Thanks @final mountain - I can't see a link there......

I don’t think you’re supposed to ssh into that machine

oh, I should install nmap locally and reach out to it like that?

task 2 is nmap so yea you'll have to install it

got it - thanks for the quick response @pine quiver and @final mountain - I really appreciate it!

NP 🙂

Any time

@fallen swift if you have the space I’d recommend making a kali VM

Comes preinstalled with a lot of the tools you’ll need

That's a good idea - thanks for the advice

This is question 13 on the tmux room. Is this a typo? Where it says "and it allows up to scroll up.."

The links for the cheatsheet and tools page for the MAL: REMnux room are busted. I had to go to archive.org to get the correct links to answer the questions for Tasks 3 & 4

@topaz venture

easy peasy :- any one solved this room ...anyone here ?

after nmap

Wrong channel

No help for new rooms

okay..i will try and will do it !!

Not sure if this is a known issue.. The walk through for intro to X86-64 says do command "aaa" and should say "aa" otherwise the following steps do not work.

You mean the following steps?

Also, that works fine for me

srry yea

aaa and then the following steps works for me

Not a bug.

aaa works perfectly fine.

when I was trying to run dc and other steps it was not working for me... but let me try again thanks 🙂

I'm getting this after deploying the machine of Task 21 from owasp top 10 room

Go to /

Then follow the link

nice

For a minute

I thought the topology broke

Working around bugs:

Public ip countdown also has the duplicate timer problem! It just loops and never shows the actual IP.

Similar problem with Access desktop countdown but it goes into negative values... Also it keeps decreasing by interval

Now it varies between -19s et -656s

Also When this bug happens, it is not possible to select the Access desktop button

TLDR: Timers on in-browser VM went weewoo big time

Task 4 at Room 'Authenticate', after successfully modifying the JWT token as admin user in request, I get a pop-up where it shows Internal Server Error 500 instead of showing a flag!!!

@lilac pilot any update on this one?

bpsplunk #31 should be community.splunk.com has since updated from answers.splunk.com

Update the room description for the #692465827143876689 channel to say #room-help instead of #community-help

The links for the cheatsheet and tools page for the MAL: REMnux room are busted. I had to go to archive.org to get the correct links to answer the questions for Tasks 3 & 4
@timber merlin

Thanks for making me aware, and James for tagging me. Will look into solutions to it ASAP

@silent lantern The issue has been addressed, as long as it doesn’t inhibit your VM everything should be fine :)

I think the timer has an issue. After passing one hour, it says machine expired but it is still on. The timer is given as 2 hours.

Not too sure if bug but I am still on a VIP VPN without having a subscription - If you have already downloaded a VIP pack, does it expire after your sub?

I think Skidy knows about this 🤔

I thought it was fixed

It was reported before, and yeah I thought it was fixed

Apparently not

He might have fixed locally and probably hasn't pushed the code yet 🤔

I don't have a screenshot, but after I terminate a machine before the timer expires, the Machine expired message still will pop up on THM a half hour later or however long

hey guys, i have a small problem and looking for someone to help me. I have been using in-browser access machine so far. I wanted to use a OpenVPN way to use my own Kali Machine. I have downloaded thm-troubleshoots and it seems to be all okey. I am connected to the vpn network. but when i try to open website in browser for example to look for login pages, source codes etc. it keeps loading all the time and the website cant be displayed fully ? Anyone had the same problem ?

#site-support

sorry, being newbie on this discord

No problem

In the newly released room: Malsearching, Task 3 -> Section: Visualising a Hash Collision:. The picture for that section does not show a hash collision ? It is the same one(7FpulNc.png) as the section above(Checksums Continued:). I think you meant to put a different picture for the section: Visualising a Hash Collision that shows a hash collision ? 🤔

Screenshot for info

👋

👀

Screenshot for info
@celest edge CC: @topaz venture

probably just a copy-paste bug

Not sure if this is a bug or not but for me in the 'My-Machine' page, the timer keeps switching times. I found that i have to click extend for it to like not switch

I've seen that reported a few times

Thought it was just me for a couple of days

That's also possible

But there's various timer bugs that seem to have cropped up lately

ah ok

still pretty weird tho

I think it's since the recent push that hides IPs

"Bounty hacker" shut down at an hour left. Hydra and gobust was unable to see the host.

@brave reef

bloke didnt you say you were going to sleep haha

@floral violet did you add any time to the machine at all

I did, but it told me to wait. 55mins

Room "SSRF - Task 3 " $boxip :5000/advanced " http://127,0.01:3306 || http://127.00.1:3306 returns target exits(maybe it is not a bug rather by design 🙂 )

Vip, I guess gets 2hrs now?

Yeah there seems to be a bug with adding time to the machines, I’m keeping an eye on them. Hopefully this issue will be fixed soon, I’ll give Skidy my findings when he’s free. Thank you for your report :)

Yup

Sorry for the phone pic, but it is grayed out. Can't add time.

refresh?

oh if you just refresh the page that fixes itself @floral violet

oh didnt see james's reply 🤓

also, skidy is online now if you wanna update your findings to him @brave reef

👀

I’ll have to do it tomorrow I’m too lazy to boot my pc rn haha, thanks though

The text file is on my desktop

Correct, silly me

typo in MAL: Researching. Task 3, question 4 should say billion not million

Root password is incorrect, I can't ssh either

#site-support

brooklyn 99 has some typos in various files, not sure if its intentional. (including things like ssh config) It's not a game stopper, but sure puts a hamper on easy data exfil

to reproduce: log into b99 and hten try to ssh back to your pentest workstation

Thanks for realising that up @celest edge @cinder crow cut and paste bug. I the entire contents of that room 5 rooms due to back end issues, so yeah. Thanks! Will fix ASAP

Also ty @timber marten same as above^

Hey guys, anyone seen issues with HackPark just randomly stopping accepting connections or needing to be reset quite regularly? It got so frustrating I have stopped doing that Room

@wide spade it stops after 1 hour no matter what it’s a known issue

@pine quiver Nope thats not what I mean. even when its not expired, it becomes unresponsive. Have you had other feedback from people about that box?

Before it expires, after 1 hour, the machine will stop no matter what

If you extend it for 27 hours, it will still stop responding after 1 hour

Ok let me put this simply. After a random time (maybe 30 mins) the box sometimes becomes unresponsive. telnet 80 doesnt work, not responding at all, but the box is still fully deployed. You need to terminate it, and then redeploy and start fresh.

Ok sorry let me rephrase:

Before it expires, after x long, the machine will stop no matter what, become unresponsive and you will have to reboot it

it’s a known issue
@pine quiver

What Bob is trying to say is that the machine pretty much crashes itself regardless of the THM timer due to some faulty bug on the machine itself. Known issue that cant be fixed and the only solution is to not do it, or just try to finish the machine before it does break itself

You have to speed run the box

Ahh ok perfectly fine 🙂 so its exactly what I was saying as well. Sorry i seem to have misread that. Apologies from my side

https://gyazo.com/ce632f81855655ae1636a90d857d7412

@topaz venture, there's a typo in MAL: Researching

LMAO

I've never been able to spell algorithm since year 7

ty Swa

all the (I'd argue) tiny fixes are being done now

ty for reporting all

CMNatic's got too much riddim 😉

i didn't get my 30day streak badge today

even though I touched 30th day

Give it like... 12 hours. According to skidy, it arrives at some point during the day

ah okay cool

@ebon oyster did you get your badge?

no I have not. So in the left pane it was showing 30 and in the dashboard it was showing 29. Now I solved one more question so both are 30 now.

maybe need to wait another 12hrs.

I was on a 56/57 day streak earlier this morning and now I'm on a 3 day streak. 100% didn't miss a day.

I'm also not sure if this is normal somehow but I'm in 198 rooms (195 finished) with 3 unfinished, yet it says I've only completed 186?

Hello, I was preparing for CEH and came on topic of whois and I see all information is redacted, is there any way to get around this ?

@viscid kite #general

ok

I was on a 56/57 day streak earlier this morning and now I'm on a 3 day streak. 100% didn't miss a day.

I'm also not sure if this is normal somehow but I'm in 198 rooms (195 finished) with 3 unfinished, yet it says I've only completed 186?
@alpine sand What's your THM username?

@frosty cape Slothzilla

@frosty cape Slothzilla
@alpine sand I've updated your streak to 59. Please make sure you're answering questions every day to keep it up:))

Also its mad to see how big your streak is! Keep it up :D

Thank you sir 🙂

damn that's a lot

Skidy I had a 435 day streak can I get it back

Says the user with almost 100^^

@frosty cape could I get my ~12 days as other users are getting theirs updated?

Says the user with almost 100^^
still, that's probably more than 90% of users

I've been hard in the paint for a couple months I guess >_>

@frosty cape could I get my 12 days as other users are getting theirs updated?
@urban flame Sure, I do check before I update mind:) Whats your username?

Whoop Whoop, WillGreen98

Whoop Whoop, WillGreen98
@urban flame Wait, you're already on a 74 day streak (damn)?

timtaylor is at 88 👀

https://ratelimited.me/udrPQBDePA8S.png

It should be 86 I think or higher

I kept complaining streaks were borked for roughly 2 weeks but can't remember the exact number of days

Yeah 86

btw Will, did your VPN get fixed?

It reset like 6 times in 2 weeks

Updated

when you had to answer two answers a day

Updated
@frosty cape much love

It shouldn't do now, I (think) I've fixed the streaks.

This was right at the start

they look stable to me

Ooh whilst you're on, could you also ban and unban me from Authenticate plz?

Or something along those lines

I still can't access it (when I was subbed 2 days ago)

@urban flame Wait, you're already on a 74 day streak (damn)?
@frosty cape THM all day everyday!

the higher the number - the lower probability of that user having a life

Pretty weird bug found by @heavy wyvern that i investigated further
when spawning a box with a guacamole iframe the iframe is actually inserted twice:

• once after the remote screen progress bar gets to 100% (deploying creates the first progress bar and calls the first roomSpecific.js:countDown)
• another time by the IP countdown timer when it displays the IP (countdown reaching 0 calls roomSpecific.js:countDown for the second time and creates a second progress bar)

so far I checked only on https://tryhackme.com/room/linuxprivescarena, not sure if other rooms are affected

reproduced with ninjaskills, the guacamole progress bar took longer than the IP timer so it spawned one before the previous one was ready

same goes for windowsbase and corp

looks like all the rooms with the in-browser RDP/VNC/SSH are affected

Does it happen on my-machine or just rooms?

didn't check my-machine

just checked

same situation happens under the hood but instead of the second one being added it just replaces the original one

If you leave a room with a deployed machine, the machine doesn't get terminated

Not a bug

would save resources though so it’s probably a good idea

Especially on free where you can only deploy one machine at a time. If you go to a second room and attempt to deploy, you are then required to go back to the first room and rejoin it just to terminate the machine

It's been discussed in the hidden chats, the staff are trying to get a way for it to be closed. The issue is that when people complete rooms, some people like to stay on the box and look for certain things and or try to get root if it isn't required. Others like to practice putting backdoors onto them.

Many times I've accidentally closed the tab and if it worked like that, I'd have to boot the machine back up each time I close the tab because that would register as "leaving"

No matter what happens you will have to press a button to terminate the machine because otherwise THM doesn't know if you want to terminate it or not.

Popup on room leave - "You are leaving a room with an active machine - Would you like to terminate it?" or some such

Although - Are those people completing rooms and staying on the box leaving the room?

I think a header is being put in place

Popup on room leave - "You are leaving a room with an active machine - Would you like to terminate it?" or some such
@wise maple #641405480547385354

just got a your machine is about to expire message with 1 hour, 23 minutes left

@brave reef idk if thats related to your thing

It is

Basically what’s happening, as an educated guess, is that you’re adding time to the machine but the machine is still counting down so even though you’re adding time it’s kind of like it’s not registering?

new rooms doesn't appear " MAL:Resarching & Ra 2 "

Linux privesc room, question one, will not accept the hash

There are about 3 Linux privesc rooms

@sacred sequoia Can I ask you to clarify which one?

One sec

https://tryhackme.com/room/linuxprivesc

It is that one

Sorry about that

Task, question?

Question 1

Task 1

Nope

Task3, q 1

replicated that here

@heady cosmos Sorry for the ping, can I get you to take a look at this? It might be an issue serverside so out of your control
Sorry tib, nothing to worry about

Thanks

@orchid remnant can I get you to check an answer with me for this first?

You can

What's up?

DM?

Go for it 👍

@sacred sequoia Not a bug, make sure you have the full hash

Glad it's still working. 🙂

Haven't updated that room in a while so would be weird if it just randomly stopped. I would blame the THM admins. 😛

There's been some weirdness with answers and XSS filters

Including an actual XSS vuln

Oh yeah I discovered some XSS payloads that wouldn't work in a room, let the creator know

The worst one is typing /etc/passwd into an answer box triggers BitDefender

Thanks REed the shell out of it. Learned something

The worst one is typing /etc/passwd into an answer box triggers BitDefender
@spiral flame lol

That's fun 😄

Some weirdly frustrating things to debug

The worst one is typing /etc/passwd into an answer box triggers BitDefender
@spiral flame The heck?

That's hilarious 🤣

Best bit, comes up as an RCE attempt

Not LFI etc

RCE.

The SPAM

https://i.imgur.com/5q0FiHJ.png

Fyi, the timer has over 1h 23m left on it too.

I have reported this to Skidy, did you add time onto the room at any point?

Twice.

There’s the issue

Even though you’re adding time, the timer is still going down in the background so it’s like having two timers on at once

There was at least 50 of those coming up from just two time add ons.

Yeah strange

Do I report regex mismatches in answers or leave it?

Refresh the page and the answer will correct itself.

wow it did! thanks

can anyone help me ? on Authenticate room

Yes, #room-help

crack password with Burp suite on authenticate room but

but Burp Suithe process is very slow due to which Mike's password is not being cracked.

Yes, #room-help

This is the bug channel

please help

Please move channel.

where ?

please tell me

#room-help, as I have said twice.

okay Thank you 🙂

not really a bug, but i want to know if i am alone to suffer from lags and system irregularity ?

not really a bug, but i want to know if i am alone to suffer from lags and system irregularity ?
@abstract barn what kind of lags/irregularitys

could be so many things

my bad, the box doesn't respond @dusk oak like i ping it (239ms) then the box cannot be scanned

the retransmission cap is systematically hitted

is your vpn working correctly?

yes Sir

u sure? no multi vpn etc?

also, some boxes dont respond to ping. try with nmap -Pn

magically, everything worked!

SQLi-Labs :

I dont understand about this room

can anyone help me

This is probably the wrong channel for that. This channel is for reporting bugs.

ohh sorry

i m new here

I'd recommend #room-help or #room-hints for help and hints with rooms

Not sure if its a bug, but the Vulenrability room asks to upload a >100MB memory dump to the website Hybrid Analysis. This seems to be forbidden (even when compressed).

err *Volatility room

It doesn't ask you to do that

Right. Extracted files != mem dump. Sorry.

Ｉ keep getting an error msg on a machine and im not sure where to ask for help

nvm found the room

@wicked grove ```
amgToday at 9:54 AM
Hi! In room Alfred, in the section of writeups there is a broken link

Not a site wide bug tho, just a creator bug

hello

..?

Hello 😄

I have a question

1 min

🤔

Timer has begun

Does anyone among you speak Turkish? 😄

#general please

it's a bug submission channel

They said they have a bug to report in #general 🤔

1 min

please

Timer has begun
@pine quiver you’re at about 37 seconds

This is the error I get in termux, what should I do?

😒

it says right there...

• It's not a THM bug, so should belong in #general

Where is it written

#general please.

okey

Whats the bug?

Shows completed in room

But there's also two

So something's up there

Oh yea now I see

why does it show 32 days old room even though it is released today

because it's not tracking the release time

Splunk room, task 2, question 31: you might want to update the answer to reflect the new website of the company (answers -> community).

I will add that to dark's list

Not sure if its a bug or if just happened to me by chance idk, but for the daily streak i was on 8 points. I then joined a room and was about to do it. I answer one question and clicked the 'completed' button but then i left the room because i wanted to do it at a later date (ik i could of just stayed in the room, i din't have to leave it but i did for whatever reason) but then when i went back to the dashboard i saw my streak went up to 9....i refreshed the page but looks like my streak went up...

technically i don't think thats a bug because i answered a question right? Or does the streak go up only when you finish a room completely?

technically i don't think thats a bug because i answered a question right? Or does the streak go up only when you finish a room completely?
@bleak radish My bad it is for when you complete a question.....DISREGARD what i said up above

yep

Doesn't even need to be one with an answer

yep just thought that through, my bad

Still in the splunk room, task 2, question #21: the requested answer does not match the actual splunk command (?? -> rename).

It's not actually rename

If you search through #692465827143876689 dark gives you the answer

I'm dumbfounded. I will do search.

rooms are being sorted by creation date not the publishing date. So the latest room pokemon is actually at the second page if someone sorts by newest.

Splunk room, task 2, question 31: you might want to update the answer to reflect the new website of the company (answers -> community).
@umbral grotto I actually had to do subdomain enumeration on their site to find the answer 😂

is there something wrong with advet of cyber day 13(Accumulate) i tried almost 20 times not able to connect to given ip

Nothing wrong. It doesn't respond to pings.

Closed: not a bug.

Closed: not a bug.
@spiral flame thanks i thought since it's not responding to my ping i can't work with it

Most windows machines block pings by default

Most windows machines block pings by default
@spiral flame ok

My web and ssh connections are very slow, and my connection is constantly disconnected, please help me

#site-support

there was about 1:45 min left to expire my machine but it popup that it will expire soon

also after a minute this tell me the machine expired

but it wasnt

I'm in the Linux Privesc Arena room and the in-browser machine show up and i can either access the in browser machine even if i'm not subscribed

Some free rooms have browser accessed machines

there was about 1:45 min left to expire my machine but it popup that it will expire soon
@Mr.Secret#0519 already reported many times ;)

site may spam you with notifications to extend your machines, for seemingly no reason even if the machine has over an hour left

#685858111952781324 message

how lucky i am

my mouse isnt there but it showed me this thing

hi, i'm new to "tryHackMe" and i was trying to start learning. i want access a machine via openvpn and when i was trying to download the OpenVPN configuration pack , i have encountered an error message as shown

what server did you try to download a vpn pack for?

you mean the name?

EU-Regular-1

and also EU-Regular-2

regenerate first, wait 10 seconds and then download

it works, thank you!

Hey, I've a bug on the "easypeasyctf" [Task 2] - #6 What is the password to login to the machine via SSH?
I missed out on some of the lines, so I didn't get the last 3 characters but the room still accepted it. I found out because it didn't work on the SSH as supposed to so I figured something was wrong.

its a regex

if you refresh itll show the correct answer

You were absolutely right.

But still, I submitted a wrong flag and it got accepted. A small bug ;).

not a bug, a regex

Which, granted, is a pain in the arse

hi

all

Do you have a bug to report @sacred hill? 🙂

no i want know somthing

Maybe ask in #general if it's a general question, or #room-help for a THM room? 🙂

"Task tips" when you create a room (the pop up). Grammar mistake in this sentence. Ensure no question is left blank (at the least have "Read the above"). -> at the very least

🤔

Isn't at the least valid? @spiral flame 🤔

at least, or at the very least

Ah

hi, i'm new to "tryHackMe" and i was trying to start learning. i want access a machine via openvpn and when i was trying to download the OpenVPN configuration pack , i have encountered an error message as shown
@deft linden This should be fixed now, please try again.

@frosty cape he already got it, just had to regenerate one and wait a bit

Oh right okay cool

https://media.discordapp.net/attachments/680459914828972076/733472585412640829/skidy.gif

How about the Pokemon challenge, should the bash_history not be cleared or is it by design all the flag locations and privesc is in there?

ya sure they are not commands you ran?

if not them idk

yes I'm pretty sure I didn't run those commands.

might be an oversight

¯_(ツ)_/¯

How about the Pokemon challenge, should the bash_history not be cleared or is it by design all the flag locations and privesc is in there?
@covert kernel Probably, yes, it should be cleared

Community room though

https://tryhackme.com/room/linuxprivescarena
https://tryhackme.com/room/linuxprivesc
Both rooms awards the same badge, both are walkthroughs. One got 19 questions, other one 21.

Yeah, they're from different people though

One is for Tib's privesc course, the other is for TheCyberMentor's.

Why is this a bug? @brittle juniper

EDIT: Not sure if its a bug, But I have not seen same badges being awarded by multiple rooms.

¯_(ツ)_/¯

Wasn't it the point of badges? You get one if you solve an specially specific room.

Doesn't seem room specific to me

iirc there were some that required you to complete multiple rooms

I'm missing the retro badge

Same

why there are some rooms that are released but when sorting by newest they aren't the first?

this happened to pokemon yesterday and now with tartarus

The fix is coming soon

You dropped this ™️

No, this isn't a soon™️ issue

:c

Definitely a subscriber, and have completed far more than 3 rooms.

Do you remember how you subscribed?

Through a voucher, or via /profile page?

Just thinking perhaps I missed something in the sub method.

Unsure? I think it's through paypal. I don't have a receipt in my account though.

Okay, I'll take a look into this

❤️

I think it was in May that I resubbed for three months.

Okay, thanks - will take a look:)

Question number reordering is broken

thats.. i- ok

is anyone helping anyone in this room?

This channel is not to "help" anyone, but for people to report bugs related to THM

If you need help with room, I ask you to go to #room-help or #general if it's not room related

Hello, in Common Linux Privesc at task10 suggest one room for practise but when i try to go there it saying that " Problem finding room.." there is the right place for write that right?

huh, weird, i cant find that room anymore either

The room was removed if I remember correctly.

Privesc playground was

Dan's content 🧐

Yeah

Common Linux Privesc wouldn't have been

Or shouldn't

Common Linux Privesc is still there

Task 10 probably refers to his room

hes talking about the linx, not common linux privesc

Task 10 probably refers to his room
@median sapphire yes, this is what he's talking about

maybe muir should remove it?

Hmm

I've already informed Oracle of something like this, through I guess it needs to removed from here as well

I can just remake the room if you give me 20 minutes and some chmod

I think Dan's room had sudo permissions for the binary 🤔

Should be pretty easy to replicate

It had literally like chmod +s * and full sudo rights

https://blog.tryhackme.com/thm-linux-privesc-playground/

there are so many options on that box i wouldnt be able to root it

id be stuck deciding which path to take 😱

I have my own writeup for it @median sapphire

Is it public? 👀

Yes.

Found it

https://tryhackme.com/room/oscpbufferoverflowprep [Task 2] oscp.exe - OVERFLOW1 -- Crash Replication & Controlling EIP

I think you'll want to receive after sending the buffer eg s.recv(1024). I've tested and doesn't work without it.

Hi, is this the place for reporting issues found in rooms?

Yes

nvm I was on the wrong user, disregard me :)

hello iam having a problem in cc:pen testing room

#room-help #room-hints

i dont need a hint or help with it iam having a problem with xD

Doesn't mean it's a bug 🙂

99%chance it's not a bug

Please go to #room-help

can i dm u with my problem

?

No. You may not.

😦

You can go to #room-help and give us enough information

Found a bug in the cicada 3301 room. It's small but I'm not sure if it's a room issue or site issue. Is this the correct place?

Yeah, go ahead 🙂

Well I mistakenly missed the first digit of an answer and it said I completed successfully anyway. But after a refresh it added the missing letter. I know this sounds kinda dumb just thought it was a weird glitch

That's answer tolerance

On longer answers, it can do that

Ahhh ok cool. Thanks 👍

I've asked before please fix the description for #general

Fix what about it? @cinder crow

"Use #site-support for additional help of that nature" it tells you nothing about what tech support is or what "of that nature" it is talking about

Could someone double check that RA password is crackable with rockyou? I got the hash but could not get it to crack using John.

i've problem with owasp top 10 room
i joined the room when it was introduced but it shows me that i'm not joined :/
i can't left the room and i can't also deploy the machine and solve the room
it seems buggy :/

@frosty cape Any ideas here?

Could someone double check that RA password is crackable with rockyou? I got the hash but could not get it to crack using John.
@tired solar It is

@orchid remnant ok I'll try it on a third system. Thanks for the confirmation

@orchid remnant @timber marten Ok I am sure there is a bug for RA. The hash is not crackable with rockyou.

I'll let 4ndr34z respond to that, but the machine won't have been updated since I cracked it when I tested it (can you confirm that @rotund cradle?).

@orchid remnant. Correct. Not been updated....

hummm..Can one of you confirm it still works as intended?

I understand it has not been updated but doesn't mean something else is not going as planned.

Yeah, give me a second. Mind DMing me that hash and I'll compare it to the one in my notes?

What wordlist are you running?

rockyou

Try forcing the hash format

I can DM the hash but it will be different bc netlmv2 uses server side

I did

John is picky when it detects multiple

I tried hydra on ldapv2/v3 and I get a hit but can't use the password it "finds"

What username are you trying with? I assume the exploit only works with one, but...

buse

I am sorry. I cannot test now.

I'll go through it 🙂

Thanks

Good way to get me out of bed anyway

Hello guys!

Anyone know this error

@nimble scroll Could you provide more context on what you are doing?

When ı am trying to connect ssh to server

yes it is saying the server needs a key to login

what server? a server in tryhackme?

Yes man

sorry the screen shot is cut off what room is that

Welcome room

I don't think you're supposed to ssh into that one

Hey guys I need some help

Yea you just need to be connected to the VPN

oh my got its my mistake guys sorry

@covert kernel if it's for a thm room go to #room-help, else go to #general

Also don't post the same message in multiple rooms

Ok

@tired solar It's cracked immediately for me with a clean copy of the box

(Sorry -- took a while to get through to that stage 😆)

That background

@tired solar what's the exact command you're using for John?

I suspect it might either be the version of John, or that the hash hash has something missing from it

That background
@median sapphire I only activate it for screenshots!

For reference, this is what I have in that hashfile:

I think it might be the missing = in -w, didn't have problems without it at first but works every time when you include it

Possible -- john is incredibly annoying with syntax

Yup

son of ....

stupid =

Hehe, well done Szy

It annoyed me so much when I found out about it

yea now I feel bad I got ppl involved

for stupid syntax

Nah, worth checking, and John is a pain in the rear end

thanks again for the assist. I was loosing my mind on why it not cracking right

Np 🙂

Good.:-) 👍 @orchid remnant

Yep, all good 🙂

hi i am in the "eritsecurusi" room, I have extended the room by 1 hour. after the timer passed the 1 hour mark the room promted that it got expired. however I can still access the box(even when the room ui shows it is expired).

That's being investigated

in OSWAP TOP 10 room the task 8 u can't connect to the given link so you can't make the challenge
ipbox:8888

@wet frigate You can.

no i can't i can connect on all the website but not on the 8888 port

i can show you if you want

What's the IP?

i stopped the machine

but i will launch another

and give u the ip

just 1 min

10.10.118.119 @spiral flame

port 8888 for the task 8

Deployed my own

wtf

Then there's your one

what i can do

i've relaunch the vpn

restart machine

If you're still having trouble, go to #site-support to actually fix your VPN.

This is not a bug.

okay thank u

Ok, can confirm something def up with timers

Just got a notification that something's expiring, like an hour after I manually terminated the machine

Issue with Alfred, sometimes can't get the reverses hell after many restarts. Not just metasploit, also netcat. Completed on the THM Kali machine, not sure if this is an issue that can be solved or if it is already known.

https://discordapp.com/channels/521382216299839518/522158539129618453/743417501324541992

@wooden igloo

Issue with Alfred, sometimes can't get the reverses hell after many restarts. Not just metasploit, also netcat. Completed on the THM Kali machine, not sure if this is an issue that can be solved or if it is already known.

https://discordapp.com/channels/521382216299839518/522158539129618453/743417501324541992
@brave reef that looked like it worked with the regular netcat listener did I see something wrong?

No it dies after they get the connection

Well if they were originally trying to catch it with a meterpreter they might’ve had the wrong payload

Nope it's all correct, they even followed a writeup. Died everytime

Ah hey guys 🙂

Jabba thanks for raising this issue

hey, I have an issue with the XSS room's filter evasion step

my payloads generate the expected 'Hello' alert, but I don't see the flags

@dapper willow known issue. The room is very broken

You can get the flag if you keep trying but I’m not sure it’s worth it tbh. It’s looking for a specific input and as long as you get the pop up just know you did it in your heart

lol, that's a terrible start for the tryhackme experience 😄

(1st room)

Hmm, it's being reworked

in the options there is also a "known issues" option, which doesn't show any issues

if it is a known issue, I'd expect it to show up there?

Only admins can post issues there, issues are posted in #685858111952781324

ok, so how do I get through this so I can complete the room? can I ping my solutions to an admin or something who can verify them and let me move on?

If you want to wait till smackhouse is on he’ll tell you how the room wants it done

Ask in #room-help

just out of interest was I right about the jigsaw box not being possible on THM?

Looks like it 🤔 The author of the box was busy so couldn't replicate and he's pretty inactive so 🤷

think it's likely broadcast is filtered by your network 😄

Probably, I'll talk to one of the admins later 😄

The room will most likely be made private 🤔

which means no one legitimately completed it here 🤣

RIP

There's a chance they did before it broke

It was always broke from the looks of it

And it got past release? tsk tsk

The box was ported from vulnhubb

It's one of zayotic's

Pretty old box too if I recall

well the socat command could probably be modified too

Oh in that case can't you get a copy off vuln and get the answer for the question?

yeah can do it that way

I did

Yeah that's how the write-ups did it

well the socat command could probably be modified too
@zinc viper Yeah, but zayotic isn't really active anymore, so not much can be done there

does it have to be the box creator that mods it ?

The admins could modify it, but it's more likely to be made private

Yeah if the creator doesn't fix it they won't so I'd say do it ASAP

The room creator is a mod, and he isn't active anymore, you can catch him on the Vulnhub discord, he's a mod there as well

shame really its a cool box

Most of zayotics boxes are! 😄

Received this email even tho I have been active and completed a room last night.

day 44 of my streak today 😄

Very nice, we have a few people at 100, I stopped around 39-40

I'll be less concerned after the final badge tomorrow

That's a voucher not a badge! :D

I mean discount

That's a voucher for the THM swagshop

is it not both? awww

Unfortunately the swagshop was delayed, it's ready to be released, but delivery times are very high due to COVID

Should be within the next month or two

What's the problem with Jigsaw Mal?

Here: #site-bugs message

Currently from the looks of it, it's currently impossible to solve it on THM

Which means everyone copy-pasted the flags

Ah, I see

except me 🙂

@celest bronze I know you did it on THM, how did you get it?

0day did it on THM? 🤔

I brute forced the flags

I believe so

Ezpz

No chance he used the writeup either

Yeah

I forget though

I may have it in my notes

I can check shortly

🤦‍♂️

Thanks ♥️

Of course!

@celest bronze can you ping me ?

When I did Jigsaw1 & 2 there was no writeups!

Not currently @zinc viper

Everything okay?

no I mean when you look at your notes ...

If I have notes

lol

we'll see

0day does everything from memory

😄 I'm too old for that 😄

0day is dreadful for taking notes

But @covert kernel is worse

I used to document everything including the stuff I tried and failed with 😄

but not for very long

Sent him what I have

We'll see if he was missing something

My notes are pretty bare

@zinc viper Any progress? 🧐

If you enter an answer and quickly or accidentally press backspace it counts the answer as correct even tho it should be incorrect

I would post but don't want to show answers

That's just regex answer tolerance

So nothing can be done about that?

Refreshing the page will fix it

oh yea I see thanks

@median sapphire nothing new 😄

I've got some rogue text!
https://i.imgur.com/6qrAwGP.png

Also, @median dome any chance you could convert the text header to an image? @vocal raptor can explain to you, it's real bad for screen readers

it's anonymous hacking the webpage

It does a little wrappy wrap

It wraps the text or it gets the hose again

Pulls one of these for me

^^ it does that, and also for A11Y purposes it is literally hell try to listen to that header in a TTS lmao

I'm comfused

What's wrong

I couldn't find a good text image of Anonymous

tl:dr

screenshot the text

add it as a picture

Okay

paste the ascii art into Google Translate and let it read it out to you

and that's basically what someone using a screen reader will hear

Okay so just remove it is what I'm hearing

just replace it with a picture, and then you're good

Got it

Can do

Later tonight

Sweet

@flint vine don't know if you're the one who owns the shodan room but the 2 most popular country for googles ASN is no long the right answer, the right answer has move down to the 3rd position! hope you can get this fixed soon!

🤣 That's an unfortunate name to have...

@vocal raptor

You're up

lmaooooo

whoops

oh no

I wouldn't worry. Anyone with the same name as a mod is gonna get a tonne of pings...

not more shodan issues

i can dm you the answer

@flint vine don't know if you're the one who owns the shodan room but the 2 most popular country for googles ASN is no long the right answer, the right answer has move down to the 3rd position! hope you can get this fixed soon!
@abstract gorge task num?

question num too 🙂

let me look

task 4 question 2

🤦‍♂️

I feel sorry for this poor other Bee...

So we got 2 darks and 2 bees.

haha yeah pretty much

2 Skidys.

And only one Oracle!

Oh

Oops

fixed

lmaooo

also awesome

What you removed the other Oracles for me Bee?

Oops, all Oracles.

@abstract gorge pls dont dm me Q.Q

sorry broski

But there's only 1 0day. Praise.

didnt wanna put the answers in the bugs chat

@thin forge I'm going to ask you a question, which I'm pretty sure you'll know the answer to

Did Ryan do this?...

Because I can see Ryan doing this

What the diddly dun. I literally just checked and only Ryan showed up.

he must have lol

Now there's 2 of them.

@celest bronze are you abusing your nickname powers?... 🤣

I don't know if Ryan did that tho. Probably. Sounds like a total Ryan thing to do.

That. It. Does

@orchid remnant That isn't me 😦

So of course I did that

smh

Like a month ago

🤣

It's coming like this

@pine quiver @brave reef Morning guys, did anything come of the Jenkins problem?

No, it was working for Bob which means it’s an issue for you and we can’t do much about that sorry

Ra 2 spelling mistake: "Just when they thought their hashes where safe... Ra 2 - The sequel - By theart42 & 4ndr34z" in the description

"where" -> "were"

@keen bough said but i want to report that too

Yup it looks weird

@pine quiver @brave reef Morning guys, did anything come of the Jenkins problem?
@wooden igloo like he says it works for me. I can see what’s up if you have time later

Oops sorry for ping jabba

It ok <3

Yup it looks weird
@keen bough u'r right

Good afternoon, I'm not getting the Stealthcopter ctf primer1 room, can someone help me?

Please use #room-help for that, this channel is intended for reporting bugs 🙂

#room-help Good afternoon, I'm not getting the Stealthcopter ctf primer1 room, can someone help me?

Along the side bar, click on #room-help and type your message there please

This is still the bugs channel

Thanks, spelling-@vocal raptor 😊

?

I don't know if this is a bug

But this room is shown to me as if I hadn't done it

It's funny haha

I believe there was a task removed, which might be what broke it

Oh

No problem

attack kerberos some misinformation

no its not

they still dont support networks

Ya because you won’t gib networks

Think I might have found a very small bug. Looks like the completion percentage in the learning path is rounding up from 99.xxx% -> 100%

Its prolly a known bug, but I think it was worth repinging.
KoTH machines remain alive for one more hour if there had been a reset, and this is very annoying if I am playing back to back and some rev shell loop in last machine keeps sending me revshells on new machine.

Haunted by rev shells.

Hey there is an error in OWASP top 10, XSS room. Even right answers are marked wrong. 🤔

the deployed machine is reporting error

Go to /, then go to the page it tells you to

Hey there is an error in OWASP top 10, XSS room. Even right answers are marked wrong. 🤔
@covert kernel You're not meant to submit the payloads, you're meant to submit the flags that you get

okay

-https://tryhackme.com/room/rpnmap shows the room logo and description, however making the jr a jr or join room link only shows thms logo

for example

https://tryhackme.com/jr/rpnmap

Room: /rpburpsuite
Task 9
At the bottom of the paragraph containing information about the next series of tasks, the room recommends checking out the older BurpSuite room for more practice. Only problem is this room is private.

For some additional practice on using Intruder, check out the older Learn Burp Suite room here on TryHackMe
Room referenced in the link: /learnburp

Room: /rpburpsuite
Task 9
At the bottom of the paragraph containing information about the next series of tasks, the room recommends checking out the older BurpSuite room for more practice. Only problem is this room is private.

For some additional practice on using Intruder, check out the older Learn Burp Suite room here on TryHackMe
Room referenced in the link: /learnburp
@thin forge this is an amazing format and we should adopt it

Interesting 'problem' with the basic pentesting room. I accidentally skipped what I was apparently supposed to do (cracking the ssh key stuff) by just opening the restricted pass.bak file with vim lol

/releases could do with an update?

Ah, that also reminds me of same problem, I am not sure if it's intended, but I've played some rooms, where vim/vi/vim.tiny/vim.* had ability to edit higher privileged files from a basic user.
And I am very sure that in most of the cases that was not the intended method to gain root.

In bsidesgtlibrary room, it is clearly not the intended method to be able to directly edit root only files using vim(without sudo or anything), but it allowed me to. So something's here for sure.

Hi team there is a question bug on Task 3 of the Google Dorking Module. (https://tryhackme.com/room/googledorking) The answer to question #3 is not the same as what is appearing on the site https://neilpatel.com/seo-analyzer/. I imagine this number will continue to change over time @topaz venture

This has been raised again and again, and hasn't changed

The usual issue is people not reading the answer format

Hey, i have an issue when the website tells me my machine is about to expire - and i prolong it, it still shuts off

Already known

Refresh your page

okay thanks!

@spiral flame The site is 1 higher than my answer from when I completed the room. I apologise if I'm being stupid and reading it wrong, I can send you screenshots over DM if you would prefer.

Wat

On the website:

That is not my answer

Hence why I sent Dr.Groove here.

@orchid remnant plz fix answer T3Q4 google dorking

<3

@topaz venture that's yours 😁

ah, seems i have the same issue as Kabba

Jabba rather

Oh the empire issue?

jabba how dare you have issues

@iron merlin Dashboard says "next level" in front of it

Derp just realized lol

Yeah I was behind a level before the score switch

Is the page score a known bug?

Cmn has been tagged

anyone know the answer so i can complete it? it is the OCD in me.

It won't have changed much 😉

tip? 5 give or take or more?

i'll do it last before i start going from 80 +1 loop

@spiral flame thanks found it.

On Common Linux Privsec room, I’m getting an error stating uh oh undefined on task 4 question 6

#room-help

or #room-hints

Ok thank you

@pine quiver Fun fact, this was actually a bug

And still is

Uh Oh! Undefined isn't a room help thing

@brave reef

I tried~

It's a bug with bitdefender rather than the site really

😭

i sorry

on the jupyter101 room, there is a link to support material on task 2, but the link doesnt work (leads to a 404)

I started moving all my hosted stuff to another provider, so that was an old URL

I’ve updated the room now, sorry about that! Should be okay now @dusk oak

yes works perfect now 😄

Solid 👍

@heady cosmos The "Windows PrivEsc" room is broken can't do it without having to reset everyones passwords. Since the room is older than the password policy.

Also the room still shuts down after an hour. Even with extra hours

In CC:Pentesting, a specific flag is asked but answering - works. Maybe the answer tolerance, but it's the only question it worked for

Refresh doesn't fix it ?

Ray is saying that it takes - as an answer when it shouldn't..

Yes it’s just answer tolerance

@heady cosmos The "Windows PrivEsc" room is broken can't do it without having to reset everyones passwords. Since the room is older than the password policy.
@fossil haven I'll fix the password policy, thanks for letting me know.

stuck with last uopesay question, i can't find hash

#room-hints unless you're sure it's a bug

@topaz venture hey sorry for the ping. it seems the site http://googledorking.cmnatic.co.uk 's SEO score has been changed.

thanks for letting ke now (:

reeeeee a bit of DNS downtime and SEO goes up the fritz

apparently the site is ||1|| point better now.

I just checked

I've removed it needing an answer so (:

give it a cheeky refresh

would help if I save the changes

There goes 8 points

F

F

There's your reward for reporting a bug 😉

in steel mountain, first task first question, it asks for the employee of the month. the hint is ||reverse image search|| but the name of the image is the answer, hence no ||reverse image search|| is required.

TryHackMe Attack Machine speed is so good but i have keyboard issue some times not type and must refresh i think when i hit CTRL it not work

I have just deployed Attacktive Directory machine and a basic port scan gives me more ports open that the required/prefered answer for TAsk 3 QNS: 1. Could you please check this ? 4 more ports are open than usual

@quick frost the room says sometimes windows is just being windows

If you go from the Hacktivities link to a room, then go back to the Hacktivities link using your browsers back button, the filters will still be selected, but the list won't be filtered. Subsequent changing of the filters will only filter by the one changed, ignoring the rest.

in ZTH: Web2, task 11. The wordlist given in the hint (big.txt) causes an error on at least one entry when using wfuzz. it may never get to the correct filename because of this. In the big picture, this doesn't really matter ||since you might not need this wordlist to solve the challenge||, but it could be very confusing to a beginner audience

In Firefox (Firefox Browser Developer, 80.0b8 64-bit, aurora update channel, Windows 10) I seem to be unable to expand the Socials tab in the left-side menu. I had the same issue yesterday but after updating the browser at the time it seemed to work, but it's now broken again. Does anyone else have this issue with Firefox?

Works on 79.0

In Firefox (Firefox Browser Developer, 80.0b8 64-bit, aurora update channel, Windows 10) I seem to be unable to expand the Socials tab in the left-side menu. I had the same issue yesterday but after updating the browser at the time it seemed to work, but it's now broken again. Does anyone else have this issue with Firefox?
@desert tulip adblock maybe ?

thx @native tangle, apparently it was my adblocker.

@heady cosmos The "Windows PrivEsc" room is broken can't do it without having to reset everyones passwords. Since the room is older than the password policy.
@fossil haven Have fixed. New version is live in the room. It might be a bit slow. The admins are going to up the specs in the next hour.

@heady cosmos thanks again for fixing/updating the machine!

@covert kernel

in ZTH: Web2, task 11. The wordlist given in the hint (big.txt) causes an error on at least one entry when using wfuzz. it may never get to the correct filename because of this. In the big picture, this doesn't really matter ||since you might not need this wordlist to solve the challenge||, but it could be very confusing to a beginner audience

Huh

Hi there, im in the room Scripting and the medium challenge deployment is very buggy - im finding it often unresponsive

It is not, you will see that the port will rotate every 4 seconds. Meaning every four seconds one port will close and another will open. You need to work around this.

no, the starting point is [ip]:3010 which should at all times be up but is not

"Go to: http://<machines_ip>:3010 to start..."

What’s the machine IP

10.10.85.34

Works for me

sure try now

it timesout

Yup still up

it works then it doesnt

Run this

!vpnscript

Oh wait I sent the same screenshot twice

This is the other one*

uhhhhh i had more than one connection running, ty 😆

August 20th is before July 11th?

lmao where is this

i knew the dates on the graph were weird sometimes but not that weird

@short jackal new box (spring) graph

https://tryhackme.com/room/spring

this is weird af

The description is also typo'd (upto -> up to), but that's more minor ;p

August 20th is before July 11th?
@wise maple Weird, I'll investigate why that happened. Thanks for reporting.

Np - Good luck 🙂

hey, can't seem to DL my openvpn config file, getting 404 instead of download whatsup with that?

try re-selecting the vpn server and maybe regenerating the config

if that doesn't help then the server might be down 🤔

It helped reselecting, thanks 🙂

Guys i have a problem with all machines. Sometimes they responding and sometimes no. It's a big problem for me. Everything ok is with my internet and vpn. I have a connection and everything. Sometimes i can run exploit and sometimes no, couple of time i trying do sometimes, an attack, wpscan for example when i run any password attacker is problem with responding, connection is not stable 😦

http://paste.offsec.com/?5a410d75f408ec99#vRbCJPxUKhXiKhhOzRAQxsceMb53iMWvGtHQlkHG6fQ=

it is my vpn log

Whats happend with this?

it looks like the VPN might be dropping and picking back up over and over?

try to regenerate the config

ok i can try

but witch server should i choose?

i am from EU

EU-VIP or EU-Regular?

if u are subscribed, vip

i am from Poland

should i choose EU-VIP 1 or 2?

i think just test with both

just make sure u select one, generate the config file

and then just run it once, no multi vpn

ok so i had a 1, can i try 2 now

yeah select it, then generate the file

ok, so 2 look's more stable

thank you guys! i like this platform. is my second subscribe 🙂

great 😄 always make sure you dont multi vpn and then it should all go smooth 😄

yep

just killall openvpn

and creating a new connection

now have a tiny problem

wpscan is cracking password for jack machine now

and sometimes i have a :
Error: No response from remote server. WAF/IPS? (Couldn't connect to server)

why i see it?

maybe my isp have a WAF or IPS?

Have you googled that errror?

ah..nope

one minute

ok --random-user-agent and is much less of this errors..

I'm not sure if this is a bug in the distribution or in the way it has been installed but when you highlight things in kali inbrowser Maxine to delete, it doesn't for some reason.

It waits until you have inhighlighted it all and then gone to end of line

this wpscan was very slow

but now i tried with more threads and i hear my GPU is working now 🙂

hey! it shows my rank as "Satoshi Nakamoto" ! whats that supposed to mean?

That's not your rank

This happens too often and I can't type the questions

I always have to delete the whole task an start again

p.s. I have worked too much on this current task to delete it (T_T)

nvm I deleted the task. but still look into this

I've been managing tasks / questions this last week or so and I haven't had that happen (that ain't to instantly dismiss it)

Least not ever had it happened

Browser / extension interferring perhaps?

I use very limited extensions, I can try disabling them

I really recommend making the tasks in google docs or notion first, then writing them up as HTML and just using that rather than the WYSIWYG editor

Noted

My friend cant view the index page of the ctfs

Can someone help him ?

That doesn't sound like a bug to me. Can you get them to join the discord and go to #site-support with some more detail?

Ok

fixed

You got that one too? 😱

oh

not that one

Its different one 🙃

Cat my friend

Where's the issue there?

there should be a "to" there

it allows you to find data inside of data

That ^

James

Whoa small writing

Im gonna need another cute doggo

Hahaha I love when brains autocorrect.

#general there's one

For instance let's say you know you have the file name of test1234

Jesus Christ Pars. Grammarly or something...

We're going to run out of dog pictures

I'm assuming you don't mean if like a conditional statement?

@sick coral shhhhhh

you arent just hurting me

you're hurting James

Huh? No. These need fixing.

an innocent bystander who loves dog pics and hates seeing this

Pars fixit.

James shush

I am trying to sound emotional

DeadCatLady

we have families

obligations

cute dogs to attend too

when you send these pics you arent just hurting us, but you're hurting them

you're taking away the time we have to be with them

Did you find all the grammar errors before I do? 🙂

Pars, admit it. You have nothing to do but play mahjong. And fix grammar.

That

is

true

and frankly james I am offended

which is a violation of rule 8

!rule 8

Rule 8: Keep conversations SFW (Safe for work). This is an educational and professional environment, be sure that your words do not offend or make other members uncomfortable.

Actually, Pars plays Go Fish

Sundae

It is the ancient high culture game of mahjong not this silly go fish @thin forge

Go Fish is enlightenment. You not appreciating it is a bug. Therefor, I'm reporting the moderator, Paradox, as a bug.

Closed: we tried to fix it but his parents said he was "a perfectly normal guy" and we should "stop bothering him and let him play mahjong for hours"