#voice-chat

and get back again!

i mean a little rest works i guess

3min break will be good

@plucky vault leave the box, do something else to clear you head and attempt again in few hours

noo if i give up then i lose

??

i go get more coffee

is there a bet that i don't know about?

😏

yeah im playing vs my self btw

u never lose! that's beauty of Try Hack ME!

u always learn!

@azure moss plz mute if you aint gonna talk

If that's you talking, you're real quiet

Opps! Sorry!!

@lean musk Neeee nawwww actually

https://giphy.com/gifs/police-car-chase-RYjnzPS8u0jAs

Elf

Have you given up?

No! he cannot

I WILL NOT LET HIM!

He can do it!

🔥

ok im back

aa no give up

now im ready

you should have done the room yesterday, it was easier before the program was moved 🙂

wdym moved]

it used to be in the user's dir, so you could just replace and get root that way

@lean musk I can only speak for the first year lmao

there were two ways to bypass it

really? what was the second one?

you could just remove/replace the file

but when the folder had root perms

you were still able to rename it

and make a dir with the original name and a scriptof your choice

im so confused

jesus can pls look at writeups...

Where's the fun in that?

okay no writeups

you said it yourself you don't want to look at them

yah i don't

but i feel the fire rn

@lean musk I have to be quiet, my dad's working on a conference call on the room over

So I can't talk properly

@real orbit reee you said RSA not EC crypto

there are two live but you'll have to make a deep dive into the internet abyss to find them because iirc they're still not approved

Most of the stuff is EC Crypto now I think

yes

i forgot username 😂

im gonna look at the writeup...

i can't this is going nowhere

well nwm there is nothing to look at 😂

wdym "nothing to look ap"

see

John hasn't accepted them and I don't expect them to be accepted ver ysoon

well then i have a full day 😄

@plucky vault ||you found stuff about pickle vulns when you deserialise user data||

ty

smh

smh

im gonna go to play other room

https://tenor.com/view/press-f-pay-respect-keyboard-gif-12855017

goobye @plucky vault going for rest! done a lot today with U! 😘

i can't even deploy other room

@tawny oak bye 😄

well i can't even deploy other room

so i guess no giving up

smh

im starting to question my self

@plucky vault

Big Red Box

i do that everyday

RIP

F

See U Elf!

Man this is so bad.
.

Hope my pc doesnt catch on fire

ooo wait

so i have to pickle to code

@forest python i think it buged out

oh nwm

wat

sry for ping

omg it works

thank you ❤️

thanks alot

so basicly

i was doing it wrong the whole time

yes

pickle deserialisation vuln ezpz google

i feel unstopable now

try inoculation

aaa im doing it

what do i have to do here

no helping here

this is a hard room for big boys :)

aaa okey

Do anthem i wanna see ya struggle

so from what i understand

i need to give it webhook

idk what to do 😂

but you were unstoppable 😟

ah yes and now i will do some research on that webhook thing

to see how i can exploit it

not gonna give up 🙅‍♂️

hang on i go put coffee

Isn't that from a tool album?

i dunno

😂

@west sphinx Unless you join voice, we can't unmute you

but elf are you using a VM or linux bare metal on the pc

@crude void linux bare metal

ah ok

nice wii

yes

epic wii

this doesn't want to change

SMH

hmm strange

now there is a bigger problem

i can't minimse stuff

smh i go restart

aaa some ifixing yk

even rooms can't load

oh nwm

this is so bad..

i thought its good tho

this Desktop is legit so wierd

smh im liturally stuck

it hurts me so much that you're overcomplicating this script

even more hurts me when i see that i forgot how _thread module works

it works

uh wait

how do i ctrl + v in terminal

check the keybind section in settings

this is..

idk how to do this..

make a script

duh

i cant even tell if you are trolling at this level

he's not, that's the worst part

aaa

what is trol

im elf sry

you need socks

no no no

please your role says GURU, pls don't do this

i have no idea how he got this high tbh

unless both of you are trolling me now lol

Good grief, sort your variable names man

@fast wind if you tuned in to his every stream it's like that non stop

its my first time discovering my eCrying abilities

Unfortunately, ranks are decided by points alone...

atleast he can type fast.

(JK)

well, at least the contributor/bug hunter ranks aren't

lol

elf.

oh boi oh boi oh boi

https://tenor.com/view/reality-real-what-is-happening-gif-14099466

elf.

it works

beautiful code

yes yes

thank you xD

variables couldnt have been named better

nope they are getting best they can rn

i can't watch this anymore

why no

my eyes hurt

overcomplicating, the variable names

What room is he doing?

create a while loop to receive data, (variable.decode('UTF-thingy) then copy it to a variable, use negetive indexes to decide what to send,

FFS

What room is he doing?
@fresh solar no idea

aaa

Now that is worrying

thats called

talent

@plucky vault What room are you doing?

webgramming

task 2

Ah

Jesus Christ fix those variable names

That room has quite a few broken tasks

i can agree

Task 2 is not broken 😛

ok just watch

now i will finish it

with eeasy

dont connect again!

ln no. 10, 11 dont

im elf

i legit think im dumb

what is your elo @weary grove

?

g2 i think this season

good, in US server?

nah eune

had this account since s1

any champs you want to see me playing

hmmm ezreal

ooo eune ? ??

ye

Europe

i play on eune 2

and played

i'll go for a cigarette

lol

?

nice skin bro

Got like 426 i think

426 rp?

or in hextec chest?

skins in total 😄

what rank

nice

ooo he is going ap ezrael

thats op

yes, so broken

soraka saved u

oof

2/2/1

i go to sleep bros, bye

lol they are diving so much

he's playing ap lee

he's shields are busted

lee it self is broken in urf

0 suprise...

lol randomly rolling who to honor 😂

shitty game haha

yeah, the ones that fed less

408 not 426

xD

still so many skins lol

i'm playing since s1

you bouth eternals 2 ?

nah just 1

i might buy the whole pack

oof. its better to buy whole pack tho buying 1 per 1 is really not worth it

5.8 k rp for all it's not bad

well you got 5.8k for all

yeah

and i think 1 costs 500 rp ?

600

it says there

yeah i see

so after you buy 10 characters you are spending more on eternals

better buy full pack 🤷‍♂️

yeah

cheaper

i got all the league games, so i do play runeterra and valorant

ooo valorant

yea

wait legends of runeterra?

yeah

the cards game

yeah ik

not really into that type of games but its good ig 😆 can't wait for wild rift tho

you can sign up for beta

but i wasn't lucky for any of them

neither TFT or runeterra

me neither i signed in when i heard about it

I also play warframe

wow

i played that when it appeared on steam store 😂

but i was having so bad fps .... so i delted it

cuz my pc is potato smh

not sure what year was it when it came out... i think it was 2016 or 2017

It got 10x better now

i mean if i can get better fps i will certanly play it 😂

i also remember it has a story about some aliens and stuff

it reminded me alot of destiny

its quite confusing...

what os are you using

distro*

pop os

o

but not gnome

i don't remember what is the thing exactly

i have gnome

and other theme instaleld as well

so i can just switch in login ...

ah ok

@plucky vault apt install neofetch and show us a neofetch

LXQt @plucky vault

ah

let me guess

i have to use burpsuite for this one?

aaaa

Elf

This is painful to watch

@plucky vault What about directories inside the directories?

https://tryhackme.com/room/lianyu the dir lianyu is inside the dir room

Randomly installing software aint gonna help

Image data often gets detected as ZLIB data

You're going to get nonsense out @plucky vault

You're actually causing me pain

okay i stop

lol

@plucky vault I wouldn't be that blatant with a hint

aaa

okay

hang on

You fall down rabbit holes that aren't even there

xD

im preety lost

You found a dir

yeah

maybe there's more

/dir/moreStuff

Learn what a placeholder is

JFC

i alredy tried that

@plucky vault A placeholder is an example value

human@example.com

Like I'm not going to tell you the name of the dir

wait that exists

@plucky vault What

It's a general concept

Not for the CTF

You fall down rabbit holes that aren't even there
Impressive...

@full sapphire It hurts

So bad

Please send help

I think I'mma go back to my dev work...

😭

@plucky vault Why did you stop as soon as you found the directory?

Explain to me that.

What in God's name are you doing?

https://jc01.ninja/ctf/
https://jc01.ninja/ctf/lazy-admin/
You can have pages that load, that are the root of a directory

wdym as soon as i found directory

oo

nwm im still lost

@plucky vault You found a folder

The folder renders a page

There can be more things there

@plucky vault Wow.

You can move on

You know a placeholder is an example

Why are we looking at the definition of a placeholder?...

@full sapphire because I said the word and he thinks it's a hint

🤦‍♂️

You found a folder @plucky vault

Right, with that, I'm out 😁

lol an Arrow based box

There can be things inside the folder.

so i found a folder

is this like a puzzle where different html pages go to different things?

and i don't even know where 😂

A directory

Maybe look for more things inside the directory

@lyric horizon This is a SUPER basic CTF style box. That Elf is massively overcomplicating

o

@plucky vault How did you find the first directory?

aa gobuster

@lyric horizon Elf ain't the person to watch

@plucky vault So, so what does gobuster do?

find directories

Ok, so what if you have a directory inside a directory? How'd you find that?

gobuster -w big.txt -u <ip>/first_directory/

i did

You did a shitty job

dirbuster 2.3 medium

Use that wordlist

i don't have it 😂

this is suposed to be medium ?

smh 220k

that won't load till tommarow

nwm

@plucky vault Check the question page

xD

Ok, now look at it

Ignore the moving pictures @plucky vault

yeah this is what i like to call

progress 👏

@plucky vault PLEASE learn how to use gobuster

Otherwise this room will be hard for you

Very hard

ah jeez again ...

@plucky vault When you have .something with computers, there's normally two meanings

ooo

i didn't think about that

@plucky vault You didn't think.

wdym xD

Like at all

That was close

so this is good?

hang on i go put water for coffee and make cigarete

@silk tiger https://www.eccouncil.org/programs/certified-ethical-hacker-ceh-master/

ok im back

damn @silk tiger

@silk tiger i enjoj everything i can learn

@plucky vault Start again

Remove the recipe bits

@plucky vault Drag the magic elements back to the blue bit

No

No

No

BAD

@silk tiger CEH worth it? I have no prior experience and want to get a cert worthwhile

this is so confusing

yeah

@plucky vault You had the username

You skipped some chars in the password

@plucky vault You skipped the chars again

JFC

@plucky vault .other_user looks interesting

@plucky vault CEHv10 is certainly worth it. Its great on resume

yes im doing that

i think

@plucky vault Skim read

@silk tiger is it entry level? or should I do stuff like eJPT

You look for names etc

Names, passwords etc

im looking for that but also reading 🤷‍♂️

Skim reading is a general term

@silk tiger

@plucky vault

is CEH entry level or should I do stuff like eJPT @silk tiger

@plucky vault You downloaded images

Look at the images?

oh

didn't think of that

@plucky vault it's an image

okay

steghide

Like. Damn.

ty

yah first thing that comes to mind is strings binwalk

exiftool

run zsteg jsteg as well
try this too http://stylesuxx.github.io/steganography/

Bless or ghex are hex editors

You can edit the files in hex

https://hexed.it/

https://en.wikipedia.org/wiki/List_of_file_signatures

IQ? Under 5.

Big Brain Time

whats the name of the box?

@plucky vault Extract.

@plucky vault Lian yu

https://tryhackme.com/room/lianyu

I will try too

aa i will go afk for like 5 mins in the meantime can someone explain me how to download an image if its corupted?

what tools does terminal have to download files?

curl

python

python and curl

xD

🤦‍♂️

Uh...

can u try steghide --extract --sf thm.jpg and use that pass, it seems there is a hidden file

hello

my username on thm should be renamed to team work

the image on task 1 of challange has another hidden file

see you 😄

sudo --version

if it's <=1.8.21p try https://github.com/saleemrashid/sudo-cve-2019-18634 😄

@silk urchin that'll only work with pwfeedback enabled -- which isn't by default, and isn't on Madness, if that's what you're referring to 🙂

Madness privesc is an easy one

@silk urchin that'll only work with pwfeedback enabled -- which isn't by default, and isn't on Madness, if that's what you're referring to 🙂
@full sapphire yep

you just need to know what you're looking at though

im legit stuck

in priv esc

again.

brb i go find cup for coffee

check for binaries that calling others with non-absolute paths

the screen.old seems interesting, has suid too

im back

yeah it does

idk what to do with it

xD

ty for help guys 😄

im gonna go in bed for like some time to chill since i have to go to work in 1 hour lol 😂

this was fun tho :jo:

nice session ! thanks

thanks for help 😄

see you guys tommarow i guess 😄

hi

@plucky vault what room are you doing this time?

idk still thinking of what to play

@tame ether im doing willov

Oh God

This should be good 😁

lol

Why would that be Base64?...

cuz idk what is it 😂

Not Base64...

I mean, it's technically a base?

Oh my God -- how the hell did that work?

i don't know 😂

google is my friend 😄

"google help me please find cyber something has magic github"

Google is incredibly tolerant

yeah he is smart guy

google's a dork

xD

aah discord video makes laptop fans go brrRRRR

You know I screenshot that every time you say it Elf?

say what ?

😂

we've got a channel for it

@plucky vault whats up

really bad

im kinda stuck with these wierd numbers

there's something wrong with your left phalange @plucky vault

you need to fix it asap

i don't even know what that means 😂

Right

So, we have a winning strategy here

Use big words, he'll go Google 'em for ten minutes

basicly yah

https://www.youtube.com/watch?v=DrwVB4vMx-Q

clearly working

reee

Look for the excessively long videos

pink fluffy unicorns dancing on rainbows

i legit don't know what is that

you got too many viewers elf, better dont choke now

the pressure is on

its some machine

jesus

thats alot of people watching me blame

https://www.youtube.com/watch?v=dQw4w9WgXcQ here is a video on how to find out the cypher

xD

hmmm, maybe i should be starting my google searches with hey google tell me

@drowsy pollen desi brate 😛

sorry, i don't speak elf

lol

check the video i sent you it will help you @plucky vault .

Heh, he's got somewhere

hang on xD

Now for the Crypto...

YES!!!!

you sir. go back in your box

Also, Chev

both of you

Did you really rickroll the poor sod?

as you can see

Vim > Nano

nano > vim

it was the easiest way to do it

sudo Vim > * && sudo passwd

sudo apt uninstall vim

cry me a river, lol

i'm a simple man

Better yet: sudo Vim > * && $pass=$(head /dev/urandom | sha256sum | base64 | head -c 32) && (echo $pass; echo $pass) | sudo passwd && unset $pass

d2FubmFfYmVfZnJpZW5kcz8=

Beat that Chev

Also, No using sudo without the password 😛

Elf for the love of God use proper variable names

Eh, keep it PG13 -- point is valid though 😆

aaa help me 😦

Np 😄

And not a chance -- this is hilarious 😁

it really isn't 😦

Your choice to take on Willow

but heey i got a full night 😂

She's a strong personality

inb4 I make the writeups private...

hes already looking

That explains a lot...

cXVpdF9zbW9raW5nXw==

Why base64 encode it?..

I mean, if the FBI can't decode base64...

ok im back

Which, uh, no one can decode...

Elf, if you start coding properly, I might give you a hint

Also tmux

looks like he has a general idea of what python code looks like 🙂

no

@full sapphire no code properly imma give you pain haha

Have you seen those variable names??

Try it, kiddo 😁

mfw muirland has a writeup

Muirland made the room

strimmer noticed me

muirland thus you are disqualified

😁

wait thats all in one ?

Why d'you think I'm watching

This is hilarious

its even more funny with the writeup up

Heh

I really should be getting on with this tutorial...

This is so funny though

this is a question of habit

am i dumb?

You said you were ten minutes ago

So, given that came from the source

Probably

aaa explains aalot

oh this looks like it will take maybe a slight bit based on where you are

okay so thats solved

what to do now with that string

Uh

Did you just re-encode that?

LOL

There yah go

muirland about to remove all of them

I don't need to pwn it 😆

how tf do those searches keep working...

@drowsy pollen me and google love each other

aaa facebook yes

i did

idk how to convert it ..

im legit lost

in

numbers

wdym multiply

SMH

nice, he finally figured out it's chinese

What the heck is happening

@drowsy pollen omg stop trolling me

but this is so much fun

this is hilarious

i legit don't know what to do

I can promise you

It ain't Chinese

i trust you

xD

spoilers 😦

I made the damn thing!

lmao

cuz

when you decode the hex

its clearly saying its rsa key

which is not chinese?

you never know

new rsa key standard

yah

bruh

this is 2 much 2 read

i was reading it

and then i forgot where i left off

so just left that thing

xD

ppl don't need to know that btw

omg coffe

i forgot

brb

ok im back

and we saved coffe

jeeez this is hard

@plucky vault gl with your sanity man

oof

😦

gn 🙂

ill give the room a try myself tmrrw, although based on how you're dealing with it im not looking forward to it

xD

i don't love ciphers

or privesc

i know nothing about ciphers really, so gonna be a lot of reading

what ever it is

i don't know

smh im gonna look at writeup

im streaming for 2 hours and this is going nowehere..

@full sapphire you are evil.

I am

smh i wasted 2 hours on something i don't have..

im just gonna leave that room since i checked the write up smh

oof

Aww muir is all alone in the general voice

Muri ain't watching

check now pls

can @plucky vault check this out possibly looks like spam it’s been in multiple channels

@rough flax what's up

mouadjg keeps posting whatever that is in multiple channels I don’t want someone to go to it more than likely malicious

@torpid hollow please stop posting suspicious links

im gonna check it for the good of compunity

that’s not smart

yeah well i just did

its some sport shoe shop

thanks pars

it has a nice design tho

i thought it was vigenere too but it may have multiple steps of decoding

my internal guess is vigenere

smh

maybe I'll do something thats not ciphers

I'm not the biggest fan of them.

yeah same

^

yikes

its really annoying lol

you know, just

@midnight fern replace all the repeated lines with nothing and see whats left

wooo

maybe try sonic visualizer if its an audio

^

I don't have it

I have another tool, just need to find it.

you should give it a try sometime

audacity should work fine too

I'll install it

i tend to use audacity more often

spelled it right, almost 🙂

im out guys take care

that beeping scared the hell out of me

i expected something that went through minimodem

wow those were easy

Yeah so far

@midnight fern type png wikipedia and there is the magic hex

I got it

Thank you

ocr ftw

true, but no manual typing x)

i think radare2 ?

xD

ha

i think thats hex

Yeah not my thing

Not doing that either

im on my alt about to replay advent of cyber

im gonna go gl 0day 😄

https://tenor.com/V6HQ.gif @midnight fern end it, end it all

echo "base64 thing" | base64 -d

@marble cape im making assembly room 2 😂

but but its still just an idea

also i was doing some research and found that there is no room about sqlmap

so yeah maybe gonna make that 1 first cuz atleast i know a little of usage for sqlmap

lmao James

@marble cape neither is formatting RSA private keys, but you still did it

James, you don't always have to follow the rules

im doing great

it is 18pm and i haven't eaten since 9pm yaster

i did drink tons of cool stuff like coffee,coca cola,coffee,energy drinks... and much more stuff like that

@marble cape can i play with you guys ?

does it need credit card?

when im buying off paypal

imagine more viewers on discord chat instead of twitch 😄

my twitch prime sub goes to lilypichu

if i start youtube i steal all the views

lets say im recording a video and upload it do flags need to be removed?

im gonna go record a video.

https://security.stackexchange.com/questions/134200/cracking-a-jwt-signature

does this help?

$ cat jwt.john 
eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJ1c2VyIjoiYXNkZiJ9.GwJ7_ZrnpRLXXSBYzB9VkM4n7j2iSJEkdjhckeaXQ-U
$ john jwt.john
# Wait a few hours, then:
$ john --show jwt.john

nwm i give up

making vidio is hard... im 2 dumb to make a good video alone

http://www.vacanada.org/v6/en/?page=profile&pagenum=37&perpage=20&pid=1'"

what is a good flight simulator for PC ?

@silk tiger any suggestions?

Microsoft Flight Simulator, but honestly the new one is going to drop any day now.

So if you're looking for one, may just hold off a bit longer until it's released.

P3D is decent, but also hella expensive

X-Plane is evidently good too, but expensive from my understanding.

hey mayor that game you are playing seems nice is it free?

583311337

It's not free. But not super expensive either. Nite Team 4.

does it teach anything ?

Importance of enumeration. A lot of OSINT stuff.

can you export http objects to find the flags?

does it have campaing

It has a campaign, yes

@barren wave im not sure exactly what you are working on but yes you can many ways. wireshark, tshark, pcap, etc..

watching 0day's stream.

tshark -r nssal-capture-1.pcap -T fields -e ip.src -e dns.qry.name -R "dns.flags.response eq 0 and dns.qry.name contains google.com"

tshark | sed -e 's/.tryhackme.com//'

@wise mortar yes site is down 😭

can i complete jack ?

it's so quiet in this voice chat....

it can be better to sleep in order to stay productive

what's that? :D

oh, so i'm not hacked, it's discord feature

https://weakpass.com/

why?

sure, stream it

CMesS

use search wordpress user role in metasploit?

hi

Hello from the other side

gj

@hot cloud

why do you have all theese folders with thm tasks?

sort -u?

smb://

@hot cloud enum4linux

0day was doing the same room earlier.. btw hello too

0day have you tried SixSiege?

@wise mortar

Looking at writeup doesn't count

Now I haven't seen that name in quite a while @quartz birch

Looking at writeup doesn't count
@lofty moat Who?

0day have you tried SixSiege?
@lofty moat No I have not.

https://canary.discordapp.com/channels/690274456999952402/690291345876844817/714201484992053351

keep your language civil, please

@silk tiger Hey, keep it legal.

Pretty damn fraudulent, not paying your AWS invoice

That is very dodgy

They'll catch up eventually im sure

like, lol

He uses it for Pentests

he said this in Voicechat.

@limpid badger https://tryhackme.com/room/learnowaspzap

What's goin on?

What are we doin

having a party, your not invited

alright, i'll go to sleep, cya, gl

wow, writing actual classes to get code execution with pickle

Rude

gonna suck when this fails fue to missing newline

@forest python I have kept it legal, I was mentioning that there are people who do fully abuse the aws stuff and leave without paying, etc.. not me my friend 🙂

Wait what

m5dn.24xlarge??

Isn't that like £2k plus monthly 😂

Dude that's insane amounts of money @silk tiger

Ehh, something kinda sorta. I frequently adjust the server plan as I mainly use AWS for alot of dev and experimental based stuff

But you're installing Kali on it?

• MSF and nexpose on the windows one

I cant tell you how many times a week that I stand up and down VMs with every OS lol. That Kali instance will be for shits and giggles but will host a Metasploit Pro environment and the windows box will host the Nexpose environment for some 'stuff' you could say.

I always do all my work on VMs vs locally. Significantly faster. Maybe 5% of what I do is locally.

runescape

crab genocide anyone

got two whips earlier so have to train up to use it

Has anyone written a PenTest Report in here that can answer a question for me?

you can just ask your question

probably #709537796809031730 can be a place for that

@edgy musk aye

WHats up

😆

?

@tame ether What is wrong here?

Do I have to reinstall PowerView

uhm i have no idea tbh, powershell isn't my thing

is it ok to join the stream here?

yes

@midnight fern what’s your problem?

What problem would I be having at 3:06am

@rare pollen

0day's problem is that he is too perfect

too perfect to exist

What problem would I be having at 3:06am
@midnight fern life is meaningless yet we try to make it count and have a purpose. let that sink in..

hi

Hey Guys

Sup?

How can I join the voicechat?

double click the general

ho lol ...

my discord ui is all bugged

Yes

discord very secure yesyes

hello everyone

what am I looking at?

can't talk, sorry 😦

short lived 😆

hey?

cj

What do I do with that

Fk

(Be aware it's a public server -- we can all see that)

smh

its not giving me shell!!

ooo got something yaya @tame ether

etc/passwd 😛

gonna use hydra now 😍 (i just love that tool so much)

yeah ik

but im gonna try bruteforce

im so lost rn

im legit bruteforcing every user with rockyoushort

I don't think it's the way to go

explore ports 80-83

im doing it

i can't upload .php

yes you can 😎

eh.... ig but i think of doing some more enumiration at the same time

@tame ether why do you know stego so much?

stego?

stegography

there's no stego here afaik

how did you

do it then 😭

😎

going back to look at the pic you uploaded 😮

i can't get king tho

I don't have a static chattr and i think it's chattr'd by default

oof

xD

eh it ends in 6 min

gg

another one ?

not now

oof okay

im gonna go and play some rooms 😂

this server dont have the music channel ?

we dont have a music bot

can we ?

this is supposed to be a professional discord other than #general , i can't see how a music bot could professionally advance people's careers or skillset? But anyway, it's not down to me. Ask a @mod ?

lol

let itbe

@forest python will likely answer you

ill listen it on spotify

say something

u ok there @ripe flare

i want to listen void of somebody

im first time here

voice*

Ur wish is done

someone stream koft or skmething

umm i already won this one, so no point streaming it as no one is in the box

The next one

Can we ask doubt in this group

? About machines ?

You're deafened you vegetable, I can hear you

ok im here

``` @plucky vault

deb http://http.kali.org/kali

hi

i like to watch

join KOTH-1

voicd chat

@livid crag ready to play ???

as ready as you

(not at all)

👀

ahhahaahah

tru tru

@livid crag whats up 😂

why restart the machine ?

wow someone running autopwn

https://tryhackme.com/room/shodan

@limpid badger it took me 15 minutes to install zorin os again.

armitrage is a good tool

i liturally love it

yah

@plucky vault whats your github? You had a repo for a THM leaderboard tracker and i wanted to check it out 🙂

https://github.com/alakuajvar/tryhackme-leaderboards

i alredy installed operating system

just yk apt update apt upgrade

get kali-linux-full I guess?

The whole package

y

Forgot it was ZorinOS, nvrmind

can someone send me big.txt?

https://github.com/daviddias/node-dirbuster/blob/master/lists/directory-list-2.3-big.txt

i think this is it?

@forest python should i do this ?

the liter the faster install

i avoid windows

Think of it as attack and defence @limpid badger

Once you get in, you have to defend against everyone else

Kinda like Red/Blue team

guys hey

hye

is there any way that i can use the compromised website as the shell

what i am trying to achieve is to get a reverse shell on the machine,not a webshell that has a hosted website on it.the machine is behind a waf so i tcp are blocked only port 80 is allowed.is there any tool out there that can make a php intermediate page between my uploaded reverse tcp shell in the website and my local listener

target machine netcat<==>php intermediate webpage<====>attacker netcat

#rules 9?

this is a doubt😆

i would rather not answer that

@serene veldt I've seen it done, but you may need to program it yourself

I hope this is for a THM room as well...

hello guys!! im new here. Can i ask some doubts about the tryhackme website??

@languid wing sure, if you want help with a room head to #room-help, for most other things #general is a place to go

@tame ether thankyou!! a help is that now im recently sign up to tryhackme web. so im now struggling to connect openvpn with tryhackme from win10. it says connected in openvpn but not showing in te tryhackme website!!

ah, ignore the /access page, it's buggy
try deploying a machine and connecting to it

also for any other problems with a VPN #site-support is the place to ask in

@tame ether yeh ive made a deploy and it said connected

@tame ether thank you so much for your support!

👍

@languid wing if you need help regrading rooms try to ask in #room-help and if have any vpn or techinical difficulties ask in #site-support . Have Fun Hacking 🙂

I literally told that few messages back

@lofty moat ok thankyou again!!

I literally told that few messages back
@tame ether I look for ways to jump in into everyhing

someone up for KOTH ?

@zenith cradle Yes xD

ys

pls fix

my headset died

😦

what room do you guys recommend to do after zthlinux?
?

Blue

ok

what room do you guys recommend to do after zthlinux?
?
@stoic root i would suggest to do RP: Metasploit before doing blue

ok

i will also do RP: nmap

GL

let's see ...

@plucky vault what room is this?

its koth

nice

only @plucky vault is pro here XD

why does it show your name @plucky vault ?

Because I'm the king.

oh

dunno what to do:/

i'll ask ya after this compi

got it theres a exploit for abyss port 9999

no?

Don't attack 9999