#room-ideas

I had never seen something like that, do you have an example?

The MSDN issue came up in the windows event logs room on Task 4, the other 2 I came across just now on pyramidofpain (didn't realize it was a beginner room when I started). https://imgur.com/a/T8JFhxG
There have been other weird question wording issues I noticed but can't recall.

true, but for the url thing, my method is looking at the answer format that just gives it to you, the wording is a bit off but I don't think it should be a big challenge to get past it.

I spent 15 minutes on that one going "WTF" thinking the task was linking me to the wrong report, trying to find URLs in the HTTP Requests tab with zero records

Hello, i dont know if it's related to here, but can the room "OWASP TOP 10" be updated to the recent update of OWASP? (2021), things have changed....

It was for an event, and much of the top 10 is the same

I would like to see more red teaming with corporate environment like AD and Cloud technologies, thank you

definitely wip

Who could I talk to about creating a room? I'd like to ask some things about the process

-arole @rapid kelp Creators-Lounge

➕ Gave the role Creators-Lounge to Razvi#1603

Enjoy 🙂

Thank you 🙂

Hi great people, I think it would be great to see a room called Year of the Tiger as this year is the year of the tiger and adding it to New Year series.

The one I have in development is a bird
But yes, I think a tiger has got to come next

is this the same one from two months ago 👀
#room-ideas message

Yes -- I have zero time right now

Uni work /Securi-tay stuff piling?

That and another tonne 😆
Fortunately I enjoy being busy

Not really an idea but I really like the AD rooms a lot

I'd love even more rooms covering it in detail (and explaining the theory rather)

I haven't been able to find the right resources to learn more about AD so 🤷

Quite a few planned for 2022.

you can download win server eval license 180 days and set up your own domain controller, it's pretty useful to learn more if you are intresnted

how about a room for training around https://frida.re ? I'm watching a webinar on friTap (https://github.com/fkie-cad/friTap) specifically and it sounds pretty interesting...

I propose a Learning Path about Reverse with some android/ios and with malware and some differents arch
I would love do this one

beef-xss tutorial room?

Beef isn't really used anymore 🙂

The joys of NC doing a video.

I agree!

boo!, windows rooms bad, linux good

It's a very good idea. And also i think those rooms, could get better with some videos

room idea: Introduction to Log Parser, if it's still a good tool

Room Idea : MITM attack towards telnet xP

A room based around malware development

What's your goal/ purpose for this room?

Practice for those who want to become red team operators or maybe those who want to have a deeper understanding of how malware works and see how it is created. I am not asking for the room to show you how to create ransomware or trojans just going over the fundamentals of malware development.

Ethicalities come into play when a website offers grey area topics, hence why I asked.

Yes I understand 😄

It is good in my opinion to have a understanding of malware and how it works so you are not completely clueless and blindsided if a attack happens to you or your business.

Henceforth why we offer the Defense Path and malware analysis rooms 😉

haha that is right I did not think about that for some reason

sorry

Room Idea: Cyber Threat Intelligence (beginner and advanced)

Room Idea: Cyber Threat Hunting

@grand nymph What more do you want? We already have multiple rooms spanning both of those topics

A bit more of Structured Analysis techniques and report writing.
Maybe attribution of threat actors
And all in all a little deeper into the topic

A room explaining different types of AD trust relationships would be interesting. It's apparently a part of the SSCP material

also not as interesting for me but perhaps a blockchain/crypto 101 room as it relates to cyber threats

Do we care if the crypto gets hacked..?

haha nah. more like what is a bitcoin address, privkey/pubkey stuff, how could you follow some coins on the blockchain, what is a mixer, different types of cryptos like eth or privacy coins, etc. I'm working on trying to throw something together actually I think its a neat idea and there is nothing about it rn

smart contract hacking would be an epic room but way over my head

looking at it from a blue team/forensics/investigation angle

a room about cobalt strike(c2)..., not sure if that's taboo here but would be a cool room!

It would be a very cool room, and it's something that would be great, but Cobalt Strike costs a lot

yes, out of all the popular c2s like powershell and metasploit, it's the only commercial one :/

Nah, there are a bunch of really good commercial ones

Cobalt Strike is just the most famous

Also remember that Metasploit has a professional version too

maybe a room on cs just as a reference guide for when people have access to it at work?

This isn’t room related, but would be super helpful. A “wish list” would be a nice feature. I keep seeing all of these new rooms that I want to do, but once it comes time to do them I can’t remember the name and end up searching and picking something interesting. I can use browser favorites but that’s kind of a pain.

My Rooms keeps track of rooms that you've joined

They just broke the site and it sorts backwards now.

Ah okay. I guess that’s close enough. I didn’t think of that. I assumed maybe you’d get kicked or something if you joined a different one. I’ll just start joining all of the interesting ones.

An alternative is creating a THM bookmark folder and bookmark all the room URL's you want to look at later.

how can i upload a banner for the room?

it wants a link

imgur?

okay thanks

+rep @pearl silo

Gave +1 Rep to @pearl silo

is there a room that teaches about docker on thm??

i was searching for a room that would be like introduction to docker and how to use it but i didnt find

i wonder if there will be a room about it soon

https://tryhackme.com/room/dockerrodeo :)

Thanks i thought its a challenge to solve

Gave +1 Rep to @pearl silo

I have an idea, but I do not know the idea.

More rooms on Post-exploitation!

The ones we do have focus more on windows

I suggest adding a task in the Overpass 2 room to "undeface" the website and return it back to normal once you have access to root @somber crow

I feel like it’s a little out of scope for the room, no?

A room for the recently updated OWASP 🐝 top 10 would be fantastic💡

Not much has changed, the original owasp top 10 was for an event. I did raise it with Skidy a while back, but it didn't seem likely.
It would be pretty cool though.

A learning path about reverse 😉

That'd be very difficult to test, short of a service running as root or a rootkit.
I don't see much value added to the room, especially when you consider everyone would need to go back and complete the new task.

Like the active directory basics room?

I'm pointing out that it exists.

Is there any room about simple router hacking? If not then i would like to make a room on this topic.

There isn’t! The closest I can think of is printer hacking and router firmware analysis, just make sure your room is ethical and isn’t much of a gateway to malicious usage of the provided tools!

Any Room on recon methodology

Nah i was just thinking to make one to spread awareness about how to secure up the routers and etc . Not much tho

So can anybody help me out to create coz this will be my first time creating a room

It is pretty much making the documentation more friendly, making some questions and if you’re up for the challenge creating a VM with the routers firmware.

Ah i would go with the vm thing on later rooms coz i dont know about making one so just starting out with simple things

if any mod/staff is seeing my msg then its a request to provide me the creators tag to get some help from the more experienced content creators.

The creators lounge is not overly for help.
Room creation is something you should do once you have a good understanding of the topic, a good understanding of securing systems, and a good understanding of sysadmin.
You can, and you might get, help with the tryhackme side of it, but it relies on independent research and troubleshooting a lot more than typical hacking does

You've been added to the lounge though.

oh thanks

I'd like a room on being stealthy & covert, with things like AV evasion, not triggering IDPS/SIEM/IOC scanners

Any rooms/ctfs on bluetooth would be nice, kinda suprised there's nothing on thm already :/

For it to be anything interactive and not just pure text based this would require simulating/replicating bluetooth in the cloud

Yeh, I realise it can't be setup with a conventional vm but it's still a major part of tech

Make one!

Zeesh.

Read Ben's Post ^

I don't have the resources or the knowledge really

a room about how to type 'kill' commands faster than the sysadmin battling you in real time for control of the box just like in kevin mitnick or something

As a privesc, have sudoedit runnable without a password while $EDITOR isn't set by default. The user has to export EDITOR=vim. Now many people know about sudoedit I think.

this one is good

Might already be a room, I'm sure this might of been brought up because ideas are cheap and I'm not that smart.
Simply, a room that teachers people how to prevent getting hacked by showing how some professional harden Linux or Windows PC's. Maybe have different degree's of security throughout the room to explain the person doing how to prevent different threats and costs of say using different tools on convenience.
Maybe take it a step further and talk about general OPSEC ideas.
Might be a bit different to a traditional CTF box but I have seen some of these type of rooms education rooms on THM, so I think a defensive prevention room might be a cool concept.

a room on the new kernel exploit (dirtypipe) would be amazing..... if there is not one already in the works

There may or may not be one already in the works, but it's not my focus until Sunday

looking forward to see it if there is one in the works..... otherwise it is just wait until shadow understand this good enough in 5 years to make a room themselves for it

That was code for "there is one in the works"

Muir I think you misread that, they're looking forward to seeing the product if it's in the works

I know -- I was commenting on the uncertainty of "if"

How about a defense room using Security Onion 2, winlogbeats, sysmon, and some injects? Perhaps logging mechanism could be placed on windows hosts through out the TryHackMe environment which forward all host logs to a central Security Onion 2 SIEM which defense analysts could analyze to craft custom queries?

I could totally set that up

is there a room that's about patching misconfigured services? if not, I think that'd be very cool and useful

💡 A Riddler themed box would be awesome, based around The Batman (2022) villain.

copyright is a big issue for the people who make rooms, tho :/

Makes sense, I thought since there's Mr Robot rooms and Rick and Morty rooms there was some loophole or something

A room introducing the basics on eBPF?

What ever happened to the Atomic Red Team room? Can i propose that as a new idea

There is an atomic red team room, which is in development?

Great idea. It is planned. 😎

I know the frame exists for the room so I figured something was happening but it said coming soon for so long thought I would give the tree a little shake as a status check🤙

So I plan on making a room, do I just export my virtualbox vm then upload?

or does anyone have a way they typically take their VM to save the state of it

Yeah, just export as an OVA then upload 🙂

we really need a room about bettercap

can we get some cloud security rooms?

Can we have a room related to GRC and Information Security Management?

Agreed, this would be dope af

grep room

https://tryhackme.com/room/catregex

https://tryhackme.com/room/nislinuxone this one too

Ok, so the content exists... I know the content exists, this channel is for asking for new rooms/suggesting ideas for new rooms

then ignore my suggestion....

This channel is for suggesting new rooms on tryhackme, rather than new discord channels

ups sorry

not a room idea, but you guys should add a learning path with only free rooms

so new people can go through that path, then maybe subscribe

!docs free-path

yeah just make that into a learning path on the site

cuz it took me a long time to find that blog page

¯_(ツ)_/¯

there should be more wifi hacking rooms and python hacking rooms

etc

I think

is that ok?

Incredibly difficult to make interactive WiFi hacking rooms on THM though.

@golden mountain

Ezpz

Remind me to talk to you about that at some point. I have some nasty little ideas...

Nah go away. I'm not letting you use it for your cursed boxes

Szy / Muir collab?

Reeeeee just said no

Like simulated WiFi?
https://wireless.wiki.kernel.org/en/users/drivers/mac80211_hwsim

💔

Yeah, it works

I couldn't react to your posts😅
Thank you anyway 🙂

Gave +1 Rep to @somber crow

Good-looking skin before the same interesting soul one in a million

Quick question: What the heck?

I don't understand what you are talking about

Same 😆
Dare I ask why you're wandering around the bugs channels asking for personal information?

yaml deserialization

Have fun completing the challenges of wargames!
https://youtu.be/-qICcu7voLE

They made a great room for Log4j, maybe if this get confirmed - https://github.com/BobTheShoplifter/Spring4Shell-POC it would be a nice room?

Aside from the lack of PoC or confirmation 😆

When those are out then yeah

There is a poc out there just as an fyi

It's by a chinese security researcher

but a little too early for a room on this ngl

advanced threat hunting in windows defender atp

The CVE was posted for the above CVE-2022-22965 which is Spring4Shell, different from another RCE on SpringCloud CVE-2022-22963

To be honest it would be great to do have TryHackMe touch on both.

Maybe a module on Kusto Query Languages

Yeah we've talked about it internally, but I think we're kinda waiting to see impact or a bit more concrete stuff. I think there was a bit of arugment on who found it and what it exactly applies to when we looked

Plus we're all tied up in other things atm, but it'd be cool to see a community room on it. I don't think it's exactly "reserved" internally atm

last that I know of atleast

@glass sentinel

Yeah I agree a lot was convoluted initially, also the complexity of exploitation is way different than Log4j which needs to be considered in its severity, it’s definitely bad but not log4j bad from what I’ve seen out there.

That would be dope, securityweekly had a webinar on it a couple weeks ago. It was amazing but i want more. :)

hello

i am new here

Hi new here.

IM DAD.

anyone seriously interested in testing my upcoming Layer 2 room with **MAC Flooding **and ARP Poisoning (MITM) (walkthrough themed)? It has 2 boxes and takes at least 1 hour if you play around and do stuff yourself instead just copy pasting. Would really appreciate your help! 🙂 (pls DM me)

Heyo, THM should do a ranking system for the writeups

This channel is aimed at ideas for new content, please submit this in the form linked in #feedback-and-ideas

Sorry man

can we get a room/lab to practice denial of service attacks?

There are very very few ethical uses for those

finished creating my first room! wanna come up with more ideas 😄
https://tryhackme.com/jr/b3dr0ck

Nice room

thanks! i'm working on polishing a bit more now

put it together really quick 😛

need to give some more context/hints early, and lock down a bit more to force the pathways

I just have done the room

It was a good experience

Thanks!

is there a room on photorec for foresnic recovery of files??? if not would anyone feel like making one???

if it is even doable

There is overpass

That doesn't have photorec in though?

Just uploaded newest version, a little more helpful context/hints and locked down some easier access methods 😄

shadow is also more looking for an informative room to learn how to use photorec

hey there! I've seen a few people mention that they would like to have a Security Onion (https://github.com/Security-Onion-Solutions/securityonion) room.

I would be happy to advise / help work on this if there is interest!

https://giphy.com/gifs/mrw-training-bottles-d4zHnLjdy48Cc

If you know the episode it makes it so much worse haha

are there any rooms that replicate some of the infamous bug bounty finds?

I think the closest is maybe Naham Store?

It doesn't replicate but it does have lots of Bug Bounty stuff

Not seeing that room.

https://tryhackme.com/jr/nahamstore :)

remember this room is almost a full blown crash course in bug bounty so it'll take some time
almost 2 months in my case

Is it possible to get a few room on Scada systems and/or satellite systems? I know theres already two room on scada but some more would be really cool.

would love to have another windows priv esc room 🙂

https://github.com/kagancapar/CVE-2022-29072

That looks rather fun

If there's a patch out for the vuln I'll happily make a room

research time @wind nymph 😎

there's a non-official fix but mhhm should wait a bit longer and see waht 7zip do really

https://giphy.com/gifs/reactionseditor-interesting-hmm-3oKIPbNb1vWdftiVLq

will wait for a fix to come but would definitely also like to see a room on that privilege escalation

CVE has changed to disputed https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-29072

oh that is an interesting development

It seems like it could be done via a UAE bypass to me, Idk though

Ohhhh

I think from what I read, it could have been a fake report, done by changing the registery

i'd love a cobalt strike room

You gonna pay for the license?

python any help

Web cache poisoning

This could be an interesting room: https://www.microsoft.com/security/blog/2022/04/26/microsoft-finds-new-elevation-of-privilege-linux-vulnerability-nimbuspwn/

It would be nice to have a room on the new KrbRelay attack. Who has the time?

https://github.com/Dec0ne/KrbRelayUp

let me take a look into this (:

yeah seems cool but I don't have the time for it for another 2/3 weeks so if anyone wants to grab it maybe

Maybe together? I like to learn to setup rooms.
Are there standard server / workstation images available? Some kind of library to use?

!docs room-notes

@unreal hawk ⬆️

@native raptor Hey i have a room/multiple room path idea. Ive been learning alot of aws recently for a job and I want to make a aws room/path which explains
how to make a aws account
create an ec2 instance
harden its security through aws tools firewalls and best practices
and demonstrate a handful of aws/cloud specific tools on the instance created .
We will not be able to turn it own virtual machine and will rely on the tryhackme user to make their own virtual machine through aws.
Can we tell users to purposely make their instances vulnerable for this exercise and then tell them explicitly to terminate it when they are done or should we tell them to just harden it the best way they can and test it?
Are there any legal issues or potential problem with this room as a concept ?
What needs to be done to make sure this gets approved as a public room ?

Question for ya @cunning thunder

I would just wait and see what we have planned before attempting to do gymnastics to make a room work

Hello, do you mean a room that requires to utilize AWS credentials? 🙂

@cunning thunderyes it would require aws credentials specficially the tryhackme users credentials. a user using this room would make their own account and instance labeled tryhackme or something similar to distinguish between a regular instance and other instances. we will also recommend to terminate the instance whenever they arent using it or are done with it

There will be no virtualc machine uploaded to tryhackme due to technical and legal issues. i dont believe aws will let us have a vm image of their amis and have all the gui setup and cli setup they have for their site and api they use to set up their vms so we will have to rely on what aws has for the virtualization

somebody should make a room on this browser extension

just because it has a lot of useful things in one spot

It’s just reiterating information that already is there. What would be the point? You’re just giving a GUI to something that is already covered in a room

Lots of rooms

Also, it's a browser extension -- you don't get much more intuitive than that 😆

yeah youre right

CVE-2022-1388 room?

You'd need an affected F5 appliance

I think it could be pretty easily implemented (the vulnerability)

Trying to deploy vulnerable appliances on AWS is particularly annoying

does it not cost a fuck ton tho

Cheapest for F5 Big IP VE is about 8 dollars per 24 hours.

So about 50c for a 2 hour deployment

what do normal boxes cost?

Unless it's like the Macs and restricts you to 24 hours minimum

A... lot less than that

Would have to be sub only at the very least

And that's also the cheapest tier, which is rarely nice to use

We could do it but it wouldn’t be a normal thing. I.e. Throwback uses a pfsense deployment which is similar in price

Oh the 8 dollars is just the F5 software license, add to that the EC2 cost of running the m4.large instance which is another 3 dollars a day. 😄

holy guacamole

do you think the names of the machines shouldnt be provided in king of the hill?

that way everybody has a fair chance and its more realistic

You will immediately find out what machine it is on even basic enumeration, it makes no difference

the people that played on the same machine multiple times have already enumerated before and they use the same information once they see the machine name

Yes, but anyone who has played before will recognise the open ports etc within seconds.

It makes no practical difference

i think it would require to enumerate every game

You can even just use the SSH fingerprints of each box to immediately identify which one

yeah youre right

but it makes it pretty easy for people knowing the machine name

guys i have a found a bug inside a room

It's exactly as easy as performing an nmap scan though.

#room-bugs

there's no answer

Please post it in #room-bugs
It does not go in this channel.

atleast it gives everyone the opportunity to perform a nmap scan

some people dont need to do any of that more than 1 time

What's the point in that?
You find out the information stupidly fast anyway, there's no reason not to provide it.

they already know everything just by the machine name

Yes, I wrote there, and I did not receive a response, and I did not get my reward even on the site!!

There's not enough KoTH boxes to make it matter. You'd need many times the amount.

It doesn't go here. Use the correct channel please. It is very simple.

even if there was more koth boxes if they give the machine name then people who have already done enumeration are going to get an advantage right away

do you agree

I know, but I'm writing here just to get help from you because you are a staff

Anyone who has done the box before will be at the same advantage whether or not the VM name is shown.
They'll know immediately on literally any enumeration

I am not staff. I am a discord moderator.
Please stop asking in this channel, you have been told many times.

anyway I apologize for the disturbance

but the point is that they should have to enumerate everytime

But they don't have to, because the machines do not change.

It is pointless to remove the name because people already know what each machine is like.

Showing the name offers no real advantage other than shaving off 10 seconds of nmapping.

if i already know the admin password

and username for a box

why would i do any enumeration

Now that's a very different issue which has been countered for the Dynamic KoTH boxes.

But it does not relate to displaying the machine name.

It literally does not matter if the machine name is displayed or not

because they could go to the webpage or look at the ports and recognize it right away right

youre right

i just dont like it either way because it would seem more realistic to just be given the ip address

If there were many many more boxes, it might make a difference.

yeah and make every machine dynamic

make a startup command or something that changes the password

to a random one

Do you realise how much work and cost this involves?

This is already in place on some machines, and isn't much of an obstacle

A KoTH machine is a decent amount of work to build, and as such costs. Making a lot of boxes costs a lot of money.

no i dont know but i want to make them at some point when i learn more

and i want to make rooms when i learn more

Besides "Bookstore" are there any rooms on learning API security/exploiting APIs? I tried searching around and think its a good topic.

are there rooms on ARM exploitation or PowerPC? because I think that'd be a great room

Are there any rooms on intercepting emails? I always read about how you are not supposed to send sensitive information via email, and I would like to know how attackers can read emails.

Very difficult to implement on AWS without emulation, and nested virtualization which is sometimes required is extortionately expensive

I was searching for a room for desync attack. I heard about the attack lately and want to explore it. So add it if possible.

i'm not too sure which channel to ask this on, but what is the best way to make/export a linux machine while making a room, i used an ubuntu desktop in vbox and when i tested it on the room i am making it is very very slow

Don't use Ubuntu Desktop, a GUI is resource intensive

ubuntu server it is then

For what it's worth, 22.04 is unlikely to convert

So I'd recommend 20.04 for now

yeah i noticed that

even 20.04 did not convert so i had been using 18

20.04 desktop wouldn't

okay, thanks for the help

Any thoughts on a room where we could use Velociraptor for DFIR on new exploits such as printnightmare, krbrelay, or some sort of windows compromise?

http://flaws.cloud/

http://flaws2.cloud/

can you make a path or room like this please? about cloud security and vulnerabilities

Yes we can. 👍

thank you

Gave +1 Rep to @cunning thunder

can you make it where we get a little points towards our level if we win a koth game?

please

That's been raised before and always denied because it's easily farmable

Dedicate the KoTH time to solving challenge rooms instead

hey guys i just created a room is it mandatory to add official write-up to make my room public?

If it is a challenge room, yes (:

you can use things like google drive to share the writeup with testers without making it publicly accessible and spoiling the challenge

if i provide video is it ok?

as write-up

Ew, please don't

Technically, yes, but the testers will hate you for it

No one wants to watch a video when they need to quickly reference something. They aren't looking for a full how-to guide, they're looking for something they can use to quickly verify stuff

ok thanks guys

guys im just wanna ask show much time its take to make public my room yesterday i just submit offical write-up?

there should be a room about ASM

that would be a great concept.

Like intro to x86-64 ?

i can make it

Yeah

Module for learning Russian

You can usually pick up a language somewhat faster if you're learning it in the context of something you're already studying

Im not entirely serious about this as a room suggestion but I would probably go through it

Rooms usually are Cyber Security related, language learning is a little out of our scope 😅

Can someone make a room how to use beef framework

BeEF isn't used anymore.

what do you mean?

used by who?

Most people.

i was just asking because i seen a video on udemy of someone getting a meterpreter shell on a windows 11 computer from using beef

If you understand XSS, you will understand how that works.
More importantly, how that doesn't work.
Udemy is not a good source of information, the majority of the content on there is awful.

a ctf inspired by bad hollywood portrayals of hacking (ie not like mr robot)
could be an april fools module
so there could be directory names that are movie-like
and there could be a badge for completing this that is also a bogus hollywood hacking title like you see in the movies 😂

im not sure how cinematic you could make this using real tools maybe there could be a part like in the hydra lab where you can login to a localhost website that has a cinematic ui that gives hints (like you click a button that says "hacking time!" and it takes you to a page with a flag on it)(the server py file could have a themed name too)

of course the password should also be something like what you see in the movies (so it might not necessarily be one of hte ones in rockyou.txt ) and it could be stored in a wordlist with a name like "TOP SECRET.txt"

Are there any rooms which teach attacking cloud services? Such as S3 buckets / azure environments?

I think there was an example for Advent of Cyber 2021

do we have access to previous releases of AoC?

they should be open

is this really in the making?

Yes.

Awesome

Hey I think a walkthrough type room covering LDAP and LDAP attacks would be great, been looking for some content around LDAP for awhile

I know somebody who hold an awesome talk about EDR tampering on a BSides conference and he would be willing to help build a room based on his research. On the con the slides were blurred due to legal (IP) concerns about the EDR vendor. Does THM offer any legal consulting regarding room content and intelectual property issues?

Tendancy is to err on the side of caution

hello team i just submit a ctf for publishing now its under Evaluating but i want to change name of my ctf is it good idea or not ?

How to connect to the machine in the hacking with powershell room?

@zinc vigil #room-help please

a room on: CVE-2022-30190 when it finally gets patched maybe???

might be hard as it uses microsoft office products to work

there should also be advanced learning paths

I think an advanced web hacking and bug bounty path would be perfect

like right now I feel like once I get through beginner and then intermediate pathways (hasn't happened yet) that I am gonna have to graduate to something harder

we have a lot of good beginner stuff

and intermediate

but I think that just having something more advanced would be helpful for people who are trying to become advanced

right now it feels like once I complete THM and PortSwigger than I'm gonna have to graduate to HTB and PentesterLab

so yeah

we're working on more advanced stuff @sudden glade (I cannot say way what -- but stay tuned) paths take a long time to develop and QA. But we hear y'all 💪

sweet

I think there should be a bug bounty room

bug bounty is just web and there's a web pathway

sorry let me rephrase that

there should be an advanced web hacking pathway

that is beyond basic web skills

I think we should try to partner with Offensive Security and make an OSWA and OSWE learning path or with SANS and have learning paths that cover all of SANS web penetration testing training

Very, very unlikely to happen given Offsec and SANS are both training providers. There is literally no logical reason for them to recommend someone else's product over their own.

Also, you know OSWE (if not OSWA as well, can't remember) is whitebox testing, right?
Much more likely to use that in a pentest or CVE-hunting than bug bounty

Hi, I'm developing a room. There's a WordPress site is running on my uploaded VM. But after starting the VM, cannot access to the website and it shows error message as "Error establishing a database connection"
Any suggestions to fix this error. Thanks

SSH into your VM and troubleshoot it there.

Room creation relies on strong systems administration skills

I have configured the VM in localhost. In the localhost the website is working fine. After uploading to THM, the website has that error

My advice still applies.

Thanks. How can I ssh credentials to the uploaded VM?

Gave +1 Rep to @somber crow

How can I *get

They're the same as they were before

It hasn't changed them

Thanks

Gave +1 Rep to @somber crow

Anything Hardware and embedded security please!

please make rooms on mobile pentesting

Some rooms on Cyber Defense paths like Redline and Autopsy lag so much it's a pain to do them tbh, I spent a lot more time waiting than doing something...

CPU is always at 100% no matter what

Isn’t a room idea^ #room-bugs #feedback-and-ideas

my bad didn't see feedback, my brain is melting

LMAO YES!

⬆️

so true would be nice

Basically IoT 101 right?

Because security cameras 101 is still super broad. What do you want done to them? Hacked remotely? Reverse engineer the firmware?

Anything, I remember cameras back then being vulnerable to password attacks because all their software was very bad

so you want the firmware extracted, reverse engineered, and inspected for password vulnerabilities?

yeah would be cool

what about a krabby patty secret formula hackbox

the firmware room on thm helped me with working with cameras using binwalk

so rapid7 add to metasploit ms-word rce follina CVE-2022-30190 https://github.com/rapid7/metasploit-framework/commit/c751ef46c9f79bdb9cc81077f8d4fcd56df56e44 will this helps to create room with PoC? perfect candidate for *Recent Threats * module

Why not have a network hacking learning path or a wireless and wired hacking learning path?

It could cover everything from basic through enterprise

if we can do basic wifi hacking in a room why can't this be a thing?

🤔

The basic wifi hacking room isn't as interactive as it should be. You can do virtualised wifi, but it's difficult

is there a follina room in the mits?

wait, are you the guy who made the m4trix room, if so, loved it

I am yes and thanks @pearl silo

Gave +1 Rep to @pearl silo

Nothing that I've seen

If you want to make one it's currently open bar

There are plans for one.

Not exactly

Ah I was not aware

darn, i wanted to snap it up fast. well im looking forward to it. I hope it has some nice attack and defence practical in there.

I poked someone about it yesterday, as it didn't look like there was any movement

can shadow say they are excited and looking forward to that room on follina???

I've messed around with it, It seems fun.

Is there a room that teaches you hydra?

Yeah

https://tryhackme.com/room/hydra

Yeah I just found that but I found it wasn't overly informative. I could just be not doing enough research tho idk

There's not much to hydra

I'm doing the hackpark room and I'm just really confused on a hydra command

Hydra is pretty much the worst tool you can use for that

The room really shouldn't suggest it

I had an ideia, THM should add to all the rooms how long it takes to complete on average

idk if this is possible

just random thought

probably better sending that in the feedback form from #feedback-and-ideas as it is not really a room idea

but agree that would probably be a decently nice feature

and there is already timers involved anyways for the target vm:s so probably easy to track it to some extent using that

Next time, I will use that, thanks

Gave +1 Rep to @forest summit

Id love to have that

This is already specified for each room, but it is an internal feature for now. 🙂

oooh thanks for the info on that

oooh, spoiler alert

Gave +1 Rep to @cunning thunder

Are you around for a PM?

DM*

Go ahead. 👍

more rooms for post exploitation please

More rooms for API hacking

Yeah but it's an estimate given by the room creator

Ah yes, it is an estimate. When calculating the average from the join room time, we would get a skewed statistic, because a good amount of users join rooms and don't start it (or save it for later). 🙂

also true

Would be cool to see a room for M365 Defender which could be added to the cyber defense learning path.

What are you looking for exactly? I.e. Bypassing M365 defender?, what it is? How to use it? etc

Mainly how to use it, I’m going into a SOC role and the training material they’ve gave me before starting is mainly documentation and videos, would be cool to have a room to go and actually use it in scenarios related to roles like SOC

Any questions on these, happy to help, I work as a SOC analyst and I use the likes of Microsoft 365 Defender and all the other products. it's definitely worth a look into in building a walkthrough.

if ur ever free to discuss Microsoft Defender for Business I would love to

Currently writing a WiKi for my team and then need to start implementing it across a few networks

and no one else on my team knows anything about it or can be bothered looking into it

lots of weight on my shoulders as a Junior lmao

I'ld suggest a room to explain how to abuse symbolic links (cf James Forshaw's work) in Windows to PrivEsc

It's so powerfull

Bufferovwrflow prep

Introduction to x86

That's not in-depth.

That room teaches you to be a script kiddie.

Throws you a bunch of scripts and tools, yet doesn't teach you how to do it yourself.

Still teaches you how to do it and it’s pretty in depth especially if you watch the video with it

You also have the basic buffer overflow room that teaches you it as well

does anyone know why the x86-64 room is now private and not accessible ?

The're probably planning on replacing it with site made content or the room itself was just outdated 🤷‍♂️

There is this one https://www.tryhackme.com/room/androidhacking101

Kubernetes?

there's already 5 or 6 of those rooms, search "kubernetes" on here :)
https://tryhackme.com/hacktivities?tab=search

A mythic C2 room would be awesome!! Maybe Sliver too???

Cool cool thanks

Gave +1 Rep to @pearl silo

C2 vs C2 "control the botnet" would be cool

As a room, a KOTH and team vs team

I have an idea for a challenge. but, I am worried about the legality of it.
it's a real world scenario. but, the way to go around it is ughh.

Can I DM u the idea?

Done

hey anyone looked into mail services for rooms? that would be pretty common idea right?

Any Palo Alto stuff?

No lol

Lost access to all the content

Dang. Sorry for going back so far haha. I was looking for topics before suggesting a repeat

would be cool to have an off-topic channel and gaming channel so we don't get yelled in general chat about offtopic convo

There is one. It's #general meaning general chatter. It just helps if you're not actively trying to cause trouble...

I guess this is the place for ideas 🙂 . For sure the next hot battlegrounds will be cloud infrastructures, mobile, OT/IOT. no surprise I guess . I don't know how easy would be to simulate those environment on THM platfrom and build learning tracks around those topics.