#site-support

Hey, I am having problems connecting to the EU-VIP1 VPN Server.
My OpenVPN connection log is here: https://pastebin.com/bYqsVcn2
Switch servers result in same problem.

Any suggestions?

Thanks, works.

Gave +1 Rep to @gray loom

yo can someone help me?

@gray loom

i tried installing burp on my own kali machine but its giving a few errors i cant find anything online about

sure one sec

It’s on one of my pi’s

So idk if that changes anything

oh mb ill ask over there thx

I think something is wrong with the forums website. Only partially loading.

having a issue on tryhackme.com with the openvpn server. keep losing connection, feel like i have tryed everything but cant get it to work very new to hacking and wanting to get good at it but this issue is really killing it for me, really would appreciate any help.

2022-07-05 22:53:43 DEPRECATED OPTION: --cipher set to 'AES-256-CBC' but missing in --data-ciphers (AES-256-GCM:AES-128-GCM:CHACHA20-POLY1305). OpenVPN ignores --cipher for cipher negotiations.
2022-07-05 22:53:43 Cannot find ovpn_dco netlink component: Object not found
2022-07-05 22:53:43 Note: Kernel support for ovpn-dco missing, disabling data channel offload.
2022-07-05 22:53:43 OpenVPN 2.6_git x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] [DCO] built on May 30 2022
2022-07-05 22:53:43 library versions: OpenSSL 3.0.3 3 May 2022, LZO 2.10
2022-07-05 22:53:43 Outgoing Control Channel Authentication: Using 512 bit message hash 'SHA2-512' for HMAC authentication

022-07-05 22:53:43 Incoming Control Channel Authentication: Using 512 bit message hash 'SHA2-512' for HMAC authentication
2022-07-05 22:53:43 TCP/UDP: Preserving recently used remote address: [AF_INET]54.193.147.96:1194
2022-07-05 22:53:43 Socket Buffers: R=[212992->212992] S=[212992->212992]
2022-07-05 22:53:43 Note: enable extended error passing on TCP/UDP socket failed (IPV6_RECVERR): Protocol not available (errno=92)
2022-07-05 22:53:43 UDP link local: (not bound)
2022-07-05 22:53:43 UDP link remote: [AF_INET]54.193.147.96:1194
2022-07-05 22:53:43 TLS: Initial packet from [AF_INET]54.193.147.96:1194, sid=09f4a736 1c27241b
2022-07-05 22:53:43 VERIFY OK: depth=1, CN=ChangeMe
2022-07-05 22:53:43 VERIFY KU OK
2022-07-05 22:53:43 Validating certificate extended key usage
2022-07-05 22:53:43 ++ Certificate has EKU (str) TLS Web Server Authentication, expects TLS Web Server Authentication
2022-07-05 22:53:43 VERIFY EKU OK
2022-07-05 22:53:43 VERIFY OK: depth=0, CN=server
2022-07-05 22:53:43 WARNING: 'auth' is used inconsistently, local='auth SHA2-512', remote='auth SHA512'
2022-07-05 22:53:43 Control Channel: TLSv1.3, cipher TLSv1.3 TLS_AES_256_GCM_SHA384, peer certificate: 2048 bit RSA, signature: RSA-SHA256
2022-07-05 22:53:43 [server] Peer Connection Initiated with [AF_INET]54.193.147.96:1194
2022-07-05 22:53:45 SENT CONTROL [server]: 'PUSH_REQUEST' (status=1)
2022-07-05 22:53:45 PUSH: Received control message: 'PUSH_REPLY,route 10.10.0.0 255.255.0.0,route 10.1.0.0 255.255.0.0,route-metric 1000,route-gateway 10.13.0.1,topology subnet,ping 5,ping-restart 120,ifconfig 10.13.45.126 255.255.128.0,peer-id 39'
2022-07-05 22:53:45 net_route_v4_best_gw query: dst 0.0.0.0
2022-07-05 22:53:45 net_route_v4_best_gw result: via 192.168.254.254 dev eth0
2022-07-05 22:53:45 ROUTE_GATEWAY 192.168.254.254/255.255.255.0 IFACE=eth0 HWADDR=10:62:e5:e2:bd:74
2022-07-05 22:53:45 TUN/TAP device tun0 opened

check the pinned messages

Hello everyone!

I have been stuck for quite long time in one room NMAP Task 14 (https://tryhackme.com/room/furthernmap) and on the beginning there was an IP address to connect to... but now it just says: MACHINE_IP

Is there an error on this room or am I doing something wrong? There was an IP address before... it looks like MACHINE_IP is a variable that has broken link to the database.

You need to start the machine.

Ooops! I'm starting it now... jesus... shame on me if it's this... Thanks 🙂

within 2 min(s) MACHINE_IP will change to 10.10.xxx.xxx

I have the machine started but no change yet...

Give it another minute. 🙂

no problem, I'll wait 🙂

If it doesn't change, refresh the page.

still the same 😦

Did you press the green "Start Machine" button in task 1 or the blue "Start Attackbox" button ?

Blue one

Oops, I believe is the other one...

That's the issue, the blue ones are the attacking machines, the green ones are the target machines

ohhhh I see... thanks a lot!! Hopefully it will work!

yeah!!! Thanks a bunch!!!

(I feel like an idiot...)

Completely forgot there was a target machine to start... arrrgghh!

Nah, happens if you are not used to it 🙂

hehehe thanks 🙂 I'll get better! 🙂

That's on me.

I should have specified.

at this point I should have remember it but I left this lesson half done and I completely forgot it

Living off the land room, i am unable to access the machine, (i also tried from xfreerdp)

Phishing room , Gophish is unable to load dashboard, campaigns, user & groups and etc. Result : loading for ever....

Hello guys i was trying to run openvpn but its showing me error , can any body solve it

Show the full output please, including the command you ran, not just a single line

Did you alter your .ovpn file so that there is no line with dev tun ?

no i haven't changed it

Could you show a screenshot of the first few lines ?

Other than that, just try to use sudo openvpn --config /yourconfig.ovpn --dev tun0

no its not working

Not working could mean a lot, screenshot pls 🙂

its now worked

the .ovpn file is null nothing there

I did what you said but it still doesn't work

use sudo

and path to file.

already

How can I downgrade to version 2.5.6

It's pinned in this channel

The first pin 👀

I get the nginx error, and even if wait another 30 seconds and try again, its not working ! Thanks for the response

Gave +1 Rep to @gray loom

Soooo about the OpenVPN.. I followed the steps as instructed yet I cannot connect

after adding data-ciphers AES-256-CBC it says --cipher is not set. Previous OpenVPN version defaulted to BF-CBC as fallback when cipher negotiation failed in this case. If you need this fallback please add '--data-ciphers-fallback BF-CBC' to your configuration and/or add BF-CBC to --data-ciphers.

so after adding data-ciphers-fallback BF-CBC it says WARNING: INSECURE cipher (BF-CBC) with block size less than 128 bit (64 bit). This allows attacks like SWEET32. Mitigate by using a --cipher with a larger block size (e.g. AES-256-CBC). Support for these insecure ciphers will be removed in OpenVPN 2.7

You could try downgrading the openvpn version to a stable/working one

Both cases, it tries to connect and keeps loosing connection

If you want to, the script is pinned in this channel

2022-07-06 20:22:46 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity) 2022-07-06 20:22:46 TLS Error: TLS handshake failed 2022-07-06 20:22:46 SIGUSR1[soft,tls-error] received, process restarting 2022-07-06 20:22:46 Restart pause, 5 second(s)

I did have 2.5.5 just 2 days ago and it worked just fine

After issues I went ahead with 2.6

Heh, the update messed up thm configuration

Issues again

AFAIK, 2.6.0 has issues, not the previous versions

didn't update. started having issues at 2.5.5 >> updated >> still isues at 2.5.6

2.5.6 works with thm,

It's what I've got going at least

yep it's not 2.6 it's 2.5.6 my bad

Can you confirm with openvpn --version?

There shouldn't be any errors with 2.5.6

OpenVPN 2.5.6 x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] built on Mar 20 2022 library versions: OpenSSL 1.1.1l 24 Aug 2021, LZO 2.10 Originally developed by James Yonan etc etc

Try regenerating the vpn config file

2022-07-06 20:35:55 OpenSSL: error:0909006C:PEM routines:get_name:no start line 2022-07-06 20:35:55 OpenSSL: error:140AD009:SSL routines:SSL_CTX_use_certificate_file:PEM lib 2022-07-06 20:35:55 Cannot load inline certificate file 2022-07-06 20:35:55 Exiting due to fatal error

This is really pissing me off.. even after regen the file I'm getting this

That's a new one

Before it tried to connect. now it won't even try

That's a faulty config, have you used the EU VIP server by any chance?

Regardless, change vpn server and get a new one

no IN-Regular-1

Hey, I've got that one

Other regenerating and updating your system, not a lot of fixes I can think of

OHHHHHHHHHHHH it worked

🥳

thanks bro/sis

Gave +1 Rep to @celest wadi

why I don't have permission to add photo here?

You have to verify first

!docs verify

i am solving lab of port swigger and trying to bruteforce login page hydra is able to find username but not password why?

username and password file are given in labs already

so there is no such chance that password will not contain in that file

@crystal marlin ?

@barren jewel ?

The support channels are for TryHackMe related issues, so please ask in #infosec-general or #general if someone is willing to help

ok thanks

hello

how do i get my certificate with my real name?

You put your real name in before you generate it.

when i click the blue button, it just opens a new page with my username on the certificate

it doesnt give me the option to put my real name

Is your real name there?

yes

Did you put your real name there after you generated it?

maybe, I did this all a while ago

if that causes this, then probably

You can't change it after it's done.

You'll either have to stick with your username, or use photoshop.

fr?

that really sucks man

I wouldn't worry too much about it, they're not professional. It's just a way of saying I took part in x as my hobby.

well I originally generated it with a username because it was just for fun, now I want to put it on my linkedin profile, but I think my username is kind of childish

I want to do the link, so photoshop doesnt cut it

do you know if future certificates will use my full name?

because if not, i might honestly just get a new account

Yo guys im having trouble with tryhackme vpn? I know how to connect to opvn as I Have done it with HTB but im getting trouble now

S-128-GCM:CHACHA20-POLY1305') if you want to connect to this server.
2022-07-06 16:50:22 ERROR: Failed to apply push options
2022-07-06 16:50:22 Failed to open tun/tap interface
2022-07-06 16:50:22 SIGUSR1[soft,process-push-msg-failed] received, process restarting
2022-07-06 16:50:22 Restart pause, 40 second(s)

did you do this https://www.tryhackme.com/room/openvpn

will do it now

is your ovpn install fresh?

ye klatest

If your real name is set, yes.

Check the pinned posts.

First message should fix it, if not, roll back your VPN to 2.5.6

worked thank you

as it says here, try downgrading to 2.5.6

ah okay

nvrm lol

thanks man, take care

Gave +1 Rep to @weary spindle

Happy Hacking!

I am running 2.5.6, still not working

changed the .ovpn file and checked, nothing works.

Have you checked the THM support script?

where ? what is that ?

https://github.com/tryhackme/openvpn-troubleshooting

Download and run that script (just like you would that one)

yeah, will do

um......

Seems to be clear what you have to do?
Regenerate your vpn config, you might even have to change server

Done those

From what to what server have you changed?

from IN to EU

tried others also

And it always complained about inline certificate ?
Or different error on different servers?

does time zone matters ?

Time zone don't, as far as I know, as long as you have the time set correct for your zone

But run the config directly please, so without the script so that we can see the output

how to run config directly ?

So sudo openvpn yourusername.ovpn

ok

Hello I'm not able to connect to Exploitation of AD lab can anyone help with this issue

#exploiting-ad I'll help you.

hey thanks, Now I am connected right, I changed the time zone.

DM ?

No, go to the thread there.

You changed the timezone to what?

Or the system time wasn't right ?

to EU

actually system time was something else

So just that I know, the time for the timezone you had previously wasn't right?
Or was it?

NO It wasn't right

Alright

thanks ❤️

If i remember correctly it was a 502, i tried again after some hours and it printed out a "Hmm. We are having trouble finding that site.", i tried again after some time and it worked ... idk 😄

does anyone know how to fix it?

?

I'm sorry I don't speak English XD

oh tnx

Thx for the pins, finally connected again after a long research which sadly only ended on the discord and not started there

none of the help on the pages and messages with pin works

solutions don't work

how to edit the data line

the same

Well, this seems to be going in circles

OpenVPN 2.6_git x86_64-pc-linux-gnu

vale lo intentare

gracias

works tnx

I'm sorry but I don't know much English

just with that I solved it thank you very much

Gave +1 Rep to @gray loom

+10

Hi , I have replaced the above line in the openvpn config file but now issuing the ssh command, i get tryhackme@10.10.86.61: Permission denied (publickey).

that was a typo Content Discovery

OMG, feel so dumb now. Thanks so much !

Gave +1 Rep to @gray loom

👍

hello i need some help. i've done everything as it says in the pinned messages but i still cant open my thm VPN. Is there some additional stuff to do?

done, i was being dumb ahahaha

What is the error message you are getting

sudo openvpn mora404.ovpn
2022-07-06 14:50:34 WARNING: Compression for receiving enabled. Compression has been used in the past to break encryption. Sent packets are not compressed unless "allow-compression yes" is also set.
2022-07-06 14:50:34 DEPRECATED OPTION: --cipher set to 'AES-256-CBC' but missing in --data-ciphers (AES-256-GCM:AES-128-GCM:CHACHA20-POLY1305). OpenVPN ignores --cipher for cipher negotiations.
2022-07-06 14:50:34 Cannot find ovpn_dco netlink component: Object not found
2022-07-06 14:50:34 Note: Kernel support for ovpn-dco missing, disabling data channel offload.
2022-07-06 14:50:34 OpenVPN 2.6_git x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] [DCO] built on May 30 2022

same as this one

someone already posted before but the thing was my version for some reason is not 2.6 or 2.6.git

and i've already updated and stuff so i just changed "data-ciphers AES-256-CBC" to "cipher AES-256-CBC"

and now its running fine 🙂

OK good

ignore it and report the person.

Did you click the link?

Nope I just wanted to see first

Did a box come up asking you to verify yourself or anything?

and why would you join this server and the first thing you post is in the tech support channel asking about a sketchy link? You haven't even been in the server an hour and you didn't even say hello in general chat or anywhere else. What made you decide to join this server?

he's in

@zealous yoke

all yours

I seen a verified mark by it and it talked about the thing i needed help with

Yes I verified in this server

@sleek jackal Ease up a bit. If you think something sketchy is going on, ping a mod first. Please don't minimod.

@naive dust Law enforcement usually doesn't like it when extortion or blackmail is happening - if you think you are a victim, your first move should be to contact law enforcement and get in touch with a lawyer

Yeah i just knew a crowd of people that would have the tools to do something like this and didn’t know if they had Finally came up with a means to do it

I was just worried for a moment and now I realized it was irrational

That said, what you've said sounds like a very common scam tactic. "I have bad photos of you from that time you sent them to a person off your contact list!" Typically this is nonsense, they got a contact list off some compromised service. Like skype, or your facebook friends list.

He’s all good with me I don’t blame him lol

Ok that’s what I thought but until today I never new about It

Also I seen this had some cybersecurity type stuff and I wanted to get into this at some point

I'm just suspicious of everyone

That's probably what it is. Haven't seen the message, so I don't know (nor do I particularly want to see the message).
If you think you are in any way in danger or someone is trying to extort or blackmail you, law enforcement is the way to go.

its is a 2FA bypass scam.

Lol I mean this is a server for ethical hacking

Yeah that’s what my friend said

He said it would grab the token of my account and take my account

you click the link but to connect to the server you need to 'verify' yourself. putting in your credentials bypasses the 2FA and grants them access to your account.

We get a lot of people who show up and think that means someone here will hack their partner's instagram to check DMs to see if they are cheating.

Yeah that’s what he said

I would just delete the link from your message if it were me. Wouldn't want anyone who doesn't read the chat or know any better to get curious and hack themselves.

Yeah that seems like that would be common

again, that's just me.

Yep.

Nope it’s me too

good deal

Thanks guys!

If the bot nukes a message, do not try to repost it by editing it to get around the filter

You got warned from the bot for posting the invite link, that should have been a red flag.

Yeah I just thought it was for discord links in general I didn’t know y’all had a bot to weed out servers

oh yeah... we got bots for everything up in here

Seems like it

Lycan is the latest AI one added

may have been the twitter training that sparked the initial reaction to your question

Hi guys, I'm having some troubele with the Phishing Lab

Where I need to place the defanged URL

it seems we need to remove the duplicate values because CyberChef displays duplicate values

but to be honest not sure how to identity those duplicate or extra values

anyone able to help me?

Hi there, my discord id that was linked to my thm account got disabled and now I'm unable to link my thm account with this new discord account. Can anyone help me out?

@broken bear still around?

No, those messages were hours ago.

@zealous yoke Are you around?

Not able to set up the VPN connection. Can anyone help?

can you show your error plz?

I also tried the thm-troubleshoot script, changing the servers, regnerating the .ovpn file

nothing works

can you check what openvpn version you have with openvpn --version

okay

2.6.0 has errors with thm config

I meant the first words from the output

yeh, you've got 2.6.0

ohk

there's solutions pinned in this channel for fixes

Okay thanks

okay

Can someone form tech help me with Exploiting Active Directory I w8 2h and the state is this

Hi, Is anyone else having issues with the THM attack box? I'm trying to ssh into my target machine but I get a "connection failed" error.

Apologies, it says "Connection refused"

@zealous yoke I've been trying to use the IN-Regular-1 server but the config file just gives a bunch of errors, I checked and the "inline cert" and private key are empty, I've tried downloading it on two accounts and it's still empty, pinging you cause you might know how to fix it

Let me take a look at this on our side (:

thanks :)

Gave +1 Rep to @zealous yoke

P.S the eu regular ones work

Does this happen even when pressing regenerate & waiting 30 seconds+?

@gray loom I'm busy with Netowrk services

yes, I've been trying for 30 mins or so and it's the same :/

Alright thanks

Let me look into this

I see the problem

Raising this

thanks again :)

parallel_read returned NT_STATUS_IO_TIMEOUT ra room when try to get spark_2_8_3.deb does any on know how i can fix it

ls

are you trying to transfer a file? What VPN server are you on?

im just using the thm ovpn

but which server are you connected to? You can use https://tryhackme.com/access to see the server name

We have an issue with our IN-Regular-1 server atm

us-west-vip1

Ah okay

Perhaps you just need to increase the timeout (especially if you're on a slow connection/long distance (the machine is running in ireland) you can use -t <seconds> to increase the timeout

im also using a kali vm

your connection is too slow

use the attackbox to download the file with smbclient

will i be able to cory the file over to me personal vm and if so do it scp the file

yes, you can copy it back, just setup a python http server and wget the downloaded file from the attackbox

ok ill try that

yeah good shout Zeeshan

ty to both of you

Hi ... Looking at the badges and specific the Security Awereness one ... I have completed the two modules on it. Shouldn't it unlock the badge ?

hey all
[5:09 PM]
2022-07-07 17:08:52 WARNING: Compression for receiving enabled. Compression has been used in the past to break encryption. Sent packets are not compressed unless "allow-compression yes" is also set.
2022-07-07 17:08:52 --cipher is not set. Previous OpenVPN version defaulted to BF-CBC as fallback when cipher negotiation failed in this case. If you need this fallback please add '--data-ciphers-fallback BF-CBC' to your configuration and/or add BF-CBC to --data-ciphers.
2022-07-07 17:08:52 OpenVPN 2.5.7 x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] built on Jul 5 2022
2022-07-07 17:08:52 library versions: OpenSSL 3.0.3 3 May 2022, LZO 2.10
2022-07-07 17:08:52 Cipher BF-CBC not supported
2022-07-07 17:08:52 Exiting due to fatal error

Check the pins.

i got it to work ty so much for you help

Gave +1 Rep to @celest wadi

no problem, I've had the same issue so I knew instantly :)

whats the bot syntax to give you rep

if you're using the IN-Regular server, then the config file has issues, switch to a different one

it's already done but it's + @dawn timber

Gave +1 Rep to @dawn timber

cool ty again

Sure Zee, let me try that

seems you were right, was banging my head against an issue which was not on my end lol.

👍

We're working on a fix for IN-Regular-1 as we speak (:

Great, Thanks 🙂

hi, i am trying to connect to vpn with openvpn but it is not connecting. I tried other configs but it doesn't work. can anyone help?

can i send a photo ?

okay

@brisk bough

Shall I apply what Zeeshan1234 does?

or Jalapeño | omn1j4bba

https://tenor.com/view/did-you-just-ping-me-gif-22421669

skill issue

it worked, thank you men who helped

Anyone ? 🙂

Is there any other module that i am missing here ?

Try to redo the second room by resetting progress and completing it a second time. Hopefully that will give you the badge. 🙂

Sounds like a plan. ty

Gave +1 Rep to @tawdry orbit

The living of the land room is still dead , for me (The remote desktop server has denied access to this connection. If you require access, please ask your system administrator to grant your account access, or check your system settings.)

if you think the room is broken, best to post in #room-bugs :)

@tawdry orbit It did the trick 🙂

@celest wadi issues re. IN-Regular-1 should be resolved now(:

it's still empty for me, I regenerated but no go

well, now the private key is there but no cert

did you guys fix the openvpn issue? it works fine now without changing the .ovpn files

kali updated(downgraded?) openvpn back to 2.5.7 so that might be it

thats cool

that's a lot of pepes 👀

can someone explain the yearly activity system pls? does it counts only events? cause most of times it doesn't count in the yearly activity when I get my streak!

Actually it's pretty straight forward

are the Day Streak badges linked to events or streaks earned

Streak

The sed command has been removed from the sticky?

Don't know if this is the right place to ask, but my subscription ends today and I need to update the credit card being used and can't find a way/place to do that.

Check one of the previous sub purchase emails you received, at the bottom of that email should be a link to a management page, I think you can update it there

actually, nevermind, I found a place I was able to do it from the email I received

thanks, I appreciate it, looks like I found it from the previous charge didn't work email.

Gave +1 Rep to @crystal marlin

Is there a channel to contact Discord mods regarding issues about the Discord server itself ? I can't find any

What issue ?

Getting spam DMs from a user from this server (promotion of illegal stuff)

Send me a DM with a screenshot of that pls

Hello 👋 can anyone help me figure out how to change my country to the USA in my THM profile? Not that I’m feeling particularly patriotic or anything but now that I’ve tried changing my phone number’s country code and all that a dozen times, I figured it would be a good time to ask for assistance 😂

check this message

@deft birch ⬆️

Oh sweet thank you!! I was writing an email and thought “wait, discord!” and after I hit send I thought “wait, the pins!” because ofc it’s in the pins 😂 thanks!

enjoy the old info by jabba

I am getting this error while connecting to THM with openvpn

2022-07-08 03:50:09 OPTIONS ERROR: failed to negotiate cipher with server. Add the server's cipher ('AES-256-CBC') to --data-ciphers (currently 'AES-256-GCM:AES-128-GCM:CHACHA20-POLY1305') if you want to connect to this server.

The first 2 pinned messages have a solution to this

Alright that worked but now I cant access any machines

I tried accessing Openvpn machine

doesnt respond

timed-out

I've lost my streak despite completing questions on consecutive days

Did you try refreshing the page? Sometimes that works for me.

hi guys, im new to linux and i am not sure if I am doing this wrong.

I tried to ssh using given credentials but I cant get through.. what am i missing here? entered pass correctly..

Does anyone else have this problem trying to use Attackbox in full-screen mode?

thank you so much! I wasn't too clear on which machine was which. Thank you again! i completed the room!

Gave +1 Rep to @gray loom

that doesn't look like full-screen mode. what does the tray to the left give you?

The tray on the left is for showing full screen in my browser. Meaning that I won't see the tabs on the top or the url.

The problem I am having is that every once on a while, the attackbox will forget that it is supposed to be full screen, and it will change its resolution to be half-sized. Usually the problem can be solved by dragging the tab somewhere else, which forces the attack box re-calibrate.

Like this.

to be honest it almost sounds like a browser issue

how do i link my thm to this account instead of Aries2#5915?

you'll have to talk to one of the discord admins

ah nevermind then don't wanna bother them

thanks

Gave +1 Rep to @inland knoll

my monthly subscription is over still i am able to access premium features.How?

what premium features? on the site or discord

How come I’m not levelling up?

Because you already max lvl ?

Oh yeah🤦‍♂️😂 I thought max was 15

if you want more info

!docs levels

Sounds like you have another window with the attackbox open somewhere. when that window refreshes the attackbox will resize. (happens to me on the regular, just refresh the bigger window

Hello,

So I'm currently running Kali as a VM, which has a stable connection. However, I'm unable to connect the kali machine the the THM OpenVPN.

After running > sudo openvpn [file_name].ovpn I can see the VPN IP address is shown but the command in the terminal keeps running, no session is actually established.

I have downloaded new .ovpn files and switched VPN servers but I'm still having issues.

Any ideas on how I can resolve this?

No..

Hello, I managed to set the Sticky bit on bash but for some reason it stills opens up as www-data, why is that?

The owner is root and it should open up as root, doesn't it?

start the bash in your current directory as a process

if you just run ./bash it takes your real uid, guid instead of the euid (effective uid)

If i am not wrong you have to use -p

I'm sorry, what do you mean as a process?

||./bash -p|| i guess it should work

It did work! does the -p flag tells it to use the suid?

no there's no privileged mode, that would be security hole

Can you explain me too? About this -p?

read plz 🙂

Yeah i meant that but you know my weak english

my english is also not the best and that explanation is quite difficult for me to understand

Thanks @celest wadi

Gave +1 Rep to @celest wadi

best to read up on bash uids, effective uid, etc :)

I will, thanks!

It's working now. Thanks

Gave +1 Rep to @gray loom

Im am doing the beaching Active directory network, and i am supposed to use the responder tool for man in the middle attacks. But im getting a deprecation error saying setDaemon and ssl sockets are deprecated. any idea on how to fix this? there is no specefication on what version of python im supposed to use.

hello again another issue with Openvpn again after update,

openvpn Goat73.ovpn
2022-07-08 09:23:58 --cipher is not set. Previous OpenVPN version defaulted to BF-CBC as fallback when cipher negotiation failed in this case. If you need this fallback please add '--data-ciphers-fallback BF-CBC' to your configuration and/or add BF-CBC to --data-ciphers.
2022-07-08 09:23:58 OpenVPN 2.5.7 x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] built on Jul 5 2022
2022-07-08 09:23:58 library versions: OpenSSL 3.0.3 3 May 2022, LZO 2.10
2022-07-08 09:23:58 Cipher BF-CBC not supported
2022-07-08 09:23:58 Exiting due to fatal error

#breaching-ad :)

any help would be very appreciated

can you show a screenshot of your ovpn file? specifcally from the <ca></ca> portion to check if it's empty

if it's something like this, then that's a bad config file

just saw this and it's working correctly as I get the same warnings but I was able to complete the tasks

yea, i let it run for 20 minutes and then finally it worked, thx anyway

Gave +1 Rep to @celest wadi

I always have another window with attackbox open, and that is the primary one that has the instructions I am following. It would be nice if opening attackbox in full-screen would stop the attack box from showing up in split-screen mode in the primary window. Is there any way to do that?

you should verify your thm with discord so you can upload screenshots

discord text is impossible to read

Yup, press the Exit Split View button. if you need to go back into it there's a "Show split screen" button at the top of the room

or at least best practices?

Thanks. I always thought that the exit screen button would turn off the full-screen window.

Gave +1 Rep to @deep spire

oh ok

sorry I remove it and send in general thanks

its not letting me upload a screenshot

!docs verify

verify

you'll have to verify your profile

verify

what?

read the link above

how about the beginning?

do you mean the second photo i sent

beginning of the file

oh nvm

Show a full screenshot of the output you get when trying to connect to the VPN, including the command pls

So I recently typed in an unknown IP and I have little to no knowledge on the area of the subject so im scared that typing in the unknown ip into my browser will hack me
Do I need to be worried?

try changing your vpn server to EU-Regular-2 and downloading the config again

Put it in ip lookup or curl it

Mh, not sure what the issue is, sry :/

yeah that's odd

I've gotten the same error but it was cuz of the bad config file

cipher negotiation failed

their's seems fine

config looks okay. Looks are deceiving i guess.

thank you so much really appreciate it, that worked

Gave +1 Rep to @celest wadi

What worked? Changing server? And if so, what server did you use when it wasn't ?

I changed the server to the EU-regular-2. And I think it was one of the US VIP2 ones

Hello,
I am planning to buy premium yearly can someone please tell me if I take the yearly subscription it shows 72$ so is it one time transaction or it goes monthly

Annual is one time.

I have turn off my firewall and also regenerate OpenVPN by changing server, though it's not work

Anyone knows this issue how to solve?

Yup, there is no solution!

I almost know for a fact that the solution is in the pinned messages if you havn't done any changes to your vpn config file

your openvpn version is 2.6_git

Hi, I can´t connect through vpn. Anyone can help me?

I get the following error "ERROR: Failed to apply push options"

Failed to open tun/tap interface

Yes,

follow the 2nd pinned message

I have edit this. But not working

odd...

Tried rolling back Openvpn?

Yup several times. Same problem.

Back to 2.5.6?

ya

oh my...

Regen the vpn?

Ya done. But same issue🤔

try the EU-Regular-2 server for the vpn config file, I had the same issues and it worked for me and another user 👀

I have been doing the previous advents of cyber, and day9 from 2019 is impossible to complete

This IP is dead

yea, that one is borked IIRC

check writeups for solutions and such

or ask shadow

gimme the flag homies

the flags are literally public

won't share the sites but the're pretty easy to find ngl

okay to dm it right???

I already found it, but thank you anyways

Gave +1 Rep to @plush bay

oh okay

Robert was slightly looking into maybe fixing this task but seems it might take a lot longer or not happen at all

Done this!
Not work. It kills my whole day😒

Provide a screenshot of the openvpn output when using EU-Regular-2 pls

does a daily streak change sth?

Huh?

the

The icon? no.

no

i mean the streak

the number changes as you complete task on consecutive days. Miss a day and it goes to 0

if it hits some milestones you get badges... also if it is above 45 you get 5% off swag in the swag shop

other then that as you are a subscriber no it does no change anything

ah ok

Thank you

Gave +1 Rep to @plush bay

no problem

And that's the EU server, right?
Also, wait longer as there is no error message in the openvpn output yet

Right

Did the VPN ever work for you previously, or that's the first time you set it up ?

Ya vpn worked well before. This problem happen when I switch for sometimes Hyper-V and again back on virtualbox

Have you tried to change your network settings in virtualbox?

And I have disabled hyper-v. Yes I have reset the whole network and also change the virtualbox network(Switch to Bridge, NAT and also make private NAT).

With the current config?
As there might be a chance that the previous server you used had issues, so changing the network settings wouldn't have solved anything

So you might want to try changing the network settings again with the EU config to see if that helps

Beside that, make sure your system time is correct

on encryption 101 course it says download files.. it downloads to local machine.. whats best way to get it in kali browser vm?

use vm to log into try hackme and download from there? or copy and paste ?

Copy paste for that room should work easily enough.
But you could also use scp with the credentials found when pressing the info button at the bottom of the browser kali

ok gonna look into the scp option was thinking that to but didnt know about the credentials

where is the info button at

got it iw as running in fullscreen tytytytyty

Everything was right. No network issue. Nothing else. By disappointed I just randomly change the servers >generate>run. Huh! finally, this server worked.....

☠️

Anyway, @crystal marlin thank you for your time.

Gave +1 Rep to @crystal marlin

Mh strange, well but at least it's working now.
Not a problem 🙂

Ya,😍 in my opinion, Tryhackme should give an eye to this issuse just to pop up the exact problem and where is the problem. Because It will help us to fix it quickly.

hello

i got fatal error when i try to connect vpn

what do i do with my token?

You verify

!docs verify

thank you

Gave +1 Rep to @crystal marlin

Hi there, I am trying to connect to the VPN with OpenVPN but it keeps failing and restarts

"Failed to apply push options"

You should post a screenshot of the output, so to be sure what the issue is, but I suspect the cipher issue, therefore check the first 2 pinned messages

@crystal marlin

Yep, it's the cipher issue, so either downgrade openvpn (1st pin) or edit your .ovpn file (2nd pin)

Thank you

I will try that out

@crystal marlin editing the .ovpn worked! THanks!

Gave +1 Rep to @crystal marlin

error if you click on the link
Linux Fundamentals Part 3 The find command - https://tryhackme.com/room/thefindcommand

Owner has made this room private.
If this is an error on our behalf. Please contact us.

I'd like to know if it's possible to restore a task when you're creating a room, or I'll have to write it all over again, the site bugged and the task 2 cloned into task 3... overwriting everything I did

hi there is this where i report a problem with logging in on the website im a subscriber

what does that even mean? what's the problem you have

i cant login into the website despite resetting my password..

just looking for help , thank you

if you have issues recovering your account, please contact official support through email, below is the email address

!email

thank you once againn

Hi, how do i fix:
[sudo] password for kali:
2022-07-09 03:16:41 WARNING: Compression for receiving enabled. Compression has been used in the past to break encryption. Sent packets are not compressed unless "allow-compression yes" is also set.
2022-07-09 03:16:41 --cipher is not set. Previous OpenVPN version defaulted to BF-CBC as fallback when cipher negotiation failed in this case. If you need this fallback please add '--data-ciphers-fallback BF-CBC' to your configuration and/or add BF-CBC to --data-ciphers.
2022-07-09 03:16:41 OpenVPN 2.5.7 x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] built on Jul 5 2022
2022-07-09 03:16:41 library versions: OpenSSL 3.0.3 3 May 2022, LZO 2.10
2022-07-09 03:16:41 Cipher BF-CBC not supported
2022-07-09 03:16:41 Exiting due to fatal error

I regenerated the configuration file and downloaded it

Which vpn server are you using ?

EU-Regular-1

cc @zealous yoke I saw that error a couple of times now, while the config file was looking fine, changing the server solved it, so I guess there is an issue with the server itself ?

EU-VIP-1 is working

How to list my all active machine. Anyone knows?

https://tryhackme.com/api/vm/running

This channel is for VPN and other technical questions related to TryHackMe

In Advent of Cyber 2019, day 13 it is impossible to escalate the priveleges, using the CVE-2019-1388

as the machine only has one browser

hi, I signed up for a premium subscription, can I cancel the renewal of the next period?

2022-07-09 07:26:45 read UDP [EHOSTUNREACH|EHOSTUNREACH|EHOSTUNREACH|EHOSTUNREACH|EHOSTUNREACH|EHOSTUNREACH|EHOSTUNREACH|EHOSTUNREACH|EHOSTUNREACH|EHOSTUNREACH|EHOSTUNREACH|EHOSTUNREACH|EHOSTUNREACH|EHOSTUNREACH|EHOSTUNREACH|EHOSTUNREACH|EHOSTUNREACH|EHOSTUNREACH|EHOSTUNREACH|EHOSTUNR]: No route to host (code=113)

this my open vpn giving me anyone knows what this means

is your vm connected to the internet?

ye

i think let me make sure

it isa

can you give a screenshot of the exact error message? that is hard to understand

ok

it works for 2 mins

can you follow the second pinned message in this channel to see if it fixes anything?

then that happends

ok

idk if that worked xd

can you curl 10.10.10.10/whoami to check if you're connected?

it should return your ip

it does now becouse it automaticly connected again

well, that's a weird error ngl

but if it works, it works

¯_(ツ)_/¯

ye but the same error will be there again

look

im restarting my whole pc i think

yeh, but I mean, does this give your ip still?

nope

ah damn

yeh, updating and restarting might be a good idea

alr

alr i will let u know if it happends again

@celest wadi i might know the problem i have turned on openvpn on my client and my vmaware

that might be the issue?

yep

ah

don't open more than one tunnel interfaces, it'll clog up the transmission and such

alr

so only use it on my kali vm

yes, only where you need it directly

Does anyone know how I can install john on my pop_os! install?

When I try to install it with apt install john I get version 1.8.0 out of 2013

you could get the latest john from github? not ideal but likely works

To be honest, all of that compiling seems so annoying

no releases or something?

AFAIK no

only source code releases/tags

docker could work if it's supported or in something like an ubuntu container

Will adding kali lists in sources work?

well, not sure how popos works but debian doesn't like it, one of the first paragraphs on "don't break debian"

Hello people. Help. How do I copy a file from LINUX to WINDOWS OS?

So we shouldn't use parrot repos in kali or something like that?

again not sure what parrot is built on but if it's debian based like kali then there should be no issue

Is one of them your virtual machine?

Gotcha

I’m using a virtual machine installed on my windows. Or maybe I don’t understand you.

"bi-directional copy paste"

Vmware or Virtualbox?

You can create a mount folder then

It’s Virtual Box.

Then do as Zeesh said, you may or may not need to install the expansion pack.

I’ve tried doing the Settings from the virtual box, still did not work. I dragged and drop tho.

This is also not THM related, so you may get asked to move over to #general or #infosec-general next time.

Do you have the expansion pack?

Guide me doing that please.

No. I’m not sure.

https://www.virtualbox.org/wiki/Downloads

You need that part.

Okay. The “all supported platform” part?

I’ll click and download.

Yup.

You may need to restart VB and your VM to take effect, I can't remember.

Use shared folders in vmware

They're not on Vmware.

ah

I can see a shared folder in the settings on my virtual box. I don’t know how to handle it yet

Please use #infosec-general or #general for further help since this is not a TryHackMe related technical question

In that case, shouldn't the channel be renamed to thm-tech-support?

Ngl I didn't know that either before I just read the channel description

and I've been here for over a year

Well as you said, there is a channel description, I used to read them right when I got into this discord.

Otherwise you would have to change a lot of channels, like thm-room-hints, thm-room-help etc

Hi, I had gone through the pentesting tools series and noticed that both the metasploit and burpsuite modules are not checked to complete the path. When I go to the modules individualy it shows 100%, and I recieved the badge for both. However, the series will not show complete. I have tried resetting the room progress and redoing them but this did not work as well. Is this a bug or have I missed a step?

My sub ends at: Sep 14, 2022, i can access paid rooms but when i go to the networks tab: You don't have access to any networks. My username: d2hvYW1p

Just a quick Q, are you doing it in the VPN page?

As the Networks are at the bottom of the Learn and you need to join the rooms before you can download their VPN.

Hello, I'm not sure if this the right channel to ask in but is it possible to remove an associated THM token to an old discord account and associate it to a new discord account? Or would that require a whole new token altogether?

that requires u to chat to admin

Thanks. I appreciate the info.

Best bet is to find the git repo and install from there.

Welp yeah

Do you have access to the old discord account?

I did that and compiled it (it works now, although I need to run it with full path)

do you know how PATH and symlinks works?

but really, this isn't a THM tech support question, so if you want to continue the discussion, it should go to #infosec-general @novel inlet

Yeah, realized that earlier today

Yeah

I tried running with symlinks but john kept whining about specifying a home dir in $JOHN but it didn't detect it

Hi juun, I don't believe so anymore. I had attached it to a protonmail account but deleted the discord account forgetting about the token connection. I tried using the original email address I had used just to double check but there's nothing associated.

IIRC the only mod who can unlink that token is @stray cove . One of the senior mods might, but I think the account lookup part is locked to the rest of us.

I can do a lookup yeah

Thank you. What information would you need from me?

message me via the tryhackme messaging system @ Hydragyrum. should be the same avatar as here.

will need the token though

Will do. Thank you both. I'll try and message you through there now.

not here though

yeah ok

for info

OK should have it now looking at the pfp's they match.

looks good, token has been unlinked

Awesome. Thank you all for the help.

np

Hi guys, has anyone had problems these days with Openvpn on Kali? It returns this error to me

WARNING: Compression for receiving enabled. Compression has been used in the past to break encryption. Sent packets are not compressed unless "allow-compression yes" is also set.
2022-07-09 18:15:26 --cipher is not set. Previous OpenVPN version defaulted to BF-CBC as fallback when cipher negotiation failed in this case. If you need this fallback please add '--data-ciphers-fallback BF-CBC' to your configuration and/or add BF-CBC to --data-ciphers.
2022-07-09 18:15:26 OpenVPN 2.5.7 x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] built on Jul 5 2022
2022-07-09 18:15:26 library versions: OpenSSL 3.0.3 3 May 2022, LZO 2.10
2022-07-09 18:15:26 Cipher BF-CBC not supported
2022-07-09 18:15:26 Exiting due to fatal error

what is your openvpn version???

all this after update of the Kali distro

try changing your vpn server to EU-Regular-2 and regenerating, that looks like a bad config file

ok I'll try and let you know

if the error is still there, the fix for this is in the pinned messages of this channel

nothing i changed EU-Regular-2 gives me this error on tryhackme

Uh-oh, this page has been lost in the matrix

hmm, that shouldn't happen, try using the US ones

in Italy ? I don't believe but I try

i used this AU-Regular-1 it seems to work,

@celest wadiThank you for your help

👍

Hey Guys, is it a good idea to go through eJPT exam in wsl2 kali distro?

Hey guys i recently got win11 and had to re-install wsl2

after that i can't stop vmmem from running even when i dont use it

when i wsl --shutdown it starts up automatically after like 15 secs

its taking a lot of memory any help guys??

None of these are TryHackMe related technical questions, please use #infosec-general or #general guys 🙂 @surreal totem @sour maple

Im on the breaching AD room, and i cant seem to get the DNS working. My access page shows that i am connected through openvpn, and i set up all the DNS steps how the page told me to. When i NSlookup the dns test, it cant find the server. What should i do?

** server can't find thmdc.za.tryhackme.com: NXDOMAIN

have you changed, /etc/resolv.conf and /etc/systemd/resolved.conf ?

Yep i have 😦

done systemctl restart NetworkManager? try it again and share the contents of /etc/resolv.conf plz

Both show the THMDC ip

did the command a few times and everything stayed the same in the files

# Generated by NetworkManager search 1.1.1.1 nameserver 192.168.1.1 nameserver 10.200.48.101

the network may have died but that's a lower probability

that was in /etc/resolv.conf

place your thm nameserver at the top, I had some weird issues

Ok

Do i still keep the ..1.1

the 1.1

this might also be an issue

yeh, you obvioulsy need one for internet access and the like

ok

when i do the restart network manager it goes back to the bopttom

it shouldn't be search tho just nameserver 1.1.1.1

Network manager will make it go to default.

Hey its fixed 😄

not sure how lol

Search is 1.1.1.1 so i can access outside internet

I guess putting it on top worked 🤷‍♂️

thx @celest wadi

Gave +1 Rep to @celest wadi

Are you on VMware?

yeh, not entirely sure of the syntax there

virtualbox

you're welcome 🙂

Ah.

thx @weary spindle

thx @weary spindle

Rep won't work.

huh bot not working

there's a cooldown for 5 mins

5 min cool down, don't worry about it.

ah got it

• @weary spindle

Gave +1 Rep to @weary spindle

how can u see someones rep

• @pallid folio

-rep @username in #bot-commands

Or leave out the username if you want to check your own.

What's in your /etc/hosts ?

And you have the target machine started in the 2nd screenshot ?

Okay, because it's saying "Machine IP" so therefore I assume you have used the IP of the attackbox ?

Instead of the target machine

Are you connected to the thm vpn ?

Mh, can I have the current target machine IP to try myself ?

Ye that's fine

Mh, seems to work fine, could you do ip a s and check if there is only a tun0 interface or any extra like tun1, tun2 etc. ?

Okay, then that's most likely the issue.
You are only supposed to have tun0.
So do sudo killall openvpn
Then connect again to the vpn.
Wait a minute then check ip a s again if there is only a tun0 now.

guys

Where is the search bar in the Firefox debugger?

I can't find it

Not a THM related tech question, but did you try Ctrl + F ?

Now I have tried it

But it doesn't seem to work like it does in the image

Take a look

Is that a THM room ?

yes

Okay, but what's not working?
You entered admin in the search bar and it found admin ?

Oh no

sorry

The image is from tryhackme itself

It is supposed to show what to do

oh no wait

it worked

I had to click on the code

and then press ctrl + f

thanks so much

Hey I emailed tryhackme about 20 days ago and haven't had a response back from them at all. I'm trying to change my payment info without losing my current subscription.

I'm using kali installed on a laptop and when I import the .ovpn file from the THM site I'm unable to access any machines but I get a THM ip. I've tracked it down to a cipher mismatch. I added "-data-ciphers AES-256-CBC" to the .ovpn file and if I run openvpn from CLI and point it to that file I get a good connection and can access other machines. If I import the edited file and connect through the tray icon, it doesn't work. What am I missing?

Check out the pinned msgs 🙂

You won't lose anything if you let the subscription go. After it lapses, you can add new payment info

Ah, thanks. So just better to downgrade then? The pinned message doesn't completely fix the problem.

Gave +1 Rep to @glad oyster

Alright I'll do that then. I gotta wait a year then 🤣

Yep, you should be able to cancel, the sub will continue, and then when it expires you can redo the payment

hi can someone help me with openvpn problem?

already solved

is the thm website down? I can't reach it in browser, ping it or trace route it.

Nope, seems to work

!website

Are you going to this link? Check for typos

yes, I also tried NSlookup and that couldn't resolve

all the other sites work fine though

hmm... I seem to be able to access it from a different browser though

I'll look further into it, thanks @woeful hedge

Gave +1 Rep to @woeful hedge

Hello I wanted to ask if i buy monthly subscription today and after 15 days i want to get annual subscription can i buy it with the existing monthly subscription or do i have to buy it after the monthly ends

You'll need to wait until the month end I think.

@gaunt surge Does this not fix the problem?

how do I change my country in the platform

I'm trying to change my country code in about me section, but after submitting its going back to Ukraine

https://tryhackme.com/api/user/update-timezone

this link is redirecting to dashboard

it worked then

Im still ukrainian

you have a vpn running other than the thm one?

no

give it some time and try again with the link, >90% it'll work

even if it redirects to dashboard?

if it redirects to your dashboard, that means it worked

how will it work later if its not working now? I dont have any vpns turned on, or dont have anything related to ukraine.

I changed my ip to US, and now its showing US in my profile. I think the platform is not identifying my country from my actual ip

your ISP may be giving you an ip that's in another location, in any case, look up "my public ip" and check what's your location from that ip to confirm if you're that much bothered with it 🙂

nope, my public ip address location is outside the Ukraine.

Lets just wait a response from one of the thm staff

if you want official support, it'll happen mostly from email

!email

got it, thanks

Gave +1 Rep to @celest wadi

If you use a VPN, that will influence how the time is set.

I was having the problem before turning on the vpn too, I just tried to find the problem by changing my ip. Turns out, platform showed US when I changed to us, but not showing my country when I use the actual ip

Hi guys, please can anybody help me regarding the issue of not getting monthly hacker badge even after getting top rank on monthly leaderboard globally previous month?
I sent an email on this issue to support email 10 days ago but didn't get a reply!
Should I sent an email again or wait for the reply?
Sorry for asking!
I know only a single person is handling lots of emails, I appreciate his work.
But I am confused, did my email missed for some reasons?

@bronze vale ⬆️

Do you have proof that you were top of the leaderboard? Because I'm 90% sure the top of the leaderboard last month was MrSpud

Hi All , I want to be premium and I am a student. How can I get student discount ?

Yup, I have
He was absent for last 3 days
Let me share SS

By the way, thank you so much for your response

Gave +1 Rep to @bronze vale

Have you been using writeups/ answer dumps to answer questions?

Nope, I did it by myself
I was doing hard work 2 months

I just learned from writeups

I'm going to have to review your account before I can apply the badge:)