#koth

can you find me now? try to kill my process 😄

naw im good

i was like aww man i pissed him off

i dont know how to hide myself yet... and when i stay off tty i end up killing my shells trying to use vim

you need to upgrade your shell to full tty to use vim, in these circumstances

yea but doesnt that show up on pts?

yes that is the problem haha

trying to change king with a one liner but its on lock GG @steep agate

he is very fast

Anyone online?

Pm? @fossil pecan

sure! 👍

What's koth?

https://tryhackme.com/games/koth

Bet thanks

Is it me or is KOTH having issues

https://tryhackme.com/games/koth/join/fdf56faab8ec9480be7ca605

https://tryhackme.com/games/koth/join/f97e427489dcd1c689083139
10 min

https://tryhackme.com/games/koth/join/48d5b6d855a24ad6b7f20a89

@broken pilot can you still access the koth page?

What seems to be the issue? 👀

trying to upload the picture

i keep getting this like every 5-16 minutes

yeah the servers seem to be having some problems right now Havoc

its not you

That's a relief😅

Is it though?

not for THM x)

y'all know what i mean😂

anyone up for koth? https://tryhackme.com/games/koth/join/69d451472baf633b77022fc0 ca.20min

ach du auch hier

Keep it in English only in this discord.

Yes i am here

@lavish crystal nice game 🙂

That guy is a menace with his persistence😅

Anybody here interested in some "Holiday KoTH Challenges / Giveaways"? Haha, I'm thinking of maybe hosting some fun challenges and random stuff on stream, probably mostly KoTH, but anything THM could be fun! I already have a couple ideas, just wanted to see if anyone is interested, and if y'all have any other fun ideas! DM ok if you want to follow up 👍

Jelo

your buddy here😀

Me too

@fossil pecan

https://tryhackme.com/games/koth/join/5b9d531f20a5e25feac42d9f 20 mins

@broken pilot

lmao 🤣

lol

ok

@steep agate it was worth a try

you mounted /root

umount -l /root

gg

i had to get a couple hits in lol @steep agate

Almost had me there @steep agate 😜

ya

this time you didn't import the koth module

are you testing your v2 ?

This is kingme module, just does king maker and nothing else

hmmm, right

Want it to be one of my challenges, to try and get any king points against it

then I need to do one in LKM too, now that I have more time from vacation

in C you can also do it

You've literally borked the machine I can't even access any of the webpages at all

@balmy crypt

Me too

Newuser800 GG man

Someone from the current koth game here?

hat1? brandon?

@steep agate what did u do with the king txt 😄

gg man

just protect

yeah i see

How can i see the commands other users execute ?

any tips on how to break that ?

LOL Tell me how to get bypass your stuff

why not in the end its a place to learn

you can always ask

ok

but i don't think anyone going to tell you how to bypass there stuff

https://giphy.com/gifs/sneaky-looney-tunes-daffy-duck-xT39DkkGBwez9AXHX2

damn UNO thats how we playin now??????

gg

https://tenor.com/view/awkward-lol-gif-20709392

Isn't that against the rules? So dirty

if this is allowed I'll do ```
chmod -R / 777

everytime

stonks

https://tenor.com/view/apes-together-strong-0p1sf-gif-20906166

lol

i saw u a number of times u appeared in koth with me several times

lol

will break box 😉 GLHF 😛

you dont say. the guy from the screenshot above did so too. So again: if this is legal you can just put your name inside the txt, run chmod -R / 777 and win every koth. playing like the UNO-guy should not be allowed

why am i not king

nvm just took a while

that is technically against rules, and should warrant a reset

this is against the rules, right?

you can also check the "king service" running on port 9999 (from game box: curl localhost:9999 ) or over vpn (curl $VMIP:9999) - this shows most accurate "who is king right now" (from POV of game & actual scoring based on that service)

@fossil pecan

Yes, I believe it would fall under rule #8

Do NOT delete system binaries (except chattr) or change executable permissions on them (or their directory).

Best to vote reset

@fair adder yea, I believe he ran rm -rf / or rm -rf /bin when we were playing.. I think he might have got mad the game before because I used chattr to lock king.txt then sent chattr to /dev/null

but thats kinda dirty too 🫡 acceptable but a bit dirty tbh

Yea but you could always wget a static chattr .. but I’m not gonna lie I’ve changed permissions on some binaries before playing against matheuz and niko so I guess it was karma lol… but I didn’t remove em completely ,, just made a copy in a new directory before changing perms so they could’ve been found easily using find…

@fossil pecan did you see this LOL

haha nice, what's that output from?

from the command logger

i get your script to

oh nice, i'm not familiar ... looks helpful haha, which tool?

XD PSpy you know right

ohh ya haha ;P

didn't recognize it lol 😆

🤦‍♂️

happen with me

@fossil pecan do you have the koth.service can add that one

?

it's part of machine for the 9999 serving king...

ya i know but he remove the file /etc/systemd/system/koth.service also stop the king service

he also remove curl

LOL

oh ya that's no fun 😦 ... i do have a copy of the koth binary and koth.service lol ... have had to replace & fix before (many times)

ya

hard without curl/wget tho lol

ya bro

i'll make my own

what ? (curl)

@stiff egret i have the log of the game can you stop this guys removing curl wget and removing /etc/systemd/system/koth.service also stop the koth service.

was just gonna try python http.server 9999 from /root hahahaha

doesn't work 😦

LOL

netcat is there

well see if you can break my kingmaker ... even if we don't get points 😆

i don't think i have try lot may time

but still i will try

@stiff egret game id 61617 user rootpiebot Dm me if you want logs

hehehe

that's not dirty, that's a smart move hahahah, being the only binary you can remove xD

I already had a fight with this "rootpie", he is developing autopwn's for koth ( this is on his github ), and in addition to removing all binaries from the machine, basically ruining the whole box

he playing very dirty

and besides being a very disrespectful person

It's written in the rules how to report. 🙂

done

ya

and he and "troponix" messed up the machine again, i'm getting sick of playing koth like this

shit

LOL

LOL

i think they both know each other

rootpiebot fork his website

ya

both are spoiling the koth

ya Bro

if it wasn't forbidden I would pivot the VPN of these two guys there, and then I would do the damage

there are new players that are ruining koth

ya bro but not possible

nono

it's not possible

or maybe they get ban before

hehe

😉

i hope they get banned

I have seen lot of people go over rules on koth but have't reported that much

Yes, as @nova tide mentioned, you need to report in the mail.
Please read the rules carefully, autopwns in any way are banned, things that can autoexploit a box with IP are banned and will result in a site ban.
This is for everyone.
If you have any script that can give you a root shell, by taking the IP, then it is banned.
You have been warned.

ya

Use those scripts in Private games only. Any public match use of those scripts, if reported, will lead to a koth/site ban.

@fair adder he stopped the koth service and deleted koth.service

https://tryhackme.com/games/koth/61621

LOL Bro

If they get banned what stops them from making a new account and still continue what they are doing??

Us bringing in the law?

ssup guys

long time

https://tenor.com/view/whats-up-scary-scary-movie-scream-gif-16966640

@teal oyster

I just did a public koth and got all the flags, but even after writing my name in king.txt I didn't get any points

also it just finished and the round didn't get logged?

@crude tide are you sure your name was wrote into king.txt ? Did you double check ? Was it locked?

check file permissions bruuhhh

Almost done with my exams then back to koth games 😆 🤝

Ight just getting off work now… played a game at work using the attackbox…….

yes Im sure I wrote my name into king.txt

got the last exam tomorrow morning then freeeeeeddddddoooooooommm 😂 😂

Was the koth binary in the root directory?

Coz if it wasnt, then there's no way that the system will know that your king 🙂

yup - c:\king.txt

a windows box?

yea

there's usually another directory if it was offline..... /king-server and youll find another king.txt file there.......

oh rip (first timer)

no worries 🙂

We learn by mistakes

Took me several Windows games to find those king files lol 😂

I think I'm going to make a script to protect king.txt from windows hehe

lol same 😂 ....Was also at the same problem as @crude tide nevertheless we move on 🙃

I looked into my logs and this is what I saw

seems like there wasn't a /king-server directory

enter the Administrator directory

Then dir and youll see a king.txt file and a king-server directory....

dont just create your own king.txt file lol,, look around the system and you'll find the file ....Mostly in the Administrator User if its windows....

@crude tide i believe that king file is at C:\king.txt

on linux boxes it's always located at '/root/king.txt' (but 1-2 start without it, so you do create those ones 😉 )

@crude tide ^

looks like he was in h1medium ...

oh yeah 🙃

aah yeah coz of achilles 🙃

Ahh but I found the king.txt in c:/ and changed that one

I looked through administrator and only saw a flag (also didn’t create my own king.txt lol)

Ehh I’ll make sure to keep the recommended stuff above in mind tho

sometimes you also need to refresh your browser... cuz that happened to me before , thought i wasnt getting any points , refreshed and had 210 points lol

even when its waiting to start the time may be off from your browser than you gave everybody a headstart

https://tryhackme.com/games/koth/join/57e7d7427ddd3b8fe0b095ed

5 mins

sorry if this is a common question but what's king of the hill in a cybersec context? how does it work, rules, etc?

King of the Hill (KoTH) is a competitive hacking game, where you play against 10 other hackers to compromise a machine and then patch its vulnerabilities to stop other players from also gaining access. The longer you maintain your access, the more points you get.

You can read everything here
https://tryhackme.com/games/koth

thanks, appreciate it

I'm new into KoTH, any one wanna play with me?

i am out for today sorry but you can just join public games. At this time there should be people playing.

@steep agate i give up i think you fixed every priv esc 😄 gg

https://tryhackme.com/games/koth/join/f0b65a4a1a5929b86dc8ac35

Hello I here.

Yo if we're doing live we need to vc..

lezzz go

nahhhh aint tryna do all that lol

but.. I gotta brb.

you can if you want lol

afk a few

okay

I joined

i saw 🙂

KOTH

Yup

bout to start

Am I gonna miss it?

you can still join!

Linky in dm

https://tryhackme.com/games/koth/join/f0b65a4a1a5929b86dc8ac35

bruhhhhhhh

look at all my windows lol

found RSA key

You guys reset the machien!?!"!?!?

brhhhhh

i was running hydra on the ssh password 😦

LMAO

I'm getting error on vpn

attempting this one more time 😅

dayum! reset and start over!

Can I do without a VM? AB maybe?

I have to update Kali I think...

I've been using WSL2 Ubuntu 😅

We'll see how this pans out

found the password LMAO

You have fun while I upgrade my Kali install. lmao

just restart your machine!!!

Seriously getting fatal error while trying to connect to vpn.

dang bro 😦

fugg

go to #site-support real quick

lmao.. I am tech support..

Not for here.. but I am in general..

Can try to regen your VPN creds

Just tried. Fatal error.

I'm updating my distro and will try again.

There's a lot of updates..

is gonna be all night.. I'm only at 2% right now....

so i'm in

Going up fast.. ish....

i found an md5 hash

not sure how to convert to acci

axii

hashcat

jump in voice because I can give you info even if I can't connect to the network

not gonna do that rn lol

i'm going to see johntherip

gonna try hashcat

thank u

Gave +1 Rep to @charred bobcat

okay np.

john is so much slower though...

Here's to hoping you all kill it! 🍻

Crack station not cracking it

I'm telling you rn.. hashcat plus rockyou.

10 sec.

Woah

If it's not in crackstation it's probably not rockyou

this just appeared out of nowhere on my shell

👋

IS THAT YOU ???

X

They got u

XD

😄

NO WAYYYYYYY

THAT IS SO FREAKING AWESOME!!!!!!

bro i'm inide i see the flag by can't crack the hash

Oh the 14yo is coming out in me on that one...

NO F* WAYYYY LOL

😛

that's master skills right there

That's a rooEmote

my hats of to you F11

you are a hero

another one coming in a sec ... 😉

still 0 flags yall

That is rooHappy

just please don't submit flag 🥺

im this close lol

is a stolen emote

😆

rick rolled...

Someone has root

someone got me with that the otherday

was awesome, i had to have it haha

by any chance are you using the wall command? 😅

F11.. wa are besties now okay? lmao

i feel like i've been star struck but by a hacker

https://giphy.com/gifs/attack-magic-battle-l0ExsgrTuACbtPaqQ

I kid I kid I kid.. we just hackers and.. apparently one of them can't connect to the VPN right now.. which... makes the other one... better.....

i can probably help you figure that out if you want/need it ...

It seriously stopped me to prompt for something...

typical

biggest update ever.. worse than vindows

I may just spend my time updating my vm.. hey.. my new gf.. is my vm...

😛

Kali is kinda hotttt...

Actually I knew a girl named Kali.. and she was as hot as you think the distro is...

hahaha

Before Kali existed tho.. it was backtrack back then.

I've been on and off with Kali since "she" was backtrack https://www.backtrack-linux.org/

And if her name was Backtrack.. I would have been like "Yeah.. no.. gotta go"

😛

kind of in the name lol

time to back track

I saw my prompt was changing again lol

to bash2.4

somethhin

https://giphy.com/gifs/snl-saturday-night-live-season-47-7wk6RQYXDDytXalsL4

you guys!!!!

I have a BT5 install CD....

I submitted my first flag

shiit

hahahha

😘

there we go 😅

Not to mention that I dot it from DEFCON......

That was fun

like my heart is racing rn

XD

alr.. well.. it's been real.. and fun.. but.. what machine are we hacking on right now?

next public match in 20min

https://tryhackme.com/games/koth/join/91209d53f641c00b06e53761

i'm happy to host/play any private games anytime too 😄

That will be fun !

i found more users

using the cat /etc/shadow

i know the linux boxes pretty well, but i still need to learn a lot about windows lol

wonder if theres more flags

ngl i did use the write up but up until the hyrda part

the rest pretty much memory

i ran gobuster and nmap on my own before the writeup

and /robots.txt

if you hover over the flag icon next to input box, it'll say total number for that game

took me forever to figure that out 😛

this is one of the few boxes i haven't found em all .. i have 7/8

oh snap! you right

8

total flags to obtain

it says

pause.. I gotta update again.. lol. j/k

ya i still gotta try again to hunt for that last one

i can give you all the users if you want maybe it's in one of those other users?

saw it had mysql

so was gonna hack the database

next

still got 16min haha, and i got 3 games going i could use a pause lol

i think it's in the db, but i couldnt fiind it

I'm still flabergasted

that i submitted flag

Okay so i see that my enumeration is okay. now i gotta work on password cracking and hacking all these other vectors

@devout salmon hows it going????

Good

Still updating.. but not really...

Where are you at ?

how far did you get and stuff....

Nothing

3306 seems very close to 3389....

Anyone got any entry level stuffs yet?

Someone got a shell right?

See.. I'm just getting started...

Kali finally updated and I'm rocking as slow as an iceberg.

hit a titanic.

Check this out: https://tryhackme.com/resources/blog/guide-to-king-of-the-hill

Hello Mr.Holmes

Hi Roki

Ok

I’ve completed lvl 1

can you send me that link? cba to find 😄

Absolutely!!!!

Low hanging fruit..

https://tryhackme.com/resources/blog/free_path

ah yes! Thanks (:

helped me a lot

especially the hackers methodology one

tyler game in 30seconds
https://tryhackme.com/games/koth/join/91209d53f641c00b06e53761

lezzz go

Hi

join the game and run nmap

I don’t know how to open machine

We are done on this one then. Next?

I would suggest you try the basic/easy/tutorial rooms first, as KoTH is not beginner level. Generally speaking.

Fun tho..

Also my Kali VM is fully updated.. and connected...

I do need to get my Exploiting Active Directory room done this weekend though.. or it will torture my soul....

how's it going?

running hydra

wondering if the username could be one of these dudes

had to restart my nmap scan

found the upload mechanism with gobuster

need to find a php reverse shell for it

gotta a whole bunch of things going on

someone got king

i need to install terminator 🤦‍♂️

The guy on the right looks sus to me. Prolly him

i think they are the same person lol

forgot how to use steghid smh

Wait wut? 🤣

now i gotta look that up

i think its the guy from sopronos maybe?

stego.. ok.

already running hydra so we'll see

stego yes

i think snipe got king

or waseeld

I'm not in this round.. you don't have to worry about how long it takes me to update my kali...

Just do what snipe said

reset your vpn credds

redownload thme

i'm good now

I'm just not big on competition and... well.. I had to update my VM. lol

It took forever.

wtf is up with hydra

taking forever

i gave it -t 4

threads

and?

the name probably isn't in that names.txt from SecList that i used

might have to create my own

fug

you gotta make it werk..

||error: maximum authentication attempts exceeded for invalid user aaliyah || 😉

don't.. delete.

sometimes more is worse

"how you find this" djkaled voice

easier to get blocked

i've been on the box hanging out watching the brute force 😛

LMAO

slow always wins

ninja

snipin

https://giphy.com/gifs/walkofftheearth-walk-off-the-earth-3ohhwytHcusSCXXOUg

The quieter you are.... etc etc.. wtf.. used to be Backtrack statement..... and stuff...

🤫

snipin been scoutin

0x0A hack commandments..

#dual-core-music (not on this server)

i prefer the 1010 commandments 🤔

😛

binary... mmm.. 0a eats that shizz up.

almosst there !

as the millenials say OMW

(i'm millenials)

I almost taught my boy how to count to 15 on one hand.. but... he failed.

@fair adder dbl check the middle part of this error message ||Failed password for invalid user aaliyah from||

binary

yesss

just bruteforcing the pass

that's what you meant no?

"for invalid user ... "

ohhhhhhhhh

😉

crap

haha wanted to give you a heads up 😛

yall on a team rn?

yes yes thank u 🙂

im just hanging out and helping a bit 😄 ... im addicted to koth haha, and fun to help people learn!

A: I told you all I was tipsy.. B: I told you all I was tipsy C: Kali was out of date and I had VPN connectivity issues... D: F yall.. I'm tipsy (joke.. love yall)

h1 hard game about to start ... if anyone's up for a challenge
https://tryhackme.com/games/koth/join/33902b45fff9cc25b57b0555

Hopefully that's not against ToS or anything.

Can I spectate?

haha ya i can jump in VC in a bit

hope not i talk about how stoned i am all the time 🥳

Okay. My headset has been on my tower for months.. and still has a charge...

Or.. I can just type

up to you, im gonna switch machines and jump on in a few minutes

cool

I'm not playing rn.. too tipsy..

tipped over even.

great so i got steghide to work on that image

but no passphrase

on this image to be exact

jumping in koth vc

alright, attempting new username lists and trying exploiting smbclient

trying to exploit smbclient

but when i run smblient from my machine

its asking me for a password from my workgroup

i enter my password and it doesn't work

not sure what's going

on

this is looking really tasty 😋

gonna brute force this

but how

lol

i remember that with hyrda i have to copy a cookie capturing it with burpsuite and all that mess

shiiiid

lots to do

GG ya'll! Sorry for the spam there. This was extremely fun !!! Thank you for the help @fossil pecan

Gave +1 Rep to @fossil pecan

Super awesome!!! I was this close to getting flag again 😅

How's your machine?????

So now that game is over. Did you mean to say this was or wasn't the username 🤔.

Im.assuming it wasn't. I was way over my head on this one smh

why did you decide to brute force this? - Did you thought of trying to google what you see on screen?

Nooooooo 😳

Saw that from running nmap

well food for thought ( :

And I got there through <IP>:6555

Ahhhh I see

try googling what you see on screen.

Noted

Loved the experience!! Gonna organize my tools and notes. Gotta learn how to exploit smb again

This was really insightful

Love this game .

Waiting a minute that was this

Was I trying to brute force a legal registered domain 😳

But why did that login page result in my Nmap scan 🤔

I think you really need to know what you are doing, the nmap scan showed you the page, login page of a CMS. And it also detected any links on the page, but general rule of thumb, you do not go after anything that is not owned by tryhackme, that is generally almost every domain that is registered. In KoTH (if any) all/any domains that are part of the game are only accessible after you manually add them to hosts file.
If you didn't add anything in hosts file, and it's still resolving, Do NOT go after that.

Yikes 😳
Yep I didn't add anything to my/etc/hosts file at all so I will watch our for this

Apologize !!! Dangerously unaware

I completely agree. I need to learn more on this before I start koth again. Gonna go back to my cyber defense studies

Jesus, how the hell did I not that see that

Coulda been in big trouble

what the hell someone broke the machine: Failed to import the site module
Traceback (most recent call last):
File "/usr/lib/python3.5/site.py", line 580, in <module>
main()
File "/usr/lib/python3.5/site.py", line 566, in main
known_paths = addusersitepackages(known_paths)
File "/usr/lib/python3.5/site.py", line 287, in addusersitepackages
user_site = getusersitepackages()
File "/usr/lib/python3.5/site.py", line 263, in getusersitepackages
user_base = getuserbase() # this will also set USER_BASE
File "/usr/lib/python3.5/site.py", line 253, in getuserbase
USER_BASE = get_config_var('userbase')
File "/usr/lib/python3.5/sysconfig.py", line 595, in get_config_var
return get_config_vars().get(name)
File "/usr/lib/python3.5/sysconfig.py", line 546, in get_config_vars
_CONFIG_VARS['userbase'] = _getuserbase()
File "/usr/lib/python3.5/sysconfig.py", line 205, in _getuserbase
return joinuser("~", ".local")
File "/usr/lib/python3.5/sysconfig.py", line 184, in joinuser
return os.path.expanduser(os.path.join(*args))
File "/usr/lib/python3.5/posixpath.py", line 237, in expanduser
userhome = pwd.getpwuid(os.getuid()).pw_dir
KeyError: 'getpwuid(): uid not found: 0'
root@spacejam:/dev/shm#

where is this error from??? didnt see this one yet

did someone delete the root user?

root@spacejam:/dev/shm# sudo su
sudo su
sudo: unknown uid 0: who are you?

Man yesterday was insane!

never gonna forget this XD

wanna play another? i can host private if you want

Hell yeah!!! Not at this very moment but in a few hours is that okay ???? Would definitely love to

I stepped away from my machine atm 🥲 @fossil pecan

Also gonna be organizing my one liners here soon as well as do the Password Attack room on THM than after I can ping you and see if your up for it than 😀

KOTH is like playing chess

I extremely love KOTH and thank you THM for koth 💚

Finally got around to playing some KoTH, loved every second of it 🔥🔥

Scripts are allowed? 😮 I thought they weren’t

Woah! I need to be a bit more correct, excuse my incorrectly stated sentence there 😄. What I meant was one liners for one liner commands not scripts. I need to edit that

Like Nmap -A -p- IP

Stuff like that 😅

Ohh 😂 okay I get what you mean now

Gonna get on some games soon!

im still too new for koth, but one day i shall join you all

I'm finishing up the Passwords Attack room

then gonna read up on the KOTH guide rules and documentation

Not trying to get banned.

turns out you can combine a whole bunch of wordlists together into one cool awesome list!

Scripts and tools are ok, but full autopwn is not (auto hack+root+king+patch+etc all in one)

Koth is da bomb! If you new guys want to hop on voice chat during a Koth game, I'd help give you some hints!

God damn, you can do this all with one script?

the (auto hack+root+king+patch) ?

Yes. You automate just about anything with a script

.

random but i like your about me @stiff egret

thanks (:

Gave +1 Rep to @ancient mulch

no prob 🙂

so i'm supposed to add my username to the /root/king.txt

like so echo "rokiikor" >> /root/king.txt

also the longer you stay as king the more points you get

i see why now f11snipe wasn't worried about the flags, rather being king lol

So according to rules it says scripts that autopwn or harden the machine can't be used

Niiiiiice so this is how F11snipe did the nyancat

https://github.com/klange/nyancat

instead of killing my shell 😅

love it !

so, once i'm king i'm suppose to be checking my processes and other things to stop peeps from getting in

that is awesome! this is where my blue team knowledge comes into play

can i use some of the SOC tools i learned from soc path on this? like Yara ?

that would be awesome

incase a user injects a root kit?

yes to all of that

overwrite it

Very coool!

Going to next game. I kind of got a good view of how the game works now 😅

GL!

Yes cause theoretically everyone can get the flags but whoever stays on root the longest will ultimately win. It is a great way to practice red and blue teaming

Yes, it has come clear to me how important both sides of the spectrum (red/blue team) really are 😅

love how i can implement everything i learnt from THM on here, this dynamic of learning is incredible !!!

like a playground for hackers

and blue teamers, cause we can practice our patching skills

and monitoring skills!!!

so freaking awesome

YES, plus with outdated machines and static flags, everyone have flags noted down tbh

I was thinking this yesterday!!

So they don't hunt for flags anymore. just aim for king, because you can always submit the flags in the last minute to get the edge, if needed.

Since now I know the password to Shrek and all

Exactly.

You can literally just ssh in, no recon.

ahh I see. Thank you

Hmmmmm 🤔

Ohh but then where is the fun? Lol

It's in Hogwarts. (all passwords, ports, dynamic.)
Shameless plug

also the reason why a lot of the people stopped playing - it comes down to who have a better king brute tbh.

I have one with 350 process and a shit load of threads. It slows the machine so much that it's super irritating to work, but just enough for king service to work.
But what's the point in that anymore?

will my machine still be able to brute with my average compute power? if staff makes it harder to brute?

def. king brute = a script or binary that bruteforces/forces your name in king.txt

ahhh i see

totally different

So, if I am hammering the king.txt so bad that it is slowing the machine - others lose whatever chance they had.

Take it like a fork bomb, except 1. It is writing my name in king. 2. It is leaves just enough space in memory for king service to work and you guys to have a broken ultra slow shell.

What's the point in that? There is no fun

pair it with a really good persistence, it's almost impossible to kill and well, games get boring after first 30 seconds because you now know the root method for all machines.

No fun at all. and speaking of fork bomb. It read in the rules "Any type of DoS" does this mean no or yes

No Fork Bombs absolutely.

got it

Hence I said, just enough space

So it do leave memory for the webpages to work, albeit slow, and the rev shells to come back, again, albeit slow.

~~ Everything is working, just super slow. And with that much threading power, the only way to win is to basically kill that binary, and that would be impressive if anyone does that.

the binary of a forkbomb?

yes and it's not a binary of forkbomb, I used the term forkbomb to explain the idea behind it

A MAC address is 4 binary character no? so when you mention binary in this aspect what binary are you referring to? @stiff egret

I believe he means a binary, as in a program. For example, bash and ping are binaries. You are referring to a binary number like 0s and 1s.

Yes, exactly. 😄 Linux Executables.

Yes, this is where i was confusing the two!! 0010000 😅

no need for that sentence at all, we all are learning tbh

This is why i love THM and the environment, you peeps are awesome 🙂

So he is saying that if some can kill the binary that is causing the king brute, it would be impressive

and anyone can wind up their binary to do this correct?

yes, a lot of the players have their own.

you can do this with a simple bash script too. but you would want it as fast as possible, and hence almost everyone prefers writing it in C/ or some similar language.

That's impressive tbh

Have you tried against my "king switch" tho? 😜😘

Still playing? I might get on in a bit

Running some errands than gonna finish up the Password Attacks room then I'll be ready !!

I don't play anymore.

Finishing up password attack room !

loving this username_generator.py

definitely using this xD

Cupp is scary

it almost figured out my own password

crunch not cupp

i didn't input my real info in cupp

Wassup @fair adder i see you made it over to koth.. maybe I’ll c ya in a game and I can show you a few things I’ve learned so far…

@charred bobcat hi

moo

haven't slept...

https://giphy.com/gifs/fOV5xeaXmTsCWhqRmr

GG @fossil pecan was the only thing i could think of to stop it

well played haha, i checked back in too late ... was kinda hoping you'd tie me with flags and win that way 😛

i'm gonna probably play a few more tonight after i finish eating

also happy to host/join private practice matches anytime if anyone wants

Yall doing koth rn?

Ayooooo! i was afk for a long while today.

Once i'm done with Sec + studies today around like 9 or 10 i'll hop on and do some KOTH with you peeps

In about 1 hour or so

you down??????

Learning how to configure my snort files

and snort rules

RRRRRRRRRRROKI! NO! lol

what why ?????

lmao

I haven't slept

get some sleep silly

It's been over 24....

ouch

Yep. Tomorrow maybe?

maybe

Insomnia + neighbors is a ... yeah...

headphones?

Lmk 🙂

bet 🙂

Can I watch and comment?

I may judge a lil. lol

of course !

ooo, soo close ... almost caught up to rootpiebot through a forkbomb! 😛 ... (tsk tsk btw lol)

haha niice

finishing up this Passwords Attack room!

Hey! So auto pwn is a no go, but what about a script that auto puts your name in the king.txt?

Something that could be scheduled as a cron job.

No issues with that.

Cool deal.

Go easy on me @broken pilot dont remember the last time i played haha

@lavish crystal gg

how did you manage to regain king again in the end?

Hey

How can i learn koth anyone can help me

!docs koth

Thanks @nova tide big fan

Gave +1 Rep to @nova tide

@terse mica here’s a blog with a few tips and tricks… https://tryhackme.com/resources/blog/guide-to-king-of-the-hill

Just change your experience level in your profile to either intermediate or advance and that will allow you to join a koth game… from there enumerate and take notes,, along with some of those tips and you will be on your way…

Thanks @broken pilot

Gave +1 Rep to @broken pilot

hi

@leaden knoll your screen name is awesome! Haha

Starting in 23 minutes: https://tryhackme.com/games/koth/join/646efb15e5f170cd40c6ec77

Starting in 23 min: https://tryhackme.com/games/koth/62276

@hallow mortar 😜 still have 42 seconds lol

hahaha that way puts in your name after i score the points....

https://tenor.com/view/oh-you-you-pointing-gif-9478893

@broken pilot

I see what you did to /usr/bin/chattr too. XD

its an easy fix tho

ls -la /usr/bin/chattr

Oh I know. haha

Took me a second to realize what was going on though. XD

this ones a little harder

Hmmm

You mounted somethign read only eh?

yup it was...

Hmmm. Might need a hint on this one!

i unmounted it now

😮

But I must know the secret sauce! XD

Sounds like might be similar to the technique I went over recently here (shameless plug 😜)
https://youtu.be/wIDdrY-opPU

Haha. I'll check it out!

https://tenor.com/view/homer-simpson-les-simpson-matt-groening-ouff-non-gif-12807779

GG @broken pilot

aww man thought i wasnt gonna be able to drop the flag cuz i refreshed browser with 30 secs left and it froze

Thought I'd barely have enough points, but not quite. haha

GG

Let's do it again some time soon with @fossil pecan too

And I'm going to brush up on some things until then!

hahahaha damn.. GG @steep agate

i'm back to machine haha

I had forgotten I was in it, I was just finishing watching alice in borderland

has anyone here watched it? haha very good

i figured you kicked me out and patched then went to next game lol tried to sneak 1 in

either way you win this game, i was away too long haha

what ?

lmao

I forgot I joined another game too

i dont have that last flag

GG

gg haha, I almost lost it, I had forgotten it was in the machine

lul

why did you destroy the world? because you closed a door

the guy just deleted all binaries just because i was protecting king.txt

lmao

"yakuzoweb"

🙂

Remember - you need to report this to the koth email

right

Yazukoweb is Big cheater on tryhackme

And anti-game player

Remember, email.

Email of yazukoweb ?

Email the koth email address to report cheating

As the rules say.

Okay thanks

Good night

@steep agate gg i guess😂

???

??

What Guess ?

How you are in koth ?

Im a bit confuse , im saying GG to MatheuZ im in a koth game with him and cant figure out to edit back king file ?

Absolutely nothing related to you friend

Use echo command

echo "your pseudo" >> king.txt

Thanks for the tip !

Gave +1 Rep to @worn orbit

😉

gg

ya

I'm new to koth someone join my game

in 8min

post link here

https://tryhackme.com/games/koth/join/8e7de5ca9841ca25724dcc99

You sent the spectating link 🙂

send the invitation link its the one above it

Damn you are GOD XD

not in koth lol :/

let's get this going !

so how do you take the hill??

setting up my machine.

You have to echo your username

inot the /root/koth.txt

'file

you can automate this if youwant

your tryhackme username right

yes not discord

mine is rokiikor

roki but backwards

gotcha gotcha

so its definitely linux then..

yes

and unfortunately i know the password already to ssh into this but i will be fair and play from scratch

i ran through shrek already

oh shii

not thoroughly

so your still good

it's a windows !!

no wait

windows server my bad

so you need to add -Pn to your nmap;

i just thought of combining some seclist into one word list with cat

saw that matheus just hopped in

can't slow poke anymore need to ssh now !!!!

shhiii

bulls eye

damn

math got king

i was just downloading my reverse shell 😦

trying to see how to kick math off

if that's allowed ?

kick me ?

Lol

take you off king

are you king?

atm

ya

why ?

How do i become king. aren't i suppose to like write my name on the file next ? and change the passwords?

to kick you out?

or am i understanding this wrong ?

Get your name in the king.txt

You can kick people but then they can’t battle with you

yes with "rokiikor" >> /root/king.txt

ahhhh i see

Yes but what if I make it so root can’t edit king.txt

hence the quote, how can there be a battle without anyone in the ring

yikes

i'm loving this

https://github.com/MatheuZSecurity/Koth-TryHackMe-Tricks great amount of info about koth here

I need to update this repository of mine hahaha, it has very old tricks and tips, I need to put more new things

but still it helps a lot of people, and i'm happy about that xD

Haha definitely

lol i had root in first 3 minutes i just dont know how to deal with all the little file protection tricks

that was fun tho

Well I finally got nyan'd for the first time lol

GG wp

https://tryhackme.com/games/koth/join/881ef4b689031eeb31ff3288 20 mins

People playing for christmas eve ?

https://tryhackme.com/games/koth/join/da099e5c63a524e4450089c6

Merry Christmas people!

https://tenor.com/view/naruto-christmas-evil-laugh-evil-laugh-gif-19644826

Merry Christmas!

https://tenor.com/view/merrychristmas-eve-merry-christmas-gif-19699434

I will in a couple hours

are you rattlesn3k @polar arch

did you get on the box ?

@ruby umbra how can I join?

https://tryhackme.com/games/koth

Can you start a private room?

Yes

You can select any one you like if you're a subscriber, so we can go with an easy one for now

Which one do you want ?

You can choose

I generally prefer linux though

I don't mind any because its my first time , I have no clue 😅

So you pick something

Let's go with "H1: Easy" then

Starts in 5 minutes? Or 15 ?

5

Also , should I send the invite link here or Dm?

I'd prefer DMs

Alright

what???? back to back games with 10 players going on..... i want in

https://tryhackme.com/games/koth/join/429163547e49c490d453e1f3 20 mins

figures........

not even a minute in...why?

hahha guess they didnt like the ip address or something

hahaha wonder should i keep putting my name in king.txt just to see if they get tired of resetting

@ethic lol😂😂😂

It's gets kinda boring to be honest

Stream some KOTH so I can learn the shiz

Still trying to play koth?

Not today...

Is removing chattr from KoTH against rules?

rm -f /usr/bin/chattr

No it's expected 👍

BYOC 😜

Some boxes have Cron to remove chattr 🤣

Good Job! @fossil pecan

Almost got you with flags 😂

Doesnt it makes the the machine "unbeatable" then? chattr it and then remove chattr?

||If of course, there is not an alternative for it, which I dont know about||

Also I was unable to find your script for the king.txt.. Some sort of rootkit? I guess I have to watch your videos to find the answer haha

Bring your own, best to expect not to have it on the boxes... Either busy box or precompiled static binary and wget from yourself

I am not that good in KoTH so far, doing it just for couple days, But I promise you, I am going to beat you some day haha

lets gooooo

@fossil pecan awwww Haha.

Removing chattr gotta be against riles..

I feel like these KoTH games are getting out of hand with this scripts.. Doesnt feel like fun anymore.. Doesnt want to sound negative or bad, but KoTH today is more likely who will run their ultimate script first

I enjoy when people use different methods and techniques, it will offer more to learn, and its fun to find a new or different way

Would you like me to link you to a static chattr

You can

https://github.com/posborne/linux-programming-interface-exercises/blob/master/15-file-attributes/chattr.c

Spamming king.txt is annoying but that’s not what everyone does

There are plenty of techniques for king. If someones spamming it try targeting their ssh keys or they shells

Edit there script and put your name in it

There’s many things to do

Nice script from game I got ( ͡° ͜ʖ ͡°)

Analyze it and see how it works