#site-support

Well no, but I can't see any blocked connections to or from my VM, I could try turning it off but that could risk breaking other things

I've never really had any issues previously but I'm gonna see if I can allow just the VM to bypass it

Which IP and port from the output should I allow in the incoming connections?

Fixed it

It was caused not by the firewall per se, but the privacy network thing thats built into it (it works similar to Tor)

Disabled the privacy network for the VM and works fine now 😄

Figured that must have been what was causing it because that was the only thing that had changed since last time I used the VM

👍

Morning! Quick hardware question... Are there any advantages in terms of speed if you plant a new Ryzen CPU (i.e. 5900x) on a new motherboard with AM4 instead of using one with an B450 chipset? Do newer chipsets support faster RAM for example? If so, which Chipset would one look for at the moment?

(is this a good room for such a general question? :D)

No, this room is just for tech question related to tryhackme. So a better channel for that would be #general for example 🙂

alright, thanks!

Guess I'll ask again:
hey guys, guess I'm a bit late to the party but why can I not connect to either EU-VIP1 or 2? I can connect to US-VIP servers though... I can access any other vpn server, except the premium eu ones

Are you subscriber?

ye

lemme boot my vm, show you what I get

So what's the error you get?

saw some tips online saying I'd need to rollback to openvpn 2.4

WEIRD THING IS, as I said, I can connect to any other server, either premium or not

BUT not the eu premium ones

I think that's an issue with the config file itself, seems to be for quite a while now with the EU-VIP server. So I guess all you can do is changing to another server. Maybe sending them an email about that issue would be a good idea too.

Oh, I see. So it's been an ongoing issue for a while

cool cool, I'll drop support an email, cheers! 😄

As far as I know, yes

Hi!

how do i connect with openvpn? everytime i try to download the configuration file its just 404 error

#site-support message

Thanks!

You will need to enter go in order to send it and retrieve results. From the description of the task:

Note that the ; indicates the end of the SQL query, while go sends a SQL batch to the database.

Also, this is not the channel for room help. Use either #910210693821780018 or one of #room-help #room-hints. If you need help, it will also be good if you provide more information. I only knew what you are working on as I do the same challenge at the moment. But generally you need to include more details, like what are you working on and so on. There are way too many rooms for other people to guess what you want.

is there a noob guide for how to get remote desktop to work? i'm in Windows Fundmentals 1 and can't rdp with the credentials they gave me from my computer, and I can't ping it either. It's a public ip.

Are you trying to use your local machine to rdp in? In that case you need to look at the openvpn instructions. If you're using the attackbox, then i'd recommend restarting it, as it seems to have a connectivity issue

i'm trying to rdp into the attack box. is that possible?

wait, no, it's not attackbox, it's winfun1.1

You cannot rdp into the attackbox. You can however rdp into the target machine FROM the attackbox.

Are you pinging the target machine from your attackbox?

no. this doesn't have to do with the attack box, i was mistaken. this room asks that I rdp into WINFUN1.1

Yes

Which you cannot do

If you're not connected to the same network

And if you're trying to do this from your local machine. You need to check the OpenVPN tutorial

If however you want to use the attackbox (Which i would recommend in this case)

You can

And just use RDP from the attackbox to the target machine

oh. okay yeah, that's much less hassle. big thanks.

Hello i wanna ask about the subscription, im a student but i didn't und the offer of 8$

On the THM website dashboard we can add friends. Appears as though I have addedd too many friends, is there a way to delete existing "friends" to add mroe recent active friends?

Use your .edu email, it will be applied automagically

I did but it didn't applied yet only 10$ exist

Better send them an email and ask then, I know support is really good at getting back to yuou via emails

Hey, is anyone having problems in general with boxes?

In Network Services 2, on the MySQL task, the box is very temperamental

Can nmap fine, go to do the hashdump exploit with metasploit and then it times out, and then i can no longer nmap or ping

have to restart the box, will let me nmap initially but then stuck in a loop of it going down. Tried restarting 3 times now

I have a problem with my country field
Anyone from support here?

hi toeveryone

what exactly

Official support is only provided via email: support@tryhackme.com

Hi, I can't terminate the machine. Everytime I press terminate, the green box pops up saying "Your machine has been terminated." But then if I restart the page, the machine is still running. How do I fix this? I've tried restarting the browser and my VPN but its not working

#site-support message

Worked perfectly, thanks!

Gave +1 Rep to @crystal marlin

I've been having trouble remote desktopping into the windows machine in the Windows Fundamentals Room. (https://tryhackme.com/room/windowsfundamentals1xbx, task 7) I can't ping the windows machine, and it looks like the network icon in the bottom right hand corner has an error sign "no internet access". What should I do?

don't think the window's machine attached to this is supposed to have internet access

yeah i think that's right. still doesn't answer the rdp question but it def helps, thanks

Gave +1 Rep to @lament trout

your RDP isn't working?

yeah i can't rdp into the windows machine from the attackbox

can you show the issue you're facing while trying to RDP?

so if i can't ping to it, i won't be able to vnc into it

all machines don't reply to pings.

If you can't ping it that only means it doesn't reply to ICMP echo. Doesn't mean there has to be an issue with the machine.

til, okay

well brb, i'll get a pic of the vnc problem

it'll stay here for a really long time

when they tell me to remote desktop, i assume they meant tigervnc, right?

Isn't it RDP instead?
You could try remmina for that

oh, remmina's an rdp software. ok i'll try that

thanks

Gave +1 Rep to @keen scroll

hey @eager fulcrum how can I get unverified on my old discord account and verify on this one, I do not have access to my old discord account

got it thanks @keen scroll @crystal marlin @lament trout

How do you get the certification roles on this discord server?

if you click your profile button the website, then profile, then other, copy your discord token and then send a message to the tryhackme discord bot with !verify, then your discord token

i verified myself with that discord token. im looking to add the comptia cert roles to my profile

o no idea then

I think you have to reach out to a mod for that.

Mod, not staff 🙂

thanks!

is there some way to stop burp from updating in the attack box?

use an invalid local port number as upstream web proxy for those hosts

@sage sierra

ive never used the attackbox before, but is there something special i have to do the box can reach out to the internet?

trying to do this room: https://tryhackme.com/room/openvas

dont want to install anything to my machines so am using the attackbox...which does not have openvas installed and cannot do the docker pull.

Well the only special thing you would have to do is to subscribe, as only subscribers have internet access on the attackbox 🙂

@crystal marlin oic, thanks

Gave +1 Rep to @crystal marlin

My openvpn isn't connecting via the command line and when I try to download a new openvpn file on the THM site I get a 404.

Wondering if anyone else is having this issue

Openvpn is working when I try to connect to other vpns outside THM

2021-12-11 17:40:07 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)

2021-12-11 17:40:07 TLS Error: TLS handshake failed```

Imma just assume that whatever THM server i'm on got dos-d. I'll be back later.

try regenerating the config or changing vpn server to get a new file that works

known issue and has been kinda a problem for a while now

@plush bay Thank you!

Gave +1 Rep to @plush bay

mb, was too stubborn to click the "Having Problems?" link

In “windows fundamental 1” im unable to load the page of the machine. Am i doin somethin wrong or is somethin wrong with the machine

What page you talking about?

Hey y'all, I'm trying to finish the nmap room on my own vm, but I it says "Host seems down." when I try to run the syn scan for it.
I've tried changing server, getting a new config, starting a new machine to scan, running the troubleshooting script, and tried to run the scan from my actual machine too but no luck.
The script says everything is good and the connect page says I'm connected, too, and I can ping 10.10.10.10 and it shows my ip for the vpn when I pull it up in firefox.
I guess this could be some weird problem with my network but I have no clue what to try, any suggestions would be appreciated.

Nmap is giving you a suggestion to what flag to use when you think the host is not down. Due to that machine is not responding to ICMP echo.

Pre-security, windows fundamental 1, task 6.

Ye, but what page you mean? The room page itself is not loading, or you trying to enter the machine IP in your browser and expecting a page to open?

Whoops, I guess I shouldn't have assumed I was doing something wrong because I didn't think I needed that flag doing the same thing from the attack box - thanks!

Gave +1 Rep to @crystal marlin

Ye, I think there is a chance the attackbox is getting icmp echo replies but via vpn you are not, as the vpn connection is deemed public and therefore gets blocked.

Cool, that makes sense. Thanks again!

Hello there,

I try to do the " [Day 4] Web Exploitation Santa's Running Behind" room but my Attackbox freeze every time i try to load my worldlist on burp in the intruder section. Does anyone also encounter this problem?

I try on 2 different PC and 2 different network same problem. It look like the problem comes from the hosted VM.

are you using the wordlist that's suggested in the task, or one of your own design?

i try with rockyou.txt. When i click on the file to load my attackbox freeze

check right above the questions for that day, there's a link to the suggested wordlist

rockyou seems to be far too huge to load into burpsuite (at least in a reasonable time)

I ran into the same problem

it work thanks a lot for your help

Gave +1 Rep to @sacred field

happy to!

yes the machine. im unable to open it

There is no webserver on that machine and therefore no webpage to open. You have to rdp into that machine, like explained in task 1

im using linux

Okay, that doesn't change the fact that you have to rdp into it. You can use remmina for that purpose.

🤦‍♂️

i'm having issues with the attackbox. netcat only listens on 0.0.0.0

won't assign any IP or listen on (all) IP's for incoming connections

Listening on [0.0.0.0] (family 0, port 1234)

That's what I get when I try to do: nc -lvnp 1234

when I do: nc -lvn <TargetIP> 1234

nc: Cannot assign requested address

I'm using browser based attackbox, so it's not like something is misconfigured on my end

Listening on 0.0.0.0 means to listen on all interfaces
To listen on your choice of port, nc -vlp <PORT>

yea it's not working. not dropping a shell

doing the vulnversity room

Listeners shouldn't need a target IP. The default is to listen on all interfaces.

yea i get that, but after seeing the 0.0.0.0 i tried to define IP

still didn't work

throwing in the -l flag on your command tells it to wait passively for an incoming connection.

On the attack box, your command should be nc -lv <port>

The victim that you can run a command on should reach back to your attackbox IP on that port

This is what i did

This is the only thing changed in the script (cloned from git) which is definition of the attackbox ip

What does the attackbox listener do when you execute the phtml file after uploading it?

Shown in the first pic

Because setup looks fine on both ends.

keeps on listening on 0.0.0.0 and doesn't proceed with a reverse shell

So you uploaded the file. Did you execute after uploading?

The file doesn't automatically execute after the upload.

dang. lol i feel like such an idiot

thanks for the help

help getting a 405 when trying to complete the attackbox tutorial

I connected to try hack me network using openvpn. When i scan using nmap(For Day 10 challenge)....the scan is extremely slow which takes 10 mins to finish
I tried all the non-vip servers and still the scan was slow

Can anyone help me out?

What's the full nmap command you used?

I tried the following :
nmap -sS -p- Machine_Ip
nmap -sS -Pn -p- Machine_Ip
nmap -sS -T5 -Pn -p- Machine_Ip

Is the machine not replying to pings or why you use -Pn?

If the machine does reply to pings, I would go with nmap -sS -T4 -vv -p- IP

hey guys what do u guys suggest for a Hacking Setup r im using kali in a vm on windows but its very annoying

Increasing send delay for 10.10.244.140 from 0 to 5 due to 1681 out of 4201 dropped probes since last increase

Is there something i can do about this?

Not sure, check if your vpn connection is good. Like check ip a s to see if there is only a tun0 interface and not any extra like tun1, tun2 etc. If you checked that and you only have tun0 try sudo ip link set dev tun0 mtu 1200 to see if thats helping. Other then that I don't think there is much you can do.

Ok thank you so much

kali is alright but there are other less resource intensive OS to look into, as for hardware you don't need anything fancy either. if your desktop is even remotely modern then you can just dual boot a linux distro alongside your windows

i can personally recommend parrotOS security for low end systems, extremely resource efficient and sleek layout with alot of kali's tools pre-installed

my issue is not resources

i have pretty good pc

its just vm's are annoying when i need to alt tab and use hotkeys

I had the same issues and also had limited resources(only have a standard pc)

So, I've had my PC dual-booted for over a year now

VMWARE

I do have a second monitor

Its just annoying for me to go between windows and kali

And i alt tab very often

Bcz i save my nites qnd stuff on windows

Notes*

I have been look8ng at wsl2 kali

Im installing rn i will get back to you to if it works

I just completed installing win kex kali wsl2

And it works for my use case

Hi admins I want to change my username on TryHackMe website "anonwhite22" to "P3K0E" thanks

heyyyy having a slight issue, i cannot exit nano text editor or save it or anything for that matter is this a bug or???

tried that

Well , trust me it didnt

Yeah I know I'm just saying it aint working for some reason lmao

Hi, is there any way that after completing a learning path, get my cert issued to my real name instead of my username?

#site-support message

thanks

Gave +1 Rep to @crystal marlin

Hello, is the subscription billed at the 1st of each month or the same day of the month that the subscription was started?

I'm not sure if it's always the exact same day, but yes always 1 month after you bought it, if you choose the monthly one.

Alright, thanks

Gave +1 Rep to @crystal marlin

was wondering if I could get an admin to reset my HackPark room. It is not resetting the "Privilege Esclation without Metasploit" tasks. Currently the room for me is 0% completed but that task is completed not allowing for 100% completion of the room.

Need some help changing my nationality in THM. I have tried many times, but it will not let me change my nationality from Afghanistan... Please help 🙂

Checkout the 📌 (pinned) messages
There is https://tryhackme.com/api/user/update-timezone

Ah man, of course the solution was pinned. Thanks!

Gave +1 Rep to @keen scroll

hey there is there a way to change username on THM.com

#site-support message

thanks buddy ❣️

Gave +1 Rep to @crystal marlin

Does anyone know much about WSL2 and winkex or where I should go for support with it?

Anyone else having issues pinging the AoC VMs? I cant get a ping response from the AoC Day 11 VM. Day 12 is working fine. I've restarted the VM several times and tried accessing it from both the AttackBox and my OpenVPN connection with no luck. Thanks in advance!

Day 11 is a windows machine and doesn't respond to ICMP (I think this is what theyre called) ping

Ah, I don't think I connected that it was a Windows machine with that fact. You are certainly right. Thanks!

Possibly a bad way to do it and others know a lot more than me, but I usually start with a quick nmap -Pm (if possible) as it's helpful a lot of the time + works even if it's windows

Though I don't know of the downside and there may be better ways of checking if the machine is up 🙂

👍

@livid otter the day 11 challenge towards the top mentions the fact that it is a microsoft box that does not respond to ICMP and they tell you to add -Pn flag

well...maybe not towards the top. The paragraph right above the 1st "question"

I really should read instructions before I dive into things... LOL

anyone know why the attack box isnt detecting me pressing the ctrl key?

Are you on macOS?

I recommend restarting the Attackbox and browser. I had a similar issue when using my macbook with safari, switching to chrome fixed the issue.

Still working on that lol having other issues with parrot os

hello, I have a problem with running exploits that are written for python2 on the attack box, python2 seems to be missing the requests module, but when I try to use pip2 to install it, it says it is already installed, referencing the python3 location

this seems to have worked

/usr/bin/python2 -m pip install requests

again, don’t bother with vms and just dual boot

I'm from India and I'm trying to buy subscription but transaction isn't going through, can anyone help me out please ?

I'm using PayPal on which it's a visa , I don't have a credit card

Hello! I get a 404 page when trying to download the OpenVPN file. Could you please help me with this? Thanks!

#site-support message

What the rooms release schedule?

@barren birch

https://tryhackme.com/resources/blog/regular-room-releases

Found this concerning room release schedule. Dating 2020

Does it still apply?

Thanks!

Gave +1 Rep to @crystal marlin

hello i've joined thm with my student acount but i still couldn't manage to get discount what can i do

!docs student

Hey, I'm trying to complete the Offensive Penetration Testing Path but in the Room "Attacking Kerberos" the machine is incredibly slow. I'm at the task mimkatz and after nearly each command the ssh terminal freezes and I have to wait about 10 minutes before being able to execute another command. Is this a problem on my end or does anyone has the same problem?

!docs student

bot returns nothing is it normal

He is replying you with a link?

https://help.tryhackme.com/billing/student-discount

thanks

guys 1 month plan should end automatically after 30 days??

Only if you cancel it before the renewal date.

and what id it isn't cancelled and also not renewed auto??

I don't know? Maybe the payment got denied or so. So if you have any issue regarding subscription it would be best to reach out to the support via email.

ok thanks

Gave +1 Rep to @crystal marlin

I am sure that everything from my end has no problems? So what is the problem here?

I can reach it just fine.

In the JR PenTester path, there is a Burp Suite room that I have to do, even though I've done a Burp Suite room once and earned a badge for that. Could you kindly synchronize that?

➜ solar nmap -Sv 10.10.80.217
Failed to resolve/decode supposed IPv4 source address "v": Name or service not known
QUITTING!
anyone who's seen nmap act like this before? :S

(solar) is my current dir

-sV

thanks for reminding me that im an idiot 😄 😄

Gave +1 Rep to @lone karma

Did not intend to do that. Sorry ;-)

no worries - that was all on me! 😄

How can I kick someone inactive out of the Team?

hello

room django does not work

Unable to connect

An error occurred during a connection to 10.10.89.135.

    The site could be temporarily unavailable or too busy. Try again in a few moments.
    If you are unable to load any pages, check your computer’s network connection.
    If your computer or network is protected by a firewall or proxy, make sure that Firefox is permitted to access the Web.

Can you verify and post a screenshot?

cant post a screenshot

wont allow me to

@sharp bear Can you maybe give me image perms?

!docs verify

no, you can verify as Juun suggested

says my token is used by someone else

but I deleted my old account

Which account you deleted? Discord or THM ?

discord

Then you have to reach out to a mod(not staff) to unlink your token. Not sure if juun has permissions for that already, but might be worth to start asking him to do so.

There is a dedicated channel for that. #wreath-network

Oh okay, as you said help with wreath and not with openvpn 🙂 Did you download the openvpn config file for wreath network?

And what`s the issue?

Show a screenshot of your openvpn output pls.

I do not yet - only lead mod or higher can verify ownership of tokens

Alright, good to know 🙂

Wait, lead mod or higher? What would be higher then lead mod?

🤷‍♂️ That's what the mod guidelines say

Is the wreath network even running?

The **wreath **network. Not your own.

Have you also tried doing a nmap scan with the -Pn flag? As ping most likely won't work.

With using the -Pn flag, right?

If you do ip a s do you only see a tun0 interface or any extra like tun1, tun2 etc?

Well, not sure why it's not working then tbh :/ Maybe the wreath network is messed up and needs a reset.

Gave +1 Rep to @crystal marlin

#wreath-network

I am not able to connect to Day 8 machine - Santa's Bag of Toys

Hi, is there anyway to change country flag on profile?

how would I connect to the machine

would I paste it in my browser after connecting to my openvpn package?

nvm figured out

django room does not want to work

Should just need to start machine and wait for split view to pop up. If the split view is not popping up you can also rdp into the machine using these instructions "If you want to RDP into the machine, start the AttackBox and enter the following into a terminal: xfreerdp /u:Administrator /p:grinch123! /v:MACHINE_IP - The credentials for the machine are Administrator as the username, and grinch123! as the password."

Changing this should fix it. credit to sway for the link. https://tryhackme.com/api/user/update-timezone

can someone help me in #919976471924183141?

is dm-ing the admin a good idea? (I need to remove the discord token thats currently on an old account)

Pressing on a Hint button in any room gives this error in Chrome console and hint box does not pop up. Tried refreshing, restarting page, force refreshing, not working. Using a VM. I can open the hint on my phone browser or on my PC browser but obviously I'd rather fix it on the VM browser. Any advice?

I would ping one of the THM staff members.

i have needed to use sudo ip link set dev tun0 mtu 1200 more than twice in one week.

when I run this command, does something reset or will packets increase on its own?

i shut down my vm, and not sure if things just get "reset", but that command almost always works. Thanks!

@austere robin wreath network IP for me is 10.200.192.200, looking at your commands it looks like you are going after 10.200.193.200

this type of room should have same ip for everyone?

if you are talking networks the network channels might be more appropiate but yes... networks are kinda shared to save on resources as far as shadow knows and recalls... so there are multiple copies of the network but you share them with about 5 people

I did but they said that they cant help

@plush bay so my comment to @austere robin about why they cant reach the Wreath Network is valid. Incorrect IP?

probably

joined that room last night, looks fun but i havent started it

it definitely sounds like you 2 are sharing a network

not me, they are doing the Wreath Network (https://tryhackme.com/room/wreath)

and having an issue reaching the machine in question. Looking at the room and looking at what @austere robin posted in screenshots, they are hitting the incorrect IP

Joined it, too. Even though seems a bit overwhelming...

Doesn't his first screenshot (of the THM site) show an identical IP as in his command? 😕

it does, i didnt scroll that far back

oh okay then that is weird

and yes the room does look a little overwhelming, just been reading through the whole thing to get an idea of what to expect

Is it possible to get audio when utilizing the AttackBox or Kali VMs provided by Tryhackme through the browser? Sometimes I’d like to watch instructional YouTube videos inside of the VM, but I can’t get any audio when I do.

Interestingly enough, I do hear the teardrop sound when I use the terminal, but I don’t get any audio through the browser

something seems broke with the profile badge

https://tryhackme-badges.s3.amazonaws.com/FalcoGer.png

is there a way to get "download task files" into Web AttackBox without the need to go to THM inside the browser of Attackbox?

Deleting my Discord account. In case I return, can I get an admin to unlink this account from my THM token?

@topaz elm without doing things like: download file, start python http server, on other machine wget file...dont think so

Apologies in advance for the trouble

you can always throw it onto google drive then log in to your google drive account
on the attack box if simple http server isnt your thing.

AttackBox doesn't have internet access, I don't think

Ah yes you would have to subscribe in order to access internet. (double checking rn)

Looks like with no THM subscription the attackbox has no internet. They would have to subscribe to transfer files over i believe

You can download those files to your own system (which should be connected with openvpn) and then spin up a http server in that.
Download the files through terminal in attackbox

Hi, am new to discord and I have a problem downloading openvpn config file in THM. it says the page has been lost in the matrix. can someone please help?

Please let me know if this is not a right channel to ask

Please ignore this message. it worked when I changed the server to location which is close to my location. Thanks!

Is anyone else having extreme load times with the attack box? I'm looking at 127k seconds to deploy lol

Is someone able to assist me? I am unsure which of my email accounts I used to sign up, and the forgot password function has not sent a message to any of them 😦

just to make sure, are you logged out?

@lament trout yes

guess you should send a mail to support

whats the email?

!email

Hello, can someone help me please?
I have a problem with my THM account. I'm trying to complete a room. I connected with openvpn to access the machines, but I see that the connection is well established, but I can't reach the machines, the ping does not even pass. On Attackbox, it's the same although the machine is well started. Thank you for your help

can you browse 10.10.10.10 after connecting with vpn?

yes

which room are you trying to do?

Advent of Cyber 3 (2021) day 11

did you run the nmap scan? share the output?

the host is not reachable

did you include -Pn flag as told in the task?

you can share a screenshot after verifying.

!docs verify

Thanks it works now. i can't ping but nmap scan work fine.

Gave +1 Rep to @lament trout

many machines wouldn't reply to pings, just remember not to rely on that.

okay well understood.thks

I have a 7-day streak atm, but my green flame thingie been stuck on 1 🔥 for 2 days now 🤔

I've faced with strange issue in my profile. Country always changes to Afganistan

#site-support message

Have you actually answered a question every day? As simply starting a machine is also deemed as "event" on the activity page, but an "event" will not keep your streak up, only answering questions will.

i am facing problem with my battery . For 1 year i mostly used my laptop plugged into the outlet . Now whenever i use it without charging it barely run 10 min.

btw im facing this issue more after i upgrade to win11

should i change my battery?

this channel is just for THM related support.

ic

yep answered one every day

you also gotta answer within the 24hrs of answering the last question, else you lose the streak.

well yea

that makes sense

i dont really care too much about the streak i just thought it was a bug tbh

or maybe im just dum

smbclient //$ip/profiles -U Anonymous

bash no such file or directory

what do i do

which smbclient

yo where did that message dissapeared

Which one

that guy that said space needed or something like that

Wrong slashes too

Try \

\\ip\share

am in now

just wanted to thank that guy

I would make sure that your timezone is recognised correctly. So answer a question today to get your streak increased and try to answer another question at 00:01 to check if your streak gets increased again right after a new day started.

I wasn't sure if I am right after I typed it, so I erased my message. Never mind.

+rep

Gave +1 Rep to @lone karma

Ehm? Alright, thanks ;-))

Ehm... you are getting me too emotional. Please stop.

:)

Are THM daily streaks based on the "day" (0000-2359) or like I need to do exercises within 24h of each other to keep the streak going?

On the "day".

Therefore make sure your timezone is setup right.

Just to confirm, if I do challenges at 0001 on 14th dec, and 2359 on 15th dec, it still counts as a streak right?

Yes. As long as you answer a question

not sure where I picked this up, but I think someone mentioned that streaks are done in UTC±00:00. So if you are in that timezone, then yes.

It depends actually on your timezone. Just make sure it's up to date on THM.

#site-support message

oh interesting, thanks!

Gave +1 Rep to @lone karma

I am having issues verifying my badge on discord I am getting an Unable to verify message when i copy paste the script from tryhackme site

Didn't you read the bot message that's providing you with a link to the guide on how to verify?

yes i read the bot message and did what it said and like i said i am getting this message back

I mean you posted a script in #878393611929129000 with what appears you tried to verify, but that's not what the guide says?

yeah i said oops sorry as in that was a mistake man. i ment to message you and accidentally hit paste my bad. i did what it said

might have the wrong token

So you copied your token from the thm page and send the @sharp bison bot a message with !verify yourtokenhere ?

yes i did that but i think i copied and pasted the wrong info

i copied my badge not my token i think i figured it out

i copied my badge not my token i think i found my mistake

I dont think so.

^ taken from https://tryhackme.com/faq

from my exp on the site, you increase a streak on the basis of the day, say you do a task at 0001 hrs, your streak increases
but in order to maintain the streak you gotta do the next question within 24hrs, say you do a question today at 0500 hrs, you lose the streak if you do the next question at 0501 hrs the next day.
I could be wrong.

thanks

uhh im clearly connected to THM vpn

and can access machines

but the access page says im not connected

I have huge connection issues when using the OpenVPN. I need to reload pages several times because I get a no-connection-error on them. When I use the AttackBox the sites load fast and without issues. I've tested multiple VPN servers but to no success. The issues occur on my local machine as well as in VMs I use.
Anything I am missing here? Or is it just because AoC is happening and the VPN servers are overcrowded atm?

is there a way to share that you've completed the room other than the initial prompt? Running THM and socials on different browsers, hence missed the prompt

The access page is not reliable.

#room-help message

Are you using a VM or an installed OS as your own attacking machine?

I tried from a Winodws machine with Ubunut on WSL2, a VirtualBox ParrotOS VM and the AttackBox itself.
The AttackBox works fine, anything from my local machine is difficult at best and unusable at worst.
In the past I was able to work off of my own machine using OpenVPN just fine.

And openvpn is running directly inside your VM or on your host machine? Not sure about WSL2 as I never used that.

absolute legend...thank you :D!

Yes, OpenVPN is running inside the VM with valid configs

Otherwise it would't work at all.

That's not right, if you have it running on your windows host it would still work, but you might face issues. Anyways, if you do ip a s do you only see a tun0 interface or any extra like tun1, tun2 etc?

Only tun0.

Try sudo ip link set dev tun0 mtu 1200 and then check if that's gonna solve the issue, if it doesn't put it back to 1500

Hi Tryhackme, but the task 1 in tutorial have problem, it's too slow that I cannot wait for it, it even do not work, so waste my time!

It did not work with the change you suggested. It does work now after I reset it o.O

Reset what?

It put the value back to 1500 after I lowered it to 1200

What room are you doing btw?

"reset"so to speak

I am working through the AoC stuff. At day 7 atm.

Okay, well then I don't know why it wasn't working previously, maybe you just didn't gave the machine enough time to fully boot.

I don't know either. But now I know a thing more to try before I ask for help 🙂 Thank you 👍

Does 'Subscribe Now' button does nothing for anyone else?

I know my username but I don't know my e-mail address so I can't reset my password, what should I do?

Had to allow js.chargebee.com domain on the PiHole, seems like it is in one of the blocklists

How can I setup a crontab to launch tryhackme openvpn conf file

What is the team feature for in THM?

Hi , anybody having any idea how to get that little arrow in the middle left of the attach box, which helped in bringing up the keyboard?

It was there on the linux machines but not able to find it on the windows one for Day 13

Anyone know how to fix AttackBox when it comes up cli only and not the full desktop, hard to fire up a browser in cli only (lynx, i know). dirb not showing on AttackBox that came up for me. #Day14. 10.10.26.107

Could you just restart it?

As the desktop didn't come up I assume you don't have any progress that needs to be preserved

I'm having trouble with https://tryhackme.com/room/linprivesc the last task. I can't ssh into the machine. the machine responds to pings, but ssh connections get to the password prompt. after entering the password it just hangs and times out.

conneting with netcat gives me the ssh banner

i terminated and started a new machine, same thing.

nvm... it just connected. for whatever reason.

either way it's really slow and sluggish all the way

Is anyone here familiar with Wireshark or Airodump? I'm not sure what happened but wireshark isn't picking up anything at all and neither is airodump when I flicker through various channels. It was working just a second ago now neither pick up nothing. And I haven't installed or did anything since then. My card is in monitor mode as well

have you selected the correct interface?

sorry. let me start at the beginning. did you try turning it off and on again?

oh...no

I've tried every interface and yes

I'll try that. But any idea why that happened? Going to be a pain to restart each time it happens

no, sorry. no idea.

maybe the interface went down in the middle of capture? just a wild guess. no idea how wireshark would react. or maybe you just had a filter in that didn't return anything?

anyhow... i'm waiting for linpeas since 20 minutes ago. and it's still "caching writeable folders" which is like the second thing after calling id and uname -a :/

restarting it didn't work either not sure whats going on but this has been a big issue the last couple of days

Only thing that shows up is Router 6 Solictation

weird

did you try launching it in a terminal and monitor stdout/stderr?

sometimes that gives a clue

how do I do stdout and stderr?

just launch it in a terminal

i know but how? whats the full name

wireshark?

all I'm getting is loopback

ip addr

are you using attack box or are you on a vm or are you on metal?

on a vm

right...

virtual box, kvm or vmware?

anyhow, you should have a network connection. check the vm settings in network. it should be NAT. then the vm will get it's own dhcp lease as though it were it's own computer on the network.

if you only see loopback in wireshark and have no other interfaces then it seems like a vm problem, not a wireshark problem

although I'd double check with ip addr

or ifconfig if you have net-tools installed

everything seemed fine when I did ip addr and ifconfig

i see

although...I could be wrong

hold on ill send a screenshot

you can copy text from a terminal

: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000
link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
inet 127.0.0.1/8 scope host lo
valid_lft forever preferred_lft forever
inet6 ::1/128 scope host
valid_lft forever preferred_lft forever
2: eth0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UP group default qlen 1000
link/ether 08:00:27:9d🆎9d brd ff:ff:ff:ff:ff:ff
inet 10.0.2.15/24 brd 10.0.2.255 scope global dynamic noprefixroute eth0
valid_lft 86340sec preferred_lft 86340sec
inet6 fe80::a00:27ff:fe9d:ab9d/64 scope link noprefixroute
valid_lft forever preferred_lft forever
5: wlan0mon: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc mq state UNKNOWN group default qlen 1000
link/ieee802.11/radiotap 00:c0:ca:98:82:ca brd ff:ff:ff:ff:ff:ff
6: wlan1mon: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc mq state UNKNOWN group default qlen 1000
link/ieee802.11/radiotap 00:c0:ca:98:c3:5f brd ff:ff:ff:ff:ff:ff

and put text from the terminal in ``` ```

anyhow, I'm not sure if VM can work with wireless devices in monitor mode.

ifconfig is deprecated, use the ip tools going forward

deprecated?

Hey sorry for the stupid question but i just opened the beginner path and am stuck on 83% completion even though i've answered every question correctly

How can i fix that

well I suppose it is

@visual pulsar no longer being used / updated

I know what it means. I was just surprised.

gotcha

@covert fractal answer the remaining questions to get 100%.

i've answered every one

https://wiki.debian.org/NetToolsDeprecation https://www.redhat.com/sysadmin/ifconfig-vs-ip https://wiki.archlinux.org/title/Network_configuration#net-tools

debian, red hat, and arch documentation about it

ya. i just found those.

i'd send a screenshot but i can't send screenshots in this chat

!docs verify

once you verify, you can post screenshots

@covert fractal some of them are not questions but you still have to click a button

am i missing something ?

that 1st one, says 'completed' can you click that?

Refresh the page

Gave +1 Rep to @pulsar sparrow

omg am so stupid ... thank you it worked 😅

if a button isn't green, you haven't clicked the button

yah i have wasted time trying to figure out 'broken' rooms when it was just those "No answer required" just have to click the button things

noted

well it was working earlier like I said for a few minutes

You can, it's a pain to set up regardless of hypervisor being used. The hardware passthrough usually requires a fair amount of expertise and depth to get working correctly

can someone give a help

iam having a problem with the vpn

the open vpn gives "Initialization Sequence Completed"

but cant access machines

@magic vortex check ip addr to see if the tunnel is up

its up

you can't ping the machines?

nope

none of them or did you only try one? maybe it's broke, not the vpn?

i tried to rooms

having same problem

weird. no idea then. aside from did you try turning it off and on again?

i just re installed my kali linux on the new version

and now i cant access the machines

could there be something wrong in this version

I don't know.

That shouldn't be it.

Can you post a screenshot of your connection, and of the command you are using to test connectivity?

Preferably in separate terminal windows so we can see them side by side

i changed the vpn region

it wasnt working on EU

but pinging machine worked on US region vpn

I'm having issues with downloading the vpn file

I'm getting a 404 message

Thanks for trying

Gave +1 Rep to @visual pulsar

#site-support message

So you solved it now, right?

Thank you, it worked

Gave +1 Rep to @crystal marlin

I can't seem to connect to the machine using the split view nor can i access it trough linux with openvpn

Hello, My country is wrong on my profile and I don't find a way to change it. Does someone can help? Thanks

Hi, I have the latest Kali and no issue accessing.

#site-support message

What room?

vulnversity

What's the full url you enter to open it?

https://tryhackme.com/room/vulnversity

The machine, not the room ^^

isn't it just the ip i get ?

No, not for that room. So I would suggest you go through task 2 first, that should give you the answer.

you mean task 2 of that room ?

Yes

Okay thanks

also sorry for the stupid question am just new to this

It's ok 🙂

Successfully changed! Thanks

Gave +1 Rep to @crystal marlin

sudo check kill solved the issue

nope still not working

some time the machines pings

but still the machine doesnt go for ssh

Which room you tried on ?

My nmap scan always takes 20 min on average. It didn't use to. Is there any way I can make it faster?

Try adding -T4 to your command.

Already doing it that way

Do you have any additional information about what the port range is?

linux fund and the assembly one

I always go for all since I don't know what might be open

i can join to a VC and share my screen

maybe there is something i cant see or missing something

-p- is always going to take a long time, because you have 65536 ports, each with a time limit. Even with an aggressive scan posture, there is still a minimum amount of time spent waiting for non responsive ports to time out.

That's true, but I think it used to be faster...? I don't really know what happened

So what's the error you get when trying to ssh?

at first it was taking long time then timeout and now "ssh: connect to host 10.10.17.67 port 22: Connection refused"

and the ping is working

Can I try if your target machine is working for me? If yes, let me have the full command you used pls

try it

but i think there is a problem with the vpn

do u want me to join a vc

Let me have your full command pls.

ssh tryhackme@10.10.17.67

Maybe there is an issue with the vpn, but first I want to make sure it's not the target machine

and the ping is working

If you do ip a s do you only see a tun0 interface or any extra like tun1, tun2 etc?

tun0

my tryhackme ip

@hoary bear add -T4 and --min-rate 10000

cuts my nmap times by 50% at least

So you don't see any extra, right?

nope

I'll test that min rate now and see what happens

Have you tried sudo ip link set dev tun0 mtu 1200 already?

@hoary bear played with lots of values and -T4 --min-rate 10000 seems to provide the best speed /reliability

thank you

Gave +1 Rep to @crystal marlin

the min-rate can cause you to not pickup open ports on occassion so be aware of that

it worked

how can i do that xD

Huh, you are right, this is extremely much faster. I will keep that in my mind

Thanks!

This is a neat trick

there is also a --max-rate i have used on occassion if the network is really slow, set it to like 1000 otherwise lots of packets get lost, but that usage has been rare for me

I get connection refused while trying to use gobuster how do i fix that ?

Are you connected to the VPN?

Yes but how can i test that to be 100% sure

curl 10.10.10.10/whoami into your terminal

Should output an IP address

literally nothing happens

There's your issue:)

Did you leave the VPN running? @covert fractal

Make sure to leave the terminal Window open and running

After it says "Intialisation Sequence Compelte"

Yes its open

Alrgiht

Send a pic of the wholle output pls

of the vpn or the gobuster ?

VPN

You have multivpn!

Press CTRL+C, type sudo killall openvpn, then re-run the VPN with sudo openvpn name.ovpn

done

After that make sure you're connected with curl 10.10.10.10/whoami, leave that terminal window running, don't mess with it at al after the "Initialisation Sequence Completed" message until you're done with TryHackMe.

Once you are done with TryHackMe for the day, to disconnect from the VPN, head over to the terminal Window running the VPN and press CTRL+C to kill the process, or repeat the sudo killall openvpn in another terminal Window.

It's also good practice to run the command when you bootup if you're using a VM just in-case

i did that but when i run curl 10.10.10.10/whoami i get "Failed to connect to 10.10.10.10 port 80: connection timed out"

Send another screenshot of your OpenVPN output log?

You still have MultiVPN

Are you running another VPN anywhere?

i have not used kali in a while but i don't remember using any other VPN

!multivpn

Skip step 1

i can't seem to open this as a link i can only open the link thats in step 1 which leads me to "OpenVPN A guide to connecting to our network using OpenVPN"

oh nvm ...

I think ||CVE-2021-3156|| broke the intended solution for lookingglass

although I'm not sure such a thing as intended solution exists.

Hello, all.
I have an issue with my OpenVPN connection.
I have Kali 2021.3 installed on the Virtual box (the host os is MacOS)
the OpenVPN version is: 2.5.1-3
I realised that last few days I have some issues with some rooms (nmap didn't get any results or nc won't connect to my machine). I decided to download the settings file again and now I have this error:

~/thm  sudo openvpn settings.ovpn
2021-12-14 22:47:49 DEPRECATED OPTION: --cipher set to 'AES-256-CBC' but missing in --data-ciphers (AES-256-GCM:AES-128-GCM). Future OpenVPN version will ignore --cipher for cipher negotiations. Add 'AES-256-CBC' to --data-ciphers or change --cipher 'AES-256-CBC' to --data-ciphers-fallback 'AES-256-CBC' to silence this warning.
2021-12-14 22:47:49 OpenVPN 2.5.1 x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] built on May 14 2021
2021-12-14 22:47:49 library versions: OpenSSL 1.1.1l  24 Aug 2021, LZO 2.10
2021-12-14 22:47:49 OpenSSL: error:0909006C:PEM routines:get_name:no start line
2021-12-14 22:47:49 OpenSSL: error:140AD009:SSL routines:SSL_CTX_use_certificate_file:PEM lib
2021-12-14 22:47:49 Cannot load inline certificate file
2021-12-14 22:47:49 Exiting due to fatal error

On the OpenVPN forum I found that something wrong with the config file.
https://forums.openvpn.net/viewtopic.php?t=19415
Could someone help me with this issue?

Now i get this but i still get the same error while trying to use gobuster

Type sudo ip link set dev tun0 mtu 1200 into your terminal and try again

if not ping me

still connection refused

Screenshot?

Also should i get something after i type sudo ip link set dev tun0 mtu 1200 ?

Nope

Where are you getting this IP address from?

Also can you send me another screenshot of your OpenVPN output log?

am getting it from the vulnversity room and i did it the first time while using the browser attackbox but my free 1 hour expired so i decided to try it on my Kali on VM

and i had reset the room

Hah, there's your reason

Did you perform an NMAP scan on the room?

yes

What port did the webserver say it was on?

let me recheck 😄

its supposed to be this one right ?

Okay so

When you use your internet n stuff, the default port for webservers is 80

Which is why when you go to google.com it loads easily

But when it's not on port 80, your browser/ tool will still go to port 80 as a default

So, when you find a webserver that isn't on port 80, you need to tell it that it's not on port 80

In your web browser, you would type http://ip_address:port

In tools, sometimes you will use -p port but 90% of the time (especially for directory brute force tools) you format it the same way as your browser (http://ip_address:port)

So, use this and go to your web browser and see if you can get a response from the server

You should see a beautiful website load if you have done it correctly

Yes it loads

Okay, now use the same logic for gobuster ;)

am pretty sure the port was 3333 the first time too (when i used the tryhackme attack box) and i still got gobuster to work

but thanks for the good explanation i got it to work now

am just confused as to why it worked the first time

Magic

Does anyone know why wsl2 can’t see my openvpn tunnel when i connect with the windows desktop app and mabye have a potential fix?

because WSL network stack is awful?

Well is there no fix?

I think you need to add the OVPN interface as a gateway

Run a fully featured hypervisor and run the ovpn tunnel in the vm instead of outside it

actual THM staff may have a better answer for using OVPN in windows for WSL2, but WSL2 is, in my experience, much more limited than something like vbox or vmware player

Ok thanks

Is THM taking mod apps? noticed new trial mods popping up.

The mod team is an elite team of mostly professionals; membership is by invite only.

Ah that would not be me, Thanks for the info

Gave +1 Rep to @broken bear

Is this the room I report situations that have occurred while using the VM?

like bugs or something?

like while being on the VM, my IRL received a php webshell trojan

yikes!

this seems like the best room for it, ask a mod maybe?

Hi, i'm having an issue with my subscription.

My credit card was declined in the automatic payment processing, and i received a link by email and payed it manually

but it was not reflected in the web site, and still says that i'm not subscribed

And i can't use for example de browser vm

My openvpn is not running split tunnel and after configuring the nmcli it will let me split but when I close out of the openvpn and reestablish later it does not persist

Hey anyone else use that tool Windows-Exploit-Suggester.py and ran into the issue of trying to install python-xlrd? I've been stuck for hours would appreciate some help I'm not very good w python, I've tried for hours at this point to fix it

someone from THM Staff can help me with my student discount . i also sent an email but I have not received any response

Hello, since yesterday i have no ip displayed in the rooms for the website i have to attack, it's replaced by "http://Machine_IP"

I can't copy / paste an image to give an example ...

For exemple in the day 4 of the advent calendar, i don't have the ip of the website where we are supposed to fuzz the login form

anyone know a bypass for verifying with the bot? just getting the not friends message

@stray lark so even after starting the VM, nothing?

yep

On all the rooms i have the same problem

You have to change your confidentiality settings

@naive dust oof thanks, been a while since I've used DC

Gave +1 Rep to @soft thunder

Npnp

Owasp Juice Shop - Task 8
I am not able to get the flag for the scoreboard page even though I am clicking the button for it (have cleared cookies)Object { headers: {\u2026}, status: 200, statusText: "OK", url: "http://10.10.148.8//rest/repeat-notification?challenge=Score%2520Board", ok: false, name: "HttpErrorResponse", message: "Http failure during parsing for http://10.10.148.8//rest/repeat-notification?challenge=Score%2520Board", error: {\u2026} } main-es2015.js:1:174644 seen in the console

I'd like to buy a subscription 1 month on THM but I have the money on bitcoin wallet, How can you help me?

HI,
I have a problem for open the room Holo
I have clear the cache, try hard refresh with ctrl + F5
I have try on chrome and clean firefox and is the same.
Thanks for your help 😉

Are you using any private vpn ?

I am on solar-log4j and I have a problem where the attackbox/kali hosts are super slow or just stop working. I lost count of how many times I had to terminate and restart....What do you suggest?

Yes i'm use the private VPN. I have try without the VPN it's the same.
The last time i had the same with another room on chrome but in firefox it was ok but not this time.

is there a way to contact the support directly on the website ? i can't do any room with my problem since yesterday.

Then you might have something else that's blocking a certain js file.

Beside email, no. Or if your issue doesn't include private information, you can try asking here.

Okay, i'll wait here then

Btw, in order to send screenshots in the thm discord, you have to verify first.

!docs verify

I can't find anything with the inspector.
it's only with this room since 2 week.

So you don't have something like a pi-hole or similar? Also, is this room loading just fine https://tryhackme.com/room/rpmetasploit ?

pi-hole off on chrome
And on firefox i have nothing.
It's ok for your link with metasploit i have the problem only for this room.

I have found this error :

Unfortunately I'm out of ideas then, maybe someone else will have a solution for you.

i am not able to login because of ReCaptcha button not showing in Ubuntu.

Ho mb, thx 🙂

Gave +1 Rep to @crystal marlin

for exemple:

That would most likely mean you haven't started the target machine yet.

Well, i confused the attack box and the target machine, i forgot i had to start both each time ...
My bad, thx a lot.

hey yall, do you guys install the kali-linux-everything metapackage ?

@celest quarryi did

havent used anything from it yet though 😛

I did install that last time like 3 months ago

took 80 gigs of space for the whole kali OS

now im coontemplating if I should do it again, but I got another issue, my other user terminal doesnt work like the root terminal, TAB button doesnt auto complelete/highlight/jump to directories. You know how to fix that ?

I did a fresh install, and wondering if its lacking a package or something, but everything is updated and upgraded

@celest quarry 80gigs? running kali in a vm with the kali-linux-everything and im at 27G

thats odd, root terminal is fine but user terminal doesnt recognize keyboard commands like TAB or arrow keys?

yeah it does have some K symbol next to it

its not a font problem, cause the root is using same font

I used to do all the stuff with root account , I know I wasnt supposed to

its a common problem for other user accounts, Ill figure it out

can you paste a screenshot here? you should be able to like: ctrl+shift+prtscr and your screen should darken a little, then you can select an area with your mouse (click/drag/release) then ctrl+v here

Hi all,

I was interested in paying for the premium subscription service, but it seems Pop up Modal isn't currently displaying anything for me to input any payment details.

I have tried removing ad blockers, and using different browsers (Brave, Mozilla, Chrome) I also even tried to sign up via a mobile browser. I keep getting the same blank payment modal. Is this an issue on their end? Is anyone else experiencing this?

Hi, when i try to connect to the VPN i get this error, i never got it before :

Run the command as sudo

Yes, i run it with sudo

Weird, try to regenerate your .ovpn on the website and redownload it

I already try it too X)

This is my last chance : https://github.com/tryhackme/openvpn-troubleshooting

Are you using one of the EU-VIP server?

@naive dust do you have a pihole? someone a few days ago mentioned having to whitelist an address due to the same issue you describe

Thanks bro, it say me to try to change server and regenerate my profile ant it works

Gave +1 Rep to @soft thunder

Yes, i was on EU-VIP-2

Now i'm on EU-VIP-1 and it works

anytime 😄

@pulsar sparrow I think I have to try and make a new user with /bin/zsh

@pulsar sparrow

heres the print screen i get with root

cant really see to well, but looks ok to me, did you do any custom prompts or anything?

sending u this one with the other user

doesnt auto complete, doesnt underline the commands at all

its workable , but i could lose a lot of time + im used to tab command a lot

echo $PATH does that look right?

nah man

its weird it works perfectly fine on the root account

and then when i swithc user to the regular account , it does have sudo privs it doesnt act like its a same terminal

long shot, but maybe your user doesnt have TERM set?

echo $TERM with both the root and the user and see what comes up

if the user one comes up blank that could be your issue just do TERM=<set to whatever root is>

ususally like TERM=xterm or TERM=screen-256color

other than that I am at a loss

but it sounds like some ENV variable is not being set for the user

fixed it dude

awesome, what wsa the issue?

so it seems that i added the user with ------ useradd -d /home/newname -m newname

i had to add it with the bash shell instead

so i typed with my root user : chsh -s /bin/zsh username

apperently fixes the issue

@pulsar sparrow thanks for your help anyways

Gave +1 Rep to @pulsar sparrow

ahh, gotcha

that makes total sense lol

it made no sense to me , but I researched the hell out of it, and learnt new things on the way too

haha

@celest quarry i say it makes sense because generally when you add a new user i do like: useradd -m -G users -s /bin/bash username

you added the user wihout giving it a default shell so it makes sense why TAB complete and stuff didnt work

yeah thats the right way

yup

hey i am new to pentesting and i tried to find the ip of the kioprix 1# vm but netdiscover cannot find it, its picking up the 3 vmware ips. i was wondering how do i fix this?

yo i have a file in /usr/bin with root suid that runs /bin/bash

but when i run as a normal user it simply returns a shell as the user, not as root

im hella lost

#room-help

If it’s for a THM room

nah im just making my own beginner ctf 4 school

I probably know your issue

Add the -p flag to /bin/bash in the setuid

If that doesn’t work ask again on #infosec-general

gotchu ty

Jr Pentester path, room Content discovery, task 2. The link for the acme it support website /robots.txt is not loading for me. I have the machine active.

should i use an attackbox to try this room? the previous room worked without it yesterday

@fallow breach some basic questions. The website itself loads up? ie http://10.10.10.10 or whatever IP

negative

and you are connected to the vpn (since you are not using the attackbox)

if the site itself doesnt load it most likely means you are not on the VPN

okay. i will close chrome and relaunched and see if that gets me anywhere

or, the machine itself is not up (I have done that before, started doing my recon without starting the room)

i thought that was the issue at first but i had no button asking to join room and i had answered the task 1 questions without issue.

are you doing the attacking from your own kali vm or like that?

or using the attackbox vm they provide

to my knownledge i dont need any attackbox as its web based right now using browser dev tools

the attackbox vm should be already connected to the vpn so you can attack your target. if you are on your on your own machine and using the THM VPN, then try the troubleshooting steps for taht to make sure you are on the network

HEY the link is different now since restarting chrome.

stale info perhaps

works now?

no i keep getting a ERR_CONNECTION_TIMED_OUT

I went to the previous lab and was able to start the machine and access the website for the room.

restart the room or have you tried that already?

restart the machine i mean, not the room

i will try restarted the machine again to see if that fixes the issue. I did leave the room and re enter. that did not fix the issue.

restarting the machine did not fix the issue.

i'm not connected to the openVPN. i'll go through that route. weird i havent had to do so in any previous rooms. i went through all of pre security as well without having to go in and manually do this.

well if you not connected to the VPN and you are not using the attack box (which automatically connects to the VPN) your network has no way to talk to THM network

maybe the other tasks you completed did not involve a target machine

some tasks / challenges are in a web page that loads in a split window thing. Those do not require any VPN stuff

i definitely know the pre security had me booting up kali in the VM split window thing and connect via SSH to a target ip

yeah so in that case the split window was a kali attackbox, and you ssh from that kali attacbox to a target machine.

both on the THM network

I have kali attackbox started and it will not connect to said website in the room

now that part is beyond my understanding, never used the attackboxes.

User-agent: *
Allow: /

Disallow: /staff-portal

if they split window something for me then i just did the close split view and ssh'd from my own machine

oooh

well dang

wait you got the robots.txt this time? so you can reach the target machine?

i'm dumb

yeah the attackbox connected. that got it working.

i'm gonna go suffer in silence. thanks for walking through that with me.

lol no worries, happens to all of us

Hi,

how can i change my username

Hey guys, you seem to be making announcements to my discord server somehow.

TryHackMe #announcements
SERVER
— Yesterday at 11:37 PM
@Announcements Today's Advent of Cyber is an easy one 🎄 The Grinch has decided to take today off. Take the cyber security careers quiz and find out more about the different cyber careers. Share it on socials & tag us with which cyber character you are!

https://static-labs.tryhackme.cloud/sites/careers-quiz/
TryHackMe
TryHackMe | Cyber Security Careers Quiz
Do a quick quiz and find out your ideal cyber security career!

any chance you can stop them?

You must have followed TryHackMe Announcements😄

i need a support please

can someone dm me? 🙂

Hi there, I'm struggling to get the chatserver.exe program running on my local VM from the room Brainstorm. The program opens and seemingly instantly crashes.

Hi, Could you please reset my streaks as it's not passed 24 hrs? This morning when I logged in; my streaks were gone. Thank you very much and look forward for a quick action.

Figured out the problem. Downloading from the ftp server corrupts the files unless you use binary mode

I provided you with a link on how to do that, read that link 😉

ok, thanks

Gave +1 Rep to @crystal marlin

i need support help for reporting a misconfiguration

I would suggest you point out or explain what the issue is, in order to get some help.