anyone want to do a koth
#koth
jovial field
got someone cheating
[ terra2 ~ ]# ssh terraminator@10.10.99.90 -p 1337
terraminator@10.10.99.90's password:
Welcome to Ubuntu 16.04.3 LTS (GNU/Linux 4.4.0-87-generic x86_64)
- Documentation: https://help.ubuntu.com
- Management: https://landscape.canonical.com
- Support: https://ubuntu.com/advantage
239 packages can be updated.
151 updates are security updates.
The programs included with the Ubuntu system are free software;
the exact distribution terms for each program are described in the
individual files in /usr/share/doc/*/copyright.
Ubuntu comes with ABSOLUTELY NO WARRANTY, to the extent permitted by
applicable law.
The programs included with the Ubuntu system are free software;
the exact distribution terms for each program are described in the
individual files in /usr/share/doc/*/copyright.
Ubuntu comes with ABSOLUTELY NO WARRANTY, to the extent permitted by
applicable law.
Last login: Fri Jul 22 14:27:03 2022 from 10.8.41.76
Connection to 10.10.99.90 closed.
oot@lion:/home# cd gloria/
root@lion:/home/gloria# ls
user.txt
root@lion:/home/gloria# catHangup
sh: 1: Cannot set tty process group (Inappropriate ioctl for device)
[1] + Hangup bash
bash
msf6 exploit(multi/http/nostromo_code_exec) > run
[] Started reverse TCP handler on 10.8.41.76:4444
[] Running automatic check ("set AutoCheck false" to disable)
[-] Exploit aborted due to failure: unknown: Cannot reliably check exploitability. "set ForceExploit true" to override check result.
[*] Exploit completed, but no session was created.
msf6 exploit(multi/http/nostromo_code_exec) >
and the nostromo service on port 8080 isnt reachable
[ terra2 ~/Desktop/koth/lion ]# ssh -i gloria.rsa gloria@10.10.99.90 -p 1337
Enter passphrase for key 'gloria.rsa':
Welcome to Ubuntu 16.04.3 LTS (GNU/Linux 4.4.0-87-generic x86_64)
- Documentation: https://help.ubuntu.com
- Management: https://landscape.canonical.com
- Support: https://ubuntu.com/advantage
239 packages can be updated.
151 updates are security updates.
Last login: Fri Jul 22 14:13:13 2022 from 10.18.20.108
Connection to 10.10.99.90 closed.
same thing with the gloria account
karmic beacon
You can still join this one
there is 7 mintues left
We just need 5 more people for it to be full
3 minutes left
to join
2 minutes left to join
4 more people till 10 people
1 min left.. quick
inner nexus
Do you get points if you do koth?
I think you used to get points for putting in flags but idk anymore because it seems like a really easy way to farm
inner nexus
also wanna join my koth tourney?
fossil pecan
Streaming live matches to practice for tournament! Hogwarts is next, come say hi! ๐
https://youtu.be/PRXopkVxKhY
dusky spoke
What's the max players per lobby?
sour vectorBOT
Gave +1 Rep to @karmic beacon
fossil pecan
next game in 23min
https://tryhackme.com/games/koth/join/c9bbc845c2584205258894f8
proven garnet
Just cat it
naive goblet
could be a missing endline in the file... also generally you do not open ssh keys in text editors... though you tend to be able too
swift laurel
could be a missing endline in the file... also generally you do not open ssh key...
Yeah i know you dont have to open them you still are suppose to be able too , I dont understand how out of sudden any RSA files doesnt work
stiff egret
So either text editor or file perms issue
naive goblet
someone set the perms to 000
muted cradle
What koth? How it works?
prisma roost
What koth? How it works?
!docs koth
pearl gladeBOT
TryHackMe
fossil pecan
anyone playing today?
lime hollow
here goes my first!
fossil pecan
hogwarts is a hell of an intro box haha
lime hollow
yeah i can see that ๐
lime hollow
already got them
fossil pecan
entrypoints are random each game on hogwarts (port numbers, passwords, etc)
lime hollow
discreetly hiding that whitespace decode tab
do you mind voice chat for a bit after it's done?
still trying to do "stuff" ๐
fossil pecan
do you mind voice chat for a bit after it's done?
sure!
fossil pecan
<@118749350795935744> congratz ^^
Haha, thanks!
sour vectorBOT
Gave +1 Rep to @lime hollow
fossil pecan
I can jump in voice soon if you still want
quiet schooner
@steep agate #thm-community-media preferably
steep agate
lol
gritty stirrup
inner nexus
Ooga wooga Dorito choosa
random trellis
Ooga wooga Dorito choosa
which language is this bro?
inner nexus
which language is this bro?
Da language of da Dorito muncher
quiet schooner
Da language of da Dorito muncher
What
quiet schooner
Dori cheese ooga wooga nacho booga
What the hell are you talking about?
inner nexus
What the hell are you talking about?
I want Doritos dinamita chili limon
Have you ever had it
quiet schooner
I want Doritos dinamita chili limon
Why are you spamming about it in the #koth channel?
inner nexus
It was not really spamming I was telling ramgharia I want Doritos
uneven sedge
Doing so in particularly poor taste
uneven sedge
Don't think it'll get accepted
inner nexus
Fsfs
random trellis
@stiff egret @quiet schooner @nova tide i have a humble request that if deleting /sbin/nologin from KOTH Machine is not allowed then please add it in rules.....
I mean what will be the fun of playing if no one will be able to login, when i tell anyone to stop doing this they says its not written anywhere in rules that you cant delete /sbin/nologin
quiet schooner
I'm not responsible for koth in any way.
But that sounds like a denial of service which is explicitly against the rules
You do not need to spell out what's against the rules, otherwise you'd have to enumerate every binary you're allowed or not allowed to delete.
random trellis
You do not need to spell out what's against the rules, otherwise you'd have to e...
true its like common sense that we are breaking rules and deleting nologin is just like breaking the machine
quiet schooner
If people are breaking the rules, report them. Don't try and argue with them.
random trellis
i reported once more than a week ago but got no response
stiff egret
If you didn't get any response, it's likely that we weren't able to take much action on the reported user, likely because of lack of enough evidence.
stiff egret
<@580609268261191680> <@252418040388517888> <@267010557889085440> i have a humb...
Ninja said everything needed for this, there's a reason you are supposed to be intermediate on THM to start KoTH. I don't see what part of 'dont delete system binaries' wasn't clear enough.
random trellis
Ninja said everything needed for this, there's a reason you are supposed to be i...
sorry i am not so good in english so can you please just tell me that deleting /sbin/nologin is allowed or not
stiff egret
Deleting /sbin/nologin is not allowed.
random trellis
thanks
random trellis
If you didn't get any response, it's likely that we weren't able to take much ac...
yess i sent only 2 screenshots, i can understand
jovial field
@steep agate are you able to do something else then spamming /dev/urandom ???
steep agate
<@745672959804571742> are you able to do something else then spamming /dev/urand...
and are you able to try to get root? I'm watching you...
I'll stop laughing sending urandom, and I'll be watching the logs, good luck!
steep agate
lul got root with your diamorphine
very good friend, that's where you had to get root, just look at the dmesg ๐คฃ
dmesg
or
cat /var/log/kern.log | grep diamorphine
the @fossil pecan has a rootkit based on diamorphine with a sigkill different from the default, his is more appealing because the sigkill to hide the process and return the process is different
steep agate
I'll stop laughing sending urandom, and I'll be watching the logs, good luck!
I still gave the tip of the logs ๐
30 minutes have passed, you can stay in the king, thanks for the match, you played well!
jovial field
you too
fossil pecan
the <@118749350795935744> has a rootkit based on diamorphine with a sigkill diff...
Actually never heard of diamorphine until i saw someone else try to use it in a KoTH games haha... It is similar tho, even got some new ideas and tricks from learning how diamorphine works ๐
steep agate
Actually never heard of diamorphine until i saw someone else try to use it in a ...
xcellerator too
It's always good to learn new things!
fossil pecan
LEARN ALL THE THINGS! ๐
steep agate
LEARN ALL THE THINGS! ๐
๐
fossil pecan
here's the xcellerator blog series i found, learned all my rootkit stuffs starting with this ๐
https://xcellerator.github.io/posts/linux_rootkits_01
steep agate
linux hidden process is really cool
steep agate
here's the xcellerator blog series i found, learned all my rootkit stuffs starti...
xcellerator ๐ป
radiant sun
I still gave the tip of the logs ๐
utmp
fossil pecan
I still gave the tip of the logs ๐
just the tip?
cinder apex
Please come in lets play: https://tryhackme.com/games/koth/51628
quartz thistle
jovial field
@steep agate is it even possible to bruteforce ashus backdoor?
I tried it 30 minutes with rockyou.txt and still no hit
naive goblet
you sure the other players did not patch it by changing the password???
steep agate
<@745672959804571742> is it even possible to bruteforce ashus backdoor?
I've never tested bruteforce itself on the ashu user, because it's almost impossible for someone who already has access to the machine not to have changed the users' password, but I believe so bro, then I can test it for you if you want
jovial field
you sure the other players did not patch it by changing the password???
i mean service on port 9002 was shut down and the password of the ashu user changed
so i thought this is the only way left
naive goblet
not played koth so dunno ยฏ_(ใ)_/ยฏ
steep agate
i mean service on port 9002 was shut down and the password of the ashu user cha...
actually there are two backdoors on port 9001 and 9002
steep agate
yes port 9002 down
lol
there's a backdoor that the shell is limited, I confess that at first I racked my brains to know how it works, but then it's ok
jovial field
yeah i know but after two minutes the connection got refused
steep agate
oh I don't know what happened, I just know that there are two backdoors, and one has to have the password
jovial field
All good
steep agate
if I'm not mistaken it's "yourmom" something
jovial field
?
steep agate
the password
jovial field
ok thank you for the hint
steep agate
xD
jovial field
lul this massco99 killed every service but is still loosing because he cant break the king.txt
random trellis
lul this massco99 killed every service but is still loosing because he cant brea...
lmao true, yesterday he removed gloria's flag in lion machine and left the file name with name "THIS IS MASCCO's DANGEROUS FLAG DONT TOUCH IT"๐คฃ
radiant sun
Dangerous people playing koth bruh
random trellis
@radiant sun check this guy bro
going to report him
i have screen recorded too
he still lost the match
using while loop to attack other users is not allowed right?
radiant sun
That spam echo thing he doing I donโt think thatโs rule breaking
But if heโs using while on killing sessions or ssh service lol that surely is
random trellis
That spam echo thing he doing I donโt think thatโs rule breaking
in second pic we can see that he deleted nologin too
he deleted nologin
radiant sun
Mattheu is in another dimension ๐
steep agate
steep agate
Mattheu is in another dimension ๐
i playing lol
steep agate
<@957876172962791435> check this guy bro
WTF ๐คฃ ๐คฃ ๐คฃ ๐คฃ ๐คฃ ๐คฃ
he came to my DM, giving rage saying that I play koth for a long time and that I'm dehumilde and don't help anyone, and that their friends get mad because when they play with me they never win
@random trellis
but then I talked to him, and everything was fine.
he already did the same thing to me, deleted nologin
random trellis
he already did the same thing to me, deleted nologin
he was in my dm too, xposed named player was using your script of king.sh that just add chattr and remove it from /usr/bin, and the pwnzy said he is cheating he using any script of king.sh๐คฃ
steep agate
๐คฃ
vapid condor
Well, Welcome here guys
cinder apex
plain badge
nice match @random trellis, many things learned ๐
random trellis
nice match <@899296404906868766>, many things learned ๐
yess 1=1๐
random trellis
๐คฃ
stiff egret
lmao, P.S. this game is just 100% fun. I am on a new laptop and have absolutely no proper workspace setup for any competition
steep agate
i playing lol
random trellis
i playing lol
which game is this?
stiff egret
I am basically trying to understand how to continue using windows on my laptop and not break it.
random trellis
lmao, P.S. this game is just 100% fun. I am on a new laptop and have absolutely ...
we are in trouble now๐ฅฒ
steep agate
which game is this?
league of legends
stiff egret
we are in trouble now๐ฅฒ
I don't think so, I am awfully out of my general workspace, with no idea how this will work out. New laptop, new VM, just notes, all shortcuts gone
radiant sun
still (:
random trellis
i will try my best if i not gone kicked๐คฃ
stiff egret
I will consider it a win if I am able to even get a root shell today ngl.
lmao, with no shortcuts and keybinds, it is hard enough already, I am sure as hell not playing windows, in which I am as bad as I am in french.
ps I have no idea about french.
wait
yeah
windows I left
random trellis
@steep agate i was thinking for xfreerdp and you patched that too๐คฃ
steep agate
it's very hard to play lol and koth at the same time but i try ๐คฃ
cinder apex
Is this legal to to do
cursive ether
he came to my DM, giving rage saying that I play koth for a long time and that I...
he said the same thing to me
cursive ether
You played dirty
๐i never play dirty.
fluid merlin
@random trellis i want to practice KoTH with you, Is it possible? btw i am a script kiddie
shadow pivot
fossil pecan
<@899296404906868766> i want to practice KoTH with you, Is it possible? btw i am...
I'm online a lot, and have been helping lots of people practice recently... DM me anytime if you want to chat, or play practice game(s) sometime ๐
random trellis
<@899296404906868766> i want to practice KoTH with you, Is it possible? btw i am...
@fossil pecan is good and knows more than me, you can do with him bro sorry, i am busy in some works these days
cinder apex
come in guys https://tryhackme.com/games/koth/51904
steep agate
lol @TheJinn007
marble turtle
Dang lol
random trellis
lol @TheJinn007
deleted /usr/bin/w and left his chattr in /root
I am telling you dangerous hackers started joining KoTh๐ฅฒ
haughty turtle
radiant sun
deleted /usr/bin/w and left his chattr in /root
I am telling you dangerous hack...
lol bro๐ jinn bruh
stiff egret
lmao
stiff egret
You know deleting netstat comes under system binaries? @fossil pecan
fossil pecan
You know deleting netstat comes under system binaries? <@118749350795935744>
?
I don't delete things ๐
stiff egret
only 3 of us in machine, h00dy didn't, and nor did I.
fossil pecan
You know deleting netstat comes under system binaries? <@118749350795935744>
@stiff egret FYI - netstat is not included on the panda machine by default ๐ ๐
just checked brand new game
export PATH=/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin
which netstat
which: no netstat in (/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin)
I defo forgot that then. My bad
fossil pecan
GG @radiant sun @stiff egret - was fun to watch ๐
jovial field
naive goblet
upload busybox and use that for ls???
radiant sun
naive goblet
uh oh someone broke the machine
quiet schooner
You made a typo
jovial field
who's this
should work
cinder apex
come in lets play guys https://tryhackme.com/games/koth/51974
marble turtle
I AM TRASH LOL
steep agate
someone must have loaded a rootkit
radiant sun
terraminator
marble turtle
I'm serv3 lets fucking goooooo
steep agate
terraminator
yea
marble turtle
managed to get serv3 and a flag. Couldn't escalate privs. Like my 2nd game though so I'm happy I got points lol
also managed to find admin admin credentials and a cookie. tried ssh but didn't really have much of a clue where to go from there
random trellis
also managed to find admin admin credentials and a cookie. tried ssh but didn't ...
there is a login panel at port 8000 somewhere, the credentials you found will work there
but you have to find that panel๐
haughty turtle
and also these entrances will get patched if u playing against these good players
random trellis
and also these entrances will get patched if u playing against these good player...
i dont even change passwords bro๐ฅฒ , i start playing after 10 mins when i play with new KOTH players
haughty turtle
yea bro fair play i know but it takes too long for me to just get in haha
im learning
and once im root i have no idea what to patch and how to patch those
random trellis
@steep agate that pwnzy guy came in my chats and started giving rage that because of you my frnds stopped playing KOTH, because last month you played 8hrs a day and i win because i cheat....
Well i never kicked someone, never changed password, i mostly plays after 10 mins of starting, how much more fair i can play now๐ฅฒ
random trellis
and once im root i have no idea what to patch and how to patch those
how you get root, that is what to patch
haughty turtle
how about patching the way we get in?
random trellis
how about patching the way we get in?
yess you can do that but make sure you dont break the machine๐
haughty turtle
if i get in with ssh, i just change the machine pub to my pub
but patching like sql and web, i have no experience at all
random trellis
but patching like sql and web, i have no experience at all
for that you need to edit little bit source codes in /var/www/html
haughty turtle
for that you need to edit little bit source codes in /var/www/html
ahh thank you so i need to review my coding skill again lol
sour vectorBOT
Gave +1 Rep to @random trellis
random trellis
for window i just leave the room<:kekw:658061932577816606>
i love windows rooms ๐
steep agate
<@745672959804571742> that pwnzy guy came in my chats and started giving rage th...
that guy is crazy in the head, out of nowhere he started to rage, and if I play for a long time what does he have to do with my life? this guy is crazy๐
haughty turtle
i love windows rooms ๐
i have no idea how to get start with it but im learning about it
random trellis
that guy is crazy in the head, out of nowhere he started to rage, and if I play ...
he said he will come back with some hard scripts again
and this was his hard script
๐คฃ
steep agate
he said he will come back with some hard scripts again
he?
steep agate
and this was his hard script
๐
nova tide
what do to again this? one guy has root and close all the port except 9999?
seems like only ssh and king service is left.
stiff egret
Game ID?
haughty turtle
i'm out of the room already sorry can't get it
willow raptor
stiff egret
That's alright, in case you get into such situation, feel free to report this, this is just dirty gaming and rule breaking in a happy mix.
haughty turtle
yes that one
stiff egret
ah, it's the same user, the problem right now is, there are a lot of other users in the same game, I can't really point it to one user.
@nova tide wasn't there more reports on the same guy?
nova tide
can't ssh either
they changed the port to 55333 but i think you guys reset the game afterwards?
haughty turtle
one more question just in general, when the koth box is really slow, what might cause that? is it my own vm or the box cuz when i practice in private game, sometimes it just really slow to load any web
haughty turtle
they changed the port to 55333 but i think you guys reset the game afterwards?
yep i did see 55333
i pressed reset but only 2 votes so i just left it
stiff egret
Generally, it's the VPN, but if there are players with experience in the box, it is likely that they are running pspy inside. Slow machine is a telltale sign of that script.
haughty turtle
Generally, it's the VPN, but if there are players with experience in the box, it...
but what if i just practice alone with my alt account? sometimes it also slow
stiff egret
So, try the pings on any other machine in tryhackme, and if that is all okay, then it's pspy or someone hammering the machine with some or the other bruteforcing tool.
haughty turtle
so i think it's just my VPN issue
stiff egret
but what if i just practice alone with my alt account? sometimes it also slow
Yes, then it is your VPN.
haughty turtle
Yes, then it is your VPN.
thanks for the info
sour vectorBOT
Gave +1 Rep to @stiff egret
haughty turtle
i just practice alone for now
stiff egret
Rule of thumb, give it 2-3 minutes to boot up, I know that Hogwarts and almost all windows machines are slow to boot.
haughty turtle
yes thank you for telling
urban bloom
for that you need to edit little bit source codes in /var/www/html
Or you can delete the webpage.... They r both the same ๐
random trellis
what do to again this? one guy has root and close all the port except 9999?
this massco guy plays very dirty bro, just because he dont know how to remove chattr
random trellis
Or you can delete the webpage.... They r both the same ๐
deleting web page is not allowed i think, so its batter to patch it๐
cursive ether
this massco guy plays very dirty bro, just because he dont know how to remove ch...
thats one thing about him.
fluid merlin
what do to again this? one guy has root and close all the port except 9999?
Same thing happen to me also bro he completely removed the web page when I was playing with him
jovial field
he did it to me too but lost anyway because he wasnt able to see that he hasnt any write perms on king.txt
cursive ether
@radiant sun did you really have to do that?๐
cursive ether
you in match?
yea you just messed up with my shell haha
radiant sun
i thought it was spidey bruh lol
cursive ether
i thought it was spidey bruh lol
๐ญ
haughty turtle
deleting web page is not allowed i think, so its batter to patch it๐
the fastest way to patch web lol
cursive ether
the fastest way to patch web lol<:kekw:658061932577816606>
but its not allowed
cursive ether
@radiant sun @crimson light ๐ stop it guys
radiant sun
hehe
gritty stirrup
Yoo
urban bloom
but its not allowed
What's the difference?... Both ways are meant to keep others out ๐
cursive ether
What's the difference?... Both ways are meant to keep others out ๐
yea but deleting the web page is against the rules
urban bloom
yea but deleting the web page is against the rules
Yea yea..... I knoww .... rules, rules, rules
jovial field
lol if i try to join a public game it errors out and says Uh-oh, this page has been lost in the matrix.
and it shows object object dont know what this is
nova tide
What's the difference?... Both ways are meant to keep others out ๐
but if you are found breaking rules you could be banned?
urban bloom
but if you are found breaking rules you could be banned?
If only I were ever found
nova tide
If only I were ever found
good luck.
urban bloom
๐ Just kidding... I know and I respect the rules
urban bloom
good luck.
Just don't add me in your wanted list
urban bloom
Working fine for me... Sometimes error occurs when you try to join 3 or 4 machines at a time
fossil pecan
lol if i try to join a public game it errors out and says Uh-oh, this page has b...
i was having same issue in FF, i cleared cache and restarted browser and now i can ๐คทโโ๏ธ ๐
jovial field
i was having same issue in FF, i cleared cache and restarted browser and now i c...
thank you this worked
sour vectorBOT
Gave +1 Rep to @fossil pecan
marble turtle
for that you need to edit little bit source codes in /var/www/html
Yeah I realized this late. TY for the help guys
sour vectorBOT
Gave +1 Rep to @random trellis
stiff egret
If only I were ever found
you realise that sounds so ... interesting.
fossil pecan
you realise that sounds so ... interesting.
Next game 20min
https://tryhackme.com/games/koth/join/6ec9b69523484b57e6a12a48
sleek ocean
@fossil pecan is giving me a hard time at koth
fossil pecan
โค๏ธ
haughty turtle
can anyone give me a hint of where the 8th flag of panda? i can't never find it. is it in source code?
near lily
can anyone give me a hint of where the 8th flag of panda? i can't never find it...
I can give you hint,
It's in the box somewhere
haughty turtle
I can give you hint,
`It's in the box somewhere` <:kekw:658061932577816606>
very informative
haughty turtle
spare me don't send me urandom
cursive ether
spare me don't send me urandom <:kekw:658061932577816606>
who?
cursive ether
one of them i don't know
๐yea I know who is it
haughty turtle
the only way that i know to get root is patched now im playing with PATH thing but don't know how lol
finally holy
what is king.txtecho?
anyway thanks guy for sparing me
gg im satisfy now
cursive ether
haha
random trellis
one of them i don't know
i was not that bro, i got king at starting and then started playing after about 10 mins
@haughty turtle this is all i was doing
king.txtecho made by me by mistake ๐คฃ you can see upward
haughty turtle
u not dong a while loop?
haughty turtle
i know somebody was doing a while loop cuz right after i put my name it changed instantly
random trellis
i know somebody was doing a while loop cuz right after i put my name it changed ...
i know, even my king timer stopped for 4 times
i never use any loop bro
random trellis
i got only 2 urandom
i dont do that๐ , i just kicked someone who logged in through port 9001
nothing more
random trellis
and i did
echo "root ALL=(ALL:ALL) ALL" > /etc/sudoers
i dont think its cheating
random trellis
ohh btw what that port 9001 9002 do
these are backdoors
haughty turtle
and i did
echo "root ALL=(ALL:ALL) ALL" > /etc/sudoers
i dont think its cheat...
think it's not as well
haughty turtle
these are backdoors
do u have any demonstration of those cuz i never get it to load
random trellis
do u have any demonstration of those cuz i never get it to load
nc ip 9001
haughty turtle
nc ip 9001
oh thank you ill try that when i practice alone hehe
sour vectorBOT
Gave +1 Rep to @random trellis
haughty turtle
but i get random room cuz im not subscriber
random trellis
think it's not as well
i just patched sudoers๐คทโโ๏ธ , its not against rules
haughty turtle
u spared me that time or u didn't see my ssh key?
random trellis
u spared me that time or u didn't see my ssh key?
i dont know what you trying to say because i m not so good in english , but if you are saying why i did this.. then there was one more way to get root
random trellis
u spared me that time or u didn't see my ssh key?
ohh i understood now, i havnt seen your ssh key bro, as i told you i was just doing king at that time nothing more
haughty turtle
ohh i understood now, i havnt seen your ssh key bro, as i told you i was just do...
yea i put my ssh key in one of the home directory
and i got root by using path exploit thing
random trellis
and i got root by using path exploit thing
cool, so you left your ssh key in skidy right?๐
random trellis
yes haha
nice that was the way i was talking about to get root ๐
there something hidden thing, change your path and you can get root
radiant sun
<:kekw:658061932577816606>
that's me
radiant sun
i didnt wanna say it haha
for w in {1..10}; do cat /dev/urandom > /dev/pts/$w; done
cursive ether
yup thats exactly you
manic atlas
I see that there are links to a panda.thm site... are these links broken or is there a way to access them?
gritty stirrup
I see that there are links to a panda.thm site... are these links broken or is t...
Something else supposed to be there someone remove it and replace it with panda.thm
manic atlas
oh ok
random trellis
i was not talking about you bro, it was someone who had reverse shell with with python and if i am not wrong you got reverse shell with bash๐
i saw that but havnt killed your process
whole whale
random trellis
@cobalt mountain stop doing reset spams
cobalt mountain
What about you? What have you done stop calling me ๐
random trellis
What about you? What have you done stop calling me ๐
just killed your pts
why dont you try tdurden user
you changed password of narrator, so i logged in through tdurden and i also changed all passwords
plain badge
@random trellis this guy again? ๐
plain badge
@cobalt mountain you like to send urandom to your friend's terminal, right? ๐
if I do the same to you, I'm sure you never play koth again
๐
cobalt mountain
Show me that ๐๐
plain badge
I don't even need it, this is script kiddie stuff ๐
cobalt mountain
When I see the mentalities of some, my self-esteem increases
plain badge
that's good bro, you need to grow up
for those of you who need to play urandom on the little friend's terminal, which can only be accessed via id_rsa and id_rsa.pub, you really need to grow up
cobalt mountain
yea
cobalt mountain
https://open.spotify.com/track/7LygtNjQ65PSdzVjUnHXQb?si=5fb11201f14c47e7
๐
plain badge
CLOSE, SO CLOSE @fossil pecan , nice match
cursive ether
just killed your pts
๐คฃ๐คฃ
fossil pecan
random trellis
I don't even need it, this is script kiddie stuff ๐
๐ ๐ฅ
fossil pecan
14min next game here
https://tryhackme.com/games/koth/join/963957b074fd482dfa9379bd
fossil pecan
Next up <@944355860887511060> VS <@745672959804571742> !
Come watch and hang o...
more games going on today ๐
jovial field
if someone has premium and could create a private match for me please write to me. I have to prepare for the match against Matheuz.
haughty turtle
against the top 1
edgy knoll
if someone has premium and could create a private match for me please write to m...
Heyy
fair adder
Hello guys, I'm new in koth game and I was wondering what do you think is the best way to learn (in particular the defence)
jovial field
Hello guys, I'm new in koth game and I was wondering what do you think is the be...
Just Play and you will See tactics of other Players. If you do this for some time you figure out tactics yourself
haughty turtle
Just Play and you will See tactics of other Players. If you do this for some tim...
https://github.com/MatheuZSecurity/Koth-TryHackMe-Tricks
Metheu has this github
cursive ether
@radiant sun hey, can i hit you up?๐
radiant sun
yeah
half quartz
if someone has premium and could create a private match for me please write to m...
I can do this! I would like to get some practice in the rooms too
steep agate
I can do this! I would like to get some practice in the rooms too
you are a good opponent on windows machines, congratulations
sleek ocean
Oh no koth windows
i wonder is tryhackme koth is anything like hackthebox's battlegrounds
coming from htb
radiant sun
coming from htb
Enjoy
plush venture
Heeeeeellooo, who's Jinux, I have some question about the game we've been playing ๐
plush venture
Nevermind, I found a tutorial... I'm a dumb ass who overthink :/
half quartz
you are a good opponent on windows machines, congratulations
Thank you! Offline is my JAM!! You're still one opponent I can't seem to beat though!
sour vectorBOT
Gave +1 Rep to @steep agate
half quartz
Did someone encode the first flag on Panda?? Pretty sure it didn't use to be like that.. ๐ค
steep agate
Thank you! Offline is my JAM!! You're still one opponent I can't seem to beat th...
๐คฃ
you and me give a good fight for king on windows machines, you play well!
median tapir
How come the ssh password in the Food mysql database isn't working
Hello? anyone?๐ ๐
nova tide
How come the ssh password in the Food mysql database isn't working
someone might have changed the password.
half quartz
you and me give a good fight for king on windows machines, you play well!
Thanks, it's definitely quite a battle!! ๐
sour vectorBOT
Gave +1 Rep to @steep agate
steep agate
Thanks, it's definitely quite a battle!! ๐
yea!! ๐
craggy jasper
@random trellis I have a question regarding the box we are currently on. Mind sending me a DM?
random trellis
<@899296404906868766> I have a question regarding the box we are currently on. M...
which machine?
are you talking about hackers machine @craggy jasper ??
craggy jasper
Yes that one
Just wanted to know if my vector would have been correct and you just already patched it
random trellis
Just wanted to know if my vector would have been correct and you just already pa...
what you got in the machine?? i mean how you were trying to do it?
craggy jasper
Trying to use a combination of
usernames -> derived from the staff page and thier general username schema
passwords -> mentioned in the note
On a login portal I found
But no cigar ๐
random trellis
Trying to use a combination of
usernames -> derived from the staff page and thi...
that passwords dont work
which are given in notes
craggy jasper
Trying not to get too specific on this channel to not spoil the fun for others
random trellis
Trying not to get too specific on this channel to not spoil the fun for others
okk np bro
craggy jasper
Also tried boolean based blind sqli on the login form without success
random trellis
Also tried boolean based blind sqli on the login form without success
are you talking about /backdoor?
craggy jasper
yes
random trellis
you need to brute force it
craggy jasper
._. ok thnx
random trellis
._. ok thnx
there is one more easy way to do that machine, you will underdtand if you readed the note carefully๐
craggy jasper
Hahaha ok will give it another long look ๐
Sadly, no matter what vpn endpoint I use, I do not get a connection stable enough for login bruteforcing. Dunno if thats me or THM has some sort of issue rn.
ยฏ_(ใ)_/ยฏ
random trellis
Hahaha ok will give it another long look ๐
Sadly, no matter what vpn endpoint ...
sorry, i really dont know about this that why is this happening to you๐
craggy jasper
No worries. I am not in a hurry ๐
Oh damn... face -> table.
It's a routing issue. Dockers default network adress space is colliding with THMs...
I knew it was me ๐
stiff egret
That's a first
jovial field
anyone up for koth?
half quartz
Hahah somebody's trolling me @random trellis ๐
random trellis
Hahah somebody's trolling me <@899296404906868766> ๐
๐ ๐คฃ it was my first time when i sent ascii to anyone
haughty turtle
how to u make that ascii art? is it pure coding or there is any generator?
random trellis
how to u make that ascii art? is it pure coding or there is any generator?
there are many online tools
haughty turtle
there are many online tools
thank you
sour vectorBOT
Gave +1 Rep to @random trellis
plush venture
Hello @random trellis, I saw you many time on some koth rooms, I'm wondering if there's some rabbit hole on koth rooms, or maybe they are some entry point that I don't search enough for ๐
Like in the Shrek one, there is at least 4 or 5 way to get in, right ?
random trellis
Hello <@899296404906868766>, I saw you many time on some koth rooms, I'm wonderi...
yess every machine has multiple entry points
plush venture
Thank you @random trellis
sour vectorBOT
Gave +1 Rep to @random trellis
quiet schooner
https://www.youtube.com/watch?v=aqtExecMdX4
#876804968731009055, not really suited for here
steep agate
right
unborn heath
any hints for Hogwarts KOTH?
near lily
Cast a spell.
celest salmon
@steep agate Are you playing 2 games at the same time?
celest salmon
Was just wondering, really cool
steep agate
It's totally possible to play 2 or 3 koth games, you get king in a game and then enter another game
steep agate
Was just wondering, really cool
xD
celest salmon
Just amazes me how good you are at this, lol
random trellis
@fair meteor why are you stopping KOTH services again and again
I am screen recording this time and if i found you doing this once again going to send it to KOTH staff
fair meteor
alright
@random trellis im not stopping again
i see u got through using tomcat nice
half quartz
any hints for Hogwarts KOTH?
use a faster scanner than nmap (like rustscan) and scan all ports
valid cairn
any hints for Hogwarts KOTH?
dont give up, keep looking
valid cairn
Just amazes me how good you are at this, lol
he is really good once I spent 40 minutes getting king then he kicks me out of the machine lol!
steep agate
he is really good once I spent 40 minutes getting king then he kicks me out of t...
at the end of the match, with a few minutes to go, I kicked you out of the machine ๐คฃ
valid cairn
at the end of the match, with a few minutes to go, I kicked you out of the machi...
i remember but I will come back stronger the next time I meet you !!! ๐ฅ
valid cairn
xD
we have a one year age gap so I really look up to you!
I even got a samurai animated banner after looking at your phoenix
SO thank you for motivating me!
steep agate
we have a one year age gap so I really look up to you!
I even got a samurai anim...
I don't think age matters much, what really matters is the time you spent studying certain subjects
steep agate
we have a one year age gap so I really look up to you!
I even got a samurai anim...
this phoenix gif I've been thinking about changing ๐คฃ
steep agate
SO thank you for motivating me!
I am happy with that ๐
valid cairn
good choice!
I should choose a new one too
can I take your old one?
@steep agate
if its a yes please dm me the GIF
half quartz
@steep agate officially over 1000 games won!! CONGRATS!!!
narrow tiger
@random trellis hey
random trellis
<@899296404906868766> hey
hey
narrow tiger
How did you change port 9999 to ur name
random trellis
How did you change port 9999 to ur name
echo "RamghariaSaab" > /root/king.txt
narrow tiger
Where
Directly in terminal
I have no access currently
I can't even login in ssh
random trellis
I can't even login in ssh
are we in same machine rn?
narrow tiger
Space jam
random trellis
ohh space jam
narrow tiger
U found 2 flags
random trellis
i did king from command injection and added chattr to king and removed chatttr from /usr/bin
nothing more
narrow tiger
I didn't understand that
random trellis
i can only say you that keep trying machine is very easy
narrow tiger
K
steep agate
can I take your old one?
yea
steep agate
<@745672959804571742> officially over 1000 games won!! CONGRATS!!!
GGGGG ๐ , thanks ๐
sour vectorBOT
Gave +1 Rep to @half quartz
sour vectorBOT
Gave +1 Rep to @steep agate
cedar cipher
GGGGG ๐ , thanks ๐
Oh, you're samurai too?)
steep agate
Oh, you're samurai too?)
Samurai gangster's ๐
plain badge
half quartz
Hey Heyy KOTH players! I see @random trellis has officially hit over 500 wins!! It's turning into quite the celebratory week- Good Job Guys!!! ๐ ๐ ๐ฅ
random trellis
Hey Heyy KOTH players! I see <@899296404906868766> has officially hit over 500 w...
thanks ๐
sour vectorBOT
Gave +1 Rep to @half quartz
narrow tiger
@random trellis
random trellis
<@899296404906868766>
yess
pearl crane
i think the machine is broken, isnt hogwarts supposed to have a http server on 22?
@tranquil pewter can you reset? im 90% sure its broken
haughty turtle
22 is ssh by default
haughty turtle
https://tryhackme.com/games/koth/53003
All the ports are close and can't be scanned
stiff egret
The ports are higher in the list, give the scans some time to finish
radiant sun
22 is ssh by default
Haha lol itโs not ssh on 22 in hogwarts
haughty turtle
Haha lol itโs not ssh on 22 in hogwarts
wary citrus
are we in same machine rn?
you are with me
random trellis
you are with me
I saw, best of luck
wary citrus
thanks,you too
random trellis
thanks,you too
thanks
sour vectorBOT
Gave +1 Rep to @wary citrus
wary citrus
that was fast
radiant sun
that was fast
It always is
stiff egret
I'd say this is best answered by staff or you can appeal the ban on website. I am not sure how much I am supposed to disclose here. And for you reputation, you won't want me doing that either.
cc: @short tusk
short tusk
why?? ๐ญ
You were banned for purchasing and redeeming fraudulent cards.
-ban 899296404906868766 Site banned for redeeming fraudulent vouchers.
sour vectorBOT
๐จ Banned RamghariaSaab#9825 indefinitely
fossil pecan
Who's up for some games today? Excited to get back into it ๐
valid cairn
why?? ๐ญ
My man went from top top 10 koth to ban...
that is why we must do stuff with honesty!
fiery sedge
that is why we must do stuff with honesty!
i second this
fair adder
hella
prisma roost
@fossil pecan ๐
fossil pecan
Haha not me, forgot i joined a game lol
static plover
sorry bro
fair adder
Hey, everyone.From which point on would you recommend me to try out koth? Like, are there also easier ones, where you battle against not so experienced players or how does it work?
haughty turtle
Hey, everyone.From which point on would you recommend me to try out koth? Like, ...
any players with any level can join public room
jovial field
Hey, everyone.From which point on would you recommend me to try out koth? Like, ...
there are some good players even on level one
i recommend you taking notes because you will have it easier when you know the machines
the machines wont be changed anyways xD
jovial field
wtf Spidey?
stiff egret
Oh god that is one example of failed reverse shell loop
burnt geyser
burnt geyser
static plover
@stiff egret I'm crazy yk, is it allowed to upload custom jumpscare html?
stiff egret
As long as you don't disrupt the main webpage.
Generally it's allowed to upload anything, but the rule of thumb, don't remove services that can be otherwise patched without affecting their functionality.
Afterall that's what you do in real world scenarios.
nova tide
rn random guy disabled ssh port
someone might have changed the port
static plover
@MIDHUNGRAJ
guy called MIDHUNGRAJ
he is fking disabled every port
i was first get into shell
took root
he was edit king.txt
and removed everything from /usr/bin
wtf guys
candid timber
You were banned for purchasing and redeeming fraudulent cards.
What did he even use the fraudulent cards on? Subscription?
naive goblet
What did he even use the fraudulent cards on? Subscription?
or vouchers
candid timber
or vouchers
naive goblet
sneaky way to fake emoji/emotes right there
candid timber
sneaky way to fake emoji/emotes right there
Anything to save money from discord nitro
half quartz
Do any KOTH players here have their OSCP certification?
nova tide
Do any KOTH players here have their OSCP certification?
๐
forest plume
Hello. I want to team up with two friends and do challenges and got recommended this here Koth from #subscriber - Wondering if anyone can explain how this works.
We are 3 people and will all be subscribers.
fossil pecan
Hello. I want to team up with two friends and do challenges and got recommended ...
hey! ๐ - koth is pretty fun, can join public (matchmaking) games, or create your own private game/room (invite only). You should be able to pick any box as a subscriber for practice
https://tryhackme.com/games/koth
outlines & rules/faq's ^ here are pretty good, I've been playing a ton of koth last few months (a bit of a break past couple weeks tho haha) ... I'd be happy to help answer any questions, or even jump in VC to chat sometime, let me know ๐
forest plume
Awesome man, thank you so much. If I have any questions I'll be in touch ๐ โค๏ธ
fair adder
Is It Allow To Stop SSH Service in KOTH ?
nova tide
Is It Allow To Stop SSH Service in KOTH ?
You can change the port but not stop the service itself.
fair adder
@nova tide but some one is doing it there is no ssh on this ip I Scan All Port No SSH Find But In Start There was a ssh open
nova tide
<@267010557889085440> but some one is doing it there is no ssh on this ip I Sca...
You know how to report them ๐
nova tide
pearl gladeBOT
TryHackMe
fossil pecan
Who's up for some KoTH today?
wary adder
Who's up for some KoTH today?
What time you thinking? I haven't done much but if there's a decent group doing it, I'd be happy to jump in
fossil pecan
What time you thinking? I haven't done much but if there's a decent group doing ...
I'll be online in a little bit, but I'm around and available to play for a while. Happy to do private games also, if you want to learn/practice ๐
fossil pecan
What time you thinking? I haven't done much but if there's a decent group doing ...
^ if you wanna join
wary adder
@fossil pecan what's the code for this one?
fossil pecan
<@118749350795935744> what's the code for this one?
Not sure what you mean... Next game is in 10 min
wary adder
Not sure what you mean... Next game is in 10 min
i was looking at the wrong one, no worries
fossil pecan
Can jump in current lobby from the KoTH homepage for public matches
Or can do private ones for practice
fossil pecan
๐คฆโโ๏ธ
wary adder
hahahah
fossil pecan
next 23min lol
fossil pecan
You must be close, you get it in the next 5 min, you win ๐
*and hold the rest of the game,i probably won't be back, hoping this next game is Linux lol
or i'll just skip flags ๐
wary adder
bruh moment
i was out here doing something wild
and u could literally eternalblue the whole time
weeeeird, king isn't changing even though I've changed the file
gg
dense sigil
fossil pecan
weeeeird, king isn't changing even though I've changed the file
I still don't know much Windows haha, but something similar happened to me using a rev shell on windows, it had to do with encoding/formatting, looked fine from my end, but you can see who is current King by hitting port 9999 (same for every box)
curl $VMIP:9999
Mine showed up with broken characters and lots of extra spaces lol
But worked fine using normal SSH Shell ๐คทโโ๏ธ๐
haughty turtle
```
curl $VMIP:9999
```
is this the thing that u use to show king's name on your stream?
fossil pecan
Yup ๐
fair adder
anyone wann ctf
remote pulsar
anyone wann ctf
sure
remote pulsar
koth or normal
either one, you choose! the Hogwarts box on koth is acting funky for me today
remote pulsar
koth or normal
we can do normal if you like
remote pulsar
bro im down for koth
I got decimated last time I did koth
valid cairn
@fossil pecan had a great time playing with you and dang You are seriously skilled!
jovial field
anyone up for a koth? https://tryhackme.com/games/koth/join/d9889696311abae75c13cb97
valid cairn
anyone up for a koth? https://tryhackme.com/games/koth/join/d9889696311abae75c13...
Me there.
steep agate
wtf '-'
steep agate
<:creepypog:744332717843415111>
slim ledge
How do I play king of the hill?
slim ledge
https://help.tryhackme.com/king-of-the-hill
thank you
sour vectorBOT
Gave +1 Rep to @nova tide
dapper vigil
edgy knoll
how do i play
haughty turtle
how do i play
edgy knoll
https://help.tryhackme.com/king-of-the-hill
okay
rare warren
Anyone keen for a game?
unborn ice
where's king.txt in hogwarts machine ?๐คจ
lavish oyster
where's king.txt in hogwarts machine ?๐คจ
I think you're supposed to create your own king.txt.
unborn ice
yeah thanks i did that
low dagger
call_cmd "echo '[USERNAME]' > king.txt "
call_cmd "chattr +i king.txt"
while [[ $(cat /root/king.txt) != "[usernameHere]" ]]; do chattr -i king.txt;echo "[usernamehere]" >> /root/king.txt; chattr +i king.txt; done```
Would this actually work?is this bash script? what does that call_cmd do?
low dagger
is this bash script? what does that call_cmd do?
Yes this is bash script, Iโve heard thereโs a function which I forgot to implement that runs the command ๐
haughty turtle
Yes this is bash script, Iโve heard thereโs a function which I forgot to impleme...
put this #!/bin/bash on the top maybe
low dagger
put this #!/bin/bash on the top maybe
๐
valid cairn
unborn ice
@fossil pecan ๐
@fossil pecan what did you do to remove permissions of that file ๐ค
fossil pecan
multiple chattr flags (more than +i can control write method/locks) ๐
lsattr
should show all attributes set
unborn ice
multiple chattr flags (more than +i can control write method/locks) ๐
i actually moved chattr and still you changed attributes
fossil pecan
always "BYOC" haha (bring your own chattr ๐ )
dawn horizon
who TheLinuxBoy
high lark
always "BYOC" haha (bring your own chattr ๐ )
bro yesterday you kept joining my games im getting oblitirated
how many games did u play yesterday
high lark
always "BYOC" haha (bring your own chattr ๐ )
idk how u are level 9 and this good bro
do you do other stuff outside THM?
valid cairn
who TheLinuxBoy
dunno TheLinuxBoy, mhmad727, F11snipe, Mathuez are so good that giving them more than 3 minutes can be lethal.
They are so quick with it that they even have kicked me out of a box in which I was root and tried the best to secure it
haughty turtle
idk how u are level 9 and this good bro
he doesn't focus on rank but he's better than what his rank is
haughty turtle
dunno TheLinuxBoy, mhmad727, F11snipe, Mathuez are so good that giving them more...
they can just get king with ssh from their machine
valid cairn
they can just get king with ssh from their machine<:kekw:658061932577816606>
lol
Ik but I believe that its proficency of doing playing KOTH machines repetively over and over again that makes them so good at it
jovial field
is there any way someone could tell me how invite links are generated? OxSweat and some others got a project where they want to do private koth matches and send the invite link via a discord bot.
magic owl
si
fossil pecan
idk how u are level 9 and this good bro
My level stalled out when i discovered KoTH a couple months ago lol
fossil pecan
is there any way someone could tell me how invite links are generated? OxSweat a...
I can probably help you guys figure that out, I'll be online in a little while if you're around
fossil pecan
they can just get king with ssh from their machine<:kekw:658061932577816606>
I do my best to avoid ssh, trying to be extra sneaky ๐
burnt glade
can root user change other users ssh password/remove auth key? is it allowed?
fossil pecan
ya would be considered a patch
burnt glade
oke
haughty turtle
I do my best to avoid ssh, trying to be extra sneaky ๐
i heard your root kit thing is amazing but i can't never figure what it means haha
low dagger
multiple chattr flags (more than +i can control write method/locks) ๐
Heya dude, do you have any scripts I could incorporate into my day to day KOTH fails so I atleast have a chance against people that have been doing this type of stuff for a long time?
haughty turtle
Heya dude, do you have any scripts I could incorporate into my day to day KOTH f...
u should try to learn to do it manually first before u run any script without understanding about what it does
low dagger
u should try to learn to do it manually first before u run any script without un...
I do, its just quite annoying as while Im trying to learn how to I almost instantly get blocked off and its quite hard for my friends to form a decent koth timeline as we're all over the globe with little time able to do it unless its daft am for me
fossil pecan
I'm happy to help answer any questions, and help develop some of your own... I'm working on polishing some of my tools + scripts to share on GitHub soon (ish haha)
haughty turtle
I do, its just quite annoying as while Im trying to learn how to I almost instan...
u can practice with your alt account
low dagger
u can practice with your alt account
I didnt know that was allowed lmao, didnt want to run the risk with staff but if your sure its good to go?
haughty turtle
I didnt know that was allowed lmao, didnt want to run the risk with staff but if...
yea private match with your alt to practice
low dagger
I'm happy to help answer any questions, and help develop some of your own... I'm...
Mind if I dm?
haughty turtle
won't harm anyone
low dagger
yea private match with your alt to practice
Coolio
fossil pecan
Mind if I dm?
sure! I'm happy to host/join private matches anytime for practice also ๐
high lark
My level stalled out when i discovered KoTH a couple months ago lol
bro you sweatting KoTH
high lark
My level stalled out when i discovered KoTH a couple months ago lol
i play at night mostly and if i want to play a game and not get instantly oblitirated i need to play at the morning
when @fossil pecan and @steep agate not in your game
rn Matheu is in my game :(
steep agate
masco kited the game
high lark
lol
fossil pecan
i playing lol
when @steep agate and myself both afk entire game lol ๐
i'll get it started ๐
steep agate
when <@745672959804571742> and myself ***both afk entire game*** lol ๐
ohhhh sorry I had forgotten about the game, I was playing LOL and answering some messages that I even forgot about the game ๐คฃ
low dagger
Niceeโฆ Im tryna get into it
steep agate
https://tryhackme.com/games/koth/join/486668b0a4478282c567ed9f
private game ?
haughty turtle
nice graph there lol
fair adder
Hey, did thm already start to randomize the koth flags or are they still the same for every room?
nova tide
Hey, did thm already start to randomize the koth flags or are they still the sam...
They are same for both KoTH and THM rooms. There might be randomized flags in future events.
fair adder
Why dont they randomize it? There is always some one in koth copy pasting them
low dagger
40 points off the maximum for this box
@fossil pecan Im slowly getting there xD
naive goblet
40 points off the maximum for this box
<@118749350795935744> Im slowly getting ...
though being king for a longer time should give you more points then that???
low dagger
though being king for a longer time should give you more points then that???
10 points for each full 60 seconds
naive goblet
think the max point calculation is just from the flags and not counting king time
naive goblet
10 points for each full 60 seconds
oh fair enough
low dagger
think the max point calculation is just from the flags and not counting king tim...
its counting king and flags, maximum amount for SpaceJam is 670 points if you auto script it (and break rules) and miraculously get king the exact second you get the ip otherwise its 660.
The longer you have your TryHackMe Username in the /root/king.txt file, the more points you get. You obtain 10 points every full-minute you are the current "King". To obtain 10 points, you must be the current "King" for 60 seconds (1 full-minute). If you are only the king for 50 seconds, you will not be awarded the 10 points, nor will the person who was "King" for the remaining 10 seconds of that minute. - Taken from THM help page
valid cairn
its counting king and flags, maximum amount for SpaceJam is 670 points if you au...
I hope you see that using Auto pwning or generally using scripts that give you way too much power is not allowed here.
low dagger
I hope you see that using Auto pwning or generally using scripts that give you w...
Yer Im saying the maximum possible theoretically is 670 but realistically itโs 660 provided there was no cheats involve. Im sorry if this got misinterpreted โค๏ธ
valid cairn
Yer Im saying the maximum possible theoretically is 670 but realistically itโs 6...
oh bad on my part lol
low dagger
oh bad on my part lol
I wasnโt much better, I could have made it clearer. โค๏ธ
valid cairn
I wasnโt much better, I could have made it clearer. โค๏ธ
ez dw but I believe we need to have a more fair env but there are still people just so good at it that make you question your skill lol
low dagger
ez dw but I believe we need to have a more fair env but there are still people j...
cough @fossil pecan and @steep agate cough
Personally Iโve never done a public match yet as want to get my bearings and see whatโs going on with them all with friends before I subject myself to that torture.
Me and my friend did SpaceJam (The pic I sent earlier today) and Hogwarts and I personally disliked it as even with my privesc it was near impossible to secure root (The king.txt file was missing too).
valid cairn
*cough* <@118749350795935744> and <@745672959804571742> *cough*
Personally Iโve...
its in ||tmp||
apart from that I think I have never won against these two
rn playing koth too lol
low dagger
its in ||tmp||
I kept looking in /root/ where I personally think it should be and itโs expected in most of the Koth guides and i ended up only getting 50 points the entire match while my friend was still running his Nmap full port scan by the end of it.
Cause I heard the ports are random on each machine compared to the others
valid cairn
Cause I heard the ports are random on each machine compared to the others
Yea that is true
low dagger
Yea that is true
I see why they did it but even tho it still took me 20+ minutes to find the two ports I used to access Neville account
steep agate
*cough* <@118749350795935744> and <@745672959804571742> *cough*
Personally Iโve...
what ?
low dagger
try using rustscan
I canโt seem to get it working on my kali for some reason
valid cairn
I canโt seem to get it working on my kali for some reason
how you using it?
valid cairn
send screen shots
steep agate
Your just too good at KOTH, thatโs what we had previously said
oh, thank you ๐ฅฐ
sour vectorBOT
Gave +1 Rep to @low dagger
low dagger
how you using it?
Tried using their install guide and just canโt wrap my head around it. So I might try and compile it tomorrow as itโs nearly 1am my time
valid cairn
I really need to find good resources on chattr binary
low dagger
oh, thank you ๐ฅฐ
โค๏ธ
naive goblet
maybe check the rustscan room
fossil pecan
I kept looking in /root/ where I personally think it should be and itโs expected...
If king file doesn't exist, you can always create it again ๐ ... Some boxes like Hogwarts don't have one to start with
naive goblet
it might help with installation
valid cairn
Tried using their install guide and just canโt wrap my head around it. So I migh...
did you get it from git hub?
low dagger
I really need to find good resources on chattr binary
Thatโs my favourite binary to use as unless you know what your looking for, itโs awkward as hell
low dagger
maybe check the rustscan room
Is it available for free users?
naive goblet
yuups
low dagger
did you get it from git hub?
Was tryna do
naive goblet
valid cairn
Thatโs my favourite binary to use as unless you know what your looking for, itโs...
ik bruh I cant understand how tho make it so immutable even after using chmod and chattr using -i command
steep agate
guys, I recommend that you use rootkits, create your own scripts to protect only king.txt
valid cairn
guys, I recommend that you use rootkits, create your own scripts to protect only...
any resources for that?
steep agate
any resources for that?
of rootkit you can base on diamorphine to be able to use it as studies and in the future create your own rootkit
naive goblet
shadow not trust themselves with rootkit stuffs
low dagger
ik bruh I cant understand how tho make it so immutable even after using chmod an...
For me:
I ensure to run it where king.txt is:
(After putting name in king.txt)
chattr +i king.txt
If it ends up getting edited and chattr gets added
chattr -i king.txt
echo โ[Username]โ > king.txt
chattr +i king.txt
valid cairn
I would want to declare mathuez my koth rival but rn he is way too op
but not for long
I will come back stronger than ever!
valid cairn
For me:
I ensure to run it where king.txt is:
(After putting name in king.txt)...
sometimes doesnt work still
steep agate
I would want to declare mathuez my koth rival but rn he is way too op
@jovial field @fossil pecan @radiant sun ! Nosferatuvjr#1091 is very good players too!!
valid cairn
gives permission denied even after:
using -i and -a on chattr,
changing permissions for chattr
doesnt make sense tho
low dagger
In my CTF team (we ainโt the best but somehow we get top 10% at times?), theyโve said Iโm hands down the best in the team yet Iโm actually horrific at web pentesting and also AD (Im trying to learn AD first)
low dagger
gives permission denied even after:
using -i and -a on chattr,
changing permissi...
You running it as root?
valid cairn
You running it as root?
root all the time
I can usually get root in machines in like 2-3 mins
but then I sped the rest of the time researching how to change file perms
low dagger
root all the time
Mhmโฆ try -R before the +/- i
valid cairn
Mhmโฆ try -R before the +/- i
for recursiveness?
low dagger
for recursiveness?
It might be an idea
low dagger
for now I gotta play more koth lol
Lol, Ima unwind with YT and probs go sleep
valid cairn
Lol, Ima unwind with YT and probs go sleep
what type of content do you watch?
low dagger
what type of content do you watch?
Some times JohnHammond but commonly League as tryna learn that to play with my mates
valid cairn
Some times JohnHammond but commonly League as tryna learn that to play with my m...
League seems noice
but never played any Triple AAA title on pc ever
low dagger
League seems noice
Yer, my college have an esports team on it. I got my pc mainly for gaming and started to do cybersec as that appealed to me
valid cairn
Yer, my college have an esports team on it. I got my pc mainly for gaming and st...
You will be a really cool hacker who games or a really cool gamer who hacks! ๐ ๐ฏ
low dagger
You will be a really cool hacker who games or a really cool gamer who hacks! ๐...
Thatโs my goal ๐, work hard play hard
valid cairn
anyways you probs gotta go now so see ya! ๐
low dagger
anyways you probs gotta go now so see ya! ๐
If Iโm free tomorrow or smth I might see if I can finally run a public match for fun
valid cairn
If Iโm free tomorrow or smth I might see if I can finally run a public match for...
sure lets do a private one altho on some machines like H1 I suck
low dagger
sure lets do a private one altho on some machines like H1 I suck
If you got premium sure, Im just poor rn ๐
valid cairn
If you got premium sure, Im just poor rn ๐
same bruv!
low dagger
same bruv!
#PoorManGang
Idk why but I made it so all my scripts need xte installed
valid cairn
weird
magic owl
hi
jovial field
For me:
I ensure to run it where king.txt is:
(After putting name in king.txt)...
the problem here is what happens if chattr gets replaced or deleted
and it is slow
low dagger
and it is slow
True, in none of mine (admittedly private) chattr was deleted
jovial field
in all of mine it was deleted or replaced lol
wary adder
Yeah, that's usually the first step
To my understanding, what you wanna do is statically link a chattr binary so you can pull it up when you get access
valid cairn
@fossil pecan Good game brother!
naive goblet
oooh close to a tie
valid cairn
oooh close to a tie
Yea ik
I lost at finding flags lol
I really tried hard but it has something to do with games
and I tried some but only found 1
mental birch
What is the best distro for beginners ?
Couz when I first started I jumped to kali and things was bad felt dumb on multiple occasions
๐
naive goblet
for ease of use for daily driving??? pop os or linux mint
for only using for hacking??? kali linux or parrot os
naive goblet
yeah do not recommend shadows use case though
as shadow has to install a lot of things from source or sometimes installing things using the default repos
mental birch
So should I still go for kali but keep practicing ?
naive goblet
yeah would recommend a kali linux vm for all things tryhackme
mental birch
yeah would recommend a kali linux vm for all things tryhackme
Thanks
sour vectorBOT
Gave +1 Rep to @naive goblet
naive goblet
it is kinda like having your own personal attackbox instance
naive goblet
hit cog button.... press reset room progress tada
mental birch
Can't login due to me forgetting my password and no clue which email
I'm still searching for it though might be somewhere in my 2nd account pins
mental birch
Yup gonna subscribe too
Ah last thing pls
What order should I be doing first
Someone said I should got for pre sec before beginner path
naive goblet
mental birch
Offensive is far away 
naive goblet
if you feel like you absoulutely need to do complete beginner stick it after junior pentester
yeah
it is a lot harder then the others with previous knowledge
mental birch
So this way I'm starting over , like 0 knowledge right ? Couz that's what I want
mental birch
Thanks I appreciate the help 
@naive goblet
sour vectorBOT
Gave +1 Rep to @naive goblet
mental birch
Ping for reps :)
mental birch
take plenty of notes
I will :)
naive goblet
reps all over the place
mental birch
Haha
steep agate
What is the best distro for beginners ?
hannah montana linux
mental birch
hannah montana linux
I'll check it out thanks
sour vectorBOT
Gave +1 Rep to @steep agate
haughty turtle
@fossil pecan patch first king later nice haha
i got all these but can't do anything
valid cairn
just curious
yea and removed the perms to get root
well atleast now
and btw I closed your shell so sorry for that
dry fossil
ok
valid cairn
Hey did yall just close ssh?
I did a nmap scan with -p- couldnt find 1 port for ssh?
dry fossil
@fossil pecan How'd you protect the king file? I can't change perms or write to it?
I checked noclobber and immutability
valid cairn
root kit lol
@fossil pecan you in through ssh?
or something else? cause the ssh ports seem to be closed
dry fossil
it's completely patched