#site-support

So restarting it again might be worth it

wtf

can you explain me why it works?

works$

if i understand the target machine don't receive packets because it's too large ?

So you received a session now ?

yes thank you

but can you give me an explication please ?

Well maybe your internet connection is not the best and therefore a smaller packet size helped, so I can't give you an exact explanation.

ok ok anyway thank you dude

Is anyone able to recommend a good note taking application? I have been using CherryTree but it has just lost my save file for a 2nd time

I use Obsidian but there are a lot of good ones, Notion, Evernote, Trilium, depends on your preferences, i tried most of them but ended up sticking with Obsidian...
Check some Youtube videos if you are not sure, to make an idea of them..

Thanks, i will look them up 🙂

Gave +1 Rep to @light vale

No worries

hi i would like to disconnect my token

need to link it to my new account

DM to THM admins or mod

maybe they can help you

we are allowed to do that ?

Yes

thank u

The bot tell that

So i think we can

How long should it take to start the attack box when premium?

Not long.

But then, I haven't used it in months due to VM.

VM ?

I just paid for premium but still having to wait 90 seconds for attack box and 60 seconds for ctf box to come online

It still takes time to boot those boxes up regardless. The difference however is that your attack box is faster and with no time limit anymore.
VM being Virtual Machine.

do you use vpn on host and vm or just host

Is this a question or you reply to someone ?

question,

You use the vpn only inside your VM, so not on the host and VM simultaneously nor just on the host.

and is that for any time im using the VM?

not just for THM?

Well this channel is for tech related questions to THM, so I assume your question was about using the THM vpn ?

yes it was but then i got curious about overall use.

I mean if you are using your VM for other things that have nothing to do with THM, there is no need to run the vpn as you anyways can only use it to connect to the thm network. So any site you browse that is outside the thm network, the traffic won't go via the vpn.

i was talking about like a nordvpn.

That's outside the scope of this channel, but I would also run it the same way, so directly inside your VM.

thanks. sorry for the confusion

hey

i need help with upgrading my reverse shell

i entered python -c 'import pty; pty.spawn("/bin/bash")'

then i backgrounded it using ctrl+z

then i entered stty raw -echo

then fg

then i pressed enter two times

but nothing happens

when i press enter

it just types in ^M

@simple needle Try stty raw -echo; fg and press enter twice instead of doing them separately

okay i will

it worked thanks man

@nimble comet

Hi, i want to change my nationality in my profile in THM. I cannot change it in settings. What can i do to fix it?

#site-support message

Thx 👍

Gave +1 Rep to @crystal marlin

Several pictures in the Throwback room do not seem to load due to an access denied error on pixabay. Where can I best report this

Can I pause my subscription ?

are you having problems with the virtual machines?

tried 5 times, i have no internet problems , gonna try with another pc on another network

yeah i think it's my connection, can't connect to my other pc

fixed hehe

Hi, I am trying to access the OpenVPN file via the terminal and i get this message error 2022-01-23 23:43:07 ERROR: Cannot open TUN/TAP dev /dev/net/tun: No such file or directory (errno=2)
2022-01-23 23:43:07 Exiting due to fatal error Using a (cloud server) docker Kali (Kasm) Any solutions? Thank you

Maybe choose another vpn?

@bronze talon

I normally use the Attackbox VM by web. When i use it through OpenVPN, does that mean that my PC is also on the THM network and other THM students (and profs?) can see, scan and potentially hack my PC?

delete it then 👀

So why are you posting it?

Sure, and there is no plastic in the ocean.

We never went to the moon.

Always use a VM.

The openvpn is tight secure, but uhuh don't say all are "ethical hackers", literally anyone can sign up for free

But what you are saying is : "Yes, you are right"

Because if so, then signing up for free and with a fake email, spinning up a box and get into other students PC's makes THM a perfect launchpad for attacks.

If you want, I can send you a link about this in DM

PLease

Sent.

Well, i would expect a platform like THM to be safe, but ok. My wrong perception.

Everything is relative. Like using a knife is safe...

And what if someone asks for help here and (by mistake) posts his instance's IP?

It's not that easy tho, I've tried hacking my own thm ip through another machine, literally impossible

Yeh

You know, on one side THM teaches you VERY VERY basic networking, Windows and Linux skill, therefor giving the impression that they are OK with having absolute beginners on their network. And from the other side they tell you "you have to know what you are doing when accessing a hacking platform". That just doesn't match.

You don't get my point.

Which is ok.

I was never good at explaining things that concern me.

that's good.

I AM not afraid of these things. I look at it from a conceptual point of view. You just cannot leave all students open to a potential 0-day, annoying scanning, etc. Even if it doesn't happen, apparently. It's a concept thing for me. What could go wrong if THM would give us our own isolated environment with endpoint, attackbox and target isolated from the rest of the network?

At least you would not get annoying but true articles and videos on the net telling people that the THM platform is crap and unsafe.

Anyway, we are going in circles. I have to go to my next customer meeting.

Keep up the good work!!

Hello guys

I have to problems.

1. I'm trying to access the openvpn configuration file but they keep giving me the 404 error. I have tried deleting my browser history, my caches, cookies everything but nothing's changed.

2. I'm currently in beginner path and now doing Network services room but when I try to run a simple nmap scan for enumeration in the attackbox it gets stuck Starting nmap.

Any help would be massively appreciated because my streak is gone and I'm falling behing my learning objectives.

Thank you

Follow the instructions from the below link, it should work after....
#site-support message

Hi guys, I'm unable to connect to thm network through openvpn, I downloaded and ran the Mandy's script (openvpn-troubleshooting script available in the GitHub) but it returns 'Something went wrong -- please ask for further assistance in the TryHackMe discord...' Can you help me?

Verify and show a screenshot of the openvpn output you receive when trying to connect. So not the output from the troubleshooting script

!docs verify

I've verified

Seems you can connected just fine, beside having multivpn. So just do sudo killall openvpn then connect to the vpn again, wait a minute and check ip a s to make sure you only have a tun0 interface and not any extra like tun1, tun2 etc.

Okay but it's showing that I'm not connected in the access page..

#site-support message

Oh, Thank you!!

how can i buy tryhack me premium? becouse it only gives me the option by paying with creditcard and i dont have one.

Paypal should be available as well

does anybody know how to configure nat on a cisco router?

yes i only have a credit card option there aswell..

I guess that's something you have to talk with paypal about

ye i will i hope you guys add some more stuff in the future like ideal ans stuff.

please help?

I'm not staff or something. So for things like that you might want to use #feedback-and-ideas

How is that related to THM ?

i am sorry wrong discord

please dont ban me

i apologize for beeing in the wrong discord😟 😔

I doubt you will get banned for that 😄

okay thanks

Gave +1 Rep to @crystal marlin

Hi, I hope its fine to ask here because its not going to be why I can`t to connect to VPN..

So my question is, I make upgrade to my kali Linux machine, and I have ping to google, but my Firefox not working well...
I get this error on the picture. I try to ask google but I don`t find any answers.|

Someone here get the same error after he upgrade his machine?

How do I unsubscribe? Under Profile I read "Your subscription will end on: Feb x, yyyy" but there is no Cancel button

That means you subscribed with a voucher, it will cancel automatically at the end of the term 🙂

https://tenor.com/view/peter-griffin-family-guy-oh-well-nevermind-then-nevermind-forget-it-gif-17476042

Hi
I bought 3 voucher (6 month each). Money got debited.
And later, account got suspended and revoked the vouchers too

😑

#site-support isn't the place to ask, this channel is for tech-support related to THM only. #general would be better. However as you're here, this could be due to:

1. low resources such as RAM or RAM available (i.e. too many apps or tabs open, chrome is notorious for this)
2. an extension / plugin could be causing the browser to crash

I gave them as a giveaway, and now I am being pointed for getting their account suspended . Their Voucher got revoked. And now I can't access the page where my voucher info is shown

nevermind, I fix it and my firefox is working well , thanks 🙂

Gave +1 Rep to @zealous yoke

I along with other user(who got the voucher from giveaway) mailed. But no reply.

Hey, i'd recommend emailing support@tryhackme.com regarding all of this and explaining your case as best you can. Provide receipts of your voucher purchase (such as billing and more usefully, the emailed receipts you get from THM.) I can't give you answer as to what'll be the outcome especially as I have no idea what the ban was caused by (and don't really want to know as I can't do anything about it anyway to be totally honest)

@sullen matrix

I mailed. Waiting for reply.

Anyways, Thnx @zealous yoke

Send an email every 24 hours (: they'll get back to you. Not ignoring you because they want to

👍

😄

It's also very likely in this case that a decision needs to be made / other people involved such as the owners

so it could be that support are waiting for the decision to be made before replying

Understood 😁

/ investigated (:

all the best!

Thnx

Hey dudes, is room hints active? I've got an older relative who's getting stuck a bit, and I'm not sure where I can point him to.

And actually not just room hints, but what ways can I help the person find better explanations for the topics they get stuck on? So like a solution is cool, but we need an alternative explanation. Maybe like YouTube search, or like what? Just trying to understand the topic from a different pov.
Any tips?

Well it mostly depend on what he get stuck with. But google stuff to find answers is the most obvious one. Or using one of the support channels to ask your room specific question. #room-help #room-hints

Like I was saying

I provided the correct path /Downloads/file

when I did the sudo openvpn /Downloads/file

Hm?

I'm trying to connect my VM to the tryhackme OpenVPN

but its giving me the options error...

What directory are you in right now?

the downloads

where the ovpn file is

If you already inside the downloads folder you can not specify the path as /Downloads/file

so do i just put the file name?

Yes

Yea it worked

So with that im connected to tryhackme vpn

and I can continue the rooms?

Nice

Thanks.

If it successfully connected you, then you can yes. You can verify that by opening 10.10.10.10 in your machines browser.

Its not loading....

Yea......

Did you close the terminal where you ran the openvpn command or pressed ctrl + c in that terminal ?

I need to have 2 open?

I did it all in one.

Ye, just let the terminal where openvpn is running open and leave it alone

I dont have it open

I only have one open

How do I disconnect?

God knows where I'm connected too.

Ye, so just connect to the vpn in a terminal, then leave that terminal alone. For any other tasks you do, just use a new terminal.

You disconnect with ctrl + c in the terminal where openvpn is running.

Nice.

All I did was clear

and sudo openvpn file

No longer need to touch the terminal correct?

Ye, the terminal where openvpn is running.

Yep I ran it

and 10.10.10.10 is still loading......

Enter ip a s in a fresh terminal and show me the output with a screenshot pls

no hack me plz XD

That's it ? Then you are not connected

Does it work even if I'm using express VPN in my main OS

Let me connect again

Well probably not the best to use a vpn on your host machine as well, but you might noice if it causes issues. But at that point that's definitely not the reason.

now I'm connected?

Right, looks better now 🙂

10.10.10.10 still loading...

I mean, you are leaving the terminal where openvpn is running alone, right? You not pressing ctrl+c nor you close that terminal?

nope

still open

Check ip a s again

Should I disconnect my OS vpn?

Is there still a tun0 interface and not any extra like tun1, tun2 etc ?

yea

tun0

and tun0 up

Ok, well if the page still doesn't load then turn off the vpn on your host machine and try again

Alright

it was express vpn

im in

does that mean Express VPN is just too gud?

No, that probably means it's not the best to use a vpn over another vpn 😄

thanks a lot

Now I can go beat some new knowledge into myself via Network Services 2 Room

You are welcome and good luck 🙂

yo why is my nmap scan taking so long (5 plus minutes)

sudo nmap 10.10.#.# -p- -sS -T5 -n

What means 5+ mins? Does that mean 60 mins, or 6 mins or 30 mins etc. ?

meaning it's been over 5 minutes

My scan just finished... took 12 minutes..

Well there is a big difference if it's taking 60 mins or 12 mins. But 12 mins still sounds fine.

whats the average scan time for full ports just using syn/ack

Well that could vary pretty much, but up to 15 mins sometimes sounds still fine.

Thanks 🙂

Gave +1 Rep to @crystal marlin

Hey all - very noob question here about the attackbox. I'm a THM subscriber and I'm trying to figure out if my attackbox is persistent...can you help me? Two tools I installed in a previous session of the attackbox seem to still be available on the command line in the attackbox but I'm not 100% if those tools (inix and remmina) are default installed on the ubuntu boxes anyway. Any insights?

I did try a bit of searching around for this answer but didn't really find any helpful articles or posts. Links are welcome if this is a solved problem / question. Thanks!

Hey, no, your attackbox is not persistent (:

It books from a base image every deploy

Consider it like booting from a snapshot if you’re familiar with that aspect of VMs

That's helpful - thanks! By any chance do you know for sure whether or not inix and remmina are a part of that attackbox image? I thought I had installed those custom but I booted up an attackbox this afternoon and those two tools seemed to be there and working already... it was weird (especially because I had assumed up until today that the attackboxes were, as you confirmed, not persistent)

Gave +1 Rep to @zealous yoke

It’s possible that inix Is a default thing, I’m not sure actually but I don’t remember ever installing that specifically

Remmina should definitely be installed on there though (that isn’t default)

Fascinating - thanks for the insights here! Super helpful

No worries (: more than welcome. All the best!

I maintain the attackbox so

Out of pure curiosity, what would you be using inix for?

Just to find out hardware specs?

Legit! Feelin' lucky that I got directly to the right person! Yeah, I'm very (very) new to linux and I just didn't know where I could get all the system info in one dump. I googled a bit and people seemed to be recommending inix. I found it super useful!

And it was super easy to install. Then one easy command to get the dump

inix -F

Hey I'm trying to connect through my openvpn3 service on linux, but it wont properly connect and is stuck with Status: Connection, Client Connecting

Any idea what could be the issue?

I can connect with my windows machine just fine

Hi all Im having trouble connecting to US-East 1. I am getting this error after regenerating a VPN file and changing the region, any help?

I am still having trouble gaining remote access to secure shell to the Linux machine in task 14 of the “what the Shell?” room.

who here is in charge? who is it that can help me?

Or better put, where do I speak to a live person who can troubleshoot issues i am having?

The practical on the website DNS in Detail is not working properly. I cannot understand the subject matter as well. I don;t know how to get discord to let me voice chat. I want to speak to a person. How can I speak to someone? Does someone want bitcoin for money to help me? is the membership to tryhackme not enough? Do you want more money?

Hi, that really isn’t the case. Everyone in the discord (bar THM staff and we don’t really frequent here for tech support, etc, outside of the emails) are volunteers

I’ve answered you #room-bugs message

It’s not a pay for support service — that’s not how we do things at all. It’s just a fact that there’s 900k users on the site and 113k discord users all who might have an issue with something at some point

I absolutely promise you that you’re maybe not getting the answer that you want because you aren’t paying enough

I apologize for the delay but this didn't resolve the issue

#site-support I am having one solid issue. My attack boxes no longer work. There's no error message and all I get is failed to connect to server. The hard refresh of the page didn't help and another browser didn't help either. Please assist when possible... It hasn't worked in a month and has hampered my training

I suggest using VM

#site-support My THM account got banned and it asks me to reach out to support. I don't know what happened. Can any staff members help me out?

Hey, sorry to hear that. Yes, you'll need to reach out to support and appeal your case the best you can. They'll be able to explain and help out. Bans aren't dealt with outside of that/here (:

Thank you for your information. I'll reach out the support team for solving my issue.

Gave +1 Rep to @zealous yoke

All the best!

Why is there no response to job application emails?

Hi! I have a question. I recently connected my student email so that I'll be eligible for the student discount, but I cannot verify it. I do not have access to its outlook so I cannot see any emails received. Can this be a problem?

Hi guys, just a noob question here. I'd like to cancel my personal subscription and use a voucher provided by my company instead. Is it possible to use the voucher without waiting for my current subscription date to end?

As far as I know, when you cancel the subscription, you can continue premium until the subscription expires, it just doesn't renew. You can also keep the company voucher and use it after the premium ends. I don't know if the time is added in a row.

Alright, got it. Thank you for the info

Gave +1 Rep to @lofty trellis

Hello everyone does anyone know which email to contact to restore my premium and restore my account

support@tryhackme.com

whois function not working in the network vm

What VM you are talking about ? The target machine or the attackbox ?

Can't make an http server on port 80 with my attackbox, which is needed for an attack. Any way that I'm able to safely close the port?

Guys how do i get student on thm

You could use any other port, is 80 a requirement?

It is.

Box doesn't make requests to the attackbox otherwise.

You could run netstat -plta | grep 80 and then get the PID and kill -9 $PID
IIRC, there is a web server which runs on port 80

We dont get student in our country at least for now how do i get discount then?

Ah, it's not even the port.

"Address is already in use."

Yet...I can make an http server on quite literally every other port.

Nothing comes up in netstat.

Are you trying to accomplish this with python's http.server?

Mhm.

Maybe try running ss -tulpn | grep 80

I killed it, disconnected from attackbox.

Lovely.

why not just transfer the files from your base/local system, python runs on windows/mac/linux 🤷‍♂️

Can’t at the moment, loaner laptop. My motherboard died.

Was a good few years of use, now it’s just plastic and metal.

have u tried changing the port in the payload to 8000 or smthng

I have.

I've done 8000, 8080, etc etc

No requests

what payload is this? also did you use http://<Ip>:8000/ or simply <IP>:8000

It's a chron job, I just changed the hosts file.

Other friends were able to do it with port 80, never 8080 for some reason.

welp, that's as far as I know then
Good luck

What about you ssh into the attackbox so you can just kill port 80 on it?

That works. Cheers.

Anyone know how to get the vpn connected on meow? My cmd doesn;t like the command

vulnversity is broken or am i doing something wrong? can't open the page

1. Try ping to see if the box is up
2. Use nmap and see what port the web service is hosted

I haven't personally done this box so I don't know if it's hosted on a different port or if there is a webservice at all

Hello stupid question, when I registered for some reason I was registered as being from Romania and I would like to change it for Canada. I tried updating my profile but I am being reverted back to Romania. Thanks userid is Mikadette

Does anyone have any info about release date(s) of these rooms (all rooms are part of the cyber defense path): MISP, Suricata, Graylog, OpenEDR, Atomic Red Team, Windows Forensics, Reversing .NET apps.

#site-support message

I lost my 30 day streak due to medical issue in family 😢 . Can someone help me rest it ?

#site-support message

• Don’t use HTTPS

• There isn’t a Webserver on port 80, please perform an nmap scan and go to the correct port :)

Can someone confirm that -> https://tryhackme.com/room/ccpentesting

-> Task 20, last question is a technical error. 99.9% sure I have the right answer however it keeps not accepting it.

FTR I am inputting "smbmap -u admin -p password -H 10.10.10.10 -x ipconfig"

try using quotes around the strings?

Thanks my error. had to be "admin" and "password"

Gave +1 Rep to @lament trout

Hello, does anyone know how to download room's task files into the AttackBox?

If the files only include text, you could just copy paste the file contents to the attackbox, or use scp to transfer them to it. If you are subscriber (has internet access on attackbox) upload them from your host machine to a file hoster and then download them inside your attackbox.

No ETA yet I'm afraid, we got a whooole bunch of things other then those in the works at the moment too ((:

Who can I ask about a change to my account? specifically the country shown on my public profile?

Or does it only change, when I put my details into the "About" Section?

you can just go to https://tryhackme.com/api/user/update-timezone and it should change it

as this post says

ty

Gave +1 Rep to @proper ferry

👍

hi, i would like to delink my token. the staff cant do that, the mods too, and i cant reach an admin
can someone help me with that please?

try contacing a "@""senior mod" then 🤷‍♂️

thank u

Gave +1 Rep to @celest wadi

how to embed tryhackme profile in github readme.md ??

the room named fileinc is having a bit of a glitch on task 4 question 1

every time I put in an answer that I think is right, it says "uh oh undefined"

you can only link your profile but if you have access to web source code(i.e, your site) you can insert a js script

Are you running bitdefender on your machine ?

Yes actually

Then that's causing the issue

ah

I added to exceptions, it's working

i think we can get this like too
tryhackme-badges.s3.amazonaws.com/[username].png
but it's not updated!

hello, i am new here. I am trying to connect to the network via openvpn. Even though it "Initialization Sequence Completed", on the site it still says i am not connected. Any help would be lovely, thanks

Check this room for help
https://tryhackme.com/room/openvpn

yes, i have followed every step, yet it still says i am not connected

#site-support message

Thank you, I was indeed connected, it just wasn't showing it.

Gave +1 Rep to @crystal marlin

I want to delete my account by i forget which email i used even i forget the username. How can i cancel my account? Please i need help

Alrighty then 🙂 Thanks!

Gave +1 Rep to @zealous yoke

Probably best to email support and search for something so they can figure out what your account is. Like maybe a previous subscription invoice number or similar.

!email

Anybody else having issues with their attackbox?

I can't seem to connect via the web client or SSH.

@crystal marlin I did it i hope that they can help because i am paying for two accounts the current one and the one that i lost

You could also contact your bank to block that payment, and it'll most likely be canceled for non-payment.

@naive dust do you think it can work that way?

I've done similar before. My bank just blocks payments for a specific company from a certain date to a certain date upon request.

You can always call and ask.

Can they block forever

hi, can someone tell me how to show machine box into split screen ? when i click start box nothing shows

i used the correct port later and it didn't work either, tried different ways and it didn't worked
tried entering 10.10.171.173:4444 (for example, i dont remind the port) and nothing
tried using it with https and the port and nothing

It depends which room are you doing

So have you done an nmap scan on the target IP ?

yep

And what was the result of that? Maybe put spoiler marks on that message or delete it after I have seen it pls

i don-t remember, and i'm in the middle of another room right now

Okay? Well then dunno how to help you if you are not even on that machine right now.

Hi guys I just wanted to ask if I'm the only one facing this problem, in "advent of cyber 1" Day 9 "Request" I can't access the web page on the fixed IP "10.10.169.100:3000"

guys i am trying to use OpenVPN to connect to THM it's not working for some reason. I tried using thm- troubleshoot and I am getting this

How do you know it's not working?

did you download your openvpn configuration packet packet

i get this tls handshake fails

and it keeps repeating

i didnt regenerate my config file like 3 times so far

also changed the vpn server

Most likely one of these reasons apply: #site-support message

how do i access machine via vpn? im connected to vpn but after i dont know what to do to view the machine

im connected to the openvpn via the file i downloaded from the site*

nvm

After editing my /etc/hosts do I need to restart anything to make it work correctly? I have just been fighting this for the past 2 hours and finally went to the place I know I should have asked first :S

There should be no restart necessary. But what room are you doing ?

Attacking Kerberos

Oh okay, well I have not done that room. But regarding the hosts file, as far as I know you shouldn't have to restart anything in order for the hosts file to apply.

Every time I try to give a longer answer than is probably necessary Fontaene swoops in with the short n sweet approach 😅

Oh, I'm sry 😅

I can ping the IP associated with the edit and it is there, it just doesn't work with the name I set.

Thank you 🙂

Gave +1 Rep to @rocky adder

If you are very stuck, you might want to check out a write up. For example John Hammond has a video about that room.

Can you share with us what exactly are you editing in /etc/hosts?

I checked it out actually and he just did exactly as I did and his worked lol.

I am adding the following:
10.10.xxx.xxx CONTROLLER.local

with the actual full IP instead of my censoring it.

Are you on your own machine or the attackbox ?

Own machine connected to VPN

If you enter ip a s do you only see a tun0 interface or any extra like tun1, tun2 etc ?

Only see tun0.

Is your attacking machine a VM ? And if yes, is openvpn running only inside that VM or also on your host machine ?

It is not a VM.

The only thing I have not tried yet is rebooting.

I found a exact same problem that has been resolved here: https://community.hpe.com/t5/Networking/Ping-will-not-ping-host-name-in-etc-hosts-table/td-p/2487652#.YfHCPOpByUk

The issue lied within: /etc/nsswitch.conf

But it's completely out of my scope of knowledge of why what and how's.
Edit: could be a type, could be a misconfigure (/shrug)

I mean as I said I have not done that room, but beside trying to ping, did you also try to enumerate the target machine with kerbrute?

I did try to enumerate the machine and received this error every time.
2022/01/26 14:40:00 > [!] abbotsun@CONTROLLER.local - failed to communicate with KDC. Attempts made with UDP (error sending to a KDC: error resolving KDC address: lookup CONTROLLER.local: no such host) and then TCP (error in getting a TCP connection to any of the KDCs)

That error is what started me on this interesting rabbit hole

What if you try to use it like that: ./kerbrute userenum --dc 10.10.xxx.xxx -d CONTROLLER.local User.txt ? Just so you know, I basically have no idea about kerbrute, but just something I found online and maybe worth trying.

Let me test that

Ok.... that actually seemed to work.

Now I am confused

Could you send a screenshot of cat /etc/hosts where that command and the output is visible ?

If you want you can send me via DM if you don't want to share it here

@void ridge Could you please paste the full line starting with hosts: within /etc/nsswitch.conf
The order is important.
hosts: files myhostname mdns4_minimal [NOTFOUND=return] dns
This means first check files, like /etc/hosts. Then check the system hostname. Then there is mdns4, this module searches the local LAN subnet using Multicast DNS (mDNS), then returns "not found". Basically *.local are some sort of exception that belong to mdns4's or something, Not fully sure. Long story short, change up the order, and you should be good. 😅 I really hope this is it, or I'll be disappointed.

hosts: mymachines mdns4_minimal [NOTFOUND=return] resolve [!UNAVAIL=return] files myhostname dns

What command?

cat /etc/hosts

oh sure. inc DM

There you go, files need to be 1st in line, so that it first checks the hostnames from your /etc/hosts.

But I guess regarding to the explanation of MythicalMoon it seems the order is not right

Ok let me make some changes to it real quick and test again

in your case there's a conflict/misconfiguration where it checks your local networks *.local's because of mdns4's which returns a Not found so it never gets to your files (/etc/hosts), where the actual *.local hostname you want is. Or something like that. I just read up on it so i'm no expert. 😂

Amazing. It works like a charm now.

Thank god! Kek unintentional rep 😂

Gave +1 Rep to @void ridge

How does something like that change? I have edited hosts before and never had it not work.

Maybe an update messed it up?

Well done figuring that out. +rep @rocky adder

Gave +1 Rep to @rocky adder

it's because of the *.local tail of the hostname you wanted, if it literally had any other ending and not .local you wouldnt be having that issue

+rep @crystal marlin Taking the time you did with me was a great help 🙂

Gave +1 Rep to @crystal marlin

I had spookysec.local in there from a previous room and it worked though lol

That is where I am thinking something changed on my system from the last time I used spookysec.local and now

why*

i was having a problem with openvpn so i tried openvpn-troubleshooting but the message i got was **[-] Something went wrong -- please ask for further assistance in the TryHackMe Discord server, subreddit, or forum **

can anyone help?

Hello hello, there should be a more descript error. Can you send us a screenshot of your terminal when you try to connect via openvpn please? You'll need to verify to send images here -- they'd be most useful!

!docs verify

hey, can somebody please disconnect my thm tag from me?

tyty, could you show us the output of when you run sudo openvpn /home/kali/Desktop/Downloads/AKREP003(1).ovpn (double check that I got the path and filename correct there!)

Hey, can you DM please?

it connects to vpn

bu doesnt acces to machines

Oh cool okay that's something

What machine are you trying to access exactly (a room URL would be useful) and how? Trying to SSH? Visit in your browser? Can you ping the machine okay?

I cannot dm you. Clyde does not approve 😉

Ok, worked.

https://tryhackme.com/room/anthem

Did you run an nmap scan on the target IP already? To ping is not reliable to check if you can connect to a target machine, especially when it's a windows machine as they might simply don't reply to ICMP ping

should i try another machine?

Right, so nmap is telling you to use the -Pn flag if the target machine is blocking ping probes.

no output

Because it's still running. If you add -vv to your command you can see progress. You can even enable the verbose mode while the scan is running by pressing v, the more often you press it the higher verbosity gets.

oh ok...

Okay, yet you have scanned only 1000 ports out of 65k+ ports 🙂

nvm

Hi ! When i run openvpn, the status of the access page remains unchanged, yet i can connect to the machines Do you know how to solve this problem ?

Hello hello, don't rely on that page too much (it's not 100% accurate). Can you access http://10.10.10.10 in the browser in the device that you're connecting from?

Yes and i see my ip, all works fine except the display on the access page

Ah yeah - okie dokie -- take that as confirmation of it working

if you can access that page (on http://10.10.10.10) your vpn is working

the connected status on /access will update eventually

or maybe not...depends on the phase of the moon really

Hum ... ok

Otherwise is it normal i have to pkill openvpn to be disconnected ?

I thought there would be an easier way, it's not complicated, but, i don't know

Depends how you're running it. If it's in the background then I imagine you'd have to do that

Usually a Ctrl + c in the terminal after sudo openvpn <vpnfilehere> works, if not, sudo killall openvpn for me at least 👍

Oh Ctrl C, thanks

np!

This might just be user error but Ive had this reoccurring problem within the tryhackme rooms. Firstly for some reason terminating machines within the rooms hasn't been working for example once I'm done completing a task I hit terminate machine at the top and the little green message comes up saying that the machine has been terminated but if I try to start up the next one it says that I still have one running and refreshing the page shows that the machine that was supposed to be terminated is still running. This makes rooms like OWASP top 10 or really any room that has multiple different machines very frustrating because I have to wait 2 hours between every task. Secondly whenever I have the attackbox or kali machine running whether its in split view or the separate full screen tab the hint button just stops working.

so the machines for each room are limited to 1 hour a day for free members right?

yeah you can only use them once a day

so what is the openvpn thing for?

allows you to connect to the rooms using your own computer instead of the ones they offer

okay so i downloaded the config file and openvpn onto my linux machine but when i open the file the terminal just writes a bunch of stuff and looks at me

mind showing?

https://tryhackme.com/room/openvpn
Might clear up some issues

thats exactl what i used to do it

yea sure one sec

Yeh you're connected

Go to 10.10.10.10 and you'll get a thm flag

do i ssh to that ?

In browser

yea it says im connected

Just go to http://10.10.10.10/

now i have the room open

on another tab

🥳

and im trying to get into the machine

but the terminal just stays like how i sent it

Open another terminal with ctrl shift T

i opened another terminal window on the linux machine

its showing hte local machine in that one

not the thm one

Which room is this, and what task are you on?

well Idk in which room you are in but It depends on what you have to do, if you are already connected through vpn thats great but you can show us the instructions

okay it might be the room then , let me finish it and ill see if its the same thing on the next one

Im on Ipad. I wanted to do a bit TryHackMe while in class. I realized that the close button disappeared. Now Im left with this thing.

Damn cant post images

Wait a sec

Cant write the bot

Verify with the Discord bot before you can post pictures.

!docs verify

The "message" box just says that I cant write blocked users. I dont know if I somehow blocked the bot or the bot blocked me

Im stupid

This

Used the Attack box

Reloading page didnt help

Again: Did a room. Wanted to close the AttackBox. Close button wasnt there. Tried to use "shutdown" now its like this

The button appeared again

Closed it

Task 9 in the Burp Suite room (as part of the Complete Beginner path), https://tryhackme.com/room/rpburpsuite, has a suggestion to go to the Learn Burpsuite room for further learning, https://tryhackme.com/room/learnburp. The link results in a message "The owner has made this room private". I suggest removing the link, or directing elsewhere, until the room is public again.

can u tell me how to??

on github or your website?

Sorry to be pedantic but that's #room-bugs actually

on github

for github, just your profile link

@naive dust https://stackoverflow.com/questions/21340803/embed-javascript-in-github-readme-md

but it won't show a profile badge right?

no, for that you need to insert javascript

like....?

"""go to https://tryhackme.com/p/yourusernamehere and click "get profile badge id" it opens a window with the badge script for your username"""

ohh it was right in front of me!! i knew how to embed but didn't know what to!!

it should be like this

i got it thanks @celest wadi

Gave +1 Rep to @celest wadi

Hey guys, why is that, that my country is set to afghanistan but my countrycode is from germany? 😄

I don't know why it's wrong, but there is instruction how to update it #site-support message

Of course it is 😄 Thanks - that works like charm

Gave +1 Rep to @turbid ferry

guys i need help

i made the subscription but i stuck to pending payment page

and i cant enter to the premium rooms

what can i do?

Hey, can you check the service that you paid your subscription from (i.e. paypal, your bank) to confirm that you've been debited? If you have, email support@tryhackme.com with your username and the email associated and provide proof of payment, and assuming everything checks out we'll get subscriber status given to you

if you haven't been debited, could be a card issuer problem that you'd need to ask them about? @keen yarrow

thanks mate

Hi, I am having issue with payment so is there anyone whom I can talk to about it

Very limitedly here @severe kayak

The support is the best route, we don't really help with payment issues here because of obvious reasons

Can I have an email or anything

What's the problem exactly?

sure thing (:

!email

I am planning to buy some gift cards but credit card is not an option and I want to see if THM support to provide invoice for bank transfer

Can u share this internally somehow

Gift cards? Like our vouchers for subscriptions?

We don't do gift cards afaik

we support invoices but it's for our corporate & education clients. Uh. You might be able to email into support? I think it depends on how many you're looking to buy and things to be honest

It’s like 420$

Will that work

In 10$ gift card

Oh do you mean gift cards like virtual cards as payment?

Sorry, I'm really confused as to what you mean as gift cards here -- we don't do them

What about buying vouchers?

Heelo, we have a team of 4. Now no new ones can join. But one of our team members is not active anymore. Is it possible for me as 'team captain'to remove one and if yes - how? I haven't found it yet.

That's not a feature unfortunately

Ok, is it possible for the THM supportteam to remove the team member that you know?

That I don't know. Feel free to message support@tryhackme.com though!

Please make sure not to make another purchase until you have spoken to me over email 🙂

Sometimes when you get to the pending page, you cannot access the rooms and your bank statement doesn’t show that you have paid, but that’s not the case and you get charged for every time you went through the payment window.

@eager fulcrum

nvm

Posted into the correct channel now. Thanks.

Gave +1 Rep to @thick carbon

Hi there, I just running through the Investigating Windows room and I keep getting the "Uh-oh" message when entering the right answer to the question "When did John log onto the system last?" I found the question both in the command line and through Event Viewer. I'm 99.9% sure it's the right answer too.

@molten axle What are you putting?

I'll DM you in a sec

👍

hello,

So i was doing wreath box last night and suddenly i got disconnected

still now i am not able to ping or connect to server

even i voted for reset

if any one can help me with this?

any mod online?

<@&791417151272517662>

Please don't ping senior mods without a good reason

Mods are not site staff.

oh

i'm sorry

but can you help me with this?

#wreath-network is a channel dedicated to wreath

oh

thank you

I literally just said mods are not site staff. They don't have site powers. They can't do site stuff.

hi iam trying https://tryhackme.com/room/postexploit but the powerview commands are not working even though i type exactly as in screenshots

any help

?

Thanks

hello , can I change my username ?

thank you!

Gave +1 Rep to @smoky berry

well its not stable it works sometimes and the rest it shows the tls hankshake fails is there a way to bypass that ?

#room-help or #room-hints and send screenshots please

do I have to use openvpn to connect to the IP of my machine using SSH

or can I just go straight in my linux terminal and connect to it right away

not sure what im doing wrong but every time I try to run the local exploit suggester in meterpreter my machine just crashes lol

not sure why and its ONLY with that module

I know its common for this to crash your shell but the entire kali vm just dies lol

Hello guys can anyone suggests ne how to write email to request penetrations testing for there company

This is not a great place to request help for that. And it's definitely not related to THM VPN help.

wonder if anyone is able to help , I'm doing Task 11 - the Jewel Challenge the upload vulnerabilities in the web fundamentals room, i was logged onto the box fine yesterday but this morning I'm having issues ( i'm connected to thm via my kali vm and the room machine has spun up and ive followed task 1 ), but for some reason when i load the jewel room today i'm getting a completely different machine, i'm getting the CSE Bookstore room. I've terminated the machine twice and re done task 1 but i still seem to get the same CSE site and not the jewels site. is there something I'm doing wrong ? any help would be appreciated as it worked fine last night

Have you tried to ctrl + F5 the page already ?

yeah I've done that a few times and cleared the cache in firefox itself, i've just spun it up again and it's the same ( when i navigate to the ip adress give i can see the list of the urls i'm meant to use , this CSE site is there for all the url's in this room)

Then check your /etc/hosts file if you have duplicates in there. In case you have, get rid of all the duplicates so that only the current target machine IP and the host names are left.

I'll take a quick now and let you know if that sorts it

all sorted , etc/hosts was my issue. thank you for your help

Gave +1 Rep to @crystal marlin

I want to show my effort at THM in CPEs (credit points earned) for CISSP, etc... Is there a way to get all certficates or rooms at once? Or certain time amounts for these rooms?

deployable machine in https://tryhackme.com/room/linuxfundamentalspart2# is dead 😉 unable to complete room due to dead machine 😄 tried twice both dead

Permissions 101 section

and if I want to show a certificate, can I alter the name again?

What you mean with dead? What have you tried to do ?

#site-support message

The machine has nothing in it like there no operating system installed I tried a few times and it still does not show an operating system which makes no sense as it want you to look for specific files, I linked my own shell using setup script from pins I'll try shortly as on 📱 atm

No operating system installed ? Could you show me a screenshot of what exactly you mean pls ? As I somewhat doubt there is an issue with that room machine

i cant now, as for some reason, even when i do not use the full hour, once i close it out and terminate the machine it wont let me connect again i would not be able to ss it until 12:00 midnight GMT

as not currently a subscriber

Okay, well then once you can reproduce that issue then send a screenshot in here pls

hello
i had verified my discord token on old account which i lost acess to.
Isn't their any option to revoke old token and reverify new account?

You have to reach out to a mod for that

Hello, is anyone else having trouble when using the attack boxes that when you're asked in a room to install something, for example mySQL or secLists you just get "E: unable to locate package" error message. Is this fixable?

The Attackbox doesn't have internet unless you're a subscriber

yep, I have internet access, able to browse sites

Would be good to have your own VM setup

From the Attackbox?

yep, from the attackbox, its been working ok up till now, just becoming fustrating

Can you verify and share a screenshot please?

!docs verify

Cant seem to attack a picture

You'll need to verify

Click the link above

ok cheers

Here is the screenshot

And the room is telling you that what you have to install is called "default-sql-client" ?

yep, previous room have also instructed to install seclists - this is not installed on the attack box

Which room and which task is this?

So for the sql one

https://tryhackme.com/room/networkservices2

Task 9

Ah, indeed. Then try sudo apt update first

Then try again

No, still the same, after some googling it looks like the sources are not correct, there should be kali ones here...

The attackbox is not kali linux

ok, that explains that

is it locked down?

Wait

You typed "sql-client" instead of "mysql-client"

yo bro just to ask a quick question so basically currently my acc was almost hack the best way to do is it by changing my password
i had 2fa on also

🤨 - that would explain it... Not enough beer consumed today - many thanks.

Gave +1 Rep to @crystal marlin

Hey, whenver i'm in the attack machine i can't type @ symbol for some reason?
i'm using belgian period keyboard (azerty)

When i change the lay out in the OS it doesn't affect it

i reconfigured it in the terminal, lets see if that worked

still doesn't work

i fixed it!

i reconfigured it in the terminal with the correct lay out for the keyboard i'm using

Seclists is on the attackbox @silk oak

/usr/share/wordlists

If I ran the openvpn file in the background (With &), how can I bring it back into the foreground to cancel it?

I tried fg

Burp Suite: Other modules
Task 6 Comparer Example

I'm having problem loading the http:/machineIP/support/login

I've already started the room machine

MACHINE-IP.p.thmlabs.com/support/login worked!!
Well if someone can clarify why.. kinda lost
Thx in advance

do jobs, check the jobs id , then foreground it with fg %<job_id> when in doubt check the manual 😉

couldnt find a man page for fg

I tried killing the process with the PID but when I do ps aux , the openvpn process isn't listed in the listed processes

also , the openvpn process isn't showing in the jobs processes

jobs

i also tried doing ps aux

but couldnt find anything along the lines openvpn

or even in top

when you run sudo openvpn <path-to-conf> & it should show in ps aux, but its suspended in the tty output stage, the stage where you need to input password, cuz sudo, duh... so you cant kill the task cuz its not really running yet kinda... from my understanding. but you should still be able to see it with jobs and bring it to foreground with fg %1

and if you actually launch your vpn and then ctrl+z to background it, that works fine. Or look into tmux, a terminal manager/multiplexer or terminator or which ever else alternative

im gonna restart it and see if it shows up

so i did the sudo openvpn command with & at the end

ohh wait

lol

that process is running on my local machine isnt it

i was checking the processes on the THM machine this whole time lmao im so sorry

its not very efficient to do it with & at the end cuz youll need to foreground it anyway to input password, so its better to run it properly and when its running background it with ctrl+z

okay so i see two processes with open vpn now

which process do I kill for it to close it?

none of those included the actual config

they're the only processes there

kill both, doesnt matter, then run it properly xD Good luck soldier I'm off

i did ctrl + z and it says stopped does that look right?

yea it's still there

the website to check also says im connected

it says i dont have permission, do i just use sudo in front?

okay btw

its that second process i kill right?

okay and generally when killing processes, i dont have to do SIGTERM or SIGKILL?

ok i did that to both processes

so now when i run ps aux , it shouldnt be there anymore right?

since we killed the process?

they are stil there

okay, its weird because the website says i disconnected but the process is still running

hello , what is the answer of bookface or what is the code?

Hack the BookFace account to reveal this task's answer!...

please

my openvpn isnt working i regenerate and still dont works

isnt connecting

idk why

Could you post a screenshot of the openvpn output when trying to connect ?

just a sec im updating bc ye idk why too

its all fine

ig

but its say im not in

So the only issue is the access page status? As in that case: #site-support message

but

why

ohhh

ok

idk

its work but in website its say isnt working

idk why

but yea

i press f5 five times

and it stills no acess or red flag connect

Ye, I don't know either why it is like that. So you will have to reach out to THM support in case you want to ask about that.

But as long as you can access 10.10.10.10 you are successfully connected.

thanks on the same kkkk

ok thanks

Gave +1 Rep to @crystal marlin

very apreciated

Can anyone tell me how someone could go about getting their OVPN static IP changed?

Regenerating a new .ovpn doesn't do it.

Well, I take that back. It will give me a different IP if I switch VIP servers.

But I wanna keep connecting to the closest one to me.

I'm connected through OpenVPN and can't access the machine of the OWasp Juice SHop. I'm using a kali VM

The machine of the task is started

now it worked but it's taking too long
my internet seems ok

Is this definitely the profile you have downloaded?

Hi I have one question. If I buy premium for one month, after it expires,
can I use the rooms I've already entered?

when i connect with openvpn on my VM and when it gets to 2
022-01-29 05:42:44 Initialization Sequence Completed
can I close this ccause i can t type anything in it or i just open another tab in terminal ?

what if i close this tab ?

thanks

Gave +1 Rep to @smoky berry

Not if they're premium/subscriber-only rooms

Yes um sure i just change the name to import uk

thanks

Gave +1 Rep to @zealous yoke

You can CTRL-Z then type bg and hit enter to make it run in the background.

If you don't wanna open a hundred terminals

hi ı am download openvpn file and conneted but web site dont access

Which website?

solution

when i run metasploit in blue i get fail error

If you verify your THM profile in discord you are able to send screenshots, that's going to make things much easier.

!docs verify

Could you show a screenshot after entering options

ok

wait

@crystal marlin

If you check ip a s in a different terminal, do you only see a tun0 interface or any extra like tun1, tun2 etc? Also does your tun0 IP match the LHOST ?

Eternal Blue can be a pain to do also.

Anyone lese have issues accessing the Windows room. Trying to complete https://tryhackme.com/room/activedirectorybasics but just keep getting the error "The remote desktop server has closed the connection because it conflicts with another connection. Please try again later." every time I try to RDP to the server?

Hey, I got a problem with the boilerctf2 - I was doing the ctf without any problems for ~90 minutes, then restarted it because I thought I destroyed something and now it stays up for about 3 minutes before it gets unreachable

I have to constantly destroy and restart the machine

Are there any problems with tryhackme atm causing that behaviour?

any reason why ssh ing to the tryhackme machine takes so long

its just starting at me

I need some help, I was installing Parrot on a VM but when the installation is over it wont ask for any password and if I get logged out I dont know the password, most likely I did something wrong, so I would appreciate some guidance thanks !

Hello, I'm having some issues with the nmap room. I'm in the practical section, but instead of giving me an IP to target, it says: ***Does the target (MACHINE_IP)respond to ICMP (ping) requests (Y/N)? *** How do I get it to refresh and give me an IP to target?

have you click the Start Machine button?

Yes, the machine is up and running

OK, I restarted the machine. After about 30 seconds the IP appeared. Thank you @hollow otter

Gave +1 Rep to @hollow otter

glhf

Enjoying it thoroughly! This is a pretty good deal for $10/month

not sure if this is the right room, but openvpn suddenly stopped working, when opening up the openvpn software nothing appears, uninstall, reinstall etc. any ideas?

never mind, just found it, had to clear the %temp% folder

My rank is not updated on the discord server

Here its showing master and my rank is on guru

Hi any idea on how to make the certificate show my full name instead of my username?

you can update it manually by re-verifying your discord token with the thm bot.

#site-support message

Is there a way to "reset" an active machine in a room? When I click on Terminate it says "Your machine has been terminated." but when I refresh the page I still see the machine is alive with the same IP address.

that is how you do it, although you do have the possibility of having another active machine going. Can you say what room it is and show a screenshot of where you see the IP including the room name it gives?

Hello everyone !
1 month ago, I bought a premium membership and today it got auto renewal. How can I stop auto renewal every month? if I cancel my subscription will I get a refund for this month auto renewal ?

Is it possible to upload screenshots here?

Hello! If you cancel now probably you won't get a refund but you can send email to hello@tryhackme.com and may they can help.

If you verify your account you can send screenshots. Type "!verify docs" in bot commands to see how to do it.

!docs verify

The room is "Thief"

so thats weird, I can't access that room, if you click terminate, can you post another screenshot?

But when I refresh I see the same as in the previous screenshot, with the updated time counter

and it shows 14 minutes or is it less?

Now It's 7 minutes. I guess I can just wait it out but it's annoying I can't probably reset...

it looks like somehow you got into a not yet deployed room

not sure if that is why the weirdness

Not sure if it helps, but I got to this room through here -
https://www.reddit.com/r/oscp/comments/seg1oh/i_challenge_you_to_crack_this_machine_domain/

ahh ok that link works for me

I tried to use net cat to connect my window to the Kali Linux (which run in virtual machine on same windows). I could't make a reverse tcp connection from my Kali to windows

Command used in Kali :
nc -lvp 4444

Command use in windows cmd:
nc.exe <my eth0 inet IP address of my Kali Linux which runs in Virtual machine> 4444.

Where should I post this question

If it's not related to a room or thm at all, I suggest #general or #infosec-general

Okay✌🏻

That room hasn't gone through the TryHackMe review process, or been released publicly on the site. As such, it's not one that we can, or will help with. If the creator wishes to bypass the review process and release it publicly via their own channels then they are solely responsible for its maintenance and support 🤷‍♂️

If a room hasn't gone through the THM review, could it be malicious?
And are the rooms that are reviewed, verified to not be malicious?

Anyone else having trouble logging in to thm in Firefox? It's a user/pass Auth error but changing the password is no help, and I can log in no problem if I'm using chrome

Just logged in, no worries.

ANyhow, I'm redoing HackPark where we use hydra but the syntax is bad. Do you think the hydra syntax changed causing the page to be incorrect? Tried many variations of the syntax, all fails.

Potentially 🤷‍♂️
THM offers no guarantees of anything for private rooms. They are entirely unendorsed by the company. The review process verifies that everything is above board, works, and irons out any bugs.

Private rooms are designed to be used by teachers, or for private events (e.g. a company using the platform to host recruitment challenges, or a private CTF with THM hosting the targets). In those contexts support is handled by whoever is running the room. Private rooms are not supposed to be shared publicly -- if they are, it's nothing to do with the company or the community.

(Although if someone is found to be uploading malicious stuff, they'll be removed from the platform immediately at the very least)

Can someone enlighten me about the username's rules ? I'd like to change it but I'm not sure about what characters are autorized, the max length and such

so I'm writing an email but I can't really decide

just try not to be offensive is all that is asked

ok

hi
what is the best way to expierence thm?
For now I used the web based machines.
but they feel a bit laggy and just a moment ago in the burp room I needed to reset it and so I need to start all over again to do the setup
Do people usually use their own linux systems?

Kali Linux as a VM

this means the one in the web site?

You own it, you update it, you control it😄
On your system

ah get it

Also, refer to #general

Hello, today i decide to subscribe to premium but on my profile it says it will renew on 02/03/2022 again. Whys that?

Because that's what a subscription does, it automatically renews?

But you can just press cancel if you don't want it to auto renew on that given date

Yea i know what renew is but i subscribed today for a month. Why would i get charged again in 4 days

To me that date would mean 2nd march 2022 ?

ohhh haha. You are right, im from the states so I read it completely wrong. Now i understand. Thank you

Hello, I am trying to do nmap -sF on a target machine from my own kali through the VPN. when I do the -sF scan I get "All 1000 scanned ports on 10.10.221.40 are in ignored states" as a result. When I do the same scan with the attack box it works and shows the ports. anyone know how I can correct this issue?

I think it has something to do with nmap not showing open/filtered ports

what happens when you attempt to go to 10.10.10.10 on the VM?

same response

no i mean actually going to 10.10.10.10 in a browser in your VM

connection is verified with tryhackme

I use OpenVPN via Kali vm
I can ping the IP of the OJuice Shop in Blur Suite room.
But I cannot access it via firefox.
Do I have to modify something?
I made the openvpn via terminal and left that one open

maybe it runs on a different port or needs a hostname

that was it...the port...sorry and ty

Gave +1 Rep to @random grove

you're welcome

strange. it only worked once. no it seems to time out in firefox....

this is a noob question but i cant bring up the site for content discovery on my attack machine . and when I do the curl https://static-labs.tryhackme.cloud/sites/favicon/images/favicon.ico | md5sum it just times out after 4 minutes and 20 seconds . sorry for asking but ive been stuck on that task for three days and I decided to ask for help

on a side note I was able to do the next task no problem so I dont see what im doing wrong

you can try running just curl https://static-labs.tryhackme.cloud/sites/favicon/images/favicon.ico and see if that works.

I am still struggling to establish the openvpn connection for my kali vm.

I established the vpn connection to the network, but firefox won´t open a website due to

"The proxy server is refusing connections
Firefox is configured to use a proxy server that is refusing connections."

Preferences of Firefox is set to: use system proxy settings

Any help?

solved. sorry. foxy proxy was still turned on

Is there a way to see and terminate active machines? Apperantly i have 3 running machines in the same room, but unfortunatley i dont see that there's a machine even running, so i also can't terminate them. 😮

#site-support message

awesome,. cheers mate

Hello, I'm doing NahamSec's Udemy Labs and currently working on the first file upload lab. When I upload an image, it doesn't appear on the page.

I mean there's a room on thm about it
https://tryhackme.com/room/nahamstore

But this lab isn't in that room

https://tryhackme.com/room/nahamsecsudemylabs

That's a private room for people doing the udemy course

Better to ask for help on udemy imo 🤷‍♂️

Thank you!

I am still struggeling with my setup for the burp suite

Kali on VM with openvpn. I do get 10.10.10.10

but it won´t connect to the machine of the room in firefox. Even when I turn intercept and foxy proxy off.

what to do?

Which room and task are you doing ?

i switched "use system proxy" on in firefox preferences.
the manual config is the same as burp.

I now try Burp suite:the basics task 9