it's not installed

hello im having trouble with http in tryhackme

im connected to the vpn but i cant access the webserver

which room or do you mean 10.10.10.10

webgoat

also jack of all trades room

i cant view the webpage it says connection reset

can you access 10.10.10.10

Yes

but the webpage of jack of all trade i cant access that and webgoat webpage

did you give it ten minutes to boot

Yes

okay

could you show mee a screenshot of your openvpn command

Webgoat runs on a different port doesn’t it?

Yeah but after 20 minutes still not working the port is 8080

or 8000 i think

8000

It's located in /root/Desktop/Tools/Miscellaneous/enum4linux.pl

am i doing something wrong with enum4linux?

Did you go to the ip:8000/WebGoat?

Yes

#site-support message @brisk hornet

I waited for like 20 minutes yesterday and the other day but the webpage is not showing

similar to this room

looks like a vpn problem

i tried changing vpn config still not working 😦

did you run ther troubleshooting script?

no i didn't what's that

!vpnscript

ok ill check it out

perfectly fine thou

but i still can't connect to the webpage T_T

restart the room machine

It is indeed located there, but can't run the command yet. not found still pops up

it's a perl script so you'll need to prepend it like so: perl enum4linux.pl (:

still not working

does anyone know if I can access the same room with 2 different machines using the same vpn? because I get some timeout errors when doing this

No, you must only have one connection at a time when using the same VPN file

Otherwise it'll switch between the two connections constantly and you'll experience a lot of issues

thank you, is there a way to fix this, because I like using tools from both windows and linux vm

FFS, Thank you very much man! Felt like a fool, but at least learning through the process

now i got confuse lmao it says port 22 is ssh but after -A scan it says port 22 is http

Hehe no worries, all part of the proccess (:

Hi guys. I've just discovered TryHackMe and was interested, so i tried the tutorial. But I had problems with my attack box. On the terminal, I could not key in lowercase "L". And in firefox, I could not type anything in the URL bar. Can't paste anything I copied to clipboard too. Does anyone know what is wrong? Would like to subscribe if this can be fixed

@zealous yoke Is this your area? ^

Sure thing (:

Just sounds like the keyboard input is stuck for your session - if you close the tab that you have open and refresh the page that should initiate a new connection and resolve it @stray nacelle

@zealous yoke I tried that, didn't work :/ I tried terminating the machine to restart but now im locked out due to once per day limit. I'll try again tomorrow but in the meanwhile hope that could get some other tips here.

@zealous yoke I closed the whole browser, not just the tab

Ah I understand, sorry to hear that. Are you okay if I were to DM you please?

Sure thing

Thanks!

There doesn't seem to be a way to stop a room to try and restart when something is not working as it should, am I missing something? Or is there no other option than to wait, or try and reset the room?

All sorted, thanks @bronze vale (:

Thank you :D

Hey! You can redeploy the instance for that room with no problem, you aren't able to reset your progress/answers in the room yourself. You'll have to email support@tryhackme.com with your THM username, the room you are wanting (preferably the URL) and the reason why

Is it allowed to ask questions in here that's not directly related to tryhackme, but rather cybersecurity in general?

As the channel description states, they have to be related to TryHackMe. If you're looking for professional discussions on Cyber Security, ask in #infosec-general :)

Fair, thanks for the answer. Will have a look elsewhere

Hi, I am doing CC: Pen testing room and currently gobuster. I can ping the server and everything works, but gobuster throws request canceled (Client.Timeout exceeded while awaiting headers). Timeout is 20 s

Send screenshot

You are prolly missing the http:// in front of the IP, but yeah do send the Screenshot @prisma zinc

@vernal ruin @civic lodge

Looks good to me

Troubleshoot your connection

!vpnscript

ok I will, thanks

I did and no error occured, I am connected and still the same error

@vernal ruin

Can you connect through your browser to the machine?

no, a problem I have been facing for a long time. Its not because of my vm, because it isnt working on a second vm with parrot. Also not a TryHackMe problem, because it doesnt work for htb too, but nmap for example works just fine

Its something about http / https maybe? Normal websites (google etc.) work just fine @civic lodge

I think I saw some other people with the same problem but sadly I don't know how to solve it

Screenshot http://10.10.10.10 for me please @prisma zinc

(Screenshots look a bit shitty today, sry)

@vernal ruin

You need the MTU Fix I think

Try this

ip : sudo ip link set dev tun0 mtu 1200
ifconfig : sudo ifconfig tun0 mtu 1200

Wow that did wonders! Thanks a lot @vernal ruin

Awesome

With `ip` : sudo ip link set dev tun0 mtu 1200
With `ifconfig` : sudo ifconfig tun0 mtu 1200```

Im currently doing the tutorial but it says "Paste the IP into the AttackBox machine's Firefox." where is the Attack Boc machine firefox?

You need to deploy an AttackBox Instance over at https://tryhackme.com/my-machine

oh ight

Thanks

It's one deploy a day for free users tho 😄 Use it wisely

Or you can just use your own Linux machine and connect with openvpn

!vpn

Will do. Just learning the ropes. Seems pretty good so might buy a subscription.

#site-support do you know what's happening here? I'm already a subscriber:

Try log out and log back in

already tried this one, no luck :/

same thing happen with other paths

do you have access to other subscriber content?

subscription problems normally are handled by emailing support@tryhackme.com

This is a bit off-topic, but can anyone help with something in docker?

Whats your TryHackMe username?

the same as my username here

I do have access to the subscribers room:

only the path is blocked

#infosec-general

oh

thanks

Same issue here and also it looks like most of the path's parts are missing

We're currently looking into this issue, please bare with.

perfect

@sonic harbor @half lark The pathway issue is fixed, thanks for reporting!

Skidy is best

It was Ashu who fixed it though:))

I have a issue with BrainStorm. I download the executable and when I run it in my x86 VMs it crashes. When I run it in the debugger, it constantly pauses and when I hit F9 to continue the program it just pauses until it terminates. Am I missing something? I tried in Windows XP, 7 and 10 x86 VMs. IDK if something is wrong with the executable or what. It doesnt allow for a connection because of the instant crashing or the constant pausing in the debugger. Thanks for any ideas or help. Maybe I could get the source and compile myself?

Make sure you download it in binary mode from FTP

Thanks I will give that a shot later.

👋 unrelated to the subscription issues above, with the new UI I cannot find what rooms I've completed or are currently enrolled in anymore 😅 . It only shows the most recent 4 rooms I've worked on and been searching for a prior room I previously completed

Profile, My Rooms

thanks!

Ashu is equally best!

Are we able to ask questions here not directly related to THM?

Not in this channel

#infosec-general #general

Ty

I was working on the “complete beginner” learning path, and it seems to had changed on me. There are sections missing and sections that I had already completed seems to had added to it. The original one was about 42hrs. This one says 29hrs. I log off and log back on in case there was an issue, but that didn’t work.

@winter gate https://discordapp.com/channels/521382216299839518/546650767495397376/782664578885484564 this should explain, hopefully

the nmap room in the beginner path seems to be private

should be okay now 🙂

Thanks NinjaJc01, that answered my question. I guess I need to remember to read my personal emails more often. 🙄

On “Linux Fundamentals part1”, there is not attached machine to deploy. Cannot complete task#9 without it.

It's just been fixed

At least should have been

Worked. Thank you very much.

Is there a way to renew my subscription with bitcoin?

hello, I'm still having issue with the nmap room, it's still private

@heady trench No

Hi All haveing issuse with the throback room

*throwback looks lik ethe server is down?

Huh?

huh?

VPN Server Name Throwback

Ok, why do you think it's down?

server status = red x

Screenshot?

No clue, that's a new checkbox. Have you tried anyway?

yep

vpn connects but its dead jim.

??

If the VPN connects then the server aint down

it is, web site doesn't respont, ping doesn't respond.

try to down load a new config fire and the site goes to a 404.

try to access it via attack box, and its still dead.

@deep trellis This is a new checkbox, right? What does it actually test?

Ah, just realised whats happened.

Cool cool, fixing that now.

🙂 it looks alive

Hummm still getting a error when i donw load the vpn cert it 404's

Fixing that now:) One momento

is your network running?

according to the dash it is,

but i have not restarted it

Cool, try regenerating and redownloading your OpenVPN config file please?

worked a treat

Great, happy hacking!

Big thanks @deep trellis

hi everyone I am blocked in chargement page for the room "What the shell" it 's normal ?

Hi, i'm on alfred room, i've rooted it, but i can't find the root.txt file in "C:\Windows\System32\config" directory, even after many reboot

Did you migrate like you need to?

Migrate to a system process

i'm stupid

thanks @eager fulcrum ^^'

The reasoning behind it is... kinda complicated

When attempting to shh into the server from my device it justs waits 1 minute then sends "ssh: connect to host 10.10.19.157 port 22: Connection timed out"

am I doing something wrong?

Connect to the VPN

Where can I find it?

!vpn

It's walked through in the Welcome room as well, which you should have done

What is the placement of the EU and EU-VIP servers? Is there a difference in location between EU-VIP1 and VIP2?

EU is AWS Ireland as far as I know

Hello their! I think i'm in the good channel. Can someone help me to delete my account?

@bright mauve email support@tryhackme.com

Thx.

am i correct in saying that the payment will automatically renew when the day hits (when my sub finishes)?

@stone roost Paypal/voucher or stripe?

paypal

Paypal won't auto renew

Hey guys, it looks like the structure of some of the beginner learning rooms has changed and removed my progress. Specifically the linux fundamentals because that as far as I have got

Do i need to do it again?

#announcements message

@silver magnet That's awesome thank you very much for the quick response. So would it be recommended to go back through and do them as there is new stuff to learn?

Yes! The content is updated, so it's worth going back

You'll always learn something new 🙂

@silver magnet Brilliant, thanks alot. I better get to it then :).

Question - I joined a server and thay are asking for my thm discord token (under ther in my profile)
Is that safe to give it to them? What does it do?

You mean the bot?

yeah who is it? The thm discord token allows you to link your tryhackme account to discord so you can see your rank

Its a bot called "All in one" the server is called "Code X Sec"

its not trusted

what?

only give your token to @sharp bison bot

ight

yeah it's definitely not a bot mainained by the bot dev team

Its also in a verification channel where everyone in the server can see it. Didint look good. Wanted to make sure. Thanks!

There seems to be an issue with new enrollments to paths (at least for some). It just says "Loading..." but stays there and does not load anything.

Tried Complete Beginner and Offensive Pentesting paths, same issue...

Also tried to leave the path and enroll again. Still same issue.

Have you tried different browser? Also, you need to be a subscriber to see the rooms iirc.

I am not a subscriber. I thought at least the Complete Beginner path is free ?

Also, if it is subscriber-only I would have expected some kind of "only for subscribers" message. But it just let me enroll without any further message/hint

trying different browsers also does not help. same issue on Chrome and Firefox

Nah, they are for sub only. You can see the Linux Fundamentals is locked.

https://blog.tryhackme.com/free_path

Take a look at above post.

I have a general technical question:

Does anyone know if the monthly scoreboard reset depends on each country timezone or no?
(I mean when a new month starts)

it's re-set when it's 0:00 of the new month in the GMT timezone

Okay, that was not clearly communicated on the site then. Rooms are clearly marked as "VIP" if they are subscriber-only. But Paths are not, apparently.

It was only sub before. Now, some section is made free I think. Though the loading room looks like a bug.

It would be more useful to also prevent enrollments to paths for non-subscribers with a clear error message then, in my opinion.

@deep trellis can you take a look at this?

thank you

There was something in #announcements yesterday, at least about the complete beginner path. Not sure if that could be a reason. But I have the same issue with other paths like Offensive Pentesting too

Hello, I have a problem with

Someone can help me pls ?

Regenerate your vpn file

I have ton download one more time

press the regenerate button wait 30 seconds and redownload

Oh yes

Thanks

I keep getting a 404 error when I try to access https://tryhackme.com/connect, which is linked in the documentation on this page: https://docs.tryhackme.com/docs/openvpn/connecting/openvpn-connecting

are you connected to the vpn

!vpn

The documentation is outdated @dull siren please use the link that Termack kindly summoned for the new way to check if you are connected and how to connect

Thank you both!

Hello have been doing the throwback network. Using a different VM today and I get a 404 when trying to access the openvpn file - suggestions?

If you are receiving a 404 error after attempting to download the OpenVPN Configuration file please try these steps:

• Press regenerate, wait 30s and then try downloading again

• Change VPN server and try downloading again

• Log out of your account and log back in.

From Pins ^^

does anyone know when this going to be fixed

Cross Posting in several channels certainly won't fix it any faster 😁

i didnt know which this problem is

i thought there are 2 teams

is this a bug or tech suport

so i can delete one of them

if you refresh your cache it should work @sand bough

thanks guys, changed the server and then imported the file

now it's working

i'm really confused , i keep getting disconnected from the vpn , i don't loose internet acces , i goes trought the reconect process every couple minutes

it works fini for couple minutes then it drops again

!vpnscript

@eager fulcrum thx

@eager fulcrum

[-] Script is being run as a low-privileged user
Would you like to run this script with higher privileges automatically (Y/n)? y
[sudo] password for eth0ghost:
[+] Re-running with root permissions
[+] Stable internet connection
[+] OpenVPN is installed
[-] tun0 interface does not exist
Would you like the script to attempt a connection automatically (Y/n)? y
[+] Connecting....
[+] Connection Process completed successfully!
[+] tun0 IP is in the correct range
[+] Only one instance of OpenVPN is running
[+] Confirming connectivity
[-] Something went wrong -- please ask for further assistance in the TryHackMe Discord server, subreddit, or forum

You weren't connected tot he VPN when you ran it

But what does it say in the terminal when you connect?

all works , i've rebooted the before running the script the second time ( told me there was more than one instance of the vpn ) , then reran it told the same error , i'll connect and rerun the script

Afternoon all, sorry to be a pain but having connection issues with throwback again, server infor page l;ooks good, server is running, vpn connected and ip issued, throwback is started and running (accoring to its status page, put when pinging i get Des host unreachable.. (have double check all pivots have been killed etc etc)

Is the site down? I am experience problems connecting to the site.

Im having same issue with throwback

Maybe the whole TryHackMe network is down?

Site is up

The VPNs are independent from the website anyway

I'm having problems connecting to the website also

503 Service unavailable 😦

Give it 5 minutes

Admins might have just pushed a patch

It does not load properly or results in an error. But let's give it some time.

We are not in a hurry.

speak for yourself xP need to get some practice in before advent cyber 2 🙂

@patent quarry the first tasks will be easy I guess, so do not worry.

tryhackme website is down for me

which network are you on

it is back up for me, just wait 5mins

Still no joy with throwback, its as it was before.

any logs i could dwel into to see what is going on ? , i usually have acces to the VPN gateway to troubleshoot thgat kind of issue

That left hand side is the logs

Admins are busy with Digital Ocean being a mess RN AFAIK

getting a 503 on tryhackme.com

👀

best thing you do is ignoring the email

kk

can someone help me? I'm trying to do the complete begginer path but it keeps on loading the rooms

someone was having the same trouble yesterday

must be a site issue

my rooms aren't loading ?

do i need to close the tryhackme vpn connection actually?

@waxen helm Hi, this is the tech support channel. Please don't post memes here. There's #general for that.

oh sorry, copy that 😉

My rooms isn't loading

Have you refreshed your cache?

are the rooms back up yet?, still no acces to throwback?

Anybody from TryHackMe is actually around?

I'd like to know why my subscription was cancelled ?

Without my consent

"You asked for your TryHackMe subscription to expire. It now has.. we will miss you! If you changed your mind and want to renew, visit your profile."

I cannot re-subscribe at the rate I originally subscribed...

This is not right.

Was you using Paypal?

Yes.

Try emailing support@tryhackme.com and they should give it back to you

Will do, thanks.

Paypal doesn't auto renew

^

well that sucks.

that made me lose the discount I had...

i've tried on 3 different network / Pc , the VPn does come up i can pin g the VPN gw , myself but seems i can't reach any ip on the throwback network .

is it normal i don't have a Gw ip on nic configuration ?

i do have the route on my kali box , but on windows , seems the Gw is empty

@crude root Why are you connecting from Windows?

i tried to see if it wasent my kali box

You can only connect from one device at once, that's something that will lead to weird issues.

i know

but still now no routing trought the vpn is good , i even regenerate the openvpn profile to make sure no other device i tested with was conflicting

It doesn't change the IP or invalidate the old config

So it will still interfere

i touhgt it was regenerating the cert for conexion to the gateway

By bruddhas

I need help

Anyone can help me with wireshark

@crude root Yes, it does

But it doesn't invalidate the old keys/certs

And is the same IP

ohhh

i tought it was revocing the old certs

@naive dust #infosec-general unless it's for a tryhackme room, then use #room-help

It should, yes

It's a bug being worked on now

ok , i'll reboot everything , but it's wierd 😦 i want to learn LOL !

i'll spin up a THM attack machione to see if the same issue occurs

The site is just crashing from time to time?.
its redirecting me to some Captcha site -> Error 503(fixed by refresh) and the rooms just disconnecting even the timer shows more than an hour.

It is not even accepting answers sometimes, (had to refresh everytime to submit it)

hello! is it possible the the first Advent of Cyber doesn't work ?

...doesn't... work?

i know that it is lasts years set of challenges but I thought I could give it a shot

it works

yep sry for the lack of description

however for the first day challenge port 3000 is closed in the deployed machine and i can't access the interface