#koth

https://tenor.com/view/stan-twitter-monkey-sad-depressed-bored-gif-14632661802414689947

And you keep the rootkit for yourself haha😂

https://tenor.com/view/yikes-ahhh-scared-nervous-shouts-gif-4734323245846052209

https://tenor.com/view/trapcard-yugioh-gif-22455244

@light flame

https://tenor.com/view/yugioh-yu-gi-oh-yami-gif-5341467

yup ive played koth for 1+ year, reported some players but only got replied by bots too
But i don't think it's because they don't care, it's just that mod resources are limited, they need to focus on other places

sup

That is the AD enumeration network of redteaming path damn one of the important part im itching and wanted to do it hands on but the network was broken and still broken till now.
Ending, i watched youtube then just take notes

https://tenor.com/view/cry-crying-cat-crying-cat-cry-why-gif-27571714

oh rip, didn't look deep into messages

they're so much more active on discord, maybe try #site-support?

Nahh

Nay or Yay?
Nay lol

👌

Salute to the fallen soldier @opaque gull that being cooked by Ch1 now

Lmfao

https://tenor.com/view/benjammins-cooked-hes-cooked-you're-cooked-ur-cooked-gif-16603214519610947661

🫡

we call those players "rookie killer" in games

bruh, i cant finish h1 easy medium hard

ive played many games until i solve them

first time

ill watch some videos

Do foothold and root in serv3

Also serv1 and 2

3 ways just pick

backup.sh

https://tenor.com/view/perfectly-cooked-impressed-amazed-delicious-you-cooked-it-perfectly-gif-17443260

sorry im really bad, i need to watch videos lol

If you played with that Gladiuz i forgot his user God rank

Dont do ssh useless find another exploit lol

I forgot to screenshot ssh was error something "dangerous" thing lol i encountered him twice

u can simple found the password of root in a /var in this machine

https://youtu.be/KGjvu_4tzcQ?si=nk7x7eM3A2MqpN7E

h1 medium

h1 medium is really cool, I don't know who created this box, but it's good

there should be more AD machines, that would be cool

thanks for this

Gave +1 Rep to @steep agate (current: #115 - 65)

i just need now to learn hard, lion machines, also food, theres still good videos on youtube

offically im addicted now to KOTH

nice

why we dont see you in koth last week

private with friends same you skills would be more fun

your*

I haven't played in a few months, and I also don't intend to play again, unless I have a new machine, or F11snipe does a stream/event.

good luck with that

yeah

There is only 1 write up in h1hard and no youtube

Im planning to make youtube on it but not now lol maybe next month

Yeah this add like 3 more windows machines would be fun

You literally invited people that is God in koth bro you're adding people in my threath list lol 😂

Just let them sleep we need to be good first in koth before they go back and play koth lol

if god would be practice and learning, if less would be competitve and fun

They've been playing since 2 yrs ago. We are new here bro 😄

you are very good bro, you can compete with them

overall rank doesn't say much about KOTH

I've beaten people with much higher levels in KOTH

easily

No lol 😆

Just stay where you are dont ever think to play koth

https://tenor.com/view/yippee-cat-gif-696604303596555012

I might be playing soon to test the newest feature lol

*of my rootkit

https://tenor.com/view/joker-joker-card-evil-laughs-gif-15221160

https://tenor.com/view/magic-kaito-kaito-kuroba-kaito-kid-card-gun-shoot-card-gif-24037888

@light flame 😂

Im still on practice in forensics and countering opponents king. As you see always i dont take the king rush like before lol

Unless you're in my threath list 😂

Lmk id like to test it out... See if it can be bypassed

any tips for h1 hard machine ? i tried to search on youtube but very long video

learn docker escape & xml injection u will find the way in

Is this even possible?
Sum of first hacked time and remaining time is greater than 1 hr

19:06 is your country time

@fossil helm

help

I am trying to do SQL injection in admin/login.php but its not working

how did you log in as admin?

You watch yt of h00dy in fireworks machine

Thanks

sorry @civic vortex just reseted mistakenly 😅

https://tryhackme.com/games/koth/112668

Do games usually expire as soon as they're scheduled to start?

Yeah, You have to wait a bit to get machine IP

That was a little weird 😂 okay thanks for letting me know

I think I saw you in one of the lobbies

I wanted to play it after a long time but I guess I will not enjoy it

Oh good it started

again i found a guy using ur kingkit @light flame

Damn tryhackme lol

Im about to finish their pentest path with just 3% unfinish in web fundamentals

sad

Now suddenly added web app pentesting

Yeah i guess i will be having more days and time doing pentest path + playing koth lol

https://tenor.com/view/nobi-pintu-tokocrypto-nanovest-crypto-gif-26605558

@leaden basin

Ya it's been a long time since playing so trying diff rootkit and also didn't care much about obfuscate stringing.

And what are new techniques going nowadays like i know the syscall one, interact is the one mount think.

@fossil helm you have ch1 rootkit sample ? Or know what he uses I just don't know about his rootkit ?

Matheuz put it there

I forgot to save jt

It

Try to scroll up you will see it

I mean here

No worries i ask matheuz

Ok bro 👌

i use to have f11snip's king rootkit that the og one

I wish i was playing wayback when they're still active

Maybe i will cry a lot 😆

I used to cried on ch1 rootkit month ago bro lol but now how koth works its all about advance techniques and forensics also you need to be fast

I talked to him; he will be back soon.

Just let them sleep bro dont call the old gods

https://tenor.com/view/cat-crying-cat-cat-meme-cat-crying-meme-crying-cat-meme-gif-7433931244412524776

Okay 😆

but which rootkit u was trying was of user space

@honest beacon

I know

is this normal on koth games?

chattr -i
Command Executed
___
.'o O'-._
/ O o_.-| /O_.-' O | | o o .-
jgs |o O_.-'
'--`

No cheese strats!

I remember a creator tampered the built-in chattr binary on a box

a lot of them using that

Just delete chattr and use your own lol

So i have to copy it to the /usr/bin folder?

Just that?

its an executable binary, you can run it from anywhere. Why put it in path where everyone can use it

that is intended in some boxes where if you execute the chattr thats there by default, then it will print that and exit.

So i have to submit mine or try another method?

@fossil helm is the machine not working or smth?

i'm foint

you can just upload yours.

anyone playing koth?

Yeah

My 3rd time to encounter that 'dangerous' thing in ssh even though i had new id_rsa grabbed from ftp so i tried to reset it and yeah it worked

But i encountered that to that Gladiuz username twice.
God rank. in fireworks and food machine so i know i will not use ssh if that guy appears again.

@fallen palm man

I understand that you want to win but patch the machine only

Not deleting the domain lol

Now i will not give you a chance to step in the machine the next game i see your username 😂

@fallen palm

Reset for what?

Didn't change creds or patch

Come inside

lets play koth

lmfao

Talking about other platforms in chat or voice chat might get you banned be careful .

I enjoy playing htb battlegrounds, server siege or cyber mayhem

The game started 3 minutes ago... bro how are you king already?

https://tenor.com/view/cat-stare-catstare-cat-stare-sus-catglare-cat-glare-gif-14942558849944709546

@stiff egret - Might require your insights here ?

Get root on the machine as quickly as possible and run this sudo sysctl -w kernel.modules_disabled=1

lmao this guy closed all ports.

You can't use sysctl after ch1 loads your rootkit

His rootkit makes a hook in sysctl, i think

if you try to load another LKM after it loads your own, you will not be able to use insmod for example, to load lkm

My guy

this person, got root literally 3 mins in game.

it wasn't in 3 minutes

it was.

it gets root about 8 or 5 seconds after the machine starts

No.

ok

If you use common resources like chattr, chmod, etc., you won't win this match or you won't become king

already notified in advance

Are you in my game?

No, it's been a few months since I played koth

ok. So you dont know whats happening in my game.

So maybe just - let me ask staff about whats up

I know yes, I was the one who analyzed the ch1 rootkit, and did anti reversing on his rootkit, when someone took the sample and put it in the chat

You are a new player, you have a lot to learn

I am definately not.

strange, I never played against you

I mean, if you were a slightly older player you would know

this is one of the things that happens when you play with a player that also uses a rootkit

if you don't know

anyway, good luck xD

That technicom always shutting down machine if you dont disable the shutdown 😆

3 mins is slow bro

😂

I gave up doing this to ch1. Just let him play he is just maintaining his spot in 3 he will not play today

on all machines that have a rootkit compiled, he can root within 10 seconds after the machine starts

I was trying to explain this to @frank oracle but he wanted to be ignorant to someone who knows more than him, lol

@frank oracle is that you Rodrous?

he played only 4 games

and say this, lol

Me a month ago

Takes me a week to analyze it to my brain how koth works 🤣

Yeah that's what it is anyways, there are 4 machines that ch1 doesn't care so still can win even if he is playing but most of the times the machines that is autowin for him comes out it's a 9/4 out of 13 machines

It's because on these machines it doesn't have a compiled rootkit, basically it already has the .ko (kernel object) compiled for these 9 machines, so you just have to get root as quickly as possible, and load it using insmod

You don't even need to compile it inside the machine, as it has already compiled the rootkit, so just be quick and load it

Maybe he did that because of that Technicom username shutting down machines if i were him i will do same way 😂

Yeah thank you for your explaininations for us beginners. Just remain sleep @steep agate and dont think of playing koth ok 🤣

Gave +1 Rep to @steep agate (current: #112 - 66)

🤣

Anyway, I don't intend to play koth again, I think I already said this here once, but only when I have new machines or f11snipe does a live stream

I'm still hoping for this who the heck doesn't want to play with the OG's 🔥

I mean for now, because us a beginners is on our way to be good at koth before the OG's will comeback after koth changes and patch 💀

I think most of the players I played with stopped playing too

yeah there are some that are still playing but not always.

yeah

@knotty mica I uploaded a easy boot2root room few weeks back on thm, how can i collaborate that room with you guys and make it public or something..??

There is an option to make it public, onec it's public, it's placed in the QA queue to review it.

Yea, I have it set to public and it's still under submitted category

How much time it usually takes to be approved.?

As long as it takes, usually.

🫠

That's my first room,so no idea about the publication time

my room took around 4/5 months to be launched, it takes a long time, some people took 1 year to be launched, it really depends

Woah 😮

and on hackthebox it took about 6 months for my box to be released

Permx.?

yea

I see

You wanna try my room.?

It's pretty easy though

You will have to be very patient until it is released

Maybe, but I won't be able to do it today, I'm studying for a certificate

Sure brother, take your time and good luck for your certification too.

Here's my room: https://tryhackme.com/jr/privilegeplayground

nice

Btw which cert you going for.?

studying for CRTP, soon I will do CRTA, and I also already have the CRTO

Nice mam

yry my private room which have user space kit as well as lkm

basic one u will learn how to bypass simple rootkits: https://tryhackme.com/jr/meowmeow

you will get the flag if you bypass first rootkit user space user.txt second root.txt after lkm

best for beginners to learn abt rootkits

created by me

ldd /_/

no for lkm hehe

ldd not works for lkm

ldd used to list dependcies

try my room bro

there is intresting vuln. in web also

It works on user.txt

see code

hmm

try room u will get to know abt php filter chain

just transferred my vms and linux in my pc been doing thm in an old hdd laptop for about 3months that lagged always oftentimes hinders me in koth and thm paths lol

@rare pelican i feel the power surging in my hands been so long didnt use the pc lmfao

nice

why these people spamming reset alot

probs

skids

he resting it alot https://tryhackme.com/r/p/Jaydeep.Shirsath

probs in 1 v 1

he be like

how to retrieve my 76 streaks lol
i did just rest like 1day and half damn
fr

u can contact thm

i also used to do this alot lol XD

yeah im about to email lol

dont email

got to support page

Which support page?

type of you will get a small circle in dashboard were u have to click to contact for streak recovery

Ah, it's the same thing, if staff don't answer it, it gets E-mailed anyway

it works bro i tried many times when i lost my streaks XD

No worries sister, I know it works.

Just completed it, nice room 👍

@fossil helm

how do you get points without flags

your graph keeps increasing (more than 6 times)

and also what is becoming king?

You gain points when you're King, I think every minute or so you gain some points. Becoming king is where you add your TryHackMe username in the /root directory, there is a file called king and you insert your name there.

https://github.com/MatheuZSecurity/Koth-TryHackMe-Tricks

good start to learn koth the rest is your own research keep learning

I had access to root, donkey, puss, etc but I didn’t know I could do that

anyone koth ??

Did you read the "How to play" section?

There is also an FAQ at the bottom of the page

This also has some useful information https://tryhackme.com/r/resources/blog/guide-to-king-of-the-hill

I scan ip but which ?

when this happens you should vote reset and a new ip will appear. Its a bug that happens every now and then.

@broken pilot

how?

edit the motd

did you use the bash exploit to elevate privileges

what it motd

message of the day

i set that suid 😉

how?

https://tenor.com/view/teach-me-doctor-strange-benedict-cumberbatch-gif-8215241

so did you get king.txt

chmod +s /bin/bash

no was waiting for you to priv esc

did you disable this for me?

id

how do you even disable that?

type id whats the output

check out https://gtfobins.github.io/gtfobins/bash/ on how to elevate your privileges

thats what I was doing

the suid is blocked

/bin/bash -p

thanks

im king!!!

i just did a chattr lock on king

@fossil helm ay u the guy who was on top this month on koth

im ur biggest fan

will u become my mentor?

Im also a new learner bro.
It's just that other tough players are not playing that much

https://github.com/MatheuZSecurity/Koth-TryHackMe-Tricks

This might help you as a beginner guide

geez i had respect for u...

I just spam all ttys with nonsense and attr koth.txt lol

https://tryhackme.com/games/koth/join/eccd4e03341ea1d0a575d3ea

@fossil helm please help me with john

its not working!!!

Dm

@odd quiver you need to do xwiki to get into foothold

Can someone please mentor me in koth I'm new

I'm very willing to learn anything

I do 100+ events per day

(Sometimes)

https://help.tryhackme.com/en/articles/6495858-discord-how-do-i-verify-my-tryhackme-account

@alpine quarry Refer to the following in order to send a message in this channel ^

Also for any koth related queries you may check the pinned messages like the following

I am thrilled to see blackdevil playing it's my firstime to see him play so im excited

but that idiot just ruined the game shutting it down lmfao

1 min king time

@nova tide he is been doing it since the day he played koth lol

Ik that can be disable shutdown reset poweroff command inside the machine but there are machines that it will not work

now he suddenly disappeared and didnt join the next game lol

He maybe filled with joy and partying announcing it to his neighbors

my bruh used autopawn in food just to shutdown machine

^

Just make an alias for those command that kills their shell or spams their terminal with /dev/urandom.... Especially if they are known for shutting down the machines 🤷🏼‍♂️

nahh i just jdrop him lol

its just that i didnt expect it a while ago

because im waiting for devil

the prob also is in the spacejam machine bc he knows it only takes 5 secs to get root access 😆

i even won against ch1 because of him bc ik he will shutdown the machine so expecting all will reset and it would be a good race to ch1

https://tryhackme.com/games/koth/113501

i did this and killed port 3k now he's stucked outside

@leaden basin reset and bait me

i aint gonna buy that lol

https://tryhackme.com/games/koth/113649

good night guys im tired

I may start playing again randomly whenever I get some free time 😉

See all the new active players and organize a big tournament soon.

me as future audience 😁

team vs team?

We can try this... I was speaking to f11 and matheuz about this before and I think I know a way we can achieve this and make it fair for both teams.

i will play and find a team but im expecting i'll be cooked lol

they will also play?

The thing is one team would need to start a private match with their team mates and the "host"... Maybe 5-10 minutes to patch then we release the IP to the other team and how they score would be to put the "host" name as king .... Whoever has less time with the host name as king would win since they defended their machine the best 🤷🏼‍♂️ or maybe the other way around I don't know yet I'll have to think about it more

That way both teams could have a random machine, not know which machine they were Targeting, have to do some enumeration to know which machine they are playing etc... will make it a little bit harder.

We would need a host / referee that would be in both games I think f11 would be up for being the ref 🤷🏼‍♂️ i will talk with him soon and see if he would be interested in streaming this as well

That would be this year or next year?

We will probably have a tournament near the beginning of the new year. That way everyone can enjoy their holidays, spend time with friends and family, etc. Then start the streams back up

@rare pelican lezzzgawwwwwww and be cooked

I see you climbing the leaderboards, you'll be fine

We may even do another tournament but with no rootkits 😉 make it fair for everyone playing, gives everyone a chance to win

im just spending my time because i will be in a new job this month so probably cannot play like this anymore lol

Yea that's what happened with me. That's why I'm not on much anymore but I may come back.

yeah i learned a lot here in koth and thm but with the experienced and old players i cant win

Playing against them will actually teach you more and help improve

i saw you defeat bravo and bravo always kicked my ass

https://tenor.com/view/blackish-crying-cry-tears-sad-gif-5613528

After awhile it gets boring playing against ppl that can't beat you... Sure you rack up points but you are no longer learning

Yea playing against the top players made me figure out ways to bypass their rootkits... I looked at it like a challenge, now I like testing other people's rootkits because I know I can find a weak point

How i wish i was that good i read mtz's articles but still

I'm also partly responsible for ch1's rootkit being so strong because I helped him find those bypasses so he could fix the holes

Just takes some time and determination... Keep playing against the people that can beat you and eventually you will be able to beat them

my 1st week of playing koth my cheat sheet was mtz github then i used this to ch1

sudo lessecho USERNAME > /root/king.txt
sudo dd if=/dev/zero of=/dev/shm/root_f bs=1000 count=100
sudo mkfs.ext3 /dev/shm/root_f
sudo mkdir /dev/shm/sqashfs
sudo mount -o loop /dev/shm/root_f /dev/shm/sqashfs/
sudo chmod -R 777 /dev/shm/sqashfs/
sudo lessecho USERNAME > /dev/shm/sqashfs/king.txt
sudo mount -o ro,remount /dev/shm/sqashfs
sudo mount -o bind /dev/shm/sqashfs/king.txt /root/king.txt
sudo rm -rf /dev/shm/root_f

i bypass his rootkit

but they reseted the machine

after that he patched his rootkit lol

that time i dont have any idea who ch1 is

and he is using rootkit

i dont have idea i just follow what i read from mtz lmfao

yeah i keep this as advice

now he is just unstopable lol

you just created a monster @broken pilot

https://tenor.com/view/nobi-pintu-tokocrypto-nanovest-crypto-gif-26605558

I got excited cuz I played a game last night and he was on, I wanted to test a new bypass on his rk but he left the game 😢

I know, sorry lol 😆

ch1's mind "Not today"

i tried to experiment a own defense but @rare pelican just managed to bypassed it i thought it was already good because i used it frequently and win a lot lol he just saw what i did there i just pointing it in a folder and fire a loop lmfao

true you helped me very much to strengthen my rk but it was mostly @light flame he was always playing with me and every few days he finds a new bypass 🤣 and i have to fix it

https://tenor.com/view/snoop-dogg-for-real-really-gif-14335256

@light flame

mah g you here the whole time? or you've just rejoined the dc again

nah i just rejoined yesterday

@timber vale 😢

🤣, we WILL play again....

@fossil helm let me try to bypass the kit you are using, jump in one of these games

already started... https://tryhackme.com/games/koth/join/3217d7353e1f7df32ca8243d

or starts in 15 ... https://tryhackme.com/games/koth/join/2ddf932d660d10286a6702ae

Oh ok next time just tag me i already slept a while ago

Mostly i dont use rk

I just used it when i know someone has it and in the lobby also

Or someone that i know has good forensic

i want you to use it though so i can see if i can beat it

You can i am sure 😆

My ch1 memories before when i cried a lot 🤣🥲

Does anyone here bother to make yt video in H1hard machine.
I noticed that a lot of players can't get foothold or root access to that machine.
I'm planning to make by this month after i finish this thm pentest/red paths.
I will do the same to the only 1 write up of h1hard machine that i found.
Xxe inject & docker container escape.

"if no one does"

i will create that video for h1:hard machine soon on yt : )

Ok your call

Or you will just let me? Since it is my first yt vid i wonder what it looks like lol 😆

Hey Thinktwice...

Hello KOTH players,
I Am facing a problem, as a root user i tried chattr, chmod, umount...echo taking input but not reflecting in king.txt

I am a noob in koth game.

I want to learn..
Please refer something, so that i can learn

Maybe your opponent is in defense mode already

If someone change port, how can I find the that port again?

Try to port scan again

Not found anything interesting

Oh you are king in this server

Where i am playing

Hey teach me how can i enter

@fossil helm

Machine has been reset you can now proceed

Hey KOTH pro players,
when someone run while loop for king.txt, how can I break it?

Find the process running the loop and kill it or if you know the loop is using something like chattr you could always chmod -x chattr or remove it

Hi guys i am new in koth

How to win against @timber vale he is not giving any chance to other players

You're new you can't win against him it's hard to explain but

For now don't play to win, play to learn explore the 13 machines take good notes

Hello! So my skills aren't quite well yet, and I wanted to ask should I try to play koth without much skills, or I gotta have solid understanding of things?

The thing is, I have never played koth before, and to be honest I don't even know what it is about, can't seem to find tutorial videos or something

So basically it's a multiplayer mode, where u have 2-10 players on a machine. You have to pwn the machine, get all the flags, patch the vulnerabilities, put ur username in /root/king.txt and defend it by doing a few tricks.

So to answer this message, u need a good understanding of linux systems and web pentesting

Hello KOTH player,
can anyone explain what it means?
sudo: PERM_ROOT: setresuid(0, -1, -1): Operation not permitted

There is one machine where SUID binaries do not work, I don't know why though.

You could check out some of the live streams F11 done awhile back, they helped me get a understanding of king control and different techniques that could be used when I first started... https://www.youtube.com/live/wIDdrY-opPU?si=hOVfTS0p9u1k6taO

OG's playing

Thanks you all for answering - @broken pilot , @violet zealot !

Gave +1 Rep to @broken pilot (current: #82 - 89)

I am going to check on those videos

It's because your shell session dont have full permission

Write your ssh public key to the user's .ssh/authorized_keys, then connect with SSH to get proper shell

Example scenario :

If KOTH ever comes out of beta we could really use a in game chat for the players who are not in the discord server... So we could at least tell them to reset the machine when it does this..

Can you DM the IP please?

Done, but i provided game links because IP never populated

I've reported this issue to the team. Thank you for your time.

Gave +1 Rep to @broken pilot (current: #82 - 90)

Yeah chat in the room while waiting

hi

Hi

hey guys, i was wondedring if loading LKM or eBPF programs, after being root, was allowed ?

It is, since it's not forbidden

And quite some players already use rootkits.

eBPF rootkit is good

I mean, if you want to load LKM, you'll have to be quick, because @timber vale rootkit also intercepts the use of sysctl/insmod so it's as if your LKM was sent to /dev/null

There are good pocs of eBPF rootkit, it's cool that you can also use eBPF for forensics

3 players obviously know all flows and hack every machine within 1min

https://tryhackme.com/games/koth/join/35c3e9065d011e31c6dbd235 if someone wants to explore in peace

ah ok i didn't catch earlier i can play alone in private room...

anyway thx

no it doesn't work...

Status: Completed
(Insufficient Players)

I'm almost done in thm pentester path 61% to their new path web pentest. While doing koth 😅

competing w no competition

I wonder if Offensive sec path is still relevant at this year?

I saw some rooms are 2 yrs ago

I want to learn basic and fundamentals from their platform before i move to other platform

I saw one of the OG @broken pilot didnt manage to bypass ch1 rootkit because ch1 already patched a lot in his rk so if master Trap had hard time what about us new learners we're cooked also 😆

I can still bypass it, I'm just not ready to expose this trick to him yet because he can and will patch it... I will eventually tho 😉... Doing some initial recon first...

https://tenor.com/view/baby-turns-around-runs-away-oops-meme-scared-kid-gif-25656420

https://tenor.com/view/test-gif-27464430

It should be unpatchable

https://tenor.com/view/benjammins-cooked-hes-cooked-you're-cooked-ur-cooked-gif-6506674444416174542

I can see mah G will be cook now

Lol I played u in some games

https://tenor.com/view/homer-simpson-hide-in-shrubs-hiding-in-bushes-disappear-into-hedges-embarrassed-gif-24183287

What should be unpatchable??

Thing is, I'm not creating rootkits to bypass rootkits... I'm doing it manually attacking the logic behind the rootkits... So once you realize what commands I'm running then you just hook those and I find something else 😜

That bypass is in mtz's write up? His detect lkm rootkit cheatsheet

No

One of my bypasses was showcased in one of matheuz writeups tho...😉

Alright i'm gonna read it again

https://tenor.com/view/yippee-cat-gif-696604303596555012

But these other ones I'm still holding on to haven't been yet...

Like the symlink trick bypassed both read and write hooks on king... So then you just hook symlinks and now you need to find another one...

I encountered some players using symlinking to defend the king.
Did i just broke the rules if i disabled their way to symlinking? 😆

Like alias ln=

No that's easy to find and either remove the alias or create a new one...

Well I mean some players might complain, I guess it all depends on who you are playing against

Even if you removed symlink altogether, then I just bring a static compiled binary on to the machine...

https://tenor.com/view/vignesh123-vigneshfisrtgif-yoda123-yodamars-gif-13055175463724769097

There are some also adding txt files to root dir and link the original king to their user.
Some are hiding it lol

by encountering that i learned on their techniques

We should play a game sometime and I'll show u a few techniques 😉... U can try to stop them

Drop it already i will use it in some match 🤣

https://tenor.com/view/happy-cat-gif-6308599340554202546

No no no lol I'm taking my spot back soon 🤣

Anyone can take my spot also i feel like i dont deserve that 🤣
If OG's and other good players are active doing koth then they can just beamed me on that spot. I dont have plans also to replace bravo ik how skilled he is so i dont deserve to be in 4th also 😆

It's just that i have time doing koth these past months next year will be lessen like play a few in sat sun only 😆

It's fine lol I haven't had much time to play like I used too anymore. Just figured I'd pop in every now and again, try to help some of the newer players

Yeah i will make h1hard video to atleast help some other players in that machine.

That's a good start, I see a lot of players getting stuck escaping to the host machine

It makes it more fun when you have multiple players able to get on the machine at the same time....

If not then you are just wasting hours playing by yourself lol...

Yeah my problem in h1hard

I just echoed my user w/o defense then leave 🥲😅

@broken pilot i know you can just beamed me in linux but in windows if we had a chance to play in same match in windows can you test my defense there

I suck at windows ngl but I'd be down cuz I need to stop procrastinating on windows lol

Ohh when i was in thm redteaming path that was the time i learned that windows is a huge topic to be in, good fundamentals and techniques i read 😅 i learned that this and this etc exists i vouch thm to that path 😅

Hopefully they will add more windows in koth add 3 so that will be 15 machines 😁

I mean I know some things in windows but I'm more comfortable with Linux..

I'm just still on my way in solidifying my knowledge in both linux and wndows 😅

How about this.. we play windows I try to beat your king defense, if I can't then you show me a few tricks.. Then we play Linux, you try to beat my king defense, if not I'll show you some tricks... Deal?

ad is life

I've been waiting for you to show me some tricks bro 😂. I keep putting it off from learning... I think I'm going to make it my mission for 2025 to become good at windows lol.

Especially since the majority of companies use windows and AD.. I can do some basic stuff but not fast at all 😂. I've been learning a little powershell here and there, need to create some good notes though

🤣 , practice a lot of AD

I really understand, in infra pentest for example, there will almost never be a Linux, depending on the company

Alright deal if will play in the same time

I know. I have a lab setup already I'm just being lazy to actually use it lol... Like I can get to DA on some machines but I want to learn more

I also learned that AD are used by the 90%+ of large corps, companies, orgs 😭
I need to be a AD specialist 😆🔥

I've been learning a bunch of cloud things lately... But it's mostly been Linux infra

What r u into now crte right?

Oh yes I understand, in xct's vulnlab you would learn a lot

yeaah, that's true

Most of the time there will be some EDR solution

in machines

Cloud is really cool, there are some jobs you can do with Linux on this side, one of them would be "linux security researcher"

I was talking to some people who have been working on this for a few days, it's really cool, they deal with a lot of malware for Linux, Yara rules, etc.

but there aren't many job openings, it's a very specific niche

CRTO*

I recently took the CRTA, now I intend to try to take the CRTP

https://tenor.com/view/homer-simpson-hide-in-shrubs-hiding-in-bushes-disappear-into-hedges-embarrassed-gif-24183287

Random 221321 you in here?

My attack box timed out ahha

https://tryhackme.com/games/koth/join/57f91f8d017d814707b9e08a

I had a bug with KOTH while playing with a friend, i got access to the VM and put my name in the file (forgot the name of the file) but it didn't give me any points and it was my friend who was gettings points

this is why i don't hack anymore, too many sweats like dompriv

ya just for the win people just shutdown the box

they don't know how to play fair

lmao yeah

oh wow you have king

no he pwoeroff the box

oh what

damn

@limber rune

oh ok

nothing working for me ffs ha

yeah same

vote reset

done

still need 2 more

make sure u beat him niko

if the box don't get reset i win anyway

good ha

but its not about the win its about fair play

nah thats right but at least he dont get the points

ya

why do you reset the machine everytime

from cyberfare ? if so im currntly in CRTA

yeah

CRTA is so easy

ill take the exam next week

just started with the lab

@faint path did the box just not work the entire 2nd half for you as well?

The exam is very simple, you can finish it in about 2/3 hours or so

Is that cert industry recognize in red teaming side?

I really have no idea, I saw some people on LinkedIn posting about this certification, but I did it just because it was on sale, I bought it for 10 dollars, so I just took advantage of it

Thm went off 📴

Ohh i see still available?

That promo 10$?

I just want to open thm to put a flag in web pentest flag and sleep so my streak will stay but it's down

Alright its back

It's nice to see a lot of players are playing koth now

@timber vale just continue to be inactive 🤣

@south pulsar

Why you leave

I'm almost sure not, I got this promo a few months ago

Damn what org is crta

I see cyberwarfare

yeah

CyberWarfare

It's still 10$ if you use coupon

Nah doesn't matter to that "industry recognize" the important is the knowledge that we will gain 😁

Give me the coupon 😭🤡

I just tested the coupon I used, but it is no longer working 🥲

Might be new coupon code now

@steep agate how many days you studied the course

In fact, I didn't see much about the course, I immediately went to schedule the exam

its still 10$

Serious? Can you send me the new coupon?

I used one but apparently the other doesn't work

hello everyone, nice to meet you. I was wondering if anyone had any problems with the production koth machine? When i use ftp to get id_rsa it just hangs. However, im able to get the other files like authorize_keys and flag.txt. Maybe im doing soemthing wrong? Any help is much appreciated!

i can see it says permission denied if using ftp -d "ip"

Did anyone listen to the theme song of the event!! 🔥

ah same issue

and then asked me for the coupon

ok now i got the coupon, ill send you in pm

https://tryhackme.com/games/koth/join/863e4d2ad5ff30318fe0fc35

Who else uses autopawns here

Lets play now

I will try to match your autopawns with just my bare hands

I had a list of usernames using autopawns

Why you guys are so desperate huh 😂

Can you also dm that to me bro

Here as well 🙂

Just one question, why?

Just try if my control c and v ability are fast than autopawn 😂

Imagine they're already had shell and will just do root while other players are just on their way to get foothold it's clearly unfair

😂

It is, hence private matches. Make a party do your match with group agreed upon rules.
Decentralised koth? 😂

Yeah sad, because it's their choice to get advantage

some 2-3 players used autopwns & just after they make king they delete every binaries from machine

kinda boring when you use auto the machine, enless if you can break his defense lol, thats why i switch to ctf and study for certifications

fr

Rootkit is not prohibited it's there already because there are ways to bypass it but using autopawns + lkm or userland ( ring3 ) is a greedy and a thirst for wins 😆
My first 2weeks playing koth i spent time to the machines enumerating it all reading a lot of write ups and koth tips and tricks. After that i found a formula on how to play it it's 456 😂
Luckily i found some people like @rare pelican and @light flame who helped me understand what lkm's and userland.
Also i read what matheuz put in his channel about rootkits.

If you just play koth w/o doing other lessons then you're just wasting your time

I do koth as a side quest only im aiming all the red and pentest path of thm before i move to other platform

Koth is 24mins queue in the lobby and 1hr to play. Dont let that time consumed you if you got the king then move into another tab.
Or if there's a good player that you cannot bypass his defense then let it be.

Damn u have zardus in mutuals

My goat

can someone tell me what's problem here

name on king.txt is "khanakay" and on port 9999 it shows "amansaini"

wait what?!

went from a 100 to 10?

Maybe he's using LD_PRELOAD or he did that trick of redirecting traffic from port 9999 to his host and leaving the king on his machine (which is against the rules and also more unlikely), maybe it's arnout's kingkit, idk

or else he just left his nickname in king.txt and when you visited port 9999 he changed his nickname in king

Cant load rk or userland in hogwarts

On all machines you can

Nah idk since i usually used manual defense unless the opponent has rk or userland

I see the dir there is no other txt been added

It might this

Well, if you are playing against ch1, loading lkm will not work, if you try to load LKM or ld_preload against other players it will work on any machine

Redirecting traffic from port 9999

I've played Hogwarts enough times to know this

Or he can just hide the original king and link it the user that he adds

You can still change the king.txt

But he will be still the king

That has nothing to do with it...

I didn't try such tricks in hogwarts since it's sensitive machine a lot of people handle that machine wrong

They throw some code lines of to def the king right away that cause error in the king and cannot create king anymore lol

I encounter a lot of that before when i just let them get the king first

When I played Koth, I saw players using dd to wipe the machine's memory after their names appeared as king. 😆

and then there was no space to create anything

Such a illegal trick 😆

And it's illegal, that would be against the rules

u have to stable ur shell then u will get access to load lol

in hogwarts

Best defense in hogwarts? Just get foothold and root within 1min max 2mins cuz i can just not let you in if im there already without breaking the rules 😜

Lol someone will be alrdy ready with his binary lolz

Imagine you guys put a lot of effort in koth 😆

The who 🥲😁

https://tenor.com/view/dog-smile-shyboos-smile-gif-11176241070398833675

is it still working, can u pls sahre if it is?

Happy Holidays everyone

https://tenor.com/view/winters-neige-hiver-bonhomme-de-neige-snowman-gif-9593630903960337809

https://tenor.com/view/dancing-cat-dancing-kitten-60fps-boogie-cat-gif-16281567468037639598

apon joinning koth public match

Can any staff member check this?

Probably not today.

No worries it's fixed now. Btw Merry Christmas, everyone.

does koth vc be any active?

i wonder

bruh my friend is pissing me off

we in a private game but he's deleting flags

😡

bro wana play games ima bout to scrape his python http server

Focus on becoming root and simply kick him out 🙂

https://tenor.com/view/hffgf-gif-22453222

Hello

Well then @fossil helm , are you tired? 😉

Bravo is there im cooked

@mystic oxide i will just make it 1001 and stop playing for a moment im just making bravo as my shield for those aiming top 5 will face him first 😆

bravo is back

happy to see him

MDR devilxuser

nice game

kit ?

what kit are you talking about?

nothing bro

nvm good game with you

yes

any spectate links ? 😄

why not participate directly?

@fossil helm bro why r u shutting the box services u shoudnt be doing so
in the worst case change the port dont shut them thats dirty play

Been working on this machine and man it’s pretty annoying finding auto scripts and random tools left in the user’s home directory

What are you talking about brother

Im not the only player lol

What match is that

the carnage one

nvm

private

Alright who are the other players

There are players there that has history of breaking rules

I will not tell it's up to you to find out

absolutely snn it was a game we had fun

gg

After getting king i dont do silly things and proceed reading paths in webapp pentest

So i dont care that much in the machine on what's going on 🥲

Not until someone will dmed me so i will look at the history or processess

Alright i looked into history that slayerkkk did it lol

You can mention him here he cant deny i saw it a while ago i just let him do that lol

No need mate

lol @Jaydeep.Shirsath it cuts the ssh connection

No I don't

yes yes

even my shell kill

I don't able to connect back

normal look @fossil helm

@mystic oxide I got ssh port 65535

lol yes I know it's me who changed to 65535

Just move to other game already

Stop using resets w/o valid reasons

This is tryhackme lol

Do i need VPN to access the koth?

yes

Or use the attackbox

https://tryhackme.com/games/koth/115363

here we all are stucked from 20-30 min there is no reset button also reflect all are stcuked here in this lobby expired for long time anyone pls check it out

it been a long minute of expiration

Yep same

Advance Happy New Year my THM friends, KoTH players and Everyone! 🎇🎆🎉

https://tenor.com/view/cat-gif-6615073470704349838

Cheers 🥂🍷

Why the machine is showing scheduled for now like 30mins
https://tryhackme.com/games/koth/115370

Happy new year my bro

Yea same issue

That's why currently I am not playing

like is there something wrong with server or what?

Don't know

Same I will also then play later

Why the IP is not showing even if the game is running
https://tryhackme.com/games/koth/115370

Max reset happen or not?

Still ip not came?

nope I think other players are not even watching

One reset need

1/2

I clicked but its saying "You have already requested for a reset"

U can only reset it one time one player

I left, today KOTH is not working

https://tenor.com/view/thank-you-thank-you-sir-aww-thanks-gif-7826538383492806977

Yk it bro 🥂💀

Happy new year guys

why koth is not working?

is it only me, who's facing an issue?

Happy new year Guysssss

same here

oh okayy

Happy new year

Same to you bro 😇

Happy new year

After almost 4 months finally finished while playing koth 😆

Just a small rant to thm atleast add points to walkthroughs? Look if someone finishes those path they're still in Omni rank 😅

Also i have some ctf rooms not related to that paths

#feedback-and-ideas

@short tusk

i just did what it said

https://tenor.com/view/baby-running-oops-wrongway-gif-342679303393949979

I mean if you finished those paths you should be atleast in

Wizzard rank

because the nose and the brain bleed is not that easy finishing those paths to someone a beginner like me

nice, me still learning

Can you stop resetting machine?

Nice!

I will also finish pentest+ and offsec since it was 45% and 71% after finishing that pentest paths.

Sryy brother

nice bro

Eheheh, this Koth guy seems popular :3

yes

why you always reset the box dont know how to play?

why do you use scripts to become root 5 seconds after the machine is started, what is the point?

i did manually

no script

ask @fossil helm he knows me i dont use scripts to get root

i devlop that speed on my own not script dont blame me

you don't even take the time to navigate in the ftp to retrieve the information etc... you have already saved everything, what's the point?

why would i when i alrdy saved the keys

every player did that to save time

infact thinktwice bravo everyone alrdy save it to save time

ah ok I don't understand the point but ok well done to you then

ready everything before match that's a thing

so you leave no chance for the beginner to have the king then.

learn to break

but well done to you, well done

ok

why are you trying to shutdown the machine?

316 shutdown

and make blocking rules in the firewall?

@rare pelican why : 250 ufw
251 iptables
252 iptables --show
253 iptables -h

i didnt

ig maybe @fair adder

he is doing

i am not doing anything in the machine

bro I am also not playing

i am in food

me too not playinh

GHOST

tryhackme rule number 1: The machine must not be made unavailable (shutdown/restart, firewall/iptables rules to stop all communication)

not me

but not me

I am not playing

i am not in the machine tho

lol well no it's nobody then LOL

same here

do u get from history

lol

u checking ur own

mdr no, history root

bro there u will capture ur own

i didnt do ssomthing to iptables tho

I don't even know how to use it

It doesn't matter at least you have the king only for you it doesn't matter, but I don't understand the point, even for you, it must not be fun to play alone.

then ask him @fossil helm

see koth is fun if player like some lkm users u will learn some good anlysis

or simply at least respect THM rule number 1

i am telling u again i didn't do anything

didnt touched the iptables thoo

at least you have the king in 10 seconds, you are the best nice.

see i alrdy blocked shutdown why would i do that that doesnt make logic of urs?

& ur checking ur own root history tho bro

I'll come back later, good game

😂

Koth is funny

players do something wrong and then don't want to take the blame

 [BIN: /usr/sbin/service] service ssh stop 
 [BIN: /usr/bin/basename] basename /usr/sbin/service 
 [BIN: /usr/bin/basename] basename /usr/sbin/service 
 [BIN: /bin/systemctl] systemctl --quiet is-active multi-user.target 
 [BIN: /bin/sh] sh /bin/systemctl --quiet is-active multi-user.target 
 [BIN: /bin/sed] sed -ne s/\.socket\s*[a-z]*\s*$/.socket/p 
 [BIN: /bin/systemctl] systemctl list-unit-files --full --type=socket 
 [BIN: /bin/sh] sh /bin/systemctl list-unit-files --full --type=socket 
 [BIN: /usr/local/sbin/systemctl] systemctl stop ssh.service 
 [BIN: /usr/local/bin/systemctl] systemctl stop ssh.service 
 [BIN: /usr/sbin/systemctl] systemctl stop ssh.service 
 [BIN: /usr/bin/systemctl] systemctl stop ssh.service 
 [BIN: /sbin/systemctl] systemctl stop ssh.service 
 [BIN: /bin/systemctl] systemctl stop ssh.service 
 [BIN: /bin/sh] sh /bin/systemctl stop ssh.service

@mystic oxide you should not talk about rules first blame your self 🤣

??? lol I'm not even here

we knows you very well bro what u did yesterday & see i didnt break any rule u checking ur own history log sounds so cringe

lol i have proof after this you use mount trick from @steep agate repo 🤣

that have your name in 😂