#site-support

I want my "Free" room please?

Are you looking for the free network?

https://tryhackme.com/room/wreath

hey guys, i am the only one that cant download vpn?

What are you trying to download it on?

eu reg2

I meant OS, are you on windows or Kali?

kali

Ok, I'll spin up my VM.

i could try to download the reg1

but it did not worked either

going to upgrade some packages, ill hit you in a min

Do you get any errors?

so is the download broken

using the reg1 nope, but i cant ping any machine

with reg2 i cant even download, always 404

I just clicked download and it worked.

going to try with a diff browser

https://tryhackme.com/vpn/get-config

Copy that and paste it in your URL.

true

gives 404

404 still

but when i go to access , it downloads perfectly

https://tryhackme.com/access

^ try that.

true

ill try to run now

and check if its working

openvnp [path.ovpn]

hahaha yes i know :p

;p

That won't work if the file isn't there.

still cant ping with reg1 @naive dust

but its says i am connected

The vpn?

yep

and thm website

Are you maybe connected via attackbox?

nah

i am terminating and starting over again a box

Don't start an attackbox.

Are you using Kali in a vm?

i am not starting an attackbox hahaha

i am starting a room

ye and i never had problems with thm until now

well, restarted the room and the same thing happens

Are you connected to openvpn on windows?

no , i have a VM with kali and i am connected to openvpn in Kali

i dont even run windows

if you're connected to openvpn already, do you already have the file downloaded?

yes

I was under the impression you couldn't download the file.

ye but i can now

but when i run openvpn everything works, i got an IP and everything

but when i start room adventofcyber day 1 i cant ping or access it

Is room 2 not a static site?

yes but there are buttons to start rooms :p

i cant send pics here ... it would be cool if i could

you need to verify.

You can load up the static site without the vpn.

dude

ok i will explain to you my problem xD

That is probably best, because your opening line made me think you can't download the vpn file needed to connect 😂

i am in the tryhackme advent of cyber page ok?
i am connected to the VPN but when i start the room for day 1 i cant ping the IP of that room

thats my problem. then i tried to download eureg-2 vpn file but the same problem persists

can you ping/see 10.10.10.10 and what's the output when you run "ip a"

Yes i can , give me 5 mins

Sometimes the machine does not accept icmp not sure if that’s the case with advent tho

fixed it

i waited like 10 mins and its working now

pure magic

that's not at all disconcerting 😄 good that it works, but always worrying that the issue might come back

probably it will, but its ok

i can report

Any admin for a quick check ?

I'm pretty sure I completed rooms before

Yeah it looks like I have two accounts 😦

I guess there no way to merge both ?

I used "+" in my email so I have email+thm@domain et email@domain -_-.

I've had a 4 days streak on the new account due to Advent of Cyber but old account was subscribed

Just added all my answers of Advent of Cyber to old acct

Question - first time on THM and first time doing Advent of Cyber. The quality of the content is great - thanks to those who develop it!

I'm currently trying to knock out Day 4's tasks (a day late) and from my attack box I am unable to resolve the IP address listed in the exercise (not the IP address in the screenshot)

Upon closing out my attack box, terminating that session, and trying to log out and log back in to resolve this, I have launched a new virtual machine but the timer is back at 59 minutes and is telling me I have hit my free time cap for the day. Is this 59 minutes limited to a single attack box session?

Pardon the ignorance - any help is greatly appreciated. Thank you!

'thms' account deleted, added everything to Advent of Cyber 3 from 'thms' to '0xTHMS', only lost my days streak not sure if it's possible to "add" that.

I think you'd need to email support

!email

is there are way i can have access to thm api?

what for?

i want to make a tool to extract the info from a room and create a .md file

A Web scrapper?

but why?

well ... if i dont have access to the API it will be a web scrapper ye

why not?

You may want to ask a THM Staff before trying it out
Perhaps, they can provide you with the publicly accessible API of some sort or some other way around

why not scrape what people have put time and effort into? I'm Guessing it's against T&C's

xD why is that? that makes no sense tbf

Yeah, Web Scrapping is kind of against rules and stuff, IIRC

@zealous yoke what's staff view on making web scrapers for THM content 👀

Or perhaps any available API endpoints for use

yes .... api for free

Done support contacted, not sure they will comply, but thank you.

Gave +1 Rep to @deep spire

THM Staff on the Mitre room at the Mitre Shield VM on the T1497 Technique you are unable to load its content and this is the 2nd time I shutdown the machine.

I loaded it from outside the VM from here: https://attack.mitre.org/techniques/T1497/

How do I know if my open vpn is connected or not?

I think it is but I have no run the command sudo openvpn <config file> after having rebooted my pc + my kali session

you can go in the site to access click on your profile.

you can also run the following command ps aux | grep openvpn

this makes sense

thanks 😄

Gave +1 Rep to @restive berry

you can list the processes with ps and kill processes with kill [PID]

Trying the older Advent of Cyber 2019.

On Task 6, Day 1 . Machine is started, with an IP, but I can't get a response in browser. Tried Multiple times. Gave it over 10 minutes to "fully deploy".

Anyone else having issues?

did you wrote the port http://IP:3000/ ?

check if you are connected to the VPN and also launch a nmap scan, maybe they changed the port.

try using whatweb IPHERE
you can PING the machine.

Good question. Can't remember if I did that last time. I'll try that and let you know if about 3-4 minutes

@naive dust , I'll try this stuff and see what happens. Thanks for the advice!

Gave +1 Rep to @restive berry

@naive dust did whatweb and found that i have to do <ip>:3000/login to get to the page

Is there an email to contact? I would like feedback and to include screenshots of issues

Dear Tech Support, please can you verify mi account? Thanks very much 🙂

!docs verify

@fair berry

@hollow otter Did that but says token belongs to old profile

Ask one of the mod to unlink the token

There are mods in #general

Ask them there nicely

@hollow otter Thanks for prompt reply.

Gave +1 Rep to @hollow otter

Is it possible to see when my next "day" is, so i can launch attackbox again if not subscribed ? And to see how many hours until streak goes out?

Cmiiw but pretty sure its 24h on your timezone

But if i dont remember exact time i did my last answer? The next "day" seems to be different times for me 🤔

Idk, since streak is count every 24h of your timezone i would assume would be the same for attackbox

Yeah i think so too, but doesnt seem to be like that for me, thats the weird thing 😄

Hey all, is anybody able to tell me what type of language or code base this is?

It is the page source for a malicious HTML file (phishing attempt), I' am just gathering some intel about it for work, and want to find out the domain or IP the server is hosted at from this code.
Usually it's more evident but with this attachment it is hard and all encoded.
I have tried decoding it in Base64 but nothing readable is returned.
I' am still very new to the forencics and analysis side of things.

Looks like it is JS obfuscation from the following VT link I found when looking up the email address the email came from:
https://www.virustotal.com/gui/file/c0897aad5b0bdc84736aa94ae93086c7e8c919d0d6f183c8e397b33a93b63c65

all machines ip not opening in browser. openvpn connection is ok but this problem happening all time. Why?

What room? Some room's website is run on unusual port (not on 80/443)

hey guys, i have a problem here: Im in the authentication bypass room, and in the username enumeration container, for some reason, it doesnt show the ffuf box code. I don't have strange extension and Im using the firefox browser. Some pictures:

thanks, i was wondering why i can't drop files lol

as i was saying:

Hey!
This chat is for site-related issues, feel free to ask again in #infosec-general or #general :)

Hey 🙂

I just paid for premium but my account is not upgraded and nothing shows a sign of it, I got charged though, does it take some time for the account to be upgraded?

Hello I need help at task 5 spoofing and decoy

wat

You might have to Join one of the rooms under Networks

# Networks
- Holo
- Throwback
- Wreath

oh ok

I was wondering, is there some image file of the AttackBox OS with all software preinstalled? I have a spare laptop and thought it would be nice to have a more responsive attack box than the online VM.

hey, I am trying to build something that interacts with the API too, however the public API (the one opened to people who aren't part of the Training program) is very very basic.

and its not possible to do that with the public API right?

These are the endpoints I am using:

    private baseUrl: string = 'https://tryhackme.com/'
    private api_url_user_rank: string = this.baseUrl + 'api/user/rank/'
    private api_url_leaderboard: string = this.baseUrl + 'api/leaderboards'
    private api_similar_users: string = this.baseUrl + 'api/similar-users/'
    private thm_user_url: string = this.baseUrl + 'p/' 

for instance, I am not able to extract the user's country, that's info that it's burnt into the page and never retrievable from API (I believe, plz help!)

i just want to reach rooms

in order to do what? I believe that's something you can only do through their 'training program' api, but not in the open

read what i typed ...

however, I am planning also to create an npm package with all possible THM endpoints, so please don't hesitate to let me know your findouts

build a .md file with info about the room

I see..like the tasks?

Isn't there this endpoint to consume?

https://tryhackme.com/api/tasks/pentestingfundamentals

or https://tryhackme.com/api/tasks/<room_id>

where did you find that endpoint? any link?

I inspected the website's network on chrome, if you explain a bit further what you want to do, I might be able to script something quick in node/typescript

Hi Everyone

I need some urgent help regarding tryHack me event

I can't access the free attackbox in the advent try hack me event

everytime it is only showing active machine information details but not opening the attackbox

may i have response to my ask please??

i am thankful for this kind help @upbeat bloom or @bronze vale @admin

Please read the #rules, no DMs without asking first

I'm not staff, you need to ask your question then wait, you can also email support@tryhackme.com (only 1 email)

Please make no mistake @upbeat bloom ...It was just request considering you as valuble memeber of the room..

yeah but I have never used the attack box and know nothing about it. Still refer to the rules, you ask your question and wait

sure

Since you can see the "Active Machine Information", is it possible that you only started the vulnerable machine? (That is, you clicked only the green "Start Machine" button).
If so, then scroll to the top and click the "Start AttackBox" button:

Hi @lusty widget ,

Thank you very much for your response.

Please be informed that, I have already clicked on start machine button...i tried all the possibilities but not sure why it is not opening anywhere in the page

Gave +1 Rep to @lusty widget

as I said, the "start machine" button will not start the attack box. it only starts the vulnerable machine. you need to click the start AttackBox button too, did you do that?

it is reflecting the error message

Uh-oh! Non-subscribed user can only deploy the free AttackBox for 1 hour a day. Subscribe for unlimited access.

i clicked on start attackbox as reflecting in top of the windows Winston

but i cannot see the split view option in the broswer to open the attack box

ok that means you already tried this once today and the box ran for one hour, so you can't use it again today. As free subscribers we only get one hour per day

(which is fair, I mean the attack boxes need to run somewhere which costs resources, so it's already quite nice to have one hour for free)

How can I report a user I believe is cheating? Just email support?

Hello, ive been trying to change my country in my profile next to the phone number im from uk and it keeps changing to Afghanistan, im not in Afghanistan nor is my VPN.

You can try this link, you will be redirected to the Dashboard
https://tryhackme.com/api/user/update-timezone

Thanks for the response @lusty widget

Gave +1 Rep to @lusty widget

any chance can i connect to the box using vpn?

The AttackBox?

yes

Thank you that worked........bit of a weird fix but it worked😆

Gave +1 Rep to @keen scroll

You can connect to the vulnerable machine via VPN, yes. But not to the attack box. Some challenges can be done from almost any computer, for some others you may need the tools available in the attack box. For that you could set up a VM locally on your computer and connect to the VPN from that.

That one has been shared quite a few times here.
I wonder why they don't provide it on the site, I haven't looked for it though😅

Isn't ssh available for the AttackBox?
I might have tried it once🤔

Regarding the VM: https://www.kali.org/get-kali/
Just click the option for "Virtual Machines", then you can set up your own local attack box if you want

hm that may work too, but as the one hour daily limit for achillies already expired there is no chance to start the box in the first place. But sure, should be possible going through SSH into the box (using the VPN as free attack boxes are not directly connected to the web)

I started a vulnerable machine for FileInclusion-AoC3. I am connected to the VPN, not using the AttackBox. When I open the IP adress in firefox then I get a 502 error. If I use curl then I get the correct result. Any ideas?
Edit: nevermind, clearing cache fixed it 😅

Hi Winston

I have doubt..should we complete tasks on the same day that got triggered or we can complete them at any time....to enter into raffle or to win prizes?

Any thoughts on this please?

I have no idea about the prize raffle. So far I have done most tasks a day or two later as I don't have much time. Keep in mind that I also just joined for this Event. I may know some tech stuff, but I am not an expert about TryHackMe in general. This also seems to be the wrong channel as it is for technical questions, so I guess you could try asking in #910210693821780018

Thanks

hello guys I am facing this problem

I am not able to connect openvpn

anyone know how to fix it?

i cant connect to vulnerable machine, i've already done all the steps and i 've done this before also but facing this prob first time, ip keeps loading cant acess site

how can verify certification roles?

😄

try use sudo openvpn <yourvpnpackage>.ovpn

or if you chose EU

try USA servers

please update loki in the yara room, it is detecting both files as cleans.

I already tried.

damn

must be something else

😥

maybe try restart NetworkManager service and then give a try on logging in to vpn server?

or restart openvpn service

@carmine dome

I'm really dead trying to solve this questions can you help guy

I need support please

Regarding payments

Is there anyone ?

Send mail to support@tryhackme.com .

I clicked on Start Machine for AOC3 Day 6 Task 11 got IP and used the given url inside the Attackbox but the website is not opening. ping machine_ip is working with 0% packet loss inside Attackbox, but the website is not opening in firefox or using curl. Any idea what I should do?

How fast they respond please ?

It’s urgent

Usually respond within a week but if you do not get reply within a week then send another follow up mail.

within 24 hours^

@spark ledge You can drop me a DM if it's urgent:)

I will thank you

Gave +1 Rep to @bronze vale

hey, is THM subscription renewed automatically or not?

Hello, i started my kali machine for doing the advent challenge and the machine was extremely laggy to the point i couldn't actually do anything and then it got disconnected and I tried turning it off and on again and it's still unusable. Does anyone know anything about this ?

Yes, on the same day each month

thank you

Gave +1 Rep to @toxic swan

After setting up VPN connection I am getting 504 when navigating to the challenge website

Hey there!
I'm facing this issue where rooms randomly stop working (stop responding to pings) and randomly start working again. Sometimes the rooms don't start at all, even 7-8 mins after starting the room.

I do a combination of all the below steps or maybe some of them to circumvent the issue, but I haven't found a solid solution.

*Checked connections in my host and VM, both ping fine.
*Restarted the room, generating a new IP
*Changed my vpn config file, trying other servers
*Restarted my host and VM

Again, the issue arises only with the VPN/room, because it stops responding to the room IP ping.

My config: Latest Kali image on VMware 16
Would really appreciate any help on this.

have you checked that you only have a single tun device???? @clear hedge

because if you got multiple it might be the cause of the problem

Thanks for replying. I think so, but let me confirm.

Gave +1 Rep to @plush bay

you were right, I have 2 of them, tun0 & tun1. Can I just remove 1?

wts wrong while connectign to nessus

yeah you should be able to remove one and then also make sure to kill all instances of openvpn first to be sure there is no old ones left @clear hedge

then start it again and it should just work after

my kali/attack boxes are still extreamly slow. any updates on this issue ?

Hey, im having lots of connectivity issues today, is it a known problem?
especially "Failed to connect to server" and "Disconnected" messages

Um, whenever I turn on AttackBox or Kali Linux, after some time I get disconnected. I tried a few times, but this still was the same. Any ideas how to fix it?

Hello, I am using the AttackBox VM in the browser. But it's working extremely slow, it takes like 1 minute to open Firefox...
I see that others have the same issue.

Hello I'm unable to use IN-regular 1 server config file via vpn it's showing initialisation sequence completed in terminal but not showing while Im solving the room

What you mean? Can you open 10.10.10.10 ?

No

Mh, I mean if it says "initialisation sequence complete" you should be fine.

It's not opening and also not showing on access page

Access page is not reliable to tell if you are connected.

I can't even ping my machine

Hi. I am not sure if im at the right place.. but i need someone to bounce ideas off of to solve a metasploit issue,

And If I do any room web server don't open

On that ip

Could you help me with the room Burp Suite task number 9 (Help! There's an Intruder!)

On the question "Finally, click 'Start attack'. What is the first payload that returns a 200 status code, showing that we have successfully bypassed authentication?" the correct answer is a' or 1=1-- but it's showing an error "Uh-oh! undefined" and I can't finish this room!

Could you please tell me how to answer this correctly so I can move on!?

.... 20 bucks. I got ya fam

lol

jk.

🙂

🥲

no but seriously.. back of the line. im first

lol

im about to light things on fire. i cant figure this out

fire is bad people.. just incase you kids dont understand that today

already bored. Going to get tacos. Ill find someone eventually.

Okay but I need help with my problem

..fine.. what is your damned problem retr0? how may i service you.. do you want me to dance

dance monkey.. dance

Noo

Send a screen of you openvpn output when trying to connect to the vpn.

.. well im sorry.. but thats all i got. im not too bright

why does metasploit not work in kali anymore?

I already closed my vm and afk for now but as soon as I wake up in morning I will send it

Hello guys where can i find the subscribe with only 8$ for student ?

!docs vpn

!docs

!docs free-path

Room specific question would be in #room-help @small valley @quartz flare

But regarding your question, are you running bitdefender on your machine?

yes, indeed

That's most likely causing the issue for that answer.

Let me try disabling it.

You are completely right! Thank you so much ☺️

Gave +1 Rep to @crystal marlin

windows....

Is your full name that you put in your occupation details publicly visible?

Is there any problem with the leaderboard? I'm #48 in my country's monthly ranking, but another user is showing up...wtf?

Hello, it is possible to analyze these "Day Streak", because I answered just before the end of the day, but still lost my 183 days of series, it's been 183 days since I forced to answer every day for targeting the badge 365, thanks to you

how can I delete an account from tryhackme.com ?

So I have tun0 and tun1, does it matter as to which one I delete? And I'm unsure as to which of the above 2 commands I should use.

Or should I use both?

Just do sudo killall openvpn and start the vpn again and you should be good.

And it won't return after a restart?

Dunno, it shouldn't unless you accidentally start openvpn 2 times without shutting down the current connection.

Just do the command provided and check if you got no tun interfaces anymore

Oh so that's what's causing it

Then start the vpn and check again

That helps mate, thanks a lot! :)

Gave +1 Rep to @crystal marlin

Hi ~ I recently subscribed -- am doing the advent challenges, but my machine "expired and terminated" !! I clicked the button for more time, and it expired anyway -- what am I doing wrong? I thought when you subscribed the machine wasn't supposed to time out.

Is IN-Regular-1 VPN working?

i'm using the attackbox -- does that help? or is there somewhere specific where I can find the answer to your question?

No, I suppose that doesn't help. I'm using my own machine, and connecting to THM network via VPN like I always have. I haven't connected in long time, and noticed there's an Indian VPN server as well, so I switched to it, waited for 30 secs, and downloaded the configuration file. I can see the internal IP assigned to me on machine but I don't see any assigned IP on Access page of THM

yeah -- I think when you do it that way, you need to access THM within your VM -- if the browser you're using is outside of the VM, it won't work (assuming I understand what you're saying LOL)

I think you gotta ask for more time before your attack box expires, not after it expires

I did ask for more time 7 minutes before it expired

then it expired anyway

not an expert on this, I'll let someone else answer you

lol NO

@rough oar I'm not using a VM, I'm directly accessing on my host machine. There's no VM

well, I dunno -- perhaps a glass of wine will clear things up . . . cheers!

it's 8AM for me

😄

but thanks anyways

ah, I shall have one for you then

yup, I think I caught a bad time to do THM today, no one from team/mods seem to available

Hey @sharp bear , can you help or ask someone from your team to help with the VPN issue?

I don’t see an issue here

the access page can lie sometimes

If you’re connected and can interact with 10.10.10.10 nothing else matters

@vale haven

I'm not able to interact with 10.10.10.10

that's why I wanted to know if IN VPN is up or not?

one strange thing though, tun0 status is neither UP not DOWN, could this be an issue?

@sharp bear

hello, i am a new premium membre i have a issue with the vpn...
I download my conf.file and run the command it gives me a 10.13.x.x adress but i cant ping 10.10.10.10 or any of the box that i need

does THM have a dark mode?

nevermind, after searching this channel, it appears not

Hey team, I just started Vulnversity and it seems that I can ping the box but when I try to make a connection with the webpage on port 3333, nothing is popping up. I think it is timing out.

Make sure to wait about 5 minutes after you start the machine

You can use a browser extension but it makes the site kinda laggy (atleast for me)

Hello mates! I hope this is the right place to ask. I would like to change my sub type from monthly to annual, since I saw the 20% discount on AoC3, but I have trouble doing that. I can cancel my current sub, but this way I have to wait till the end of the month, so I still count as a subbed user and cant do an annual sub payment. Strange enough. Can you please give me some direction? Thnaks!

anyone know why i don't have a recovery mode listed here ? i'm trying to drop in to the root shell to give myself back sudo privileges but can't get into recovery mode.

i went to advanced options

Isn't the second option for each kernel version its recovery mode?
You could boot from a live USB and then chroot into your OS after mounting its / (root) partition
It might be a little bit more difficult if its encrypted😬

i get that since i didnt enable my root login

Yeah, you can chroot from a separate OS, live boot
And add sudo group to your user

It will be better if you discuss your issue in #infosec-general or #general

oh sorry ok.

Does anyone know if and how I can use my dedicated GPU in Kali for password/hash cracking? I'm on a Legion Y530 laptop with an NVIDIA 1050, Kali running in VMware

Please refer to #infosec-general
This channel is meant for site related tech support

You can use hashcat

You may want to check out https://www.kali.org/docs/general-use/install-nvidia-drivers-on-kali-linux/

Understood and thank you!

Gave +1 Rep to @keen scroll

hello !
I'm new to tryhackme, I'm doing the advent of cyber.
I'd like to access to my machine using OpenVPN, but when I click on "download your OpenVPN configuration pack" I get an error page (404 - An error occured)... Is it normal ? Is it a premium feature or something ?

I'm having issue in running directory enumeration on 1 specific machine, 'Mr Robot'. Can someone run a scan and check if its actually a machine issue?

The command im using: gobuster dir -u http://<IP> -w /usr/share/wordlists/dirbuster/directory-list-2.3-medium.txt
What I get within a minute or so: Progress: 721 / 220561 (0.33%) [ERROR] 2021/12/07 05:11:30 [!] context deadline exceeded (Client.Timeout or context cancellation while reading body) [ERROR] 2021/12/07 05:11:30 [!] context deadline exceeded (Client.Timeout or context cancellation while reading body) [ERROR] 2021/12/07 05:11:31 [!] Get "http://10.10.234.127/sales": context deadline exceeded (Client.Timeout exceeded while awaiting headers) Progress: 724 / 220561 (0.33%) [ERROR] 2021/12/07 05:11:31 [!] Get "http://10.10.234.127/install": context deadline exceeded (Client.Timeout exceeded while awaiting headers) Progress: 725 / 220561 (0.33%) [ERROR] 2021/12/07 05:11:31 [!] context deadline exceeded (Client.Timeout or context cancellation while reading body) Progress: 742 / 220561 (0.34%)

Let me know in case you are still on that machine and having that issue, I can run it for you then.

I am, should I dm you the IP?

You can, yes.

Just to be clear, you said you are having issues with nmap, but posted the command for gobuster, so what should I try, gobuster or nmap?

my bad, it was actually gobuster

K

I also have tried running dirbuster with directory-list-2.3-small.txt wordlist and its so slow even at 50 threads that I estimate it to complete the enumeration in about 4hrs.

Seem quite slow for me too. Have you restarted the machine already?

yes, multiple times on multiple days.

I'll try to start a machine for myself to see if it's still like this.

yeah, thanks

Hi. I am trying to connect to the VPN and getting the following error?

I'm also finding that I can't download my vpn config - I have paid for premium. https://tryhackme.com/vpn/get-config leads to 404
Aahh. I've just discovered that if I change the server to something other than EU-Regular-2, it works

oh ?

lemme try

still doesn't work for me :(

which server did you pick ?

K, tried it right now. Still seems a bit slow. But, when I tried the first run with the small directory list like he used in the walkthrough video it was kind of ok, would still take a little bit of time but wasn't too bad. After a couple of times the machine got a bit unresponsive, so I suggest you try the small list and don't run the dir scan too many times.

EU-Regular-1 works for me (and others but just tried this one)

there's something wrong with the cert or the format in the config file, multiple people have had that problem

Change server, regenerate config file, wait 2+ mins before downloading it.

Yeah just tried EU-Regular-1 and it worked but none of the others work

okay, I'll try that. thanks.

Gave +1 Rep to @crystal marlin

Btw, with ffuf it felt like to work better, but that could be just my imagination 😄

oh, ill try that as well then!

Hi @forest eagle
I'm trying to get that discount as well,
I'm still waiting to get a reply from Jabba

my vpn isnt working i can connect with the vpn also i get my tun0 interface but i cant ping 10.10.10.10 UPDATE: I cant ping 10.10.10.10 but can view the website weird because ping was working few days back

oh I waited a bit and it worked
thank you !!

Gave +1 Rep to @ocean thistle

Can you do curl 10.10.10.10/whoami and get a reply with your tun0 IP ?

Hi

What OS is that, is there even curl installed?

It’s popos

I cannot start burp attack for advent day 4. Error .
This attack type requires between 2 And 20 payloads position

But check if you only have a tun0 interface and not any extra like tun1, tun2 etc.

If it wasn’t installed I would get curl cmd not found I think

Second file is filled with lots of lines which didn't not got upload but software.

Yes only tun0

Mh, curl doesn't seem to work for me either. Maybe there is an issue with that machine. But do you face any issue with target machine? As if you don't, I would ignore the 10.10.10.10 machine for now.

Yes everything is fine just wouldn’t ping I usually ping the 10101010 to check I’m connected with the thm vpn that’s why I let you know about the problem

Alright, ye not sure why it is like that atm. But thx for the notice about that.

Gave +1 Rep to @spare raft

been running into windows boxes just... crashing. Anyone have any idea?

Happened to me on Redline, also on DA & Autopsy

same

it's just the windows boxes yeah?

might be THM's load balancer crapping out bc of simultaneous connections

the mongo db window for AoC latest is crashing on me also with popup of server instability

Heyo, multiple VM's are spinning into chaos, prompting us with some login panel, thought you should know 😄

How about we re-word that? :)

@spare raft @crystal marlin 10.10.10.10 is being looked into, raised with Skidy now

“Hey, I’m having an issue with the virtual machine I have just spun up.

I have deployed it in this room and this is the error I am getting”

@unique nebula

fixed

I think

(I had censored it)

Getting error while connecting to attack box

same, literally just got it

AttackBox gives Remote Login request on AOC3 Room 7. Is this supposed to be happening? Alright, according to the video walkthrough, the MongoBD should be loading in its place. Is there a way to fix this?

Hello

Someone know what is access to networks ?

Some time ago my old discord got deleted, which means that i cant get my Discord & Tryhackme account linked. It would be nice if this could be resetted. I have all the personal information ready if needed 🙂

From what I can see, it appears that Openvpn is having multiple Authenticate/Decrypt packet errors when i start the AOC3 Day 7 machine. Trying to start the AttackBox just threw about 15 more Auth/Decrypt errors up.

shadow would recommend after following fontaenes tip of sudo killall openvpn first and if any remain remove those with ip link delete tun to make sure there are none left and then starting the vpn again with sudo openvpn yourusername.ovpn

if you click the learn button and scroll down to the bottom there is 3 networks you can select... wreath is the network unlocked by having a 7 day streak or above

You get access to Wreath network.

This is what my OpenVPN is throwing all of a sudden. I have erased and re-downloaded my ,ovpn file and even changed servers and downloaded again. Any help is appreciated.

Im currently in content discovery room, after starting the machine I cannot connect to room links, giving ERR_CONNECTION_TIMED_OUT. any quick fixes known?

For curiosity sake, see if your Openvpn is giving errors like mine.

Fontanes method worked perfectly fine, but I'll save this comment for future reference in case a situation like this does arise. Thanks again!

Gave +1 Rep to @plush bay

well now you know... so have fun and continue learning

I see thanks

Gave +1 Rep to @plush bay

thx

hello

how do i paste the code snippet in browser console

to terminate all machines

trying to move on to day 5 machine and day 4 machine wont terminate

just had to wait a full hour to move on smh

Hi everyone. How do you copy/paste text in and out of the attack box on a Mac? Seems standard ^C ^V won't do it.

there is a small tab on the left of the attackbox window... click that and you get a list of a few options... the middle one lets you copy text to and from the attackbox

OK, I'll try it out. Thanks!

I regenerated my dl config OPenvpn file and I cant download it. redirects to 404 how can i fix this?

try another vpn server... some of them seems broken for some people

i will thx

Gave +1 Rep to @plush bay

What is happening with the deployed attackbox/kali machines ? They are borderline unusable.... Is anyone looking into this issue?

what's unusable about them specifically? I was using one until about 10 minutes ago to do today's advent of cyber and I was able to complete the task

When i type the lag between when i press a button and when it appears is sometimes huge (10+seconds) and on average about 2-3 seconds. Moving windows, trying to select something again is laggy and it was easier for me to just type the answers (and them being random numbers and letters is not fun). This time was a little better than yesterday since i was able to complete the challenge myself and did not have to rely on the video, but i don't want this to be the norm and i want to know if someone is investigating the issue.

ah that sounds frustrating

can someone help me with the verification? bot says I already have a key and when I try to do a ! rank it says user not found

Not sure why it says user not found, but it seems you are verified.

yeah, I suppose its not a huge deal

I can see my rank on the website anyways

Not sure how to find help so will hope someone can direct me from here. But I no longer have email I subscribed with and somehow my password is wrong. But about a month or 2 ago I bought an annual sub. So problem is without password I can't login and I can't see a way to reset password without access to the email. I still own the domain but don't have any email service running currently.

You are most probably best off with sending an email to the support, providing all the details you think are helpful to get your problem solved.

!email

Thanks @crystal marlin

Gave +1 Rep to @crystal marlin

lol just tried my current email and it worked when I resubbed I must have corrected my email but my passmanager never picked it up. lol

can someone tell what happen to today's challenge they have to shift to aws instance rather than providing separate vm

Potential Bug - On Pre-Security Path:
How Websites Work, Task 5, HTML Injection

Task is to inject HTML into vulnerable site to display http://hacker.com. Completed correctly and popup window displays answer but the answer is not accepted. Tried multiple variations to no avail.

What's the flag you try/get as answer ? Delete it in here afterwards pls.

Hi, I'm in the AOC3 room. Whenever I try to terminate a VM, it says its been terminated successfully; but when I try to spawn a new VM in the room it says I already have one running. And when I refresh the page the Active VM bar reappears. Any help?

You could try that: #site-support message

Ok, you can delete it 🙂 That should work. Have you tried ctrl + F5 ?

I'll try that and see if that works

Thanks, didn't know of this. Am I gonna need to do this every time I want to terminate a machine? Or is this supposed to be fixed?

Gave +1 Rep to @crystal marlin

Usually you should be able to just terminate and restart it with the buttons just fine. So dunno why that happened to you.

Unfortunately, didn't work.

I presume it's case sensitive as well?

What's the error message you get, something with "Uh-Oh wrong answer" or something like "undefined" ?

"uh-oh wrong answer"

Tried to type it by hand already instead of copy paste?

yeppers

Mh. Maybe try to log out of your account and back in, or try a different browser.

Tried closing browser, logging, but neither worked.

I'll have to install a new browser if I'm going to try that route

So when typing it by hand, you tried both, with O and 0 ?

Had not! Trying right now 🙂

yep, it wanted the 0 in leu of O

Good Aternoon. If anyone is available for help on "icecast room" Strange issue after update with metasploit. Thank yas

As a general rule, you are always better off with asking directly.

anyone know how to change your name on your badge/cert if you’re sharing it to social media? I have my full profile filled out and it’s till just giving me my username

Hello support, question about openvpn --version 2.5.1 linux x64. I keep getting WARNING message every time I connect and wonder if you have seen this before and any recommendations?

Can someone please take a look at anonymous machine. It's not running the ftp clean.sh script on a timer like it should be

does someone know, why when i try to sudo openvpn for tryhackme but it's not working?

Need more info to troubleshoot it. What's the error? Show screenshot. (You need to verify here first so you can send images here.)

okay wait a min

i dont know what is it, but sometimes it work and sometimes like this

I see you're running an older version of OpenVPN, maybe updating the version fixes the issue..

owhh, let me try

i try using kali linux 2021 vmware, but still same like this

it suppose running the latest openvpn version right?

hmm, have you tried redownloading the vpn config file already?

i already tried another vpn config from tryhackme, and even i try using trobleshoot script from tryhackme github, but unfortunately still cant

the first time i use, it works perfectly fine, but maybe i use it too long enough and then it dont works anymore, and my openvpn is like this

Are you in a country that blocks OpenVPN?

https://openvpn.net/faq/tls-error-tls-key-negotiation-failed-to-occur-within-60-seconds-check-your-network-connectivity/

hello

i should mail the support@tryhackme.com for help about student mail verification, right?

noo, the first time i tried its work, i am doing advent cyber 3 from day 1 throught day 6 and its work fine, then today when i want to do day 7 my openvpn is like that

nvm, now already works, i dont know how, but now is works, thanks for your response

Yup

Will the reply take long

From my experience it took less then a day for first response. Good luck!

thanks, im a little impatient and excited about it, lol

Gave +1 Rep to @shy thorn

gj robocop thanks to you too

In Walking an application room, trying to use the attack box. It loads and I can launch firefox, but I can't load any web pages - including the vm ip address as per the instructions. I get a time out message. Same for Google. I've searched the knowledge base and community posts but couldn't find anything to fix it, I have completed the room using OpenVPN, but now I'm considering going premium, but put off a bit by the time out issue.

did it work for you guys

No only apache page

(For me)

No, could you show me a screen of your "active machine information" box

Could another machine be on?

Sometimes if you don't turn off a machine from another room they can cause issues

at least that has happened to me

That's not the machine from day 7

yeah \

that is day 3

im on day 3

ahhhhh

okayyyy

do i need to be on day 7 ?

yes for ssh

thats embarrasing

I mean if you are following the steps from day 7, then you can't use day 3's machine, ye ^^

that is okay 🙂

sorry for all the ahssle

hassle

nah it is okay

Not a problem

thanks a lot guys

@crystal marlin noticed the issue 🙂

Thanks and good job

Gave +1 Rep to @crystal marlin

you saved me from going insane

atleast it made sense why it wasnt working 🙂

It's normal I get this

for this challenge https://tryhackme.com/room/easyctf

?

Hi, could some admin help?

I emailed support because I want to change my username.

When I created the account, I didn't think I would share my achievements and certificates on my LinkedIn professional profile.

The username is unprofessional, and I would like some help changing it.

If you send the email containing that:
Old: <old username here> New: <new username here> Email: <Email of your THM account here>

You just have to wait and be patient I guess.

Damn, i didn’t send it in that way, should I resend?

What haven't you included in your email then?

My actual username and the email that i use

Ye, then you might want to send another email with all the details I posted above.

Alright my man, thank you so much

fellas where do i find the password to ssh into the machine i have to use? (AoC task 8 in this case)

Task 8 does not require SSH if I'm not mistaken

How else would you connect to the machine then if you are using the VPN method instead of the in browser attack box?

I've always been slightly confused about this regarding THM

Ok so if you are in the VPN, then the vulnerable machine is already reachable via the IP given to you. You can directly perform commands like dirb http://<IP> wordlist.txt from your machine. You don't need to SSH anywhere for that. The only requirement is, of course, that you have the necessary tools installed on your machine (like dirb in this case).

Ohhh, that makes sense, cheers man!

Happy to help!

If you provide your real name in settings, that name will be used in future in certs you earn. No real need to change thm username

But i want to share my badges too, unfortunately it comes with the username 😦

and the username its kinda troll

I realised hexeditor isn´t installed on the attackbox. Is there any recommandation on what to use instead without having to install it everytime?

Hello I need some help

at task 5

2 question

hello guys i need help for git clone download E: it : Depends: libc6 (>= 2.34) but 2.32-4 is to be installed I tried many solutions it keeps returning the same error

If you are seeking help, you are better off with asking the question you need help with right away. Also being specific about what room and what task, as there are a lot of rooms that have a task 5 question 2. Also room specific question are better in #room-help 🙂

Thanks

my attackbox running so slow what to do

Hey guys, I keep getting disconnected from attack box and when I connect back it asks for credentials. What do?

Same here. I keep getting this ^^

I came here to say this same thing.

is there a "nice way" to stop the openvpn client in a terminal or is it fine just to ctrl-c nuke it?

ctrl-c is fine

allrighty - thanks 🙂

Gave +1 Rep to @soft thunder

npnp

the problem continues

can you use VNC or something to drop into your AttackBox if you're on OpenVPN?

did you answer me

No, separate question

ohh sorry sir

np 🙂

I think you can, although I'm not quite sure what for you would want that. Check the information button at the bottom of the attackbox, there you should find creds for it.

The logic behind my ask was there's many tools and scripts that are GUI on the AttackBox. Rather than installing them on my computer, I could VNC in to use them directly.

But you could also simply use the attackbox within your browser? You can also use it in full screen.

is there a way to make my attackbox faster? its super laggy and moving at like 1 frame per 5 seconds

hehe, see @winter star below...the browser is super laggy and I was hoping VNC may be faster given it's a more native protocol than a browser-based session

its super laggy for some reason.

Mh, dunno. Maybe related to the amount of people who are using it due to AoC. I think they already did some adjustments to the attackbox, not sure if that's already completed.

dang that sucks :/

Hey 👋 was having the same issues some people above - also theres a really long file i need to copy. Web browser / VPN + RDP is dam slow - can we share that file among us ? (Transcripts)

the browser of attackbox isn't loading the page

Have you tried refreshing the page?

yes

I have tried openvpn but its not working either

how do I change the country flag for my profile?

found the solution. solution is to just click on the link below and it will update the flag.
https://tryhackme.com/api/user/update-timezone

Screenshots please

Openvpn only works if you're connecting from your own machine.

I am connected to openvpn now but the box isn't loading at that time .

I think i don't need attackbox anymore or do i?

why darkreader isn't working on thm ?

not so much a THM issue, but a general networking question if someone can take a stab

tryna get my network segregated correctly between a few routers

https://dontasktoask.com

not sure what you are trying to say or imply

what is the question here? go straight into the problem/question

I was typing it

also this is not related to a tryhackme issue, so you might wanna move to another channel

my day 8 machine isn't working it is showing a blank screen any ideas or suggestion

what other channel would i move it to... this is tech support....

read the description.

again... what other channel

dude can you help me out

.

try restarting the machine and refreshing the page

the equivalent of turning it off and on again

also, are you connected via VPN? or are you trying to use the attackbox

attackbox

try power cycling it and refreshing the page

what is power cycling

turning it off an on

you terminate the machine and restart it by launching it again, if there is even a machine to launch

if it is an included 'site' which you just view, try holding shift while you refresh the page and then viewing the site again

hey can i get some help

im trying to connect to tryhackme's nmap machine through my terminal while im connected to open vpn, it has worked for me in the past for the networking rooms and linux fundementals rooms but not for this one and i cant complete the room without connecting to the machine

i also tried stating the attack box and connecting through there but it just times out

Windows Fundamentals RDP machines are unstable. Is there a mod or staff member we should let know?

idk if its different but im using mac, would that help

not so much in this case. I think it's server side for THM. Others reported same issues yesterday

you're connected to the VPN, or are you using the attack box?

i mainly use my terminal while connected through the vpn but that didnt work so i disconnected from the vpn and tried loggin in through the attack bax

box

just to make sure im doing it right you do "ssh tryhackme@(ip address)" and then wait for the y/s then put in the password which is tryhackme correct?

if you're connecting to that particular box, then yes, you would use that ssh syntax.

if you're doing an nmap scan, then you just need to be connected via VPN, or in attack box, then you would follow the nmap syntax to scan that IP

would i be able to send you a screenshot through dms to help explain, once i do all of that it takes too long to sign it and says times out or something like that

actually i can copy and paste the message

this is what it says

ssh tryhackme@10.10.19.212 ssh: connect to host 10.10.19.212 port 22: Operation timed out

and i am connected to the vpn, thats through my computer, not the attack box, but when i try it through the attack box it shows the same message

hmmm

and the IP is the IP of the machine you're "attacking"

yes its for the machine i started

ik this is really dumb but im trying to change my kali linux password but for some reason when i enter a char it just fucking dosn't input it. what do i do?

can you verify that you are connected to the VPN?

In a terminal, type ip address and look for "tun0" you should see that and the IP should match the one shown in the green bubble on try hack me webpage at the top

it matches the one in the green bubble yes

I would think it should work then

weird, i feel like its some sort of connection issue or something because it says times out but my wifi is doing 64 mbps

you're sure that the username is correct?

yeah so i just tried connecting to a different machine in a different room and that worked, must be the room im in just is down or something

that could be the case then

ill look up a walkthrough and learn from there since ill still see how to use the stuff

thank you for helping though the "tun0" will help if i have future problems

no problem!

Is ssh running on port 22?

How would I be able to tell

Well that's what you gotta figure out lol. It's an Nmap room right?

Yes and I can figure it out haha

One minute

hello install manjaro linux open vpn how can i connect to tryhackme servers

!vpn @bleak hazel

Still stuck?

Thank you

yeah i cant figure out which port ssh is running

Which nmap room is it to begin with, as there are a couple? But most likely you are not supposed to ssh into the nmap target machines, as they are just used to be scanned.

https://tryhackme.com/room/furthernmap

im just trying to get into the machine to conect

im connected to the open vpn but this seems to be the only room i have trouble on so its ok if we cant figure it out

Well like I said, the nmap target machines are not supposed to ssh into. You can only scan these machines with nmap.

ohh

that would make sense considering i cant even get into it on the attack box in the webiste, thank you

In general, if you are doing a walk-through room, like that room for example, and it's not giving you instructions and creds to ssh into that machine, you can't. So just to prevent further issues with that. 🙂

thank you so much

You can create an alias as -

alias thm='sudo openvpn /path/to/config.ovpn'

# now use `thm` to connect 🙂

Gave +1 Rep to @keen scroll

I'm not sure if this is classified as tech support, but I joined the network Holo instead of Wreath. I see the Holo expires, and I'm assuming I'll be removed from the room after 9 days. My question is can I complete Holo after the expiration date/rejoin the room?

Is there a way to pop out the attack box and use it on its own tab?

hey guys i'm pretty new to this but i tried to launch attackbox and it gave me an error and said failed to launch. now when i try to launch it again it says i can only use it 1 hour each day so i can't continue is there anything i can do?

this has happened a couple of times now and it's causing me to miss days

bottom left corner there is a button you can use(in the attackbox)

thanks

Gave +1 Rep to @thin helm

In “windows fundamental 1” im unable to load the page of the machine.

Which is the polítical of the day strike?

I have a question how tryhackme know where I am from? Where do we set the location? Because it shows I am from the UK and I am not. I wonder how was that set up.

Via your IP most likely. #site-support message

That command I mentioned before stays in effect for that terminal session only.
And you would have to use it again

To prevent this, you can add that command into your shell's .rc file

So, if you're using bash it is ~/.bashrc
~/.zshrc for zsh and similar

You can open up this file according to your shell (check echo $SHELL)
And add the following at the end of it -

# handy little aliases
# alias to connect to TryHackMe VPN
alias thm='sudo openvpn /path/to/config.ovpn'

BTW, this isn't related to site related #site-support and should be discussed in some other channel like #infosec-general or #quiet-conversation

Thank you!

Gave +1 Rep to @crystal marlin

Gave +1 Rep to @keen scroll

Thanks for that link.

Gave +1 Rep to @crystal marlin

how to find list of shutdown time of my machine in log files?

Linux machine?

How can i change my region on the Website to another country?

Which one is recommended: GNU, OpenBSD or Nmap's netcat?!

On your public profile?

yeah that i can see which place i am in my country

I can only see the country showing and not the region within it. Do you mean to change the country showing with its flag on your profile?

yeah that i can see my placing in my country

now it is UK and i want to change to Austria

Because when i want to see my placing in Austria it doesnt work but when i switch it to UK it works

#site-support message

@crystal marlin thank you it worked!

Gave +1 Rep to @crystal marlin

I can't use the special char keys like double quote on shell cmd on the attack box. can anyone advise how to resolve this pls

Anyone with experience?

Silly question maybe? I'm trying to copy/paste the payload over to the AttackBox for Advent #4 - but the system doesn't appear to share the clipboard. How do I copy it over?

On the left hand side of the attack box there should be a greyish* tab you can click on, from there you can select the clipboard icon then copy and paste into the text box.

!vpn

Hi, I changed my subscription four days ago to a annual subscription with the discount code from the adventofcyber3 room. But as of today my account is in "free" mode. Can somebody please check this?

try emailing support about this

which is recommended for what? a little context?

will do thanks.

Gave +1 Rep to @sleek jackal

yw

Can you clarify what you mean by you can't use them? are ypi sauomg ypi cannot type them into the prompt? or you are getting a syntax error when you do use them?

To listen to a reverse shell. My distro is giving me these three options.

... is this a trick question? How is your distro giving you three options to perform a reverse shell?

it isnt really a tech support question

sounds like something on an exam

have you tried googling the choices to see what they actually are?

No, I have all three in the repo of my distro. Wondering which one to take/use

for example: If I need to grep "text" like this I can't get the keystroke in attack machine

what keyboard layout are you using? Is it qwerty?

screenshot of what you are talking about?

English US

QWERTY

and what happens when you press shift + ' ?

what does it actually input?

Nmap's is in a another repo.

what are the headers of the column? just send the whole page so I can see what you are looking at

https://archlinux.org/packages/?q=netcat

you are looking at variants

gnu os is a collection of free software.

openbsd is another os

these are variants written for the different OS

nothing no key press action. I haven't tried with shift combined key. let me try if a get to that instance again and update you. Thanks for your help

Gave +1 Rep to @sleek jackal

I know that. So I am asking which variant you would recommend or if there is no difference.

np lemme know

it is hard to answer that because it would boil down to what actually works for you. simply looking at maintenance, the openbsd variant is more up to date, whereas the gnu variant hasnt been touched since last year. this does NOT mean it is better, simply that someone is looking after it. you would have to look at both and see if they offer any technical advantage over one another, which is more reliable, easy to use, compatible, etc

I had once an experience, with a different distro, that netcat worked and nc not or vice-versa. Can't remember exactly. Thanks anyway, mate

Gave +1 Rep to @sleek jackal

yw

THANK YOU!

Gave +1 Rep to @proud palm

i think i got hacked or something else...
my friend and i wanted to get cheats in r6 but they were for nvidea and he has amd so i had to test them and jz i don't have a taskbar anymore and i can't even get to the settings with wind + i that i can repair my pc

https://cdn.discordapp.com/attachments/896395702203203594/918558894119321670/IMG_8535.jpg

https://cdn.discordapp.com/attachments/896395702203203594/918558894119321670/IMG_8535.jpg

the apps for the cheat

@steep sand this is a tech-support channel for tryhackme related stuff. We're not a game cheat discord.

yes i know i need technical help because i'm logged off everywhere and nothing works anymore ... just wanted to ask why it could be

This is not a THM related issue that we can give support on.

ok

do you know a server that does that?

This is an ethical hacking learning server. What part of helping you fix your system after trying to install game cheats is ethical?

it's really simple, THM questions only. The title says it all here.

hey - having problems with openvpn - I download the configuration file and run it - but it gets stuck at "initialization sequence completed" - how do I trouble shoot that ?

that usually means it should be working

so I just let the terminal window stay open or ?

yeh, just let it stay open

you can stop the connection with Ctrl+C

when you wanna end it

ah

pretty sure I was unable to ping the box in my room though - I'll recheck

Using ping is not reliable to check your connection. If the machines doesn't respond to it it doesn't mean you connection is not good neither that the machine is down.

seems I can ping the box now - I must have closed the terminal ealier on - my bad - and thanks for the help

@crystal marlin it's one of the first boxes - they respond to pings afaik

Just letting you know to not rely on that if you are not getting a response. 🙂

ah - this was just one of them error-code 40

you know - 40 inches from the screen

Glad you figured it out now 🙂

Hi i'm not able to connect to lab machines

i tired regenerating the config....nothing happened still same

Can you open 10.10.10.10 in your machines browser?

nope

If you check ip address can you only see a tun0 interface or any extra like tun1, tun2 etc?

HI

no its only tun0

Did you use the config file provided by THM ?

then vpn file ?

yes

yes thats the one

If you do curl 10.10.10.10/whoami are you getting a reply with your tun0 IP?

connection time out

I had this issue earlier it was some kind of issue from the server after 2-3 days the vpn was working just fine

Try sudo ifconfig tun0 mtu 1200 and then do the curl again.

i'm getting my tun0 ip

Okay, then it should work now.

cool thanks

Gave +1 Rep to @crystal marlin

can you tell me what just happened

Maybe your internet connection is not the best, not sure.

yah it's mobile hotspot

but still noting here

Ye ignore that, it's not reliable.

oh ok let me to try to connect to a machine

You have multivpn

sudo killall openvpn

In your terminal, make sure the THM VPN is the only one running.

After you have killed all VPN instances using that command, re-run the OpenVPN command and keep it running in that terminal window. Right click, press “New tab” or “New terminal window” or press CTRL+SHIFT+T

( @turbid void ) sorry not sure if I pinged

yah done that already but still not able to connect to the machines

Are you running a virtual machine?