That's strange. You tried steps as mentioned in above room?

hi i keep getting secure connection fail as i try to access advent of cyber day 5 ip given even though i can ping on that address

Ask in #778305825797177374 .

okay.

The system tray icon is different

And instead of using the system tray i just import the configuration file through the app

That shouldn't be the problem should it?

I don't think so. Have you ran it as admin? Also, remove this image cause its leaking ip.

I ran it as an admin and thank you for telling me

You can check logs to see what's going on there.

AM Server poll timeout, trying next remote entry...

May that be the problem?

Hey 1337 dudes when doing sql injection, what is the need for the '#' at the end? is it so no other commands are added on the end or something?

Do you know what the # does?

No lol that's what im asking

Find out what it does in normal sql

Then think of it jn context of an injectable query

But im lazy

@eager fulcrum is there a name for '#'?

So I can research it easier

shebang?

#infosec-general

It's a hash sign, or a pound sign in the US.

what's your fav. exploit news pages? exploit-db, mitre, ... ?

#infosec-general

Hi Guys, Any ideas how we can copy text from the attackbox to our host machine or copy and paste some data from native machine to attackbox window ? Thanks in advance

Hey there! I'm getting a "Uh-oh! You can only deploy a maximum of 3 machines at a time.". Maybe I'm not understanding the concept of those machines but it's just that every challenge asks me to deploy a machine...

I. can't find how to view/terminate existing deployments so I'm stuck

You can go to the specific room and shutdown the machine if you are not longer solving that room

Oh I see! Thx a lot ❤️

There's a sidebar on the left

Got it thanks a lot for the help

hi guys, sry just started the attackbox tutorial

-> entering ip ... not working...what i'm doing wrong? (10.10.108.219)

Is that the attackbox's IP?

ehm yes, but why entering

That's the wrong IP

Click the deploy button in the task

Use that IP

The attackbox is the machine you have full control over, the machines you deploy in rooms are typically your target machines.

ah, ok got it, thanks 🙂 just subscribed, nice platform

Hello, I'm having an issue where when I open a attackbox in the browser and then log into my account in the box to reach a challenege and download a file it seems like the VM tries to load the VM in the browser and it goes crazy and gets super small etc

Can you describe the issue at least a little so I can direct you to the right people or answer myself?

Im having troubles with Day6 Advent of Cyber 2 server, i tried to restart vpn but on ZAP it stills shows that the URL its unreachble and it cant connect

Can you load http://10.10.10.10 ? @pliant peak

no

Then you're not connected to the VPN

Bump

@warm spear who do I direct this to? Skidy/Ashu?

Question: can i run nmap on my own network once im connected to THM's server

Have you tried it?

Because try it for yourself

Wow

Hey, i just tried reacting to your comment and my whole screen shook ? o.0 !

i mean user code of conduct sounds like mod business, unless its koth then koth staff?

Unless it's site code of conduct

or unless its an issue in the CoC itself

Which I'd assume?

@hard field Can you clarify? Or perhaps forward it on as above?

why my openvpn is not workin

can anyone help me pls

i am a root user

n/m you are root

anyone know how to fix this im stucked here since 1 hour

i don't think I had to run config to get openvpn running, just "openvpn user_name.ovpn" (sudo if you are not root)

last message should say Initialization Sequence Completed

hello . does anyone know why coc for nvim fails to install clangd with the command ":CocCommand clangd.install" ?
it is not even really failing it just is like the picture below but never installs or does anything

#general

oks

I cannot connect....

You need to deploy the green box

You're using the attack box ip

yes I clicked green button that shows deploy

But still unable to access..

Use the IP shown under Active Machine Information

I'd probably say @deep trellis then

(He's pinged, Skidy please reach out)

Hi all, I just subscibed, have opened pentest+ NMAP room but get - Owner has made this room private.

URL : https://tryhackme.com/room/rpnmap

Yes I use shown IP top of the web page

That's the wrong IP

There's a reason I capitalised it

It's under a red heading on the room page

The IP at the top of the page is your IP address, not the IP address of target machines

Is this my IP?

No

Not IP to enter?

That's the IP of the machine you deployed in the room

Which is the one you need to use.

That's the target machine IP

Yes I entered this IP inFireFox and it won open

keep showing error...

Screenshot the error then

It has already timed out and closed everything

Then there's not much point trying to get help if you can't engage with it

Ok thanks

There's a new version

How do I find this new version of which you speak?

Go to hacktivities

Search Nmap

embarrasingly I did that, but didn't spot it

thank you

nothing more humbling than failing to load the page on a hacking tutorial haha 😄

Hello, hopefully this is the right place to post this. The rooms for the offensive penetration testing track will not load. They just sit and say loading forever. Is there something else I need to do before they will load? thanks for any help you can offer.

I thought this was fixed today

@simple escarp What room is that?

I remember having the same problem

you have the scariest profile pic thus far

@tidal skiff that is the first part of the track for pentesting.

wdym

Oh that room

@simple escarp If you do inspect element in that room then you will see that there is nothing loading, and that it is just text that says it is loading

Hey, can someone help me with my open vpn problem?

Its been happening for 2 days and I can't progress in my romo

room*

@tidal skiff hahah, I guess I failed the first test in the active reconnaissance category.

I found out that it was a firewall problem on my router

Just need to use a vpn

Shouldn't be.

Should i be worried about any files or directories here in my /tmp/ folder ?

what ?

what is poggies ?

#infosec-general

Ok i sorry

Hi, hope this is the right place for this post.
I had an account and forgot the password for that account. I can't reset the pass. because I can't remember the email which I register. I tried all my emails and didn't get the email from tryhackme for password resetting.

How I can recover my account ? maybe someone has a similar problem in the past ?

hello! quick question, I just started doing some of the tryhackme challenges, I noticed my streak broke even though I did some challenges (advent of cyber) each day including yesterday, it's not a big deal but I wanted to ask to see if this is something that is known? (thank you for the awesome platform, I've really enjoyed using it)

Oh hey Clos and you can email support@tryhackme.com to regain your streak back

will do 😄 thank you @wind wedge

The streak system recently changed so that could be why it used to be you have to answer within 24 hours but now it’s set to whenever your timezone is set

hey guys, machine is not launching in AoC day 4 (ik, im late)

i click deploy, it starts the machine but then just disappears and i can't re-deploy

Did you refresh the page?

Are you setting up the hardware passthrough?

logged out and back in, working now. really really weird

@quaint loom @broken bear #infosec-general

This channel is for directly THM related tech support, like site or VPN issues

Hey James I won 2 month Try Hack Me Voucher in one ctf

I asked them is their any exapiry date for it to use it before

They don't about it and asked me to confirm with THM people

So may be you can help me here..

Firstly, I'm a discord mod not site staff

Secondly, no they don't expire AFAIK

Just use it before someone else does

okay

https://tenor.com/view/thank-you-very-much-thanks-thankful-donald-trump-gif-9921865

so, its been 2 days, im at my wits end, i need a hand

on advent day 5
every single time, not matter what version of sqlmap i use, or options i use with it
error 500, server overloaded
every
single
time

cant see anyone else with this bug

just me apparently

Can you show screenshot?

too big for a screenshot, got a log tho

this part

it finds ORDER-BY and UNION but fails because it errors out and cant find anything

tried both repo and git versions
same result

Try redeploying task machine and wait 5 mins for it to boot up perfectly. And try again.

done that, many times

even tried the database reset

Show screenshot of your command in #778305825797177374 .

Hey anyone knows if its possible to play/connect to the VPN through another VPN thats on the host machine. This way I can use it while at school and want to do some tryhackme during breaks. They block a lot including the OpenVPN connection in this case (inlcluding kinda everything on the VM/distro). The host machine is using VyprVPN

Nobody here will teach you how to bypass school restrictions I’m afraid

Well I could just say it like this how:

How to connect to the tryhackme openVPN through another VPN on the hostmachine.
(Nothing malicious or unethical)

It's also my own laptop and not the schools pc

You can but you’re still bypassing restrictions. If you’re at school and can access the TryHackMe website I’d suggest using the AttackBox while at school.

👍
Thinking about it I only have an hour break anyways so it should work. Thanks for the suggestion!

hello guys
I'm in Common Linux Privesc there is wrong answer in task 6 the last one

In 'Top 10 OWASP", Insecure deserialization - RCE, the script generate the b64 payload, but when i'm put it in the right cookies (payload), nothing happen

Hi There!

As a temporary fix please try the following:

Try another VPN server,

Press regenerate, wait 30 seconds and then download again,

Try on another device to make sure it is working

Does anybody else find their VPN cuts out more often in a VM than on their host machine? i.e VPN seems fine on my laptop (macos) but in a kali vm it drops and reconnects every 3-10 mins - issues with bridging maybe? Settings seems fine

- Tried different servers
- Regenerated my ovpn

I have windows

10

Usually we don't give help on private rooms

Due to no one knowing the room or it might be a private CTF that's usually why

cant seem to connect to my machine, or vpn.. not sure which is the issue.. I am connected using openvpn, and have and active machine but cant even ping it.. tried to restart it several times

ideas for trouble shooting?

i have tried disconnecting from vpn, terminating the machine, reconnecting vpn and restarting the machine several times

!vpnscript try running this script

well there we go! apparently I had duplicate connections somehow... thanks alot!

Hey I need a help

I have used the discord token in my old account and now I am not able to access my old account

Now this is my new account and I am not able to verify the token

@naive dust Give me a second I’m not sure the protocol here.

I’ll ask the moderators

Okay

If i buy a subscriptions now and gift it my friend, can he redeem it after 2/3 months?

They don’t expire

@naive dust This is my old account and the token is used in this account

So yea they should be able to use it after 2/3 months

Thank You

@bronze vale How can I give the token to my account?

I’m just talking with them one second

Okay

!removetoken @naive dust

Wow

!tokenremove @naive dust

Done, no more entry with UID "779678408329658378".

@naive dust Now try verifying again

Okay Let me try

Now its solved

@bronze vale Thanks for the help!

Awesome

@bronze vale Can you kick the account @naive dust Bcause It no longer have access to me!

Will do!

ugh

Inform me when you kick him out!

He has been kicked I believe!

No he hasnt

@thorny elm He is still available in this server

I promise you they're gone haha

But I am able to ping him here

@thorny elm

They were removed from the server

yes @bronze vale

Discord cache takes a bit to catch up

Okay I see

hello

i just downloaded the .ovpn and when i try to connect to it im getting errors

Please show the errors

should i paste it here?

or should i run it with --help and paste that

Screenshot the errors

And send the errors

i mean is it safe to put it here ?

It should be 👀

Options error: I'm trying to parse "/home/apollo/Downloads/ApolloX.ovpn" as an --option parameter but I don't see a leading '--'
Use --help for more information.

this is the error i get when i run it with --help

initially when i run it says run again with --help for more info

Screenshot?

thats the error though ..

I need to see everything you're enterring

Because honeslty I'm super confgused

We can't identify a problem with what you're doing, if we can't see what you're doing

this is all i've done

Try /home/apollo/Downloads/vpnfile

yes just tried that now

[apollo@holyC Networking+]$ sudo openvpn /home/apollo/Downloads/ApolloX.ovpn
Options error: Unrecognized option or missing or extra parameter(s) in /home/apollo/Downloads/ApolloX.ovpn:18: 9mfcRdcUOr6d8WmkXJ8L6ITCeEPUvAS3P736kWs468miQ (2.5.0)
Use --help for more information.

still got errors

cd into your Downloads file then run sudo openvpn ovpnfile

It looks like there's something wrong with the file if I'm not mistaken?

I’ve never seen that error before

Please try these steps:

• Press regenerate, wait 30s and then try downloading again

• Change VPN server and try downloading again

In the meantime I'm going to look into the error

okay will do

Hi, I'm in the Enumerating MySQL section of network services 2. Using the built in attackbox as I'm a subscriber. When I try to run the mysql command it says it's not installed, so I installed that. When I pull up the metasploit options for the specific module they referenced, I'm writing in the 3 required options as shown in the module

But it's wrong, i've tried in both directions and with spaces and without around the /

I can post a screenshot if that helps but i'm not sure if i'm supposed to be putting possible answers up

Change server and regenerate.

Hello, I'm trying to get started with Advent of Cyber 2; this is my first time using TryHackMe and I'm still a little confused after reading docs. Is this correct: machines for rooms may be deployed for over an hour, but to access that machine I need to be on a VPN which I can only access freely for one hour per day

Not quite

The attackbox is limited to one hour for free users

The VPN is NOT limited

so the attackbox is a VM that's on the VPN by default, and that's limited to 1 hour per day

Not quite

The attackbox isn't on the VPN, it's on the exact network

thank you 🙂

You can connect to the VPN from your own device

Create your own Kali VM etc and connect from that

im assuming it works yes?

No

It literally says exiting due to fatal error

whats wrong with using your Main OS

@naive dust Because a VM is easier for new users, doesn't need anything wiped, has some degree of isolation, Kali has the tools, you can use snapshots.

@naive dust You need to regenerate your cert

Wait 60 seconds

Then redownload

i did and waited for much longer than 60 seconds but i'll try again then

@eager fulcrum Thank you. I'm going to see if I can find docs to walk me through the process of creating a Kali VM

If I accidentally navigate away from the page with my free attackbox, is there a way to restore it?

Yeah, it's still under your profile

https://tryhackme.com/my-machine

aha it finally worked

hmm i have to keep my terminal open but yeah thanx

room making tutorial does not work for me

Im still having an issue with all the rooms saying"loading"

I'm trying to log in my account of thm and I get captcha error but it's well done

Has the devguru room https://tryhackme.com/room/devguru been removed? I was working on this and not I get an error.

Check #room-bugs it's explained there

Hello Folks, i am on a 8 days streak and still no 7-day badge. When are these badges awarded?

It's usually a day after you get it

👍 thanks

owasp juices hop room does not allow to write security question, new passord or repeat new password. just write the email

it doesnt load, can someone help me?

has this happened to anyone else?

Refresh ya page

you likely need to clear your browser cache

nice idea thx

also if ur url contains like aoc2?_param=value....value remove the part after the ?

idk what does that mean but the url is litteraly https://tryhackme.com/

cleared cache

still not working

Have you pressed CTRL+F5?

yes

hey guys, my vpn config doesn't work, i tried redownloading the config file. i tried the troubleshoot in github but this appears

Can you run openvpn on the same config and screenshot what happens please

-_-

sure

maybe try putting your .config file in your desktop and then do /Desktop/USERNAME.ovpn

why changing the directory would work?

idk but it might work, why dont you try it?

No it's working fine there

Open a new terminal

Actually, change VPN server

when will the dark mode feature come?

i try again to do that

When it's ready.

Wrong chat

where is the right chat for it? and how long is it expected to be ready? its so difficult to read in white screen

Download dark reader then

There’s plenty of web extensions that make it dark

And maybe turn your light on in your room if it’s that hard to read

Stop your eyes from being strained

now this appears

its full light here

i changed from regular 1 to regular 2

@obtuse ice regenerate

Wait 60s

Redownload

thanks for the web extension , its a eye savior

now this

but the troubleshoot still say this

i've tried rebooting the machine a couble times

i've tried to visit 10.10.10.10

but that doesn't work

That means it's working fine?

the other times that this was showing i had no problem at all

but this time i can't even ping 10.10.10.10

i don't even know why the ipv4 is not showing here anymore

yes me, answering 1 hour later, pls an applause for me

others vpn config file do the same

it connects but without and ipv4 address

and can't connect to ipv4 address too

have u checked the wifi??

if i search for google for example i can browse freely

but i can't ping any of the ip in the site

strange...

tried reinstalling openvpn

so do you have wlan0 active??

same problem

ifconfig
enp2s0f1: flags=4099<UP,BROADCAST,MULTICAST> mtu 1500
ether 98:28:a6:32:8b:f7 txqueuelen 1000 (Ethernet)
RX packets 0 bytes 0 (0.0 B)
RX errors 0 dropped 0 overruns 0 frame 0
TX packets 0 bytes 0 (0.0 B)
TX errors 0 dropped 0 overruns 0 carrier 0 collisions 0

lo: flags=73<UP,LOOPBACK,RUNNING> mtu 65536
inet 127.0.0.1 netmask 255.0.0.0
inet6 ::1 prefixlen 128 scopeid 0x10<host>
loop txqueuelen 1000 (Loopback locale)
RX packets 1191 bytes 118208 (118.2 KB)
RX errors 0 dropped 0 overruns 0 frame 0
TX packets 1191 bytes 118208 (118.2 KB)
TX errors 0 dropped 0 overruns 0 carrier 0 collisions 0

tun0: flags=4305<UP,POINTOPOINT,RUNNING,NOARP,MULTICAST> mtu 1500
inet6 fe80::3622:9a82:3573:2b39 prefixlen 64 scopeid 0x20<link>
unspec 00-00-00-00-00-00-00-00-00-00-00-00-00-00-00-00 txqueuelen 100 (UNSPEC)
RX packets 0 bytes 0 (0.0 B)
RX errors 0 dropped 0 overruns 0 frame 0
TX packets 15 bytes 756 (756.0 B)
TX errors 0 dropped 0 overruns 0 carrier 0 collisions 0

wlp0s20f3: flags=4163<UP,BROADCAST,RUNNING,MULTICAST> mtu 1500
inet 192.168.1.112 netmask 255.255.255.0 broadcast 192.168.1.255
inet6 fe80::db2:5da7:bcb9:751c prefixlen 64 scopeid 0x20<link>
ether 98:3b:8f:dd:c7:8c txqueuelen 1000 (Ethernet)
RX packets 5412 bytes 3844579 (3.8 MB)
RX errors 0 dropped 0 overruns 0 frame 0
TX packets 5522 bytes 1126888 (1.1 MB)
TX errors 0 dropped 0 overruns 0 carrier 0 collisions 0

this is the ifconfig list of interfaces

same prob for me

ok the wlp0s20f3 interface is the one that allows you to browse etc

openvpn + active machine dont work

the ipv4 doesn't appear?

yeah

usually when i typed the ifconfig command the results would be something like

tun0: flags=4305<UP,POINTOPOINT,RUNNING,NOARP,MULTICAST> mtu 1500
inet 10.8.49.219
inet6 fe80::3622:9a82:3573:2b39 prefixlen 64 scopeid 0x20<link>
unspec 00-00-00-00-00-00-00-00-00-00-00-00-00-00-00-00 txqueuelen 100 (UNSPEC)
RX packets 0 bytes 0 (0.0 B)
RX errors 0 dropped 0 overruns 0 frame 0
TX packets 15 bytes 756 (756.0 B)
TX errors 0 dropped 0 overruns 0 carrier 0 collisions 0

but the line with the ipv4 this time doesn't appear

that's it idk...

have you googled about it??

i've tried putting off and on the interface

no changes

yeah, but i don't find results regarding my problem

maybe you're using an old openvpn version??

i downloaded it again 2 minutes ago

ok then no problem

have you seen if it's 32 or 64 architecture??

Try switching to NAT in your network settings?

nop, idk how to see that

can u explain me how pls?

Are you using vbox or vmware

none of these two lol

my linux machine

Oh you’re running bare metal?

Wait. Do you intend to hack on your host OS?

fifty fifty

it's a dual boot

with ubuntu

Ok

Hmmm

never had this problem before

This just started happening?

yeah

Can you show a screenshot of ip a output

I’m on my phone so a screenshot is easier to see

it's the fact that says link/none right?

Yes

Can kill it and then run it again

In verbose mode

—-verb 9

do u mean restart openvpn?

Yes

With that flag above

kk

And then show output

sudo openvpn --verb 9 Sangres.ovpn

Options error: Unrecognized option or missing or extra parameter(s) in [CMD-LINE]:1: verb (2.4.7)
Use --help for more information.

what did i did wrong?

Put that flag last

Append it to the end

sudo openvpn Sangres.ovpn --verb 9

like this?

Options error: I'm trying to parse "Sangres.ovpn" as an --option parameter but I don't see a leading '--'
Use --help for more information.

😦

-verb 9

Try that

sudo openvpn -verb 9 Sangres.ovpn
Options error: I'm trying to parse "-verb" as an --option parameter but I don't see a leading '--'
Use --help for more information.

can you ping the deploy machine?

Still add it to the end

nop

nor the ip 10.10.10.10

it says again this if i append at the end

openvpn --config ..... --verb 9

Replace the dots with the path to your config

ok works

it's a lot of output

Screenshot the output

ok works for me. i just change the network of my vpn. europe 2 to europe 1

it's a lot of output

tried the same

but no change

did the ipv4 happear in your ifconfig @tawdry plume

???

I’m not expecting anything different to happen I just need some errors to be able to help

Can you show the entire output instead of just a portion please?

Multiple screenshots if necessary

okok

but i's always flowing

yes

Ok that’s good thanks

okk

what do i do theenn

Seems like you’re basically gonna have to manually set it up @obtuse ice

https://bbs.archlinux.org/viewtopic.php?id=225074

No clue why it’s not doing it automatically for you

Try a different browser

ip route save > /etc/openvpn/routes
ip addr add dev tun0 x.x.0.2/24 broadcast x.x.0.255;
ip link set dev tun0 up;

#ip route del default
ip route add default via x.x.0.1 dev tun0
ip route add x.x.0.0/24 via x.x.0.1
ip route add x.y.0.0/24 via x.x.0.1

i should execute this command?

I think you'll want to change those routes

It'll be 10.10.0.0/16 for one, not 100% what the other is

ok,thanks

And you'll need to be careful what IP you set

so, what do i need to set in these places?

ip addr add dev tun0 x.x.0.2/24 broadcast x.x.0.255;

the ip that i usually was having?

10.8.49.219?

Probably, but that / is wrong

Probably it's a /16

and in the broadcast part? 10.10.0.255?

Probably 10.8.255.255 because it's 10.8.0.0/16

k, alright

i'll try

in this place?

ip route add default via x.x.0.1 dev tun0

i tried 10.8 and 10.10 but doesn't work

10.8.0.0

Oh wait

Ignore me idk what that line is supposed to be adding

Hello
I can'

ip route add default via x.x.0.1 dev tun0

probably in this place i should set something

You would need to set it depending on your ip

ip route add x.x.0.0/24 via x.x.0.1

and in this line 10.8 via what i placed here before

Cuz that would need to be the network address based on your private tun0 ip

@storm tapir use sudo openvpn filename

so something like 10.8.49.1 ?

10.8.0.1

Hello
I can't connect to the VPN
I am getting this error

I tried to regenrate the connection pack but the problem still the same
I updated the my openvpn and the problem still the same

Wait do you have a tun0 ip now?

yeah

I am already the root user

try to change the config file

Ok yea do 10.8.0.0 or 10.8.0.1

I told you I have regenrated the connection pack

change server

I did

you can try

the problem still exist

!vpnscript

doesn't work

nor .0 nor .1

that works but i wanted to use the normal everyday browser

ok @toxic python

probably i found the problem

the netmask is set wrongly

idk why

is set 255.255.255.255

not /16

Yes that would probably be a problem lol

k, now i set the mask right

i try the gateway again

Change server and regenerate configuration file

I was getting this error. It worked

now the connection doesn't work

it worked

thanks guys

hey guys im new to this and on the linux fundamentals part 2 after i deploy my machine it never opens. Any ideas ?

You're given instructions @ashen delta

On how to access it.

@eager fulcrum it never comes up though ?

No. It doesn't.

You don't get in browser access.

You're told how to access it.

Follow the instructions in the room please.

sorry i just presumed it. thanks for the help

Is there a way to make some kind of 2-way seamless clipboard work for AttackBox on Firefox?

Hi, doing linux fundamentals task 3 for the SSH protocol, I'm following the instructions but I keep getting a network timed out error on the PuTTY application

any help would be greatly appreciated

are you connected to the vpn?

!vpnscript run this script

I'll try now

That worked, thanks a bunch

I must of missed some instructions earlier on

hello ,I cannot access to the "what the shell" room, she load infinitely ( I am subscriber), can you say me if it's normal, thx

I know we're not allowed to talk about illegal stuff but can we ask someone here for a dm related to it?

That sounds sketchy

What kind of illegal stuff? 🙂

Can't tell

maybe a bit I can tell

I somehow managed to gain admin on a school comp because it had no password

Idk what to do with it

Why not report it to a teacher or whoever's meant to administrate the system?

Maybe ur right

But I feel greedy

That hardly seems ethical now, does it?

Probably unethical

Not probably, it is

Well, to answer your question, nope, it's equally banned to ask for people to DM you about it @naive dust
Given you seem to be relatively active I'm going to warn, rather than ban -- but please do the right thing and tell your school staff rather than exploiting it. The latter is a good way to end up in jail. You're learning some pretty dangerous stuff. Use it for the right purpose.

-warn @naive dust Rule 9 -- asking for post-exploitation steps following the compromise of a school admin account with weak credentials. Disinclined to responsibly disclose the vulnerability.

⚠ Warned kitchen1112#3264

understood

I dont remember who told me it was being looked into but any word on the Complete Beginner course? Im still stuck on 85% and none of the rooms load.

Might as well since you talked about it on the internet already, before you get yourself in trouble that will follow you forever.

If i want to verfiy myself are the { } for formatting in the bot help thing or do I need to wrap my token in those?

!verify TOKEN

@barren birch Thank you.
I didn't want to mess it up and have it send my token to everyone lol.

You need to do it in a DM anyway

I see thanks

Rooms just not loading?

Any idea when the merch will release? 😄 Christmas is close...

Jesus Christ. How far back did you go for that?

The merch store has been out for months @grizzled cliff

HAHAHA

https://store.tryhackme.com

Okay, I guess I'm a bit behind

I just queried for the 5% in the chat since I'm close to the 45 day streak

Awesome, thank you! ❤️

Np!

WHATS SO FUNNY B ROOOOOO :((((

Ohhh I don't know how I "replayed" to your image.

I wanted to replay to "Merch's been out for months"

Does anyone know how to download/install Nessus on the Web Attackbox? Ive tried a few ways mentioned on the Nessus support page, no luck.

Hi if I send a write up how much time do I need to wait until it is accepted also if it isn't accepted do I receive an email about it? Thanks

oh ok xD

My attack box doesn’t connect to the internet. But tryhackme says I’m connected

It depends on the creator of the room to accept it, i think you receive an email if it gets accepted or rejected

Oo ok, so I will be waiting and thank you.

Whenever I start openvpn 2 sessions start up. How do I change it to only one?

Go to the openvpn, terminating, and restarting helps me

Thats what I was asking about above

#site-support message

free users can’t participate in advent of cyber?

They can 👍

They can

Its a free room. Just read everything before you start the attack box as the content can be pretty lengthy

Using the free attack box we can’t connect to the internet. How would we do the Day 1 task?

You can use open vpn

!vpn

You just need to connect to the server on the correct port. This should bring up a web page
example: xxx.xxx.xxx.xxx:5000

Im struggling with the first part. I cant connect to tutorial page.

I get a 405.

#778305825797177374

In task 1 deploy your first machine

ah post there?

but keep looking on that page

yes

or #room-help or #room-hints I think

any of them should work

Thanks

Hello, In regards to Linux 1 Task 9
When I input ./Shiba1 nothing is found - it looks like I'm supposed to have the username of Shiba@nootnoot from walk throughs at this point however in all the walk throughs there used to be a step 2 where you logged in as Shiba1 using putty

in the current version I don

I don't believe there are instructions on how to log in using putty and I'm unsure of if this is causing my inability to access the binary Shiba1

Any thoughts?

I would think you didn't create something you should have.
Read it again.

Yeah it looks like it!

I need to connect to user shiba1 with password shiba1, and then run the binary shiba2 to get the password

however the instructions on actually logging in as shiba1 have been removed in the past few months (steps 2 and 3)

All the walk throughs online have two more steps in them than the current version of linux 1

It was all reworked last week.
The old walkthoughs may confuse you.

Ah, it definitely sent me down the wrong path

Got it figured out! I was mixed up between the attack box and the active lesson machine, thank you!

I don't know that I helped much but you're welcome.

For the emotional support haha

Hmm

I keep having this happen with the vpn

Is that from leaving it idle too long?

happens with a spotty connection

you on wifi?

i just use the networkmanager plugin, so the errors are stashed away where they dont bother me

No I don't use wifi unless I have to.

It very well could be something on my end and it doesn't happen a lot really was curious.
I will maybe look it up tomorrow.

But it does seem to happen if I leave it connected and idle for too long.

There might be a bug in the website

well not a bug but a flaw

i typed the answer as -l/ which is not the correct answer and it still marked it as the correct answer

That's Answer Tolerance I suppose

I've seen that a few times because I hit / or ' a lot reaching for return/enter without looking.

could that be a potential bug if it were being pentesting

I've been doing aoc2 Day 5

the pages aren't responsive sometimes

I try to ping the IP and it doesn't respond

It comes back on after sometime

Check your VPN please

how wud I do that?

I don't think my openvpn connection is the problem

the main page works

wait what

now 10.120.192:3000/santapanel also works

It didn't load up before for somereason

now it's back to being unresposive again

I dunno what's going on

Maybe you have burp proxy on. Also, machine takes some time to boot up so not sure but that might be the problem.

help

i already download the configuration file twice but still not working

Are you running vpn as sudo? If yes then try this.

• Press regenerate, wait 30s and then try downloading again

• Change VPN server and try downloading again

• Log out of your account and log back in.

Ty it's working now

I recently got ddosed what do I do?

wrong channel try #infosec-general @safe canyon

ok thanks

by refreshing the page should be OK

Hi, Ive missed a few days going over the challenge from day 4. I have got the same answer as the video walkthrough but is not accepting my input into the answer fields

your missing the first word

ah no wfuzz is there just not showing in pic

But none of these answers can submit

then you have probably a extra space before or after your answer

No nothing

try reloading the page and try again

Thats worked now thanks!

Having an issue with AoCDay5. When i try visit the IP it redirects me to HTTPS and gives me an unable to connect error

Get rid of the S and make sure you put in the correct port

Ah see i was just removing the S and it kept going to https:// now i have entered the port it worked. thanks feel silly now haha

Can anyone help me with throwback?

I just bought the $60 lab for 30 days and I can't activate a code I got on my email.

Send mail to hello@tryhackme.com or support@tryhackme.com.

Hi, can somebody help me with such problem?

What problem?

There is no vmachine

But I got ip and other info

Read the instructions on page.

In compare with the first part

They don't all have vms attached to them

It says there as well SSH-Only

Well, so how should I pass the task with password?

You have to SSH like it tells you to

ok, thanks

hello, why business reasons' machine is so slow?

i literally can't even request a simple wplogin page

or can't even do gobuster

WP is just slow in general

not only wp

i don't think this is normal either

Oh that I am unsure of never seen that before

Have you run the script?

yea output from wpscan

bruteforcing for password

also, when i try to start gobuster, sometimes it only gets ht-ish pages and sometimes it just throws error

Have you ran the vpnscript?

yeah my vpn is open

should i regenerate my vpn on different server?

Try run this first !vpnscript

!vpnscript

thank you

Check your VPN

nope

BOF OSCP 1:
Script isn't working and crashes before it can append to the buffer:
Fuzzing with 100 bytes
Could not connect to 10.10.130.239:1337

Script:
import socket, time, sys

ip = "10.10.130.239"
port = 1337
timeout = 10

Create an array of increasing length buffer strings.

buffer = []
counter = 100
while len(buffer) < 30:
buffer.append("A" * counter)
counter += 100

for string in buffer:
try:
s = socket.socket(socket.AF_INET, socket.SOCK_STREAM)
s.settimeout(timeout)
connect = s.connect((ip, port))
s.recv(1024)
print("Fuzzing with %s bytes" % len(string))
s.send("OVERFLOW1 " + string + "\r\n")
s.recv(1024)
s.close()
except:
print("Could not connect to " + ip + ":" + str(port))
sys.exit(0)
time.sleep(1)

Feel free to DM, I can screenshare.
I'm using the TryHackMe Kali in browser

then it's a bit strange

@covert grotto Have you checked your VPN?

And made sure the port is open?

Because it can't connect to the port

I can ping it the box and the VPN appeared fine.

When I start oscp.exe in Immunity it'll state it's listening on port 1337, and received the first iteration but the script either runs all the way through and doesn't loop or something else is happening that I can't see.

On your Kali box, connect to port 1337 on MACHINE_IP using netcat:

nc MACHINE_IP 1337

Type "HELP" and press Enter. Note that there are 10 different OVERFLOW commands numbered 1 - 10. Type "OVERFLOW1 test" and press enter. The response should be "OVERFLOW1 COMPLETE". Terminate the connection.``` @covert grotto Did you do that netcat bit?

Yeah, and I made sure to hit play in Immunity before that. I watched Tibs video (https://www.youtube.com/watch?v=1X2JGF_9JGM) and followed his steps exactly, as well as the lab's

@eager fulcrum I'm going to take a break from this for a bit, I've been at it for over two hours (plus 3 from last night with same result). I have reset the box multiple times, tried various scripts I can find, it seems to be something with the s.send. I threw in print statements to try to find where the script was breaking and it seems to break between:
print("Fuzzing with %s bytes" % len(string))
s.send("OVERFLOW1 " + string + "\r\n").

I appreciate your help!

ik

but idk what is making this happen

im using Chrome Canary (my main browser)

Can you describe the issue for those who missed it?

and it just doesnt wants to open

sure

here

doesnt matter how many times i clear my browser, how many times i reset, it just wont open tryhackme.com pages

room https://tryhackme.com/room/zthobscurewebvulns, when i put the new admin JWT it keeps forcing me into https and wouldnt connect to the page

even though i changed the jwt value reencoded them n put them accordingly with an extra . in the end

Try http instead of https

i did

as ive said i wrote it forces me into https

even when i change it to http

its kinda messing w my ocd not making me able to continue cuz i want it to be green like the other parts 😢

Disable your proxy

alright i will try that

same thing

its still forcing me into https

:C

Hey everyone, I am trying to deploy the machine in Linux Fundamentals part 2 and it is not coming up. It shows the Active Machine information but do not see the actual machine. Any suggestions?

do u have the ip adress of the machine

They don’t all have machines attached to them

It literally does

They have an IP

10.10.224.4

They just don't have In Browser access

Follow the instructions in the room to try to access it @near cosmos

There's a whole task dedicated to SSHing in

would I SSH from my own terminal

@upper dune Please remember everyone here is a volunteer. We help when we want and when we can.

Yes. Follow the instructions in the room.

Oh I see. When it said deploy the machine, I was expecting the machine to be browser based like part 1. Ill try that out Ninja. Thanks

Assumptions are dangerous

I have a lot to learn. I SSHed in. Time to learn more. Thank you again Ninja, I appreciate it.

Hi all, I have a 7 day streak, but I haven't got the badge, does it take some time to show up? thanks

Often until the 8th day

thanks!

I came here to ask that very question, thanks 👍

hi, quick question.
I have uploaded a writeup for NetworkServices room, but i have only published till task4 out fo 11 task and am planning to upload the other in sometime.
Just wanted to reach out to the mod about general feedback for the same

Please remember discord mods are moderators for the discord

Not site staff

Your writeup will go to the room's creator

cool, got it

Hey, i'm having major connection issues to my deployed instance

even my AttackBox won't load ... what's up?

Could someone give me a hand how to downgrade metasploit? I am really feeling stupid here but i can't seem to figure it out.

This is what i am doing right now.
sudo apt-get install metasploit-framework=5.0.100

This is the result.
E: Version '5.0.100' for 'metasploit-framework' was not found

I tried some variation of the above but i dont find a source on how to specify the version correctly.

This is the version i am trying to downgrade to:
https://github.com/rapid7/metasploit-framework/releases/tag/5.0.100

This is a little out of scope for this channel, try #infosec-general

okay thx

hi

i need help with openvpn when i use repair file from tryhackme github it says openvpn not installed but i installed it

@naive dust what operating system are you using

My VPN is connected but I can't access the deploy machine I tryed to ping but no reply came

Can anyone see my screen ?

Not all machines respond to pings

Solved I just change my VPN

In particular windows machines

thanks Ninja

there is a support?

Only for THM and VPN issues

yes for THM

Hi I need help

can i contact someone?

I just installed openvpn

And it giving me an error

Does anyone knows what it is

can you be waaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaay more specific?

This is what happens

You are right now. What do you need?

I was sending the image

Okay?

what is this news?

What news?

I don't know I found myself these things

for some reason its looking for a certificate file @stuck venture

@toxic python No it's just missing the cert from the config

It needs a regen

Regen, wait 60 seconds. Redownload

ok so how I solve it?

@wide smelt What are you asking?

by listening to james

@stuck venture Regenerate. Wait 60 seconds. Redownload your config

I'm just saying that I never found this page, and I wanted to understand what it was.

Ok, I’ll try it

They're badges for showing off your level and rank? @wide smelt

ah ok, I didn't know it was on the login page.

I’ve also reinstalated the openvpn and the congif file about 3 times but without waiting 60 seconds

thank you for the info James 🙂

It's not?

I just logged in and found this, usually I find myself on my dashboard

Hey guys

hi

Im new to all this and I tried the openvpn on my Kali

It's not working and the browser based box is crashing

can you show screenshots of what happens when you run it on kali

So, a key thing to avoid saying is 'its not working'

That provides next to no information to help troubleshoot

Sure let me set it

Tell us what happens or doesn't happen, tell us specifically what you're doing, screenshots etc

I actually can't start the openvpn

Here is the message I get

Ok, please avoid taking photos of your screen

They're hard to read.

Sorry bout that

here it is a better screen 😄

@toxic python I think you know what that message needs

DELETE AND REGENERATE IT ALLLLLLLLLLLLLLLLL

https://tenor.com/view/burn-it-all-down-kiki-burn-kiki-fire-walk-away-fire-gif-10506929

ok i did it like 3 times before asking actually

Let me try again

switch servers before regenerating

and wait 32 seconds

ok awesome

I will be on it

appreciate the help

60

ok wait 66 seconds @coarse pilot

People waiting 30 often find it doesn't work

round numbers bad @eager fulcrum

Ok i will give it a min 30 sec

yeah it didn't work

so now i just realized the fact i'm in US and the VPN was in Europe could be the problem right ?

because i just saw it and changed it right away now waiting for the time to check it

na

i use a European config and im in US

sadly mine that was the issue

it worked fine after changing

Appreciate the help, and as a new commer i'm excited to join the community

happy hacking

@vapid dawn It seems to be almost entirely EU2 spitting out bad configs for all users

regular or VIP?

Regular

my internet page for the challenges sometimes she load, sometimes she doesn't (sorry for my bad english)

ps: it's for Advent of cyber

!vpnscript @finite oasis

demo.uploadvulns.thm <--- this server not found

Should we change to EU 1?

If you're in the US then no

I’m in Spain

What I have to do

@naive dust Yes. Read the text in the room. It's not meant to be working and the room explicitly tells you this.

@stuck venture Then try EU1

Ok thanks

I love you man

It worked thank you so much

i luv james too

hi, anyone around to help me with vpn, precisely can't ping deployed machines in rooms

yesterday entered and an image appears to replace .. today entered and says that ... server not found

kk, will change from eu-vip1 to eu-regular-1, regenerate and try again.

i already switched from eu-vip-1 <=> eu-vip-2, no luck

you have done it with sudo?

yes

on ping getting Destination Host Unreachable

ping <deployed machine from the room>

do i need to re-deploy machine after changing access server/vpn config?

No.

can't ping deployed machine, thm-troubleshoot shows ok

@small turtle What machine?

Not all VMs respond to pings

hackerNote
and now tried machine from day5 - advent of cyber

Hackernote does respond to pings

You can use http://10.10.10.10 to check your VPN.

not working can't reach it

If you can't reach 10.10.10.10 then your VPN is broken. @small turtle

I'm trying the Blue machine and I can't get the exploit to work... It says Triggering free of corrupted buffer and then it fails

@light crescent #room-help

damn, restart of pc and it is working. Something probably borked as i use multiple VPNs during the day.

if that was your problem you don't need to restart your pc for it, you can just terminate your other vpn sessions

hello - I am being told I cannot start an attack box because I can only start one once a day. Is that a 24 hour period? I have not started a attack box today

thm vms having problems

That's super vague

cant ssh or mount kenobi

Ok, and why not?

no response

Check your VPN.

i doubled checked it an connects fine

Then you're doing something wrong. @hallow thorn

You're currently not providing any screenshots, error messages, or information that would help us troubleshoot. If you'd like help, help us to help you.

─$ sudo mount 10.10.164.187:/var /mnt/kenobiNFS
[sudo] password for me:

─$ ping 10.10.164.187
PING 10.10.164.187 (10.10.164.187) 56(84) bytes of data.
From 192.168.40.130 icmp_seq=1 Destination Host Unreachable

Can you interact with http://10.10.10.10/ in your browser?

hm funny enough the vm mounted and gave me pings again

should be everything alright now

hm i terminated this one and the new one its the same

somethings wrong

now i think vpn doesnt connect

So this is probably just me not understanding virtual machines... but it seems like I can copy something to my clipboard in the attack machine, and paste it to my machine, but not the other way around. Why is that?

Enable clipboard access

Oh haha, thanks

You don't have 'bidirectional clipboard' enabled

hi, Any idea why when I got to 7 days strike instead of receiving a badge as it says at the strike icon, my strike got reset to zero ?

progress is no reseting

nvm loggin out fixed it 🙂

hey guys quick question my room upload is stuck at 96% should i reset it and start again?

good morning support, is there something wrong with my browser? do i need to do something different to keep my room VM running longer than one hour. the counter keep counting down, it start as 2 hours but after 1 hour, it stops and extend button grey , I am VIP subscribed. Thanks

Refresh

i have even rebooted, just kidding, i will refresh again but nope my remote sessions to the box closes every time exactly at 1 hour . oh and I have "try harder" also

Oh Windows boxes stop working after an hour

It’s being fixed I believe

Why can't i connect to my attacking machine?

am I the only one not able to get the rooms shown on the pathways? it keeps saying "loading" and it the js console shows an error

Hi, I've been having an issue where the input to submit answers is disappears when I join the room. I've tried leaving the room and rejoining as well as logging in through a different browser and still the submit button is nowhere to be found. Is there a way to fix this?

Hello, working through https://tryhackme.com/room/25daysofchristmas, task 9, "Day 4" and the target box works fine with the browser attack box, but SSH connection through openvpn doesn't work. Connection hangs for ~5 minutes before asking for password, and then instantly closes connection, even when given the right password.

thats a general problem. Try to re-deploy or alternatively switch to another vpn server

Okay, I redeployed 3-4 times, but didn't try a different vpn endpoint. Is this just an SSH thing or does it occur with other protocols?

not sure. I have just experienced it with a few of the rooms from time to time. It seems like the link is very slow/defective.

most likely vpn causing it

<-- just a fellow user here

cool, good to know, I will keep that in mind going forward.

Hey all, I can get my openvpn connection fine, but rooms don't load in learning paths, any ideas?

Can you connect to 10.10.10.10?

returns a ping fine

@balmy tiger you mean the list of rooms? I reported that earlier on as well. It is also reported in #site-bugs

Cool thanks @glacial star yes I load a learning path but the rooms don't load inside the page. At least it's reported 🙂

hello guys i've a problem with the room eternalblue, can someone help maybe?

ms17-010 exploit does not run, i mean it runs but i dont get shell

i've redeployed the vm like 7 times it still doesnt work

@ivory mason #room-help and post screenshots

okay sorry wrong section i guess, i posted it in the right channel thank you @eager fulcrum

Any mod for help about roles?

Hello, how can I change my nickname ?

email support@tryhackme.com

hey all i dont know why iam not able to connect to ssh server.

root@kali:/home/kali# ssh jan@10.10.227.177 -p 22 -v
OpenSSH_8.4p1 Debian-3, OpenSSL 1.1.1h 22 Sep 2020
debug1: Reading configuration data /etc/ssh/ssh_config
debug1: /etc/ssh/ssh_config line 19: include /etc/ssh/ssh_config.d/.conf matched no files
debug1: /etc/ssh/ssh_config line 21: Applying options for *
debug1: Connecting to 10.10.227.177 [10.10.227.177] port 22.
debug1: Connection established.
debug1: identity file /root/.ssh/id_rsa type -1
debug1: identity file /root/.ssh/id_rsa-cert type -1
debug1: identity file /root/.ssh/id_dsa type -1
debug1: identity file /root/.ssh/id_dsa-cert type -1
debug1: identity file /root/.ssh/id_ecdsa type -1
debug1: identity file /root/.ssh/id_ecdsa-cert type -1
debug1: identity file /root/.ssh/id_ecdsa_sk type -1
debug1: identity file /root/.ssh/id_ecdsa_sk-cert type -1
debug1: identity file /root/.ssh/id_ed25519 type -1
debug1: identity file /root/.ssh/id_ed25519-cert type -1
debug1: identity file /root/.ssh/id_ed25519_sk type -1
debug1: identity file /root/.ssh/id_ed25519_sk-cert type -1
debug1: identity file /root/.ssh/id_xmss type -1
debug1: identity file /root/.ssh/id_xmss-cert type -1
debug1: Local version string SSH-2.0-OpenSSH_8.4p1 Debian-3
debug1: Remote protocol version 2.0, remote software version OpenSSH_7.2p2 Ubuntu-4ubuntu2.4
debug1: match: OpenSSH_7.2p2 Ubuntu-4ubuntu2.4 pat OpenSSH_7.0,OpenSSH_7.1*,OpenSSH_7.2*,OpenSSH_7.3*,OpenSSH_7.4*,OpenSSH_7.5*,OpenSSH_7.6*,OpenSSH_7.7* compat 0x04000002
debug1: Authenticating to 10.10.227.177:22 as 'jan'
debug1: SSH2_MSG_KEXINIT sent
debug1: SSH2_MSG_KEXINIT received
debug1: kex: algorithm: curve25519-sha256@libssh.org
debug1: kex: host key algorithm: ecdsa-sha2-nistp256
debug1: kex: server->client cipher: chacha20-poly1305@openssh.com MAC: <implicit> compression: none
debug1: kex: client->server cipher: chacha20-poly1305@openssh.com MAC: <implicit> compression: none
debug1: expecting SSH2_MSG_KEX_ECDH_REPLY

😩 its not going beyond this

It's expecting an SSHv2 encrypted session.

hello

i cant find 'my machine' page

and can someone tell me how to start attackbox in another tab

AttackBox is deployed from the Room page you are doing. It's a blue button at the top-right on a room page.

yes i know but i want to deploy it in other tab

i ddont want this

😄

Yes, that's how it is intended to deploy: split-screen.

@sand gate there's a minimise button to leave split screen

Thanks da what about “my_machine” page i mentioned earlier?

It's under your profile on the top bar @sand gate

I think it's my-machine

its now called access

but thanks

i was talking about the URL

oh

ok

Did you remember to set LHOST

Hi guys! Totally new here and just signed up and want to take the Introduction path, but my page just shows "loading" where i'm supposed to click. Using Chrome, latest update. Anyone know how I can proceed?

we'll be pushing out a fix for this tomorrow 🙂

Thank you! I thought it was me doing something very wrong 😄

How often are username change requests granted? What's usually the turn around time?

Hello all
I'm new to TryHackMe and I want to RDP to a machine that I just deployed, but cannot RDP to it, not even ping it

Are you connected to the VPN?
Can you provide screenshots?
What machine are you RDPing to?
Do you have credentials?

nevermind

I got it, user error as usual haha

I didn't validate my email. duh

Thanks!

any update on this issue perhaps? or somewhere i can monitor to see when it's fixed? trying to enumerate IronCorp, and it's quite frustrating

No, sorry

i had the same screen as well

.

Browser Kali
Room: Alred
Task 1: Find a feature that allows...
I can get a shell but Jenkins never finishes build, so I can't check if reverse shell uploads properly, nor can I execute. I've rebooted the box multiple times and it gets stuck on the build in all trials. (This has been going on for the past 2 days)

Hey all 👋 Anyone experience frequent lost of connections? Feels I'm constantly DOS'ing or banning myself out of the boxes

@covert grotto #room-help

@toxic python is this not technical since the room is hanging?

This happens across all rooms, thus I posted here

It worked the first time, I got a shell and was working on privesc when the timer cut short (said it had over an hour still) and ever since then, it won't complete the build

It’s not a tech support issue. If anything it’s a room bug. But I’ve never seen anyone say that room has a bug and it’s been a room for a long time so it’s most likely user error

Ah I gotcha, makes sense, thank you

I got this while trying to download the openvpn file

srry when trying to open the vpn file*

Regenerate your cert

Wait 30-60 seconds

Download again

Whats the certificate the .openvpn?