#site-support

I'm trying to complete the pre security section specifically the practical task 5 for the DNS in detail. Im unable to complete the exercise as im getting the following?

up

Stick to what the question wants you to query

Anyone know why I can't connect to the active machine through attack box or the Kali Linux VM? I've tried several machines and rooms and everytime I put the IP in on Firefox it says unable to connect because it can't establish a connection. I've pinged the IP through attack box and it shows that it is up and running.

Connected to the VPN?

Doesn't attack box automatically do all the stuff

I just Kali Linux VM

Free users don't have internet on their attack boxes.

I may have solved my own question I nmapped and found the port the web server is running on and then added that port to the end of the IP and then it loaded on attackbox

I'm not a free user

Ah, there you go.

Very weird tho because I never had to do that before

Some rooms have a web page on a different port.

Yeah maybe it's that then I'll try some old rooms I did later and see if I have the same issue

Which room are you doing?

I was doing Vulnversity

What room are you doing ?

wdym?

that's not a thm room and we can't really help with those here at least, try #infosec-general :)

Anything related to that? Still struggling

What exactly you mean by "nothing" ?
And in what room for example you are having that issue?

https://i.imgur.com/L8W8Ey7.png

same issue in multiple rooms including network miner, mr phisher, intro to malware analysis etc.

Have you tried a different browser already?

And/or doing a ctrl + F5 ?

tried this

not diff browser

used to work on this so haven't tried another one

lemme try quick

Then maybe try a different one, so to reduce the possible reasons for that

Just tried that target machine and it loads fine for me

how did you load someone else's machine?

doesn't seem to be working in chrome too

Oh no, I didn't meant to load yours, just the target machine in that room in general

ah okay

.

You have any errors in your console?
Beside that, do you have any VPN, anti virus etc. that could possibly interfere ?

Pi-hole

nothing like vpn or av

not sure about error in console

pi-hole?

Yes, a Pi-hole?
But I guess you don't have one if you ask like that ^^

😆

I suggest you check the browser console for any errors once the target machine should have been fully loaded, maybe that could lead you towards the issue

🤔

sure

couldn't find the issue but the machine loaded in my vm's browser

finally

not working on host os tho

Mh, well you could post a screenshot of your browser console with any possible errors.
But at least you narrowed it down to an issue with your host os

oops i forgot about posting the errors here

will try again on host later and update that here

Alright

Hello, I have a problem with my TryHackMe account. Is someone available to help me?

https://dontasktoask.com

The email I have used for my TryHackMe account no longer exists and now I cant recover my password.

best to email support for that kind of thing imo

!email

it's kinda difficult for you to prove ownership of the account tho

Depends.

I have TryHackMe premium and also I have the token for my verification here in Discord

They could have purchased a sub and will have the card used.

Just depends on how Support deal with it.

yeh, it's all on official support

Ok, thank you very much!

Hello, flag submission website for polkit room gives a 502 error

yep, can confirm it's down @barren birch

Oops. That's what I get for playing around on a prod server

Eh, not the most robust solution in the world, but it'll do

just remove it smhsmh

502 errors can't appear if you remove them from your http server

is putting malware on a THM box for research against ToS? even though it creates a new instance each time? Thought id ask before I get banned or commit a crime lol.

I don't think you'd be able to, the box would reset after you do, but @bronze vale would be able to tell you more.

We would prefer if you didn’t

Its not malware that deals with persistence or anything. Its some "You are an idiot, memeware"

No problem. Thanks

Gave +1 Rep to @bronze vale

I see some people have Certs. in their roles. How can I confirm my Security + and Pentest + to receive those roles?

ask a mod and the'll give you the roles

if you have the certs and/or a validator for them, then you may ping a mod, and they'll ask to DM

cool cool

metasploit set iterations option is missing, how can i set this for encoded msfvenom payloads ?

please help 🙂

what to do when some links dont work for some tasks? i was in authentication bypass and the link for the acmeIT doesn't work after i start the machine. i tried using attackbox and my personal kali linux and the link still doesn't work.

Doesn't work means what?
And what's the exact link you are trying ?

lemme bring up a specific one.

like this, does this link work for you?

http://10.10.195.199/customers/signup

this is in aunthentication bypass

Works fine, yes

not for me 😦 it's not bringing up the web page

So are you on the attackbox now or your own machine?

im on attackbox

well technically i started the machine on the provided task

am i supposed to open an attackbox?

Okay, so you are not on the attackbox?
Because the machine started in the task is the target machine

If you are trying to connect to that url from your own machine, you have to be connected to the THM vpn in order to reach that target machine

im not in attack box.

for this task am i supposed to use attackbox? im confused

You can either use the attackbox, or your own attacking machine.
If you are using your own attacking machine, you have to be connected to the THM vpn

i prefer to use attak box. should i open that up along with target machine?

Yes

oooo.

lemme see how that goes.

ok so i have the target machine on as well as an attack box

ok.

i dont know how that worked, lol.

thank you

Well it's pretty simple, no route to the target machine = you can't reach it 🙂

Can i get some hacking help related to FTP servers ?

I have FTP credentials , such as password and user to login , but there's a file i cannot upload to my computer cause i have no permission , how do i hack into that ?

i got that in a CEH exam

holy , that's not it

Is this the correct place if i need help on tryhackme issues?

Issue: having trouble SSh to the box provided in "Learning Linux Part 3 > Task 2"

You mean the Linux fundamentals part 3 room I guess?
So what's the issue with SSH ?

@crystal marlin Yes my bad!

keeps giving me Connection refused error

Could you let me have the full command you are using pls?
Also, are you on the attackbox or your own machine?

ssh tryhackme@10.10.181.1 on attackbox

You sure that's the right IP ?

its out of the page im on Linux Fundamentals part 3

IP Address: 10.10.181.1
Username: tryhackme
Password: tryhackme```

I suggest to terminate the target machine and start a new one

I did that but ill try one more time

Give the machine 5 - 10 mins to make sure it's fully booted

ok

Hi all. I am considering paying for a one-year subscription, but apart from a comment that cancelling it is or is not possible through your profile, I would like to be certain beforehand. Is it possible to cancel it easily and is it true that it automatically renews? Thanks!

If you cancel a subscription, it means that it's only not going to renew at the next due date.
So once you purchase a one-year sub, I don't think after like a month or 2 you can cancel and get your money back, if that's what you mean?

But yes, to cancel so that it's not going to automatically renew is easy

I'm trying to connect to ftp in brainstorm room and it's showing entering into passive mode and it got disconnected, not able to connect again

I've recently got a new Kali and when I try to change the root password it keeps reverting

I thought it might be the VM switching back to a snapshot constantly but that wasn't it

If anyone knows a solution I'd appreciate it

Thanks, I'll ask there

Gave +1 Rep to @gray loom

Hi, has anyone completed the HackingPark room recently? Task 4 Question#3 seems to be off and I can't get it. According to https://medium.com/@CyberOPS.LittleDog/tryhackme-hackpark-7d4f7fbfd561 the answer should be WindowsScheduler.exe but that doesn't work and neither does WScheduler.exe which is the name that shows up in the ps output.

Hi, I'm doing wreath. All my local setup are working but I can't ping the target machine. Can anyone help me ?

what I mean is that when I ping the target machine, it says unreachable. And when I ssh unto it, it says, no available routes for the machine.

ssh: connect to host 10.200.73.200 port 22: No route to host

Windows Fundamentals 1 - Virtual Machine is not working

I have connected the VPN and everything is fine but the VM is saying timeout

Can I have the target machine IP and try myself ?

👍

Hi, I've got an issue with the Pentesting Tools series. I've fully completed each activity of this series but 2 of them are not flagged as completed. But if I go in this specific activities they are marked as 100% completed. What can I do about it?

Don't know if it's the right channel, but is there a dark theme mode for THM website?

no official one but you can install dark reader to have unofficial dark mode on all websites... here is the link to install it: https://darkreader.org/

works great on tryhackme

it is free and open source so should be safe if you do not trust it just based on the amount of users

These 2 rooms linked in this series are not the same as you get redirected to by clicking on them.
Check the links when hovering over it and the link you have in the URL bar after opening them.
This has been already reported and hopefully gets fixed soon.
Nothing you can do on your side

Hello hello. just wondering who I reach out to, to request a change in Tryhackme profile country location, I have tried using feedback menu to no avail, cheers tech-support

https://tryhackme.com/api/user/update-timezone

Click that with a VPN turned off.

It will take you to your dashboard, and it will change your country. @runic flame

Thanks so much Scrubz, I have tried that, but still shows the wrong location, doesn't save and display the changes ..

though it says changes saved. any advice ?

oops, sorry, my bad .. it worked!!! thanks so much

Hello,
I'm trying to connect to the VPN and I get TLS handshake failed. I tried all the servers (regenerate/download) and fixed my VMs timezone.

What else can I do?

Hi Tech Support - re room LiveOff-VM-Server-V2 / Live off the the Land. The server password seems to be expired and will not allow my box or the THM "attack box" to connect.

My Box;
Do you trust the above certificate? (Y/T/N) Y
[10:22:12:642] [40967:40968] [WARN][com.freerdp.core.nla] - SPNEGO received NTSTATUS: STATUS_PASSWORD_EXPIRED [0xC0000071] from server
[10:22:12:643] [40967:40968] [ERROR][com.freerdp.core] - nla_recv_pdu:freerdp_set_last_error_ex ERRCONNECT_PASSWORD_EXPIRED [0x0002000E]
[10:22:12:643] [40967:40968] [ERROR][com.freerdp.core.rdp] - rdp_recv_callback: CONNECTION_STATE_NLA - nla_recv_pdu() fail
[10:22:12:643] [40967:40968] [ERROR][com.freerdp.core.transport] - transport_check_fds: transport->ReceiveCallback() - -1

THM Attack Box

"Connection Error
The remote desktop server has denied access to this connection. If you require access, please ask your system administrator to grant your account access, or check your system settings."

Is it possible to kick someone out of your team?

why do you get unexpectedly booted from a box when the time limit hasn't expired? this happens quite often and is quite frustrating

Could be a cache bug, could also be a Windows license expiring after 60 min(s)

I'd really like it to stop so hopefully someone can look into it?

btw, this was an attack box

Do you have premium

Hello can i have tryhackme admin here please its an emergency

Are you requiring TryHackMe support, or Discord support?

tryhackme support

!email

Or Maybe Jabba can help.

@bronze vale

okay thank u

What's up?

i just created my account recently and i was wondering if one of the support could help me change my username i didn't pay attention to the text and it subbmitted my name whichi don't want , i want to change it if its possible

Mhm, what's your current username?

can i dm ?

Go for it

Thank you for asking

thanks

Hello! I use the attackbox feature on TryHackMe and wonder if anyone has a easy solution on how to transfer a encrypted zip that i downloaded in the John The Ripper room to my attackbox. I am going to find the hash and crack it but i cant since i cannot get it over to my attackbox.

Use scp with the public credentials that you can find when pressing the information button at the bottom of the attackbox split view.

hey guys the room that i started is loading 8 min + name of the room is "Anonymus Not the hacking group" is it common on this room?

Thank you! It worked

Gave +1 Rep to @crystal marlin

What exactly you mean by "it's loading" ?

i mean when i try to connect to the stie it is error

unable to conncec

i am using ovpn

i did a copule rooms today and they all worked

Is there even a webserver running on the machine?

imam check

k i am stoopid

srry

Hi everyone. I had an access issue for my account. I emailed tryhackme support because someone from #site-support people said to do this. They asked for some details and did not reply after getting the info

Tryhackme is respectable platform and they did not reply even after 10 days. I am really disappointed in support team

Hey,

The reason why I haven't answered your email is because you have filled the inbox with emails.
I answer the emails from oldest > newest but because you emailed every other day to "remind" me, you actually just bumped your email back up to the top so I never got around to your email.

Please be patient and I will get around to your email.

I actually waited 3 days before sending the reminder

I did not know the procedure how you check. Please resolve my issue. I am preparing for certs and very worried because exam is near @bronze vale

There's an automatic response that tells you^

I missed my 80 day streak by a few minutes at midnight.... Any way to get this back or is it really gone

yes according to automatic response, I should have get response within 1-3 days

And you emailed on the third day, thus putting it the top of the inbox:p

XD

kindly reply the email

now you know that I emailed long ago lol

#site-support message

please be patient and let Jabba work through the backlog

When do you guys recommend to switch from the attackbox to your own VM kali instance? I like the attackbox but I believe a local environment would be much faster (and easier to copy in-and-out from etc.

Thank you. Is there any security related stuff that I should be aware of when switching to a local VM?

Gave +1 Rep to @gray loom

Okay good to know - is this simple to do or would I need a guide for it?

Hey I was told this was the best channel for my question. how do I go about receiving student discount?

If you have changed your E-mail in to a student E-mail and it hasn't recognised, you can E-mail the E-mail is gives you or Support@Tryhackme.com

Ah okay

Is your E-mail a .ac.uk or .edu?

.edu

If you change it in your profile it might Auto recognise it.

It did thank you!

Happy hacking!

U as well!

my AttackBox keeps dying on me and it's after I've transferred files, made edits and so I'm having to redo a ton of work. Is there any hope for getting this issue fixed?

it just stops responding in the middle of issuing a command in the terminal

I just launched an AttackBox and I see black screen with just the time countdown in the lower right

able to resolve this by going to full screen

but not related to AttackBox dying

Hey Guys, is there a way to put my real name on THM learning path certification ? thank you.

Windows Privesc, is the machine down?

Ping doesn t work also

is this kali machine or your machine

my kali machine. I am connected to the openVPN

but when I try to xfreerdp the machine from the task, it doesn t work

neither ping

well i have no idea bro :/

Not all machines respond to pings, especially Windows ones

oh yes true they have firewall enabled

the problem was that I couldn t xfreerdp it so I didn t know if I can even reach the machine

Anyways I restarted my kali machine

Can someone help me transfer my discord token from my old account to this one ? Not using my old one anymore and I think I need support from an admin to do so

try to write password between ' '

like /p:'TryH4ckM3!'

i fixed it

this wasn t the problem

what was the prob

I completed the Pentesting Jr path but now some rooms are incomplete and I can't grab my cert. Do I need to redo them again or is there any other solution?

Yeah, seems like they changed the rooms a bit. New Windows room to redo.

Speaking of which, what's the login information for the windowsprivesc20 room? I have the IP but no info on user/pass. I'm assuming it's RDP?

Damn. I had just completed it. Luckily I had saved the cert, but I'll still redo the first part and the Windows Privesc.

"Edited sorry for ping" could you help me verify my new discord account ? my token is associated to one I would like not to use here

I'm not sure if its in the rules but you shouldn't ping staff when you need help

sorry

I was once told to do so but guess I should have read rules better by my self

It’s fine hah, I’m a moderator also

DM me your token please

done

hey !!

linuxfendamentalspart3

Download the file http://xx.xx.xx.xx:8000/.flag.txt onto the TryHackMe AttackBox

showss : Connection failed

sorry for the question, how do I link discord to the THM account?

Im unable to DM the THM bot

click on the server's icon and go to privacy settings then check allow ...

That did the trick, thanks!

Gave +1 Rep to @orchid ibex

yw

hm okay

So I'm having issues with OpenVPN, it won't always connect, and when it does it doesn't stay connected for long. I've tried changing VPN servers and redownloading the config, and restarting both my PC and VM. It keeps telling me Network unreachable

It was working perfectly fine yesterday and earlier today

make sure you arn't connecting twice with sudo killall openvpn

I made sure I only had one instance of it running, even ran the openvpn-troubleshooting script provided by THM

This is what it's currently spitting out at me: read UDP [EHOSTUNREACH]: No route to host (code=113)

Hi

Can you guys help me with the immunity debugger issue?

Hi, where can I see the referral points in my account if I asked my friend to signup using my THM referral code, and how can I use this points? Thanks

https://github.com/tryhackme/openvpn-troubleshooting

Download and run this, if you're having issues.

is this about the ticket event that went on? that's ended for a while now
other than that, don't think there's a referral program for points afaik

Hey! I didn't had my real name on THM and now I want to change my name on the path certificates. Is that possible?

On certs you have already generated no.

On new ones, yes.

F

Thanks anyways @weary spindle

Gave +1 Rep to @weary spindle

Is there any chat or online support for tryhackme

I need support regarding my account..

I need immediate support... Kindly help

Shoot an email over to support@tryhackme.com @low lily (:

Being as descript as you can speeds things up 👍

I did yesterday but so far no response...

The response says you'll receive a reply in 1-3 days

I am having issues with regards to payment

so only i am wondering if there will be any quick support

Unfortuantely not, there's no official support other than the email

Thats strange... Its with regards to card issue so i was wondering if there is any online support...

I am facing difficulties with my bank because of tryhackme

Best advice would be to contact your bank/card issuer

See if they've blocked the payment or something

That's usually the case

Its not blocked and when i contacted bank they say there is some issue from tryhackme side and no issues from bank... I used different card and paid the payment but however tryhackme keeps trying to deduct the payment from the old one..

THM trying to deduct the amount 4-5 times everyday due to which bank might charge me for failed payments

Hello, are the locked channels only for specific members here?

?

Thank you. Where do I sign up for notification

anywhere?

Thanks ! si yuus maase

Hi
when i try to download adenumeration i referred to 404 page ..

Can you leave and re-join (by visiting the room again) the room using the cog icon and -> leave

that should resolve it

yes i did ,and also im able to donwload other vpn network & machine ,but not the adenumeration

still facing same error

What is the subnet that you're placed on? This will be visible from the network map I.e. 10.200.x.x)

10.11.38.0

/24

that's your VPN IP

I am talking about this

it should be 10.200.x.x (replace the x.x with an IP address that you see in the network map)

10.200.58

sorry i had to rejoin the room xD

:d np

as you just rejoined it

can you try and generate a new VPN file for that network please?

i did ,still referring me to 404 page

just now?

yes

mhm okay

the VPN server is up. This is odd

bare with (:

i will do other rooms and try sometime later 🙂

Sure thanks

What is your THM username?

@blazing sand

'Sam.fisher91'

We've just applied a fix, can you try generating a VPN profile now please?

yes it works

perfect

sorry for the trouble

Thanks @zealous yoke

Gave +1 Rep to @zealous yoke

no worries thanks boss 🙂

enjoy the lab

👍

i always do ,i have learnt a lot doing you rooms ,appreciate all you work ben

your *

lovely to hear (: the creator of these networks has done a lovely job for these

t

019AFAA8 7B 7C 7D 7E 7F C2 80 C2 {|}~€Â
019AFAB0 81 C2 82 C2 83 C2 84 C2 Â‚ƒ„Â
019AFAB8 85 C2 86 C2 87 C2 88 C2 …†‡ˆÂ
019AFAC0 89 C2 8A C2 8B C2 8C C2 ‰ÂŠÂ‹ÂŒÂ
019AFAC8 8D C2 8E C2 8F C2 90 C2 ÂŽÂÂÂ
019AFAD0 91 C2 92 C2 93 C2 94 C2 ‘’“”Â
019AFAD8 95 C2 96 C2 97 C2 98 C2 •Â–—˜Â

I am getting this in immunity debugger can you help guys ?

I do not know why C2 after 7F

completed yet not showing as completed. Someone please help. Burpsuite room. I need the badge.

ironically there is a fix for the redirection using burpsuite itself, but we can't help people join private rooms :/

any directions to fix this myself

??

none from me at least 👀

It's best to wait for the site staff to fix it.

You wouldn't want banned.

@wispy chasm help me out here man

Don't ping them -.-

That won't help it get done faster...

cool

Hi, all. I'm in the Networking Services 2 - Enumerating MySQL room and have an issue. The AttackBox says it doesn't have MySQL available on it for me to run the required command:root@ip-10-10-214-222:~# mysql

Command 'mysql' not found, but can be installed with:

apt install mysql-client-core-5.7
apt install mariadb-client-core-10.1

-- and, of course, I'm not able to install it on their AttackBox... any thoughts?

What happens when you install MySQL

Oh

Sequence number (raw) is defined by the literal amount of packets a client has ever sent or is it just within a the given trace file?

I am a subscriber (annual subscription) -- ... if I try to install, I get:
root@ip-10-10-214-222:~# apt install mysql-client-core-5.7
E: Malformed entry 11 in list file /etc/apt/sources.list (URI parse)
E: The list of sources could not be read.
E: Malformed entry 11 in list file /etc/apt/sources.list (URI parse)
E: The list of sources could not be read.

... that being said, the 'challenges' that asked for this were just step-through buttons and didn't require me to enter any info into a field, so I was able to get by this.

ok, thx -- as I said, I was able to step through and move forward, but I could see this being an issue again down the road potentially...

same here ... can not install my tools ...

I also keep being disconnected when I am using the openVPN connection ...

U could have two instances

@zealous yoke Maintains the AttackBox afaik
'Natic, AttackBox repos are being wierd?

You meant two instances of attack boxes? I meant I keep being disconnected from the openVPN connection from my local kali machine

I am not, those a to different problems

No two instances of openvpn

Sudo killall openvpn can make sure u don’t have two

oh how could that be?

gonna try thx

Gave +1 Rep to @winged patio

yes, two different problems. But you know, I was sharing my problemzz 🙂

seems it worked! thx!

I'm suddenly unable to connect with openvpn with OPTIONS ERROR: Failed to negotiate cipher with server. Has anyone else seen similar errors?

It's probably some change to my system that broke it and the error message is misleading, but I want to be sure it's isolated to me

Np

This is … really bizarre

None of the changes today had anything to do apt/sources

Let me take A look

Thank you^
Ubuntu is just being difficult

what's that rule about never pushing on fridays

Solution for apt being broken on the AttackBox whilst I patch it and get changes made life: This is the working /etc/apt/sources.list

Either
A) copy and replace the text from the attached file into the /ets/apt/sources.list file
B) transfer and replace via SSH (you can get the credentials from https://tryhackme.com/my-machine

Sorry about this. Working on getting it fixed in production 👍

thx

Gave +1 Rep to @weary spindle

I just lost my 200+ hacking streak days today because some mistakes of my network connection yesterday T-T! Is there any available solutions to to recover my hacking streak?

Email politely into support and they maybe be able to help (I hear pet pictures helps!) support@tryhackme.com

Thank you! I'll try it!

Gave +1 Rep to @zealous yoke

👍🏼👍🏼

I’m having trouble with my attackbox

It won’t complete or give accurate nmap scans

Uh, can you send screenshots?

It’s supposed to be port 2049 open

Not open but with the service

Hello, I have a question, I have purchased 12 months sub for THM as a student, if I change the email to non edu email will it go away?

No, the subscription will only go away when it expires (you can use a non edu email just fine). If you change to your non edu email though, you’re likely to lose your student discount for the next time you re-sub (unless you provide your edu email again)

Solved it meanwhile ?

Hey, I'm having trouble with my attack box
After it finishes initializing, its not showing the gui, it just keeps on loading

Thank you!

Gave +1 Rep to @zealous yoke

Metasploit: Meterpreter - PostExploitation Challange

Does not work, I try to use the metasploit exploit they ask, but it does not work. I did all the options, also looked at a walkthrough to see what they exactly did, but does not work. Also tried 3 different Kali Linux Machines

its the "windows/smb/psexec"

It seems to be a problem that a lot of people have, guess the exploit aint relevant anymore

Best to provide a screenshot of what "doesn't work" exactly means

No still not working today

In case it helps anyone: I fixed the openvpn error I started getting on debian testing after upgrading openvpn by editing the .ovpn and replacing "cipher" with "data-ciphers"

What you mean with not working?
It seems to work? Just give it more time.
If you add -vv to your command you can see progress.
Beside that I gave you some other flags to speed things up: #room-hints message

I tried them last night. It will sit like that for 15 minutes. I was able to get a -PS scan to at least show results, but it’s still showing the wrong port like last night

What's the room and the task you are on?

I got it to work. I rebooted the attackbox

Should I start the machine, wait 20 minutes then start the attackbox. Or do you start both right away then wait the additional 20 minutes for the machine to fully boot?

No you can start both machines at the same time, that shouldn't matter.
20 minutes sounds a bit long, waiting 10 mins should be enough for any machine, usually it's not even that long, but if you face issues, it might be a good idea to try waiting 10 mins.

Thank you

Gave +1 Rep to @crystal marlin

i am having issues connecting to machines on "Throwback" network. This issue started 30 min back. I am connected to the VPN. IP address on access page is same as my VPN address on tun0. But I can't connect/ping to any machines on throwback network

in vpn, I do see ```2022-06-18 14:03:50 net_route_v4_add: 10.200.62.0/24 via 10.50.59.1 dev [NULL] table 0 metric 1000

I hope I am in right room to ask assistance on connection issues.

I was connected to this network until 60 min back. But now if I try to connect to port 80 or port 443 ( which I know are open using prior enumeration) it says no route to host. I checked the route table it is seems to be correct

let me know if you wish to see my route table

@foggy elm in here

@sleek jackal 100x more likely to be wrong IP than wrong port, considering the level of content

this would be the ip, right?

Yeah, assuming you have the right machine deployed

i thought they just had a general ssh question, not one related to a box. you right.

no luck. Still can't connect

are you connected to the VPN?

ebb?

Box is fine

yes

I'm not so sure that you are, or at least not correctly connected

in the terminal session you used to connect, does it give an error?

Open a browser and navigate to http://10.10.10.10/

Can you load 10.10.10.10 ?

its possible if its been running too long, it may have dc'd. try the IP ninja gave you

this works fine

what do you mean by right machine?

Try SSH again now

ok

IDK what room you're doing. Some rooms have multiple deployable machines, for different tasks

oh, it only has one task

it seems to work now which is weird

They take some time to boot up

my password is my tryhackme password, right?

DEFINITELY NOT!

Do NOT type your tryhackme password anywhere except the tryhackme website login page

oops

Like ever

I'll change that now lol

It's fine because it was transmitted encrypted

what username and password do I use then? that might have been the problem

It wasn't

The problem was it needed time to boot

is there anything else I can try

Connection refused is a network issue, not a creds issue. It couldn't talk to SSH

I'm stupid it tells me the login credentials on the page

I am so much less confused now tysm

#1 piece of advice I can give is when you get stuck, re-read the information in the task first

I'll just wait a few minutes before connecting next time

Then accurate googling

lol yeah

I just got confused because I thought I would be able to ssh in immediately after the ip address was show

If it's a Linux machine, it typically takes 1-5mins as a free user. Typically less as a subscriber, they get more CPU and RAM on their deployable boxes.

naw, it takes a couple of minutes to get everything situated.

as a habit, I always boot the machine first thing when i get into a room so its ready to go when i need it

👍

Also, probably worth mentioning.
You can extend the target VMs as a free user, it's just the attackbox that has limited time per day.

nice, this makes even more sense. I love it when everything suddenly makes sense

Hello, I need help with this error, I dont mind just pointing me in the right direction ...one sec trying to figure out how to post pic lol

[-] RemoteOperations failed: DCERPC Runtime Error: code: 0x5 - rpc_s_access_denied
[] Dumping Domain Credentials (domain\uid:rid:lmhash:nthash)
[] Using the DRSUAPI method to get NTDS.DIT secrets
[-] Cannot create "sessionresume_hGGMKcuv" resume session file: [Errno 13] Permission denied: 'sessionresume_hGGMKcuv'
[] Something went wrong with the DRSUAPI approach. Try again with -use-vss parameter
[] Cleaning up...

oh, this is because of the IDPS >.<

Thanks yojomojo

your welcome

😛

In the attack box , I am getting

The list of sources could not be read.

This is happening across reboots also

Anybody else facing this ?

Check the very first pinned message in this channel

Any chance you could just tell me , not able to find it

Pinned messages are found when pressing the button I marked in red.
But here is the link to the message I'm talking about: #site-support message

Oh ok , sorry I am not a regular discord user

Thanks for the help!

Is the Sea Surfer room unstable for anyone else?

There would be a dedicated channel for that room #987417709392314378
But yes, I think they are waiting for a resource bump to be applied, but not 100% sure if that has already happened or is still to come

Guys I'm from Egypt which is blocking OpenVPN via UDP, I've heard if you configure OpenVPN to listen to port TCP 443 it will work, can someone help me how to do that?

You can't

It's a setting on the server, on tryhackme's end.

solved ?

I dont think your country is the one blocking it? but your ISP or your router.

thats crazy

For network services module -> Exploiting SMB I am trying to connect vm with smbclient //$ip/profiles -U Anonymous but I am getting error Error NT_STATUS_CONNECTION_REFUSED can any of you help me ?

What's the IP you are using ?

The one that attackBox gave me

The attackbox or the target machine ?

You are connected via AttackBox

Your machines IP is some-ip I am using this one

Okay, well not sure where you are reading that, but if you are using the IP of the attackbox, then it's wrong.
You have to use the IP of the target machine, that you have started in task 3

Oh I understood you are right thank you

Gave +1 Rep to @crystal marlin

do I have to download the openvpn file everyday to connect tryhackme lab or I just can use that file forever?

I was working perfectly but idk why it stopped

does Crtl + C works for killing the vpn?

last question pls, should I use the VIP server or normal one?

I mean for opnenvpn file

ok, thanks for helping 🙏

Hey, i think the ip address in the burpsuitebasics machine is unreachable please look into it.

What is the target IP?

10.10.116.200

And are you on the attackbox or your own VM?

Own vm

Are you on the VPN?

Yes

Wait do i need to turn the vpn for this ?

Yes...

Okay let me check

You always need to enable the VPN to reach the THM machines.

Unless you're on the attackbox.

Oh now i can access it

🙂 Always open the vpn and minimise it.

I had turned it off for this room

Okay thanks now i know

👍

I was searching over the internet lol thanks again for the quick response

Happy Hacking!

Umm sorry but I dont know where to ask this question but

I am using sublist3r for mapping subdomains but its not working

The one I am.using is pre installed in kali

It does not show any subdomains

If it's in a room #room-help , else #infosec-general

any idea why the target website is not loading? not even from attackbox

it's 10.10.x.x:8888

sry but cant post a screenshot

whenever I add the port it stops working

whats wrong here pls?

I can ping the target machine but the website is not working

Are you a free user?

no

oops I didn't realise Lassi was already helping.

What room are you doing?

OWASP

I'm not as good as you 😂

I tried new machine too

What's your target IP?

http://10.10.137.28:8888/

Take out the port number.

yeah but I need the register form

it has to be something like this

idk I just started a new attackbox

ok restated every machine now

Gave +1 Rep to @gray loom

I started this one

working now 🎉 thanks for helping 🙏

Gave +1 Rep to @gray loom

hi , i need some help my 144 streak just got reset for no reason

I also tried the update timezone api but no luck

Did you have a VPN on?

When you click the link it should take you to your dashboard.

yes it did

and i don't have vpn on

Then it should have changed it, providing you're not on a VPN.

Also, for streak, you'll need to contact via E-mail.

!email

ok let me try that thanks

Gave +1 Rep to @weary spindle

Which country are you switching to?

no i didn't switch country I just woke up and it gone

I meant your timezone switch.

also no (i think)

yesterday i test something and some bug happen in calendar but that's is not my timezone

Support will help. 🙂

guys i have problem in (TryHackMe OpenVPN Troubleshooting Script)

I can't send a picture

?

!docs verify

Can I send you private?

Hi

Can I use my own Vm instead of THM AttackBox

Its very slow

If yes , how please?

you cand use your own VM instead of the attackbox, search for a room called tutorial on the site, it shows you how to do it...

or the OpenVPN room

Okay thanks

Gave +1 Rep to @light vale

!vpn

Thanks

ah I'm sorry but what am i doing wrong ?

Yes.

Where is the file?

Oh wait, Downloads.

In the downloads folder, right click and open a terminal here.

Type Pwd

Copy paste it and then add on the file name to the path.

it will probably be something like

/home/localuser/Downloads/Filename.ovpn

in your case

/home/kali/Downloads/INFERNO0002ovpn

sudo openvpn /home/kali/Downloads/INFERNO0002.ovpn

I did the command for you, the above command should work

Yes , thanks

Gave +1 Rep to @weary spindle

.ovpn

That's my bad.

Oh

You need to seperate your name and ovpn

Its fine

Works now

Thanks 🤍, I appreciate it 🙏

Happy Hacking!

i like your banner it's me working now 😄

may i ask where you got it from? won't use it on discord and only if it's allowed or something 😄

I got it from a connection on LinkedIn.

yeah no worries found it online 😄 thanks

Gave +1 Rep to @weary spindle

Benefit of Nitro 😄

yeah i tried to use it on linkedin but the format is wonky hard to resize 😄

Hello, when I deploy the attackbox, I can't run the apt update command. is-it normal ?

I have the same issue

check the pinned message

the last one

now i realize that you said that you have it from a connection from linkedin, does he have it as a profile banner by any chance? also can i dm you for this a moment don't want to takeover this channel 😄

No, it was in a post they had shared.

ohh understood thanks 😄

Gave +1 Rep to @weary spindle

This message for my issue ? (Can’t update the attackbox)

But it's work with the kali linux machine

What are you trying to update, the attackbox in general?

Because of an issue with a command. I could'nt install unrar

(I installed it from internet to continue the room)

#site-support message

Thanks !

Gave +1 Rep to @bronze vale

Hello,

I am doing the rrootme challenge.
I managed to upload my reverse shell, only it can't connect to my pc (I opened my ports). I have tested locally and it works but when I try on the target's machine it doesn't work
I get an error: "WARNING: Failed to daemonise. This is quite common and not fatal. Connection timed out (110) "

did you set up the listener?

yes, nc -l -p myPort

can you try nc -lnvp <port>

and please cross check if you have correct tun0 ip and port

tun0?

and BTW are you connected to vpn?

AH

nope

I think it's because of that xD

yeah

!vpn

you can understand vpn script from this room @sick jungle

ah no actually I'm well connected to the VPN, otherwise I won't have access to the site I have to attack

Ok i'll try it

noooo. Do one thing in your terminal ifconfig tun0

if you can see your IP that means you have correctly configured the VPN and then add that IP to your php rev shell script.

Ok

it's good

I have a reverse shell

I didn't understand that I had to put the ip, port of tun0

@jovial mangoThanks !

Happy hacking!

i have an issue with my streaks, i lost a 76 day streak for some reason. my username is fred101. if you look at my activity chart i haven't missed 2 days in a row

thanks

Gave +1 Rep to @vague valley

i said thanks to you and this bot gave you a point? smart!

thanks

ok just one time thing

nope, there is a cooldown effect before the thanks gives rep (:

Gave +1 Rep to @fickle vortex

lmao

silly bot

bot is silly like silly string

the difference is that I love silly string

but good analogy

hello guys i have an issue with my attack box/kali. The attack box is not very smooth it is very slow. how can i fix that.

I cant sign in into my account for some reason....

i can reset but not log-in, any help?

they can be a little jittery. if you have a premium account then you have the best.

if you can run vmware/virtualbox on your own machine then definitely go with that.

i have premium account but idk why is that happening.

it's normal. their EC2 machines aren't the highest spec. it's pretty expensive...

if you can get your own virtual machine running it's usually a better alternative

i am running that on my vmware rn. it's smooth tho.

yeah, a local machine might be a better option

you're paying more for the content than the Kali/Parrot machines if you ask me.

the attackbox is more for people who simply don't have the resources but want to learn

ah i see. thank you brother

np

thanks for thanking me

Gave +1 Rep to @zealous yoke

lmao

Is the site down ?

its back up for me

I am here asking this only ? Is the Site down ?

ohh , it's back up just now

Hey,

We’re aware of the site issues. Cloudflare is experiencing some connection problems.

Should be resolved soon:)

So that's maybe why it takes a while to create a workspace?

https://tenor.com/view/sad-pablo-lonely-alone-gif-12928789

im now

How long does it typically take to get a response after a submitted enquiry?

2-3 days is an average, maybe sooner, maybe later, depends how busy Jabba is.

If I feel that it’s been too long, is it worth resubmitting an enquiry?

If it's > 7 days yes.

Otherwise no.

Cool, thank you

Hi, I'm trying to use my own VM kali linux to connect to the machines, but for the life of me i cant find a solution. i downloaded the configuration file, connect to the vpn, i can visit 10.10.10.10 and it tells me what my THM IP is (this was only after i put the network settings to bridged instead on nat), but when i copy/paste the IP address of the machine into my browser it says unable to connect. needles to say i cant ssh into it either. pls help:c

Which ip?

So when i go to 10.10.10.10 it tels me that my vpn/tryhackme ip is ...

when i start a machine i also get a ip adress i need to ssh into when using the attackbox, that ip adress doesnt connect when i search for it in my browser

You can't SSH in to all machines.

Which room are you doing?

!docs verify

If you want to add screenshots.

linux strength training (im still a freshbeginner)

It doesn't look like there is a need to ssh in to that machine

ah oke oke, thanks. i just thought you could use your own machine for all of the rooms.

The majority of them.

But you don't need to ssh in to them, sometimes you have the option.

Sometimes you can interact with them just going to the browser.

aight, thanks:)

Hi guys. Can you tell me why I got 80 points for completing this task #10 ? But, some other users on the scoreboard got 30 points for it.
Room name: https://tryhackme.com/room/c4ptur3th3fl4g

The room is old, so the rule of "first blood" does not work. Why 80 and not 30?

you blooded first

this room is 1127 days old.

This is very strange.

It won't be blood points.

I don't know the answer to your question, when I look at the scoreboard I see some had 420, and some have 620. ( I have 620 )

@zealous yoke might know the answer.

I know the point system was changed at some point, so it could be that?

Blood points is enabled, but you get more points if you complete it within the month it is released (and less points after that month) so it's probably that? Points were also re-calculated but I believe that was only for levels

I'm not totally sure as to why they got 80 and not 30 to be honest

Task 7-10 gave 80 points.

for https://tryhackme.com/room/c4ptur3th3fl4g ? there's only 4 tasks

Yeah, I meant Questions 7-10 in task 1

when did you complete the room? Just now/very recently?

Yesterday.

Interesting

Why do other users have 30 points?

I'll make a note to raise it internally. Not sure what'd be the cause of certain questions giving more points in the middle of the room, other than it having bonus points assigned to the task (but the question will be marked as giving bonus points if that's the case)

Hey, I just went back to tryhackme :) But I keep getting issues connecting through SSH to my machines with the following error ssh: connect to host 10.10.59.76 port 22: Connection refused

The first time, it worked after a few attemps without me doing anything, but now once again it doesn't work on the next room

Anyone know what I could be doing wrong ? ^^

Edit : Just tried again and it works.. I don't get it
PS : I'm using Kali inside a VirtualBox machine and I'm connected to the VPN

The image in the Owasptop10 room task 12 is not loading.

fixed, please refresh (:

Noice thanks

Are you supposed to SSH into the machine that is in the room?

Are you allowing enough time for the machine to boot (a couple of minutes 3+ or so would be good for sanity). Sometimes the connection is refused at first if you try to SSH in too early

Yes, I was on Linux Fund. 2 and 3 ^^
But okay for the 3 minutes, i've just waited 1 minute (because I can't see the IP before anyway ^^). I'll just give some time next time :)

Ah yeah, it needs a little time to boot up - just like me in the morning 😄

lol, thanks :)

Gave +1 Rep to @zealous yoke

I have one more question. How do I change the country in my public profile? For some reason, I am displaying the UK. And I can't change it.

#site-support message

Thanks! It works.

Gave +1 Rep to @crystal marlin

I'm trying to sub and its not working. I have a student discount btw.

when I press pay with Paypal I always payed with paypal

Hi, sorry for bothering you again, but it's been 3 days. Didn't hear anything from support yet. Been checking my email every 1-2 hours. I'm getting kinda anxious about this.

Have you sent another email within these 3 days?
Or just one email 3 days ago?

i just send one email 3 days ago

Okay, ye I would keep it like that, otherwise you will get placed at the start of the queue again.
Maybe give it another 2 days, in case you still don't get a reply you might want to reach out again here

so 5 day, but would it be possible to restore my streak after 5 day?

Well first of all it depends if they will restore your streak at all, there is no obligation on their side to do so, but they usually will if you are kindly asking and if it's not too long after you lost your streak, so if you sent the mail 1 or 2 days after you lost it, I guess that's fine.
Other than that it shouldn't matter if it's 5 days or 50 days

oh ok but my streak just randomly disappear i didn't change my timezone or my country and i send the email to support immediately after it disappear

Okay, well I can not speak for why your streak disappeared, I can just let you know to be patient until you get a reply.
Also make sure emails from tryhackme are not being blocked on your side.

ok thanks, 2 more day of anxiety it is

Gave +1 Rep to @crystal marlin

I don't see no reason for anxiety.
If you are not losing your streak on a regular basis and if you have been friendly in your mail, I see no reasons for not getting your streak reset 🙂

yeah you're right thanks ❤️

Hello everyone !
I am doing the : Vulnversity room (https://tryhackme.com/room/vulnversity).

At the task 2, I have to find the operating system. I tested several nmap commands and all retruned me that the OS is Linux 3.X or Linux 3.13.

When I tried this answer it said me that is incorrect - Can you say me why ?

What version of the squid proxy is running on the machine?

Which questions asks for the os?

Also probably best spoiler this.

OK I found the answer (without spoiling the answer)

but I don't understand why it's not returned with the nmap

nmap $targetip would only give you ports.

You'd need to add -A or -sV to get more information.

Yes I did. Also I tryed with the -O

-O will give you the OS.

The question is "What is the most likely operating system this machine is running?".

Oh, in that case

It's not Linux.

Linux * would be too long.

The answer is longer than Linux

But shorter than Linux 3.13

I found it

Indeed

🙂 How did you find it?

I searched which OS is compatible with the proxy's version

with the base of the returned nmap command

Why ?

help

yes

what ? cheak your system time / I don't understand

I didn't try

no

sometimes contact

Hi everyone! Its my first time here. I have a question about AttackBox of THM Labs. Every time when I start Attack Box my machine loads until 100% then it holds with black loading screen

anyone knows how to fix?

Sorry, but it continues 3rd day in a streak

I also got subscribed to get own browser-based Kali machine and same problem with it. I only have access with OpenVPN thru RDP

I tried another browser (MF) theres also black screen. It was new-installed browser

Only THM OpenVPN

Have you tried checking the dev tools console for any errors that could lead you to the issue?
I think someone else had such an issue too, but when he was trying to open it in his VMs browser, it was working just fine

Access to script at 'https://vnc.tryhackme.tech/core/rfb.js' from origin 'https://vnc.tryhackme.tech' has been blocked by CORS policy: Request had a target IP address space of unknown yet the resource is in address space private.
rfb.js:1 Failed to load resource: net::ERR_FAILED

This is from console

I want to work from web browser, that's why I subscribed. There's even no support buttons only this chat... Is here any admins of Try Hack Me?

So did you google that?
Maybe you could check that: https://stackoverflow.com/questions/71018461/chrome-98-private-network-access-problem-w-disabled-web-security-request-had-n

You can reach the support via mail, but this issue seems to be on your side, rather then on THM

!email

Thanks. I know that its on my side, but I hope they will help me

Gave +1 Rep to @crystal marlin

Well you will most likely get referred to this channel here, where you already get help 😄

Hey, what browser are you using & what is the version? CORS policy is an interesting one especially for vnc.tryhackme.com

Can you try another browser for troubleshooting sake? Make sure there's no extensions/plugins interfering (a fresh browser install / incognito would be useful)

Latest version of Chrome. Okay I’ll try to fix tmr. If you see the message tree I already wrote that I used new Firefox

On what OS? (: thanks yeah I'm just catching-up on what has been said

Gave +1 Rep to @pearl bane

A browser version number would also be very useful. Sorry for all the questions - just trying to replicate & diagnose this as best as possible

Greetings to all of you guys, for some reason i cannot access the machines at HOLO , they seem to be offline or smthing !

Hello why my new snan button is unvailable ?

ok that's so sad

Since latest Kali update I get errors with every ovpn option I tried with THM. Gives depreciation error with cipher AES-256-CBC and ovpn_dco netlink component error. Help to solve this would be appreciated.

Hi everyone! Does anyone know how to fix the issue of not being able to access internet in the AttackBox?
I can't complete the rooms because the internet pages aren't loading.
I already tried an old potential fix I saw here using ifconfig but didn't work.

are you a subbed user?

the attack box only has internet if you're subbed

Ah I didn't know that. Thank you

Gave +1 Rep to @celest wadi

buuutttt...

for the tasks in the room you should be able to complete them with the attackbox

I'm still in the beginning so still doing the "easy" rooms.
But for instance, the "RootMe" room you have to download a reverse shell script to upload...How to do that without internet?
Since I'm new, maybe I'm missing something

Yeh, the reverse shell scripts should already be in that machine

But you can download them yourself and then transfer to the attackbox with a python server

Ah got it! Thank you. I'll try to do that

seems like i have some issues connecting to hosts added to /etc/hosts, using a kali distro on external ssd

tried sudo ip link set dev tun0 mtu 1200 as i had the same issue a while back and that fixed it but now it still has the same issue

upload vulnerabilities, web hacking fiundementals. task is unrelevant cuz you need to be able to use the alternate hosts to even try the tasks

i had multiple instances of alternate hosts not working

#room-help message

here was my previous chat about it

that fix doesnt seem to work now

nope

was fully clean

yup the loading

no title nothing

just new tab loading

sure

hard to read sorry bout that

oh

oh why am i always so braindead XD

thanks alot

its such small things that i seem to trip over with the learning stuff

With options I meant that I tried latest version of EU-1 VPN file and I tried EU-2 and EU-VIP1 but all gave same problem with errors and no working VPN. I used EU-1 for more than a year and also used specific room VPNs like for the last two AD related rooms. First time I'm encountering this problem.

I get this error when I try to connect via OpenVPN. I downloaded a new configuration pack and I'm still unable to connect. Any help please?

hi there? any admin can fix Wreath? can't donwload config files

already tried regenerate and waited 5+ min

(tried twice) and already logout and login

I also changed browser

Yeah I have problems too. A lot of ppl are having the same problem

had to leave the room and rejoin. and it worked

Hey! I'm trying to do the intro to networking room, and I'm using my kali linux vm to do the exercise. It seems like the vm wants me to have a wired connection when I do nmtui, but I am on a laptop without an ethernet connection. I'm assuming that this isn't the only way to connect to wifi, or maybe I'm doing something wrong. Does anyone know how I am able to connect without a wired connection? Thanks!

what is NAT

ok lol

hey guys i upgraded my linux machine

but cant connect vpn now

i removed confg file downloaded again

but still cant connect vpn

can't

i mean openvpn

wdym

mr lassi

so the thing is I upgraded my linux and then tried to connect tryhackme network

I haven't had any problem for now

but when i upgraded i cannot connect the tryhackme network

I removed confg file and downloaded again

but still cannot connect the thm network

thats the error

https://tenor.com/view/ffs-baby-really-oh-god-just-stop-gif-12739180

this one i guess

right

hmmmm

check OpenVPN documentation

i downgraded openvpn to version 2.5.6-1 and now connecting to THM work again

something in the lasted version seem to be bug