No, can you visit 10.10.10.10 on your browser.

yes

thm verified...

I remember it was in the tutorial

Now, you have an issue connect to machines you start up?

I progressed further down the beginner path and at one point the author said he's assuming I'm using Linux

So, I downloaded a VM-Ware Image of Kali Linux and follwed the instructions installing OpenVPN

Ok.

I can connect to 10.10.10.10

but I cannot connect to anything else!

Have you started any machines?

I started the machine from room Linux fundamentals 3

I can ssh into it, on Kali Linux, but I cannot browse the website in Firefox

10.10.54.115

When you access ssh, you're essentially logging in to that machine on the command line.

so, you're viewing the contents of that machine.

yes. but I also need to browse "the regular Internet" ?

For which task?

Ok, so let me rephrase the question:

Once I'm connected to OpenVPN on Kali Linux VM, I can connect to tryhackme-boxes, but I cannot browse the regular internet, such as google.com

is that suppposed to be like that? Because on Windows that was not the case

Right, I get you, I don't know why that would be.

As the OpenVPN just creates a tunnel to their machines.

It doesn't have any effect on your browser.

Are you using virtual box?

No, VM Ware Workstation

What is your network setting?

I can provide you the information you need for that, but you would need to tell me where to look it up

I'm connected using ethernet cable and the VM Machine is using that connection

Hm, to tell the truth, if you can connect to the machines, I think you should be ok...

NAT

you should be connected to the internet then.

Ok, I tried to send a screenshot but I cannot

you need to verify

!docs verify

Ok, I did

Now you can send images.

anyway I found it

$ nmcli connection # Note the name of the VPN connection here
$ nmcli connection edit (connection_name)

set ipv4.never-default true
set ipv6.never-default true
save
quit

Hello, is anyone able to help me with group licensing issues?

hey , what are the differences between the VMs supplied by THM?

guys whats a .clr file

Can any admin or mod with the ability unlink whatever discord my discord token is applied to and apply it to this one? I cannot access whatever account has it. I have gone through an extensive amount of trouble trying to recover this discord because it had my phone number attached. I do not have any clue where that discord profile that the token is currently applied to, but I can verify to you my credit card info, profile info, etc.

Which VMs you talking about specifically?

kali

like the one i can use

So you mean the kali machine and the attackbox?

that what i am asking

what are my options?

like i run a vm and use it to hack?

Well your question is kind of vague, but the difference between them is kali machine = kali linux and the attackbox = ubuntu but with all the necessary tools installed. Also the attackbox is getting maintained/updated, the kali machine not anymore.

And yes, you could also use your own VM on your local machine and use that

thank you 🙂

and well if i already asked, can i some how transfer files form the attackbox to my pc? like bash scripts

You could yes, since you are sub your attackbox has internet connection, so for example upload the files to some kind of file host or use scp to copy the files to your local machine, the credentials you need can be found at the bottom of the attackbox by pressing the info button.

sorry for the many questions , i am new to THM

It's fine, not an issue

cool thx 🙂

Can any admin or mod with the ability unlink whatever discord my discord token is applied to and apply it to this one? I cannot access whatever account has it. I have gone through an extensive amount of trouble trying to recover this discord because it had my phone number attached. I do not have any clue where that discord profile that the token is currently applied to, but I can verify to you my credit card info, profile info, etc.

NVM I am all set now

thats what I did

In fact, there are premade kali images that you can just "play" inside vm ware or oracle vm virtual box

https://www.kali.org/get-kali/#kali-virtual-machines

you mean OVA?

if you mean open virtual appliance then I guess... yes

i mean the premade kali for vbox

Hello everyone. I have connected to THM in kali through openvpn but still it does not show in THM console that I'm connected

I can access 10.10.10.10 from my kali box

Hello, someone changed my email, and I have the first verification email since January 2021, i sent an email to tryhackme official email but no ansewer since 2 days

If it's not showing that you are connected on the access page or on the top of the website just ignore it, as long as you can access 10.10.10.10 you are successfully connected.

Support can take a few days to reply, small team and countless e-mails to go through, if you don't get a reply after day 7, it might be best to e-mail again.

Someone told me to ask for help in discord and I'll get an instant response

Only discord problems are dealt with in Discord.

Any THM account queries will be dealt with in the support, via e-mail.

Anyone know of any good comprehensive guides for PLCs? There's a job that seems interested in me, but I have pretty much no knowledge about it, and it would certainly help with the job position! If not, I guess I'll just look up relevant job description stuff on youtube haha.

You'll want to ask a senior mod or muiri about that. I can't do the verification myself

Doesn't sound like the right channel for that here

I'm not sure if this is the right channel for this. But does anyone know how to reset username and password on Kali Linux?

As in on your VM?

Yes

in virtualbox

You can reset a password with passwd

As for username...i wouldn't recommend mucking about with those and would just create a new user

Then deleting the old one

You mean resetting a password with a password? Did I get that correctly? what would be the steps for a new user and deleting the old one? I tried a few steps on google and nothing worked so far

Passwd the program

passwd

That one

For users it seems to depend on distro, I think kali uses useradd, usermod, and userdel or something to that effect

Yeh, I think adduser is also a thing might be deprecated tho

usermod can modify a username but it won't automatically follow through to everything else

Home dir, etc

I've...had issues in a room with that before

👀

I mean I can't login to get to the terminal though so I'm guessing it's going to have to been done from booting up

Do you have the root password or an ssh key based login?

umm I don't think so. I never used the root password. Only used the regular login

gbh v

Ouch

This is why password managers are nice

Did you install the kali from scratch or use a provided image?

provided image

installing kali on virtual is the only way it works for me

Try root:toor

or kali:kali

Or kali:kali

Seriously those are default accounts

Root one is a bit older

Yeh, I know, I never changed them

:p

To this day,
Friend logged in one time

noted

Yeh, but there's nothing on the vm other than some throwaway files

It's mainly for convenience in case my dual boot acts up or I need windows on the side

I'm setting up my next box to be passwordless

No key, no login!

also noted

Oh what other fresh hell are you cooking up 👀

No hell, only fun

Maybe more java

thanks for the help guys it worked 🤘🏼

Kali user?

yea

That one should have sudo

NOO HYDRA DONT YOU EVEN SAY THAT

YOU + JAVA MAKES PEOPLE CRY

Nah just you

I cannot use my token to verify my account and access voicechat. It says it is being used by someone else, even though a mod removed it from my old discord yesterday. Can a mod or anyone with authority please make it available for assignment to this discord?

DM me the token please

Hi Support. Just a quick question my subscrition lapsed as i missed to notification and had changed card since last bill. Went in and payed the subscription but when i log in its still asking me to go premium any ideas?

Email support 🙂

!email

perfect thanks

we can take i there

can you enter vulnerable machine via openvpn

You can get onto the THM network via the openVPN connection, and from there you can access the machines in a room once you spin them up, but it doesn't put you directly onto a machine

do i need to ssh or something?

that depends on the machine you're trying to access, possibly

can you help me with that

you're better off looking at a writeup for the room

So I was doing the Linux PrivEsc room, task 11, which required me to mount a folder in my tmp directory to a share on the target machine. All was good until the target machine shut down before I unmounted the drive. Now my entire tmp directory will not load at all. I think it is still trying to connect to the remote machine. I tried unmounting afterwards but that didn't do anything.

Anybody know anything I can do?

Oh that worked, that's embarrassing 😂

Thanks!

Not embarassing at all, i also had quite the trouble first time it happened to me.

Hey if anyone's free to help that'd be most appreciated, I'm trying to connect to a THM machine using my PC. I've downloaded OpenVPN on my VM, downloaded the config file from the website and tried this command sudo openvpn /path/to/file.ovpn in my terminal. My terminal responds with I'm trying to parse "/lethalz.ovpn" as an --option parameter but I don't see a leading '--' What am i doing wrong? The OS is Linux Mint Cinnamon if needed.

Could you show a screenshot pls ?

https://gyazo.com/250867a1922d361d40914516778690b6

^

You are putting / infront of your .ovpn file, so leave that away (assuming that file is in Desktop)

Ohh wow thanks appreciate the help

Gave +1 Rep to @crystal marlin

Hi

I think there may be some issue with the room "Intrusion Detection"?

I'm trying to be as noisy as possible (ssh as root several times, sudo with failed passwords, read forbidden files like /etc/shadow, etc. and I'm not getting any alert for Wazuh)

Rebooted the server and I still can't see any alert for the NIDS

Wazuh-agentd is running

It is the same for me. But i managed to get a couple of alerts with nmap, other than that, nothing.

What switches you used with nmap?

I got zero alerts

I used -A, -O, vulner scripts, ssh bruteforcing

I used -T4 --script=vuln and --script-args http.useragent

Yup, same, but 0 alerts from Wazuh

I just checked, and the Wazuh agent is connected to the server

I shouldn't be troubleshooting this lol

That's not what I'm supposed to be doing in this server lol

Just so you know, there is a dedicated channel for that room, maybe someone in there will be able to help you 🙂 #963861336704565248

Thank you! Didn't know that

Gave +1 Rep to @crystal marlin

guys i need some help

so im trying to generate logs

but im getting an error with a tap command for installation with homebrew

its to do with bottle unneeded

can anyone help...

i typed brew --config to see what im using

but i dont know what to do next...

Hello Everyone, my attack box is low on storage…Any clue as to how I can get a clean installed VM?

Backstory to my storage issue, im in the openvas room- installed docker but install of openvas fails and outputs a disk space error. I’ve ran the syntax df -h it does show disk space at 100%

Hi all am I even connected to the vm ? it didnt prompt me for the password ......

I do see a password prompt ?
Oh I guess that's just for sudo

Hi there I think I forgotten the steps what to do next will note it down in my Kali

So you good or still need help ?

Yes I still need help I can't do a SSH to my IP address 😔

Can you run curl 10.10.10.10/whoami and let me know what the reply you get is ?

Best to send a screenshot

But to let you know, I guess you are doing the room: https://tryhackme.com/room/furthernmap
So you are not supposed to ssh into that target machine.
This target machine is only there to be scanned by your attacking machine with nmap

alright give me a second

Your VPN connection seems all fine, so like I said above, you are not supposed to ssh into the target machine in that room

oh really ? I remember I did it to enter the attackbox from openvpn

Well you for sure have not ssh'd into the target machine in that room, maybe you have done it in another room

And the attackbox is different then the target machines

So ye, you can ssh into the attackbox, but not into the target machine of that room

yes I done it in other room and remember entering the password

I am doing the task no. 33 in Throwback (token impersonation) , but on following steps i dont get any tokens (Resetting machine didnot help). i m using DaviesJ account. In John hammond video he got more . so am i missing something . please help. here is below the output

====
meterpreter > getuid
Server username: CORPORATE\DaviesJ
meterpreter > list_tokens -u
[-] Warning: Not currently running as SYSTEM, not all tokens will be available
Call rev2self if primary process token is SYSTEM

Delegation Tokens Available

CORPORATE\DaviesJ

Impersonation Tokens Available

No tokens available

Hey, this channel is generally more for technical issues rather than room related issues. I'd suggest asking in #room-help generally, but in this case #743859653343182930 might be able to help you better 🙂

the immediate question might be have you tried elevating to system?

Hello, did anyone here try hosting a ctf pwn challenge on Azure ?

guys i have some files that has got encrypted by a ransomware and i cannot decrypt it

any help guys

ssh in post exploitation room not working, tried in browser, vpn, waiting a lot of time 😄 nothing

So what exactly you mean by not working? What's the error or reply you got?

can't login with those creds, I see many people have the same issue

Okay, but you haven't answered the question? What's the error or reply you get?
Probably best to verify and send a screenshot

!docs verify

permission denied, try again

Can I have the target machine IP and try myself ?

10.10.194.130

Could you show me a screenshot of the "Active machine information" box that's on the room page? As I think that IP is from your attackbox

Hello, i'm trying to upload a vagrant VM to a room. How can i convert it to a .ova or .vmdk ?

@nocturne blade If you don't see that box, you haven't started the target machine yet. You can start it in task 1 by pressing the green "Start machine" button

Hello, I´d like to report a problem with this room: https://tryhackme.com/room/retro . The performance of the IIS on this box makes it impossible to do it. Its so slow, that 90% of the gobuster requests time out even if you throttle it with delays up to 5 seconds.

Once you found your way into the "environment" its impossible to navigate in it since everytime you click a link within the panel the site runs into a timeout.

Do you still have the target machine running ?

Yep, after 30 minutes of trying and trying I was now able to load my desired site in the panel but its really really slow 😄

Well maybe it has something to do with your connection rather then the target machine, can I have the IP and access it on my own ?

Everything else loading fine on my main machine and inside my kali box I have a really good internet connection aswell so I dont think that should be the problem. I pass you the box IP as PM

You never know. Yes pls

It got a bit faster in the last 20 minutes now but gobuster is still really slow / timing out. Never had this problem before, yet.

@covert bronze i think i have the same problem i cant even ping my box but it shows me the box is up and running my vpn is fine and network connection is also fine

Running gobuster right now, found the directory after like 30 secs and not having any timeout so far

Is your attacking machine a VM?

Yes

And openvpn is running directly inside that VM?

Yap

If you check ip a s do you only see a tun0 interface or any extra like tun1, tun2 etc. ?

lo, eth0, tun0

Could you run sudo ip link set dev tun0 mtu 1200 and then try again if it changes anything regarding the timeouts?

In case it does not, just put it back to 1500

Is tun0 state showing as unknown

Only if you can't ping a machine, doesn't already mean there has to be something wrong, some machine simply don't reply to ICMP pings, especially windows machines

Ya gobuster is much much faster now

Do you mind explain please what this command did ? And thank you already 🙂

@crystal marlin its not on a single machine its on nearly three machines and no one has load a webpage also

It's just reducing the max packet size.
Maybe you are on wifi or you have another VPN running on your host machine, so not sure what the cause of the issue is exactly, but that settings solves issues with the VPN frequently

So what room are you on right now where that happens?

Flatline plotted

This one? https://tryhackme.com/room/flatline

Yes

actually befor approx one hour its working fine

Okay so ping is not working and the webpage is not loading ?

@crystal marlin yes

Thats actually the case yes. My main machine is running through a VPN aswell 😄

So from what I can see, there is no webserver running on that machine as well as this machine does not reply to ICMP pings

Have you been able to scan the target machine?

@crystal marlin no the scan are giving nme nothing even if i use -Pn

could anyone help me, im new in this world and when ever im trying to do the ping to the machine it does not work, I'm in the meow tier 0 do anyone knows ehy?

Well, I think that's in general not a good practice to run a VPN over another VPN, so you might want to consider turning of the VPN on your host machine, as most likely you wouldn't even need the reduces MTU then 😄

Could you show me a screenshot of the command you used and the reply you got from nmap ?

Thank you for the heads up 🙂 have a nice day

Gave +1 Rep to @crystal marlin

@crystal marlin its just cursor blinking

So that means it's still running ?

Sry, what is the room name you said ?

Meow

its in the tier 0

Please share the room link, can't find anything close to that

Im connected to the machine but whenever I try to do a ping I dont get any response

But in general, to ping a machine is not reliable to verify if it's up your if you can reach it, some machines simply don't reply to ICMP pings

its running for like 20 min i havent seen a machine do it for like 20 min and its just not -p- scan

https://app.hackthebox.com/starting-point

You are aware we are not hack the box here, right 😄 ?

but when im trying to do nmap I dont get any response either

You are in the TryHackMe discord 🙂

how sorry xD

Can I have the target machine IP and try myself?
Meanwhile, could you run curl 10.10.10.10/whoami and let me know what the reply is?

its my ip

the machine ip is http://10.10.123.146/

Hi, I have a big issue
I got hacked on a minecraft account, and i am searching how to find the hacker's ip adress to ban it from my server, the only info i have from him is his username

Okay, was working just fine. If you check ip a s do you only see a tun0 interface or any extra like tun1, tun2 etc ?

its tun0 only

Try sudo nmap -sS -vv -p- -T4 --min-rate 10000 -Pn 10.10.123.146 and let me know if that's working

This channel is for directly tryhackme related tech support like site and VPN issues.
If they connected to your server, check your logs. IP bans are likely to be bypassed, use a user whitelist.

Thank so much

Gave +1 Rep to @eager fulcrum

i have changed my vpn conf file and its working just fine thanks for the help

Gave +1 Rep to @crystal marlin

bloodhound error while using the information from sharphound, using the script version on the host, also using a new version from git and the executable

I joined hoping to see questions about Classrooms in this channel. If I were to subscribe to Classrooms, would I be able to get support in this channel or would my only option to get support be through email?

I noticed there aren't many "Classrooms" inquiries in this channel

Hey, holo seams to be down.

Hosts are not reacting anymore. Can anyone help?

Oh, it restarted.

For future reference, there's a channel for that
#holo-network :)

This channel, and indeed the whole discord, is community driven. You're not entitled to any support here at all, it's done out of community spirit.
Paying THM doesn't get you more or less support in the discord because it's not linked to being a paying member or not. No one is paid to provide help here.

The only support anyone gets paid for is via email

Thanks for the info

Owasp top 10 XSS room is not accessible. Room is getting timed out.

Ok

I meant to say the machine not the room ..it is getting timed out and I cant solve the stored xss challenge

I solve the reflected xss challenge and when i am trying to access the stored xss the machine gets timed out after some time

The IP is 10.10.217.77 . I can access the machine but I am not able to complete my challenge.It gets timed out when i submit a payload for the task

Ok will try another payload and update you

hi i can't seem to access via openvpn

not sure if anyone can help

seems like this is the prob

2022-04-14 19:21:40 Validating certificate extended key usage
2022-04-14 19:21:40 ++ Certificate has EKU (str) TLS Web Server Authentication, expects TLS Web Server Authentication
2022-04-14 19:21:40 VERIFY EKU OK
2022-04-14 19:21:40 VERIFY OK: depth=0, CN=server
2022-04-14 19:22:39 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
2022-04-14 19:22:39 TLS Error: TLS handshake failed

yea

https://github.com/tryhackme/openvpn-troubleshooting

Can also use this too.

ok tx it works...chose a server closer tohome too

nooob

!vpnscript

hi, i've completed the pre security path but this doesn't give me the certiicate, says "Fetching certificate, please wait."

Disable adblocker if you have try reloading the page, different browser...

hi folks, can any one help me with this? Terminal keeps tabbing along everytime i hit eneter on a command. I'm really struggling to articulate to google what the problem actually is...

wsinstance:!!:18573::::::
sssd:!!:18573::::::
sshd:!!:18573::::::
chrony:!!:18573::::::
rngd:!!:18573::::::

nothing i've tried with chromium but nothing (i don't have adblocker)

mysql:!!:18573::::::
sh-4.4# whoami
root
sh-4.4#

odd, maybe others have encountered this also and will offer a better answer...

I've never seen it before. V weird. it started after I stabilised a nc shell.

I was talking with somebody else i don't know what the problem is with your terminal unfortunately 😄

haha no worries

hey' how can i terminate all the machines on THM? incase i forgot to

#site-support message

Thanks 🙂

hey guys just sometime ago tryhackme renewed my subscription by automatically getting money from me. i didnt want this to happen and i want to cancel subscription. if i do that will i get the refund of the money tryhackme got from me?

The cancel button will only stop the sub from automatically renewing at the next due date.
So no, it will not refund the money.
But you can reach out to the support asking for it.

!email

ok thank you

hello , I want to ask How can i subscribe with the student plan?

Hello, i'm trying to convert a vagrant box to an ova, i found commands from ova to vagrant box but not what i need, does anyone have an idea ?

!docs student

I'm having trouble with the GoPhish lab machine that is in the Phishing Room which is in the Initial Access Module. I start the machine, login using the provided credentials and get to the Dashboard. However, nothing loads, I only get a spinning icon. I go to Sending Profiles and I still have the spinning icon and it won't let me add a new profile.
I've terminated and restarted the machine a couple of times and allowed the machine plenty of time to load.
Is this where I report this problem?

Hi, I'm having problem with the GameZone room. It seems connection keeps on dropping. I've ran thm-troubleshoot script and that is all green lights. I'm ssh'ed onto the machine but every time I run commands it stops and crashes after a few lines. This remains the same even after I stop the machine and restart a new one.. Any idea what's wrong?

facing similar issue with owasp top 10 machines.

Sorry you're having trouble, but glad I'm not the only one 🙂 Hopefully things will clear up soon.

Hi, is there something going on with the system at the moment? I gave up on GameZone room and started working on Skynet but trying to access it at :80/squirrelmail/ , it just hangs forever. Could someone from support team please help me?

Can I have the IP and the full URL of the target machines webpage to try myself ?

Great, thanks! IP is 10.10.31.12. URL would be IP/squirrelmail/

Gave +1 Rep to @crystal marlin

Can you connect?

yes I can connect to smb shares and also run nmap port scan on it, but it takes really long time to load the main page on browser (and doesn't even appear properly) and http://IP/squirrelmail/ just hangs forever.

I can visit the page using your ip, and it loaded up right away.

Seems to work fine, are you on your own machine or the attackbox ?

own machine. Shall I try with the Attackbox?

No, not yet

thanks for checking, how bizarre

Gave +1 Rep to @weary spindle

Is your attacking machine a VM ?

yes

Is openvpn running directly inside that VM or on your host machine ?

inside the VM

Do you have any personal vpn running on your host machine ?

no

Then check ip a s if you only see a tun0 interface or any extra like tun1, tun2 etc.

just tun0

Then run sudo ip link set dev tun0 mtu 1200 on your attacking machine, then try again to open the webpage

Yes! that did it!! Thanks a million!! Could you kindly explain what was wrong, so I can fix it if something similar happens again?

I can not tell you what exactly is wrong, maybe you are on wifi, or your internet connection isn't too good.
Something along those lines

ok, so reducing it (I presume it was reduced from default value) helped with the struggling connection? That's good to know. Thanks again for troubleshooting!

Gave +1 Rep to @crystal marlin

Default value is 1500, we put it to 1200

Hello, I have reset my progress, to start over, But the In Browser Linux machines has not set to defaults, need help.

i have multiple tun interface in my vm

Then run sudo killall openvpn then connect again

Wait a minute and check ip a s again to make sure there is only a tun0 interface

ok

now I am only getting tun8

no tun0

is here allowed to require a hack of something ?

because i have a problem with instagram account

they say it was compromised but i was honestly just unfollowing accounts

i dont have access to mail or phone number

if it was all strawberries and lollipops i would just take a pic of my face and send it to em 😄 😄 but i cant

or idk if they do accept it

All you can do is follow up with their support. We don't do illegal stuff here.

And that'd definitely be illegal.

in other words. No. No hacks for hire here. This is an infosec learning platform support community.

yes

alright

I am having trouble SSH'ing into the attack bot. It wont accept the password "tryhackme"

Yes

Maybe I worded it wrong Im sorry

Correct

ssh tryhackme@"ip address"

It wont accept the password "tryhackme"

Take away the "

it's just

tryhackme

Thank you. I am not using the quotations when I enter it though. I simply did it to show what I was putting in

Ok, can I have the machine ip?

sure

10.10.180.143

I can't log in with it either, haha

I tried booting up my own room, and logged in right away.

I suggest you terminate and re-deploy your machine.

Okay thanks

hey guys I am new here, could someone help me? I am connected to openVPN and everything but when I try to start the activity machine all that ever comes up is the regular machine and not the activity one

I have downloaded a new openvpn profile and tried connecting other ways im at a complete halt

By activity machine, do you mean the attack box or the room VM?

the room

You're pressing the big green button for that not the blue one?

yeah the big green one

itll countdown like normal but nothing will launch

Yeh, try refreshing and starting again

openvpn should be turned on yeah?

Yeh, if you want to interact with the machine

okay I refreshed, ill wait 5 mins like it says and see

You should see an ip in the top of the room

yeah I see

just under 5 mins and it hasn't launched

Wait,

Are you expecting a split view, graphical machine to pop up like the attackbox?

yes

Because most rooms don't have that on the room VM

What room is it that you're doing?

Tech_Supp0rt: 1

Yeh, that doesn't have a graphical VM, just attack the ip and try to get in the machine remotely

so copy the machine IP into windows remote desktop? I tried that and it cant connect

sorry if im misunderstanding

The "tech_support" room is a challenge room, I think you're just starting so better to do some rooms first to get the hang of it

You can follow the paths or if you're a free user
!docs free-path

okay thanks mane

👍

!docs free-path

I think my computer suspended while it was updating and now I cant update

😦

@grand crow my power went out earlier, while i was moving around all my files and changing perms ... thought I borked the boot record, took a round about way and it still started

https://giphy.com/gifs/phew-alan-ritchson-i-can-do-that-EDt1m8p5hqXG8

its giving an error like it can find the root device when it runs initramfs updates. haven't found a very good answer

🤔

I could help debug, but i'm pretty tired ... brain is mush

😛

maybe at some point in the future. would be pretty good to update again lol

one thing I noticed in the /etc/fstab thing is that there's stuff point to 0,0

no uuids or anything

There is one more problem , as soon as I open Firefox the terminal which I opened and execute commands gets closed automatically , can all windows remain open, is it like we can only work on one window, let me know how this can be fixed

not sure i follow, what exactly is happening?

there need to have solution why we can't open mutiple windows as this do not happens when we set up our personal labs on our PCs

if people are paying then the environment should be user friendly..

Why i can't take premium subscription with payoneer debit Card.

hey uh

i connected my chromebook to my monitor (hdmi connection) and the display works fine

but its blurry and doesn’t give me the option to log in

hi why is it that i can't rdp to 10.10.221.113 even after reverting

Hi I want to access windown in https://tryhackme.com/room/winprivesc but I can not find infomation to access (like user: and passwd: )

How can I access in this case?

I suggest you ask in #infosec-general since this channel is for TryHackMe related tech support

oh sorry i thought it was this channel for support, sorry @crystal marlin

Yes, tryhackme related support 🙂

You can find the credentials in task 5

@vapid idol iptables -P INPUT ACCEPT iptables -P OUTPUT ACCEPT iptables -P FORWARD ACCEPT iptables -F

This is how you reset iptables in linux

I think azure doesn't use regular iptables, does it ?

No idea , haven't used azure

But you can list out the rules to confirm it

I used their portal interface and added rules to allow ftp so i solved the problem, But thank you i'll check it for learning

Hello
Recently I've found that the country on my profile is not my real country, of course this affect the rank
I tried to change to it but what ever I do it does not accept the change, any help?

Hello, I would like to purchase a Premium, is there a discount code for this?

thanks😆

Thank u

Gave +1 Rep to @gray loom

Hi I didnt make my THM account using my uni student email id

is there any way I could get the student discount on this account or do I have to make a new one for it using my university email id?

Probably best to reach out to support asking that

!email

Hello, has anyone used John the ripper password cracker before? i wanna create a command that cracks 6 characters long passwords with uppercase, lowercase, symbols and numbers in the password, i have this so far but how do i make those checks? Do i need to change the incremental? Any help appreciated

john --incremental=ASCII --format=md5crypt unshadowed.txt

I would check the john the ripper incremental min and max

I think my vpn decided it wanted to write.

that's pretty common for me, sadly, it means your internet connection died or reconnected

Yeah, my internet is having issues this weekend, I have to wait until Tuesday before an engineer can come back out.

engineers for the win

The last one came out and told me it was because there is too many routers on the channel and tried changing it, his exact words were "Whenever I change this, I don't have to come back". So he was more than sure this was it didn't listen to me when I told him I already tried changing channels.

yeh but I'll still take the engineer's side

also because you're likely dumb

Not too sure of that are you?

my vpn connection is creating multiple tun interface everytime i restart it

can someone suggest a solution for this

my location has been updated for my profile. can that affect my openvpn settings?

uuum don't recall the command but you should probably remove all the old tun devices.... and to kill the vpn use ctrl + c and then wait for a short while so it can exit gracefully

i have deleted the interfaces and killed the vpn as well but the issue still persist

my internet connection is perfect so no issue regarding it

hmmm

!vpnscript

https://tryhackme.com/room/persistence

Hello , this machine doesn't boot up.

Can you help?

What you mean with "doesn't boot up" ?

I can not connect to the VM via RDP.When it does it crashes

I tried both from a VM of mine and from the "Attackbox"

Is the target machine still up ? And if so, can I have the target machine IP and try myself ?

Nope , I shut it down

thank you @astral cape for helping fix my kali install

Gave +1 Rep to @astral cape

Happy to help! Glad you were able to get it working without a full reinstall 😜

Hi in https://tryhackme.com/room/winprivesc Part Dll hijacking. I can run hijack.dll. Because dllscv not run in the system and I can not install process monitor to find service load C:\temp. What can I do?

I believe the yearly actively not showing correctly might be a known bug/issue. It shows 0 activity on days I've completed questions. My streak is still in tact and I have screenshots that I completed questions within the 24 hour period. Just wondering if this was ever resolved.

Hello guys! I had a strike of 65, going for 90 to get the badge and then continue for the next one. I traveled from Italy to USA. Here the current time is 23.51 just right now. I lost all of my streaks. I really hope to get them back because honestly I'm on time for my daily meeting with the platform! Please let me know that is possible!

In case is needed I can provide more details on dm etc, actually proving that I'm really in US and so that I'm on time

I really don't want to loose 65 streaks just like that

You can send an email to support and ask them nicely to fix your streak

!email

Is there a VPN issue? Can't seem to connect to THMs VPN. I already regenerated the .ovpn file. I already tried with HTBs VPN and it works so its not on my end probably.

Changing the VPN servers (IN to AU) worked, but having extra delay is kinda meh.

Is there a way I can make my certificates show my real name instead of my nickname on THM?

You can go to https://tryhackme.com/profile and change your full name there
But if a certificate is already generated , then you can't change the name on it

Thank you

Gave +1 Rep to @celest wadi

Linux Privesc room.
Privilege escalation: Path

Text days "You can launch the target machine and access it directly from your browser"

Browser window doesn't start.

I've managed to SSH in now but even that wasn't working

I can ssh in and it works.

All the other machines start in the browser

Just started NFS machine and that's back in the browser

Maybe this is more of a bug than tech support.

It should start within the browser if it's mentioned, just tried it and it doesn't.
I reported it, so they might fix that soon.
Regarding ssh, sometimes you need to be patient until the target machine is fully booted

I'm still logged in the ssh, I forgot about it after I tried it btw.

Yeah I guessed it hadn't started up fully. Got it done in the end.

Thought it was weird that all the others had opened in The browser

Hi, I'm not sure where this should be posted, but it's about OWASP top 10 related rooms

The Top 10 was updated recently, is there a plan to update THM's OWASP Top 10 room?

Most of it is the same, and the Top 10 room was for a Top 10 event.

hi, i got a issue with nmap room in complete beginner path task14 question 2. I don't have hint and when i try the xmas nmap it's tell me to use -Pn

yes

but it was a wrong anwser

sudo nmap -Pn -p 1-999 10.10.48.169

i know but before i tape

sudo nmap -sX -p 0-999 10.10.48.169

don't work i already try it

ok it's in progress but its really slow

thank you for your help i think is the right way to do it

no timing changes???

because -T4 or -T5 could speed it up a lot

it doesn't change anything

but i appriciate your help

well changing the timing actually changes some things but yeah you will most likely get the same results at a lower speed

sorry you xwere right

it 150secondes more speed

Hey all, I'm doing Windows Fundamentals 1 within the Pre Security pathway but can't seem to remote connect to my machine. I get the following error:

Connection Error: The remote desktop server has closed the connection because it conflicts with another connection. Please try again later.

do you have a button next to the start attackbox button that says show split view???

because that error makes it sound like there is already a open RDP session going

I do but the only machine that's running is the windows one

hmmmmm????

WINFUN1.1, the required machine for the room

When I dismiss the error sometimes I'll get this error: Your Remote Desktop Services Session has ended.

Another user connected to the remote computer, so your connection was lost. Try connecting again, or contact your network administrator or technical support group.

could you send a screenshot??? you will need to verify on discord for that which you can do following the instructions in this link:

!docs verify

what are you using to try and connect to the rdp session???

Remote Desktop Connection

hmmmmmmmmmmmmmmmmmm

are you connected to the vpn when trying to connect???

Isn't the machine already connected? Like the hackboxes?

the attackbox is yes

wait a minute??? are you trying to connect to the windows machine you have in split screen to the connection info you got in the task????

because if you are you are trying to connect to the same machine that is your target from the target itself

hence it is not going to work

I'm not sure? In past exercises (Linux) we used the hackbox to connect to the ip provided

I was figuring it'd be the same; we make our box, Windows in this case, connect to the IP and we're good to go

Is there a program I could use on the hackbox or Kali to remote connect then?

If you're using Remote Desktop Connection I assume you're using windows, so you'd need the openvpn GUI for that

in this case the attacking vm is the windows machine at the same time as it is the target... a lot of the beginner windows machines are in that way

unless they are showing you some remote exploits like in the blue room

The windows machine hosted off the website, so wouldn't need the openVPN gui, right?

Yes, otherwise you won't be able to connect to it.

ah, so for this exercise it's simply not required to log in?

exactly

like the first linux fundametals room

The VPN is a "tunnel" to the THM machines you spin them up.

yeah but they are talking about the machine in split view that is a windows machine because it is a windows fundamentals room which starts its own windows vm instance that is used as both target and attack vm in this instance

Isn't the subscription the work around for this? It's either get 1hr/d for free (website provides VPN + box) or setup the VPN myself

i.e no need for open vpn as all of the stuff is in their browser already

^

and yes subscribing gives you unlimited attackbox access so that you can start and stop it and use it however much you want during the day

of course there are some few exceptions but listing them here might not be useful

You can't log in RDP & the split screen at once.

It's one or the other.

exactly scrubz

so they are trying to use the split screen view to login into the rdp session

or they were

Or they are booting the machine up, and logging in to RDP

When the machine starts properly it logs in, kicking them off the RDP

shadow quite cleary understood that they were doing it from the browser tab after asking a few times

I wasn't getting at you not knowing it.

You need to have the VPN on whatever you're accessing from, wither it's Windows, VM or iOs.

anyways seems like nate figured it out and can keep going

and yeah as another option to connect to the target virtual machines you can use the openvpn config and have your own attack vm in virtualbox

most would recommend a kali linux vm for that

Depends what you're doing.

The windows machines I prefer to use the host windows RDP.

@naive dust Hi Nate

Hey Everyone, I was trying to access a website on my AttackBox, but I got an error 405 saying that this method is not allowed. Is there some way I can remove that issue?

Are you a free user? If so, you do not have an internet connection on your attackbox.

That means you are using the wrong IP address most likely. You cannot just enter the IP of your attackbox in the browser.

Hi, i am doing Holo live, i have to the admin password (from supersecretdir), but its not working to admin portal... can you please help to fix it...

#holo-network :)

Thanks...

hey, can anyone help me with this stop/djvu ransomware? My all files have been infected by some ransomware and i cannot access any of my file, its asking for 490$ to have my files back, Could anyone help me?

I’m not a subscriber yet, but I’m curious: what comes after the cyber def path?

I supposed there would be a following path with “hard” level or something since the cyberdef has interm. Level

can i use raspberi pi os to do some couses? its linux based

ok thx

i need to pay for courses right?

ok and i find them using site right?

thx

Hmmm, nice to know that! Thanks

Hello folks i wana learn ldap injection should i frist invest on learning ldap?

I need some help about Evil-WinRM . I'm in the machine as Admin and I'm trying to download a .git file to my local machine. I type "download filename.git", it says that is downloaded but actually, it's not. I tried to download it to /tmp (to avoid permissions issues) but it didn't download it :(. What am I doing wrong ?

Ok, I should have specified the entire path, don't know why :/

Hello, for some reason I'm not able to interact/ping the box in Vulnversity? I am connected to VPN, and the box has been up for about 10 minutes. Any suggestions?

^ Resolved, switched VPN servers and now no issues

Hello, I am doing the "Empire" room and trying to use the eternalblue vuln to get a shell on the target machine. It works with the in-browser attackbox ... but it don't work with my own machine through the VPN. It cannot get a shell, but it sees the vuln. Any suggestions here?

I get this errmsg through the VPN that I don't get in the attackbox:

Looks like VPN issue 😦 cant regenerate Config file. when trying to download config file it's returns 404

Logged in... from THM

Yes I understand, but it works every time on the in-browser attackbox.

No no i mean from THM website

Yep

yes I did that ... and I am using ovpn on my own linux box (also in a vm)

When i click on green button it's just brings me to 404

Suddenly started to work again 😄

I'm trying to download the config file for accessing Wreath and I keep getting a 404. I am able to download the Holo config file no problem.

Also, it's "separate" in "You need to use a seperate OpenVPN configuration file for networks."

Try and leave the room for 15 min(s).

helo

How do I install ciphey :3

Do you have pip?

helo guys, how do i know if may acc is ban in this server

yes, I already run python3 -m pip install ciphey and clone the github ciphey

You would have a message.

I didn't have to clone anything.

Install pip, then install ciphey and everything installed.

That did the trick
Thanks!

I think my main discord acc is banned in this server and Idk why

@eager fulcrum can help you.

Or Juun.

What's the user name for the original account?

NINJA.#5741

(Sorry, I pinged before I seen Juun was typing)

i already run python -m pip install ciphey

and it says ciphey command not found

add --upgrade

This account was banned for spamming nitro scam links. If you have resecured your account 2FA and changed the password, you may email bans@tryhackme.com to appeal

thx, it worked

Just fwiw, evading a server ban is a break of Discord ToS and can get your account closed

oh thankyou, yep I think months ago my acc just spam some pishing links which I did not do.

yeh bro, I think the last time my acc just infected of discord bot spam smthing like it spam on all servers I am in idk how did that happen

.

if my acc got banned here? is my tryhackme acc banned too? @eager fulcrum

No

does ciphey always takes this long to decode? its been 15mins

It depends.

I've found I've been waiting longer than 3 min(s) then it won't do it.

I thought ciphey is better than cyberchef

In many ways it is.

Anyone got Vpn issue? I can browse but I'm not able to ping from my terminal

Ping what?

Not all machines reply to ICMP pings

Not boxes. When I tried to run VPN I'm not getting connection so I tried a 8.8.8.8 ping. No response.

I can browse with no issues

In browser

We are talking about the TryHackMe VPN, right ?

Yessir

So what has 8.8.8.8 to do with the VPN? I'm not fully understanding

I'm just trying to check if I'm getting network via terminal. Cuz when I ran the script for checking Vpn issues (script from thm troubleshooting page) it said no internet connection

Okay? Well I'm still not sure if I fully grasp why you ping an IP that has nothing to do with the thm vpn and therefore won't tell you anything about if you are being connected to the thm network.
But, how are you connecting to the thm vpn ?
Via the command line or via the GUI ?

Command line

If you do curl 10.10.10.10/whoami what's the reply you get ?

hello anyone using virtual machine on mac m1?

Nothing basically

Vpn is stuck here for me

Check out this article: https://blogs.vmware.com/teamfusion/2021/09/fusion-for-m1-public-tech-preview-now-available.html 🙂

https://github.com/tryhackme/openvpn-troubleshooting

Give that a bash if you're still stuck 👍

Actually tried this a while back. It said no internet access

But I have internet

!vpnscript

You have to wait longer then check the openvpn output again, as there is no error nor success message yet.

But I highly assume it will lead to a "no response" error. So check these things: #site-support message

I found the issue. It's something wrong with VPN server.

Both EU VIP wasn't working but regular worked for me

Is vip using different port from regular?

I don't think so

Hi, not really sure if this is the correct place, but I'm a student and interested in buying premium. The website says that it is 6 dollar a month and that I get 2 months free. When I proceed, it then gives me a student yearly summarize and their it talks about 72 dollar a year. 6*12=72, so my question then is, do I pay for a full year and then get 2 months on top of that? Or is their some kind of mistake? Sorry, I'm just a bit confused since the summarize doesn't talk about the 2 free months at all.

Ohh in that way, I was thinking that it meant a extra 2 months free on top of it

Understood, thanks 🙂

Gave +1 Rep to @gray loom

#site-support Is this room still working as expected: https://tryhackme.com/room/kuberneteschalltdi2020 ?
I am having trouble with it when providing the IP address:

The connection to the server x.x.x.x:6443 was refused - did you specify the right host or port?
I can ping it, and did a "quick and dirty" nmap scan but it only shows port 22 open...
I am wondering if the room got scrubbed and cluster is not setup in the machines anymore?

This is a known issue with the room

Got it, thanks.

Gave +1 Rep to @eager fulcrum

#site-support https://tryhackme.com/room/linuxfundamentalspart3 is this room working ok?
cannot access the file for the wget flag.txt but it works if I look for it locally just using ls -a
when I run the http.server it configures to 0.0.0.0

Yes. #room-hints for hints on how to do it correctly

I'm using the period

Yeah, #room-hints is the place to ask

Hi, why did i lose my streak?

hello

any body here i need help can't connect via openvpn

server throwing me a "uh-oh, this page has been lost in the matrix" when i try downloading cred

been having a lot of challenges connecting either vpn server changing or initiating a connection but but directed to a rabbit hole

please i need help

thanks for your support it was resourceful

Gave +1 Rep to @gray loom

hi, i'm having trouble with the Gogohish lab which is in Phishing room. started machine, login using the provided credentials and open dashboard, but nothing loads, only get a spinning icon. if i go to sending profiles still have the spinning icon and it won't let me add a new profile.
terminated and restarted a couple of times and wait plenty of time to load.

ok, so i use Attack box for it and not my host and it's working now

hi, I worked on several boxes this week and frequently i loose the connection to the machines. I can still use internet normally but can't ping your ip. I redownloaded the openvpn file, but the problem stays. Would you know from where it comes ? Thx

When you can't ping the machines, does the VPN script give an error?

if you have a picture of this, you can verify so you send images on this server

!docs verify

!docs verify

Thanks for repeating what I said Zeesh.

Thanks for repeating what I said Scrub.

I verified myself thx, and I just found out the issue ! When i close my kali virtual machine, it doesn't stop my sudo openvpn process. When i reopen my kali, the 2d openvpn connection with tryhackme doesnt' work properly... I think it is that, if the issue persists I'll come back with screenshots. Thx again still

Gave +1 Rep to @weary spindle

So you'll have x amount of tun# ?

Easiest way is probably CTRL and C the script.

That's it, and i'll do that ^^

Hey everyone, I have a little problem using OpenVPN. Here's the situation, I have my home machine running Windows 10 and I use Kali Linux on Virtual Box. I can connect the VM to the TryHackme network but the problem is I have an IP like this : 10.9.87.65 whereas all the machines in my rooms have IP's on a different network i.e 10.10.76.4. I tried different networks such as Europe 1, Europe 2 even Europe VIP but nothing seems to match the THM machines IP ranges... Did I miss something ?

That's supposed to happen. The vulnerable machines are on 10.10 but VPNs are on 10.9, etc. You connect to the vulnerable machines via the VPN servers (:

Okay thx. And what am I supposed to do with network mapping ?

None. OpenVPN handles the whole process for you 👍

Okay it may seems dumb but I can't ping any of the machines so I can't nmap

can you visit http://10.10.10.10/ from your Kali Linux?

No it keeps loading

Okay, first make sure you're not running the VPN twice (I.e. have done sudo openvpn yourvpn.vpn in two terminals (you should only one tun interface (check using ip addr)

Then sudo ip link set dev tun0 mtu 1200

That command configures how packets are sent OpenVPN and usually fixes issues like that

Okay I did that and checked I'm only running OpenVPN once

I'll try to connect to 10.10.10.10 again

Are you seeing Initialize sequence completed?

Doesn't work but if it helps you to understand my situation I have 7 connections to virtual networks : from tun0 to tun6. Seems to me it's supposed to happen right ?

Yes I do

It's not supposed to happen sorry

Dont mind but try using curl http://10.10.10.10/whoami from your terminal

You will see your IP if your VPN works correctly

Nothing happens

Nooo you should only have one (tun0). No idea what your environment is doing

That happened to me one night.

I ran the THM script from Github to fix this

It's processing

^ that's what I did.

What did you do exactly ?

Just ran the script, rebooted the VM and it worked.

Someone had an error earlier too, they weren't closing the script, they were shutting the VM's down, but for some reason the sudo opevpn remained on.

Okay the script fixed the problem for now

Interesting

I've never seen that before

I guess just make sure you Ctrl + C the terminal running the vpn before you shutdown, Le Coyote(:

But I still don't understand how I'm supposed to ping the THM machines from the rooms without being on the same IP range

Yes I think I did'nt do that and it caused the issue

Yes I thought the were separate networks

Simple way to look at it is lock and key.

You can't get in the door (THM machine) without the key (vpn script)

Okay for example RN my tun0 IP is 10.8.74.169 and the machine I'm supposed to scan is 10.10.109.10

It RN it works I'm pinging it !

Yes.

The problem went from so many tun interfaces I think thank you guys for your help

I'm experiencing a weird error with my VB VM. If I try to open my VM I get this error. Could not open the medium 'D:\VirtualBox\KALI LINUX\Snapshots/{979202ed-85f5-4d23-ad99-49c18cabf554}.vdi'. VD: error VERR_FILE_NOT_FOUND opening image file 'D:\VirtualBox\KALI LINUX\Snapshots/{979202ed-85f5-4d23-ad99-49c18cabf554}.vdi' (VERR_FILE_NOT_FOUND).
Result code: E_FAIL (0x80004005)

And now Windows Defender is quarantining my .vdi file saying it detected this: Exploit:HTML/Shellcode.G!MSR

Any ideas on why this is happening and/or how this .vdi became infected?

hey!!! im new to all this but i was just wondering if i should enter to tryhackme in a virtual maschine that is running on kali linux?

my english i also not the best.... sorry

Most people use their own machine/virtual machine to access thm rooms, so yes you could. But it's not a requirement, so basically up to you.

thx

Gave +1 Rep to @crystal marlin

can someone help me I cant ssh to the machine on the room Linux PrivEsc from my own kali only from the thm box

I get this message :"no matching host key type found. Their offer: ssh-rsa,ssh-dss"

Try adding -oHostKeyAlgorithms=+ssh-rsa to your ssh command

its worked

But why is this happening?

deprecation of some key algorithms due to security problems

don't have the link to the article that explains it but yeah

thank you

no problem

i have 3 extra tun interfaces

and the connection to the boxes is really shitty this is frustrating

my intenet connection is fine but with the boxes it's aweful

i'll try that

will it solve the issue with the machines tho ?

ok thanks

I’m using the Kali box trying to run Hascat. It says i don’t have OpenCL or Cuda runtime installed? Any prep i need to do or switch i should use

Ty

I’ll give it a try

whats the reasoning for the 4 person max cap on teams?

hi guys! is there anybody who I could contact regarding streak? I went now for vacation and my streak got reseted despite the dashboard does not show any day missing. Is there is some way to find why this inconsistency happened?

contact support at support@tryhackme.com asking for a streak reset with what it was before it got reset and the reason you missed it which you gave above

thank you shadow. I found only help emial. Going to mail them now.

Gave +1 Rep to @plush bay

no problem

be aware of the time zone differences - days might not be following the time where you live. That has made me loose a streak before.

oh so shadow might be lucky because they live close to utc + 0

hello, can I check if this is correct channel to ask for sale support too?

I wanted to purchase "Throwback" room for a friend as gifts, is that possible?

Hi all, I have just joined it today. Where is a good support channel for IP connectivity issue on Throwback? I have a VPN connection (checked with the troubleshooting script) and I confirm that I can ping to 10.10.10.10, but I cannot connect to any throwback clients. Thank you for your suggestion.

Are you using the "usual" vpn config or have you downloaded the specific one that's needed for throwback ?

Solved. I had to get a special one from https://tryhackme.com/access. Thanks.

Can anyone help me set up weechat? I'm just looking into it for fun and I'm kind of stuck trying to connect to the kali linux server / channel.

How is that related to tryhackme ?

Can anyone tell me why the business accounts are so much more expensive (±4 times) than the private accounts? And is that the right channel to ask about it? 🙂

There is extra value in the business plans, although can be questionable if its worth the 4x price tag but thats upto a business 🙂

So in addition to the standard HTB, a business would get the below
Create custom learning/career paths
Dedicated customer success manager
Onboarding and ongoing support
Management dashboard reports and analytics
Custom network environments
Create your own custom labs
Transferable Licenses

Same goes for education, there is extra value add 🙂

https://tryhackme.com/business (:

I'm sure the business and educational plans would only be beneficial if you have employees you wish to do it with, easier to manager, and educational if you're a teacher and you wish your students to this, but that link Ben posted will explain better than I can.

yeh one of the key things is transferrable access

I had the same questions when signing up for 1Password business, but as a business it was well worth it with the "value add" compared to personal accounts

a

c

d

👀

streak breaker

Hello hello,
I've completed a path and wanted to get my certificate, however it is stuck on Fetching certificate, please wait. since yesterday.
Should I just leave it wait?

you likely have an ad blocker running, that's blocking pop-ups

Ah, yes I have pihole,I'll try and disable it

Yup it works, thanks

that tip is from personal experience

Hey, my account isnt reloading a new IP for me and the original one it gave isnt working for the courses

no the attack box when I first started it I had an IP so I could do enumeration on the IP they gave to answer the course questions now that IP isnt responding and I cant complete any of the course work

I have

and the IP from yesterday isnt responding

yeah I restarted it today and it isnt giving me a new IP to use...

thats what I'm getting at

i cant find the "other" section I'm new to discord and I'm using the app not the website

OOH kay got it

Hi!

Alright where do I send the screenshots to?

I want to know how can I change my dns server in my wifi router I have watches many youtube videos. In some videos it showed by going in Network->WAN and other videos showed DHCP->DHCP client settings

i am confused Which one should I change?

Got it.

hi, on subscribing for tryhackme, my paypal account is not working while making payment

thank you

Pleb questions incoming… I am looking to move from AttackBox to OpenVPN and have successfully connected OpenVPN on my Mac (THM tutorial). I have a Virtual Box and Kali previously configured on my comp as well… and know that I am supposed to switch to <Use Kali Linux>; am I missing a step? What’s the best way to config for the non-AttackBox option?

basicly start the kali vm... go to the tryhackme site on the kali vm.... download the ovpn file from the access page.... install openvpn on the kali box if it is not already installed... run sudo openvpn blah.ovpn to start using the vpn connection and then close it with ctrl + c when done

@weak wind ⬆️

!vpn

if you wanna learn how to connect with the vpn

@plush bay - I connected via my mac - but then is best practices to use Kali then OpenVPN?

because of how virtual box works the vpn is better to connect to from inside the vm instead of the host os

Also, should I get the latest Kali, or are priv escalations limited if using an older version kali?

okie - it is very well explained there 🙂

why are the other two options available on the tutorial if it mitigates the best practices?

thank you @plush bay

Gave +1 Rep to @plush bay

thank you @gray loom

well

the attackbox is a safe use thingy too but you need to be subscribed to use it a lot

yep

@plush bay - one day I was a lurker, and someone mentioned (paraphrasing) - if you don't use OpenVPN, then you can't call yourself anything but a noob, so I put it on my "to do - along my noob path" list

huh.... well shadow feels like there is no degredation in skill for using the attackbox but knowing how to install tools and use kali will help you on your learning journey

very true, will consider it practice!

I'll be around in voice soon, probably hang out for a while. Welcome to come say hi, and can help troubleshoot or answer more questions anytime 😁

Howdy gang, I'm having VPN connection issues for Throwback.

https://tryhackme.com/access?type=networks page shows me as connected, OpenVPN output shows me as connected. But Throwback page does not show me as connected. Troubleshooting script says [-] Something went wrong -- please ask for further assistance in the TryHackMe Discord server, subreddit, or forum