#koth

1 messages ยท Page 21 of 1

dapper escarp
#

better moan about it

void rivet
#

it isnt cheating

desert kernel
#

whatever

#

easy root u say

#

then im overthinking like crazy

dapper escarp
#

there are four ways into users

desert kernel
#

coz im compiling exploits

dapper escarp
#

then four additional ways to get root

desert kernel
#

ok

dapper escarp
#

Food is possibly one of the better boxes in rotation

desert kernel
#

linpeas gave me one

#

only so far i played

#

is food and production

#

and i know how to root production

#

the thing is

#

i also cant do sudo -l

#

coz i have no current pass

#

hmm got root now

#

and cant change the king.txt

#

weird

#

wtf

quiet schooner
#

That's like trick 1 in KOTH

desert kernel
#

ok well crisco won

#

yea and im new to KOTH

#

lol

#

@azure zodiac is this crisco ?

dapper escarp
#

while :; do echo 'name' > king.txt; done &

#

whip out your pspy and get hunting for that process id

desert kernel
#

its already over

dapper escarp
#

it's a tip in the future

#

as I have a feeling you'll be in this chat a lot more

#

Crisco only uses basic methods to maintain king

desert kernel
#

yea sure i like it

#

but i just suck

#

at it

#

are there sites / videos

#

where i can get tips

#

and tricks for this ?

#

i always finish 2nd or 3rd lol

#

also im pretty sure i used the hardest way to root this machine rofl

#

watching your video now @dapper escarp

#

this one is yours right ?

rancid pewter
#

I think someone kill the binary to send king.txt but no one want to reset the box. What do I do ?

gusty cradle
#

@rancid pewter You already deleted two flags....

rancid pewter
#

I didnt delete any flag

nimble tangle
#

That's a very serious accusation to be making. Only thing that can be done is to just link the game

gusty cradle
#

You deleted two

rancid pewter
gusty cradle
#

You're the only one besides me that got root..

rancid pewter
#

You know that all flag arent own by root

#

I juste check every flag that I got are still in the box

gusty cradle
#

@rancid pewter I'll take your word for it, by the way what did you do to the chattr binary?

rancid pewter
#

I just delete it

#

Anyway good game @gusty cradle

gusty cradle
#

@rancid pewter You pretty much wrecked the entire system, apt,wall,chattr,dpkg are missing, transferring them over from my box does not seem to work ๐Ÿ˜„

quiet schooner
#

@gusty cradle You won't be able to use apt anyway

gusty cradle
#

๐Ÿ˜ข

quiet schooner
#

No internet connection on the boxes

rancid cove
#

borked

fair adder
rancid pewter
#

I think there a problem, the koth binary is running I can curl on port 9999 and get the king name, the website show a king but there is no point given.

fair adder
#

it happened to me

gusty cradle
#

Me too

fair adder
#

it's cos of the too many changes made to the king.txt file

rancid pewter
#

The king.txt doesn't have even change from the begining

gusty cradle
#

^

fair adder
#

maybe you changed it too many time per second

#

try multiple curls and see if the name is always there

gusty cradle
#

There were only 2 king changes in my match

rancid pewter
#

I dont even have any script running on the server

#

I tried multiple curl name doesnt change

neon sleet
#

The username is case sensitive @gusty cradle

#

Was that a problem?

gusty cradle
#

No

neon sleet
#

hmm, not sure why it wouldn't update. It checks once per minute.

#

If your username appears at :9999, it should be working.

gusty cradle
#

It was also not working for @rancid pewter

#

and @fair adder

rancid pewter
#

Yeah

stable narwhal
#

Did you reset the box?

fair adder
#

resetting doesn't help that much

low whale
dapper escarp
#

I think I'm in tomorrows game

fair adder
#

still have to wait till Friday ๐Ÿ˜

#

is there only one way into production?

dapper escarp
#

There's a few

full grove
#

No

#

lots

desert kernel
#

optional

#

are u gonna record it again ?

fair adder
#

It's not a bug, it's a feature ยฉ๏ธ Optional

paper prairie
#

Hey! Is it normal that in the first minute 2 people get inside and in less that 5 minutes 2 http servers get patched and a telnet server is denying connections? Looks like these guys have already play with this server

desert kernel
#

yup

#

then they probably already knew the machine

fair adder
#

The machine pool is very small

latent quest
#

It means those players probably scripted their attacks. Or at least pieces of it. Start looking for another way in.

fair adder
#

And autopwners exist

latent quest
#

Yep.

fair adder
#

Nothing can be done about that unfortunately

desert kernel
#

takes away the fun

#

autopwners

fair adder
#

It really does

paper prairie
#

nothing can be done? does this happen a lot? this is my first try and looks like my last one xD

fair adder
#

Yeah autopwning can't really be stopped

#

Don't let that take away from the game mode though

paper prairie
#

yeah, but there should be a rule to avoid them and some bans for the players that do so, no?

fair adder
#

Private matches exist and are a joy, and most autopwners don't block every route

#

Autopwning can't be effectively detected

paper prairie
#

well, when someone get into a machine in less than 1 min xDD

fair adder
#

This conversation has been discussed multiple times

#

With the thm staff

brazen cloud
#

+1 :^ especially as KOTH has just been released. Problems like that have been brought up and solutions are being discussed within the community ๐Ÿ™‚

rugged pumice
#

true, its very unpleasant when someone is using a autopwn ๐Ÿ˜•

fair adder
#

Indeed

brazen cloud
#

very much so - unfortunately it's kinda name of the game. But like pars said, it's been discussed multiple times. It's being worked on. Moderating it (as much as I know) is equally as hard to do at the moment. I'd say hang on in there - it's still in early stages...There's a lot of things to come from KOTH ๐Ÿ™‚

dapper escarp
#

back to back space jam

#

time to commit neck rope

brazen cloud
#

neck meet ...

rugged pumice
covert ingot
#

oh neat didn't even know this was a thing

primal stag
#

@rancid pewter Thanks for joining!

rancid pewter
#

@primal stag No problem

#

Good luck

primal stag
#

You too!

rancid pewter
#

.... I got some autopwn ....

primal stag
#

doh

covert ingot
#

oh woops meant to spectate but joined

rancid pewter
#

Ahh it bug again my name is in the king.txt I can curl on the port 9999 and get my name but no point is given

primal stag
#

Well, got my butt kicked.

covert ingot
#

lets see if i can snake any points last min lol

covert ingot
#

rip only got user

primal stag
#

ggs!

void rivet
#

anyone up for a game of koth

#

cheeky 1v1

low orchid
#

@void rivet when?

void rivet
#

ill message u when i can

low orchid
#

thats cool

meager cloak
grand ember
#

O_o

void rivet
#

@meager cloak what is that

meager cloak
#

A completely unnecessary script that should never see the light of day

sonic atlas
#

wow your evil for just makeing it

harsh obsidian
#

Ho. Ly. $h!t.

neon sleet
#

@meager cloak Absolute animal.

#

I'm ready to 1v1 against it though

#

๐Ÿคฃ

tulip bough
#

is it allowed to remove the flags from the files

quiet schooner
#

No

tulip bough
#

streamin it now

neon sleet
#

he's right

tulip bough
quiet schooner
#

@lusty portal

tulip bough
#

its probs the bin guy bc the only one with a flag

#

@potent oyster oi mate ... ^^

neon sleet
#

@tulip bough You might as well root

#

and win with points

dapper escarp
#

King time out weighs flags

grand ember
#

nice pfp optional coolguy

tulip bough
#

im trying to

#

but im new to koths its my 1/2

#

never able to pull root of

neon sleet
#

@tulip bough

lusty portal
#

Which user is this>?

#

bins3c

tulip bough
#

ty @neon sleet

#

bins3c
@lusty portal mostlikely yes

tulip bough
#

really

glossy vessel
#

lol exposed themselves ๐Ÿ˜†

tulip bough
#

noooob

dapper escarp
#

@potent oyster seems you're gunna be banned

tulip bough
#

@dapper escarp EYYY ๐Ÿ™‚ i love your streams

#

im littlerly streaming and a cheater comes along

harsh obsidian
#

Well, that (in part) explains why I couldn't get on the damn box

tulip bough
#

in?

harsh obsidian
#

yeah

dapper escarp
#

Thanks man, glad you enjoy them ๐Ÿ™‚

tulip bough
#

yw

low whale
tulip bough
#

i suck but sure

#

nvm its in 4 hours then its to late for me

weary kindle
tulip bough
#

lol

low whale
#

It is indeed

tulip bough
#

are yu pro?

#

stupid question ofcourse you are

meager cloak
#

It's allowed? ๐Ÿ‘€

#

Mother of pearl

weary kindle
#

is auto banned
it is indeed

#

y'all stupid

meager cloak
#

Ah, it is banned

#

My hopes overcame my ability to read

tulip bough
#

fun for my stream ๐Ÿ™‚

#

bc i suck ๐Ÿ™‚

jagged arch
#

Join Fast

harsh obsidian
#

gg

devout gulch
#

is automating koth allowed ?

rugged pumice
#

some people use autopwn

latent quest
#

In the competition for sure no. Outside of it isn't really encouraged kind of burns some of the fun for a user to auto pwn the and harden the box in 20 seconds.

meager cloak
#

It's not allowed in matches, you will generally get shunned/banned for automating the process, but there's nothing wrong with doing it in private matches for fun and learning

latent quest
#

Just be aware of what it does to the other players I think is a fair advice. Yeah. ^

devout gulch
quiet schooner
#

??

meager cloak
#

That's not automation

devout gulch
#

second i killed his user i got a message

quiet schooner
#

I don't see the issue

rugged pumice
#

timing... ๐Ÿค”

deft portal
#

multiple shells?

rancid pewter
#

@devout gulch I send it after you send random to my shell

meager cloak
#

Automation would be something like this:

I made a thing
@meager cloak

#

Having it wall you when a shell dies is just funny

latent quest
#

well this felt pretty automated
@devout gulch Haha. That is kind of funny actually.

rugged pumice
#

although there is nothing wrong with a little automation. In today's world there is a lot of automation happening, especially in networking

rugged pumice
#

@meager cloak ๐Ÿ˜‚ who made that lol

meager cloak
#

Me, also good luck today my dudes, I've been scheduled into tomorrow's game instead

stable narwhal
#

@meager cloak, you're OP

rugged pumice
#

Suit, you sure you patched all exploits on shrek ?

meager cloak
#

Yep

#

I did it for the entire pool, but for obvious reasons it's not going to be used outside of my private sessions and for when the KOTH rooms rotate

rugged pumice
#

whenever there is a shrek box, @rugged pumice me the IP Address ๐Ÿค”

devout gulch
#

@rugged pumice 10.10.108.184

vernal gust
#

looooool nooooooooooooooo

#

why am i in the same game as you

#

i want a chance to win too ;-;

rugged pumice
devout gulch
#

?

rugged pumice
devout gulch
#

to where ?

rugged pumice
#

the ip that you gave me ?

devout gulch
#

oh im not in there ๐Ÿ˜„

rugged pumice
#

;/
lol i thought you challenged me

devout gulch
#

are you the one killing chattr?

rugged pumice
#

no

young walrus
#

@devout gulch Hello, it's me

devout gulch
#

Gj ๐Ÿ˜„

young walrus
#

xD <3

rugged pumice
#

/var/log ;D

quiet schooner
#

@rugged pumice ๐Ÿ‘€

#

That'd better not be a hint to what I think it is

rugged pumice
#

no, no ! ๐Ÿ˜„

sick fractal
#

was fun %) I need script more %))) Thanks to all

young walrus
#

@dapper escarp cp $(which true) ./chattr

#

it was extremely fun guys!

#

:)

dapper escarp
#

man that was rough

young walrus
#

@dapper escarp I loved the challenge :D

dapper escarp
#

Trying to figure out what you were doing was throwing me for so long

vagrant monolith
#

@dapper escarp cp $(which true) ./chattr
@young walrus Hahaha

weary kindle
#

I'm not competing on my own box

lean swallow
#

Tyler is so f.... hard

dapper escarp
#

Tyler is great

lean swallow
#

i cant even find one flag lol

#

but i'm bad in web exploit ^^

late quest
#

tyler isnt hard

#

it's tricky

harsh obsidian
#

Someone is worried about getting their king taken..... /dev/urandom

lean swallow
#

@late quest can i pm u ? not for answer dont worry

late quest
#

sure thing

obsidian dragon
#

should have a 1st time koth event, far less fun playing against people that are already familiar with the envs

late quest
#

you can play in private rooms with friends if you want to learn the boxes without optional ruining your tries kekw

dapper escarp
#

I don't patch anything when I play with people who don't know what they're doing

harsh obsidian
#

@unkempt crow after this finishes, I'd love to pick your brain. I'm kind of impressed that I can't put my name in to king.txt

nimble tangle
#

@unkempt crow after this finishes, I'd love to pick your brain. I'm kind of impressed that I can't put my name in to king.txt
@harsh obsidian Have a read about chattr and the options it's provides regarding file access privaledges ( Specifically [+,-]i ), that's the simplest method of making /root/king.txt completely immutable.

terse willow
#

(More difficult to change -- but not impossible ๐Ÿ˜› )

latent quest
#

Man. I found a couple access paths but I'm pretty sure they have been fudged with.

unkempt crow
#

major respect @harsh obsidian

harsh obsidian
#

major respect @harsh obsidian
@unkempt crow Same. That was a damn gg

latent quest
#

Good game y'all.

harsh obsidian
#

Good game y'all.
@latent quest Likewise

harsh obsidian
#

gg

spice hollow
jagged arch
tulip bough
vernal gust
#

Who's in the koth competition today?

meager cloak
#

It's ya boi

plain salmon
late quest
devout gulch
steep raptor
#

how much time before the KOTH competition?

tranquil sentinel
#

hello

steep raptor
#

hi

#

when will today's matches play

tranquil sentinel
#

Do i need to verify in this

#

?

fair adder
#

Are you trying to verify your username @tranquil sentinel

tranquil sentinel
#

no..aah i am new in this channel

fair adder
#

KOTH is specifically for the king of the hill matches, if you need help with a box then I would either suggest #room-help or if you're just after a hint then #room-hints

tranquil sentinel
#

Yes

fair adder
#

If you are just looking to verify you username you can do that by sending a DM to the Tryhackme bot stating !verify <your discord token>

glossy vessel
#

when will today's matches play
@steep raptor i am pretty sure 20:00 BST

steep raptor
#

ok just waiting for it

late quest
#

whats the competition?

steep raptor
#

KOTH competition

late quest
#

yeah, whats that

steep raptor
#

was posted a while ago

#

by skidy

#

doing games to see who advances

quiet schooner
#

No autopwn or ๐Ÿ’ข

steep raptor
#

or i don't know what that icon means

quiet schooner
#

Anger

#

Hover over it

steep raptor
#

oh ok

nimble tangle
void rivet
#

is that free koth weekend thing still ob?? my friend wanted to give it a go

harsh obsidian
#

is that free koth weekend thing still ob?? my friend wanted to give it a go
@void rivet Ends 17th April 11pm BST.

latent quest
#

^

void rivet
#

alright thanks

tulip bough
#

Tyler is a pretty hard box xD

#

sad that it ends tomorrow

quiet schooner
#

@tulip bough The free trial ends, tyler is in rotation for the rest of the month

tulip bough
#

i pretty like those koths

#

no i just mean that the koth ends is sad

quiet schooner
#

??

#

Only the free week and competition are ending

#

KOTH isn't ending

tulip bough
#

i know

#

but for me it is ending

#

im to poor to buy premium xD

glossy vessel
#

just subscribe ๐Ÿ‘€

#

you get a 20% discount just for being a student

tulip bough
#

just subscribe ๐Ÿ‘€
@glossy vessel i want to but 1. im not allowed to 2. i cant afford to i dont work bc im to young im 14 and in the netherlands you need to be 16

fair adder
#

Ask for a subscription as an early birthday present. ๐Ÿ˜‰

vernal gust
#

@lusty portal can you postpone me for tomorrow plz?

lusty portal
#

And can you leave the game

vernal gust
#

did

#

i've also pmed you something really good lol

steep raptor
#

3 more hours?

#

@lusty portal

quiet schooner
#

@steep raptor 19:33 BST rn

#

If that helps

steep raptor
#

kinda just waiting

#

soon!

#

Just waiting to get my but kicked

#

butt

cobalt jackal
#

how good is panda btw?

steep raptor
#

no idea

#

though panda was going to be a windows machine

tulip bough
#

@cobalt jackal wow you are fasttt on tylor

#

how its a hard box

late quest
#

(its not)

tulip bough
#

it is

#

for a stupid for me

#

it is

gusty cradle
#

Tyler is not that difficult

lusty portal
#

though panda was going to be a windows machine
@steep raptor there is a Windows machine incoming

#

Next few days

dapper escarp
#

What difficulty is Panda supposed to be?

late quest
#

pain was hard

nimble tangle
#

The difficulty of a box is only determined by your own abilities and the abilities of those you're playing with ultimately.

#

@late quest Pain wasn't meant to be there, that was a glitch in the matrix

late quest
#

well i got lucky being there when it happened

nimble tangle
#

Yeah, we had a full game for it haha

#

The small previes of upcoming ideas was interesting though, I think that box will be fun once it's complete and ready to go

dapper escarp
fair adder
#

the game hasn't even started yet

gusty cradle
#

@fair adder That game has been active for at least 6-7 minutes

low whale
#

?

fair adder
#

shit i forgot the VPN ๐Ÿ˜‚

latent quest
#

lol. That would do it.

lusty portal
latent quest
cobalt jackal
#

@fair adder

acoustic wraith
#

Hm, why didn't my flags work tho? cri

steep raptor
#

@lusty portal think i just missed it oh well

lusty portal
#

You didn't ๐Ÿ˜‰

#

Starts in 25m

steep raptor
#

ok cool

acoustic wraith
#

Koth flags can be used only by a single person?

lusty portal
#

^ All users can submit flags

steep raptor
#

@lusty portal I'm ready to be crushed

dapper escarp
steep raptor
#

@lusty portal guess i missed it just got the boot

void rivet
#

can we get a spectator link for the panda game

#

does it show that ive done that box before

latent quest
#

Just a bit.

void rivet
#

i could have got the last flag but i was watching youtube

latent quest
#

Hmm... Yes. Priorities. ๐Ÿ˜†

void rivet
#

hehe indeed

late quest
#

if you are really good

#

just complete the box before it starts

void rivet
#

xD

steep raptor
#

welp

void rivet
#

autopwn script

#

i could probs write an autopwn script

steep raptor
#

crawled my way back in i guess

quiet schooner
#

I should write one for Food

void rivet
#

im gonna write one for production

#

wait they are allowed to be used right??

#

in koth games

quiet schooner
#

I don't know what the official policy is

#

I'd say probably best not to

#

Stick to private games only

devout gulch
quiet schooner
#

@devout gulch No spoilers please

#

Also, I think you just confessed to a DoS

void rivet
#

lol

#

we allowed to write scripts that repeatedly write ur name in king.txt

#

??

quiet schooner
#

That aint a DoS so you're good @void rivet probably

void rivet
#

i tried it on prod and it kicked me out calling me cheesy

#

xD

devout gulch
#

thats what have been happening on all the streams from optional and john hammond

quiet schooner
#

Oh, that's a different rhing @void rivet

void rivet
#

still won though xD

nimble tangle
#

That's the magic of that binary ๐Ÿ˜› BYOB

void rivet
#

xD

quiet schooner
#

Killing services isn't allowed @devout gulch

devout gulch
#

no killing 9999 isnt allowed. i did say what you said in the stream that was the answer they gave me

quiet schooner
#

Killing services isn't allowed.

#

Killing/tampering with 9999 is especially not allowed after I found a really cheesy exploit with it

void rivet
#

lol

nimble tangle
#

^ The rules regarding that need a lot of clarification as the current rule list is very vague and everyone interprets how the rule is written differently

quiet schooner
#

@steep raptor Did I ever tell you what I did when we played Prod?

steep raptor
#

?

late quest
#

4th for the reset someone?

quiet schooner
#

Would love to explain it via DM as it broke the game @steep raptor

late quest
#

it stoped responding

steep raptor
#

rm -rf /?

late quest
#

no now its back

quiet schooner
#

Nah, everything seemed fine

late quest
#

nvm

quiet schooner
#

But I broke something crucial

void rivet
#

saucy

#

starts in 5

#

someone joined then left as soon as it started oof

late quest
#

lmao who was rootstar

void rivet
#

can someone help me troubleshoot lol

#

root@kali:~/Downloads# openvpn Parenzzy.ovpn
Options error: In [CMD-LINE]:1: Error opening configuration file: Parenzzy.ovpn
Use --help for more information.
root@kali:~/Downloads#

#

tried to use vpn

#

this shows up

nimble tangle
#

Hmm

#

Try what's on the site already, regenerate and try again if it still persists to be an issue

late quest
#

root@kali pikapika

quiet schooner
#

2019.4 ftw

void rivet
#

xD

#

ugh openvpn is a pain

late quest
#

panda 35 min left

#

if someone wants to join

void rivet
#

only machine im stuck on is food lol

#

cant even get one flag

#

ummmm

#

lol idk what my browser was doin there

lusty portal
#

refresh?

void rivet
#

yh i did

#

was so weird

#

xD

#

opened koth to a massive cat in my face

fair adder
#

Are you an admin? @void rivet

void rivet
#

@fair adder shhh

#

im on another server and i had to put my name to that

#

cause i kept getting messages

#

5mins

#

panda is annoying

steep raptor
#

what's wrong with panda?

#

that box isn't that bad

void rivet
#

It's new, so it's annoying ๐Ÿ˜‚

#

I'll figure it out tho

#

Just tired rn

#

So cba

#

I might start drinking coffee

rancid cove
#

already ahead of you on that one

#

Coffee is the nectar of the gods

void rivet
#

anyone up for a game of koth

fair adder
#

i'm waiting

#

joined public, waiting alone

void rivet
#

@lusty portal can we delete users entireley ??

#

on the boxes

#

to stop people

#

or is that against rules

void rivet
#

deffo my favourite box is production

steep raptor
#

@void rivet I just changed all the pw and removed all the ssh keys lol

primal stag
#

gg calebstewart

lilac lantern
#

@real wadi gg

#

so limited to my tools right now

lilac lantern
#

when all you have access to is an ubuntu box in the cloud

#

and you have to install vnc on the server so you can check web exploits

#

with 1gb ram

quiet schooner
#

@lilac lantern subscriber kali my dude

lilac lantern
#

I will when I get paid ๐Ÿ˜‚

#

just completely failed on the KOTH due to restrictions

#

the machine I'm using now is for work, my desktop died last week ๐Ÿ˜„

#

Using AWS's free tier

quiet schooner
#

I bet food and prod are fairly ez command line only

#

Food less so

lilac lantern
#

Food was not easy

#

especially as I could only really wget the pages

#

and they just said one bloody word ๐Ÿ˜‚

quiet schooner
#

There's a few different ways in

lilac lantern
#

See, I was thinking that

#

Web is not my favourite thing to do

#

But from what I could see from my nmap, I didn't really have much room to play with

quiet schooner
#

I don't think you could do the web route properly with just a terminal

lilac lantern
#

Correct

quiet schooner
#

At least not any more.

lilac lantern
#

I choked

#

Then proceeded to try HTTP tunelling through SSH

#

then I decided to install GUI on the server

#

And installed VNC

quiet schooner
#

I want to say there are command line browsers

lilac lantern
#

And I cannot simply VPN from my work laptop (no admin credentials)

#

I managed to use my fav tool though, mobaxterm

harsh obsidian
#

I'm glad that I'm not the only one struggling to get in to Panda on this KotH....

lilac lantern
#

#Headache

#

weirdly, watching the vpn status on my gui

#

it keeps disconnecting

harsh obsidian
#

Same. It is already starting the maintenance they talked about? I thought that was a few more hours from now

quiet schooner
#

@harsh obsidian shouldn't affect the VPN

#

It's site maintenance, not VPN server

harsh obsidian
#

Hmmmm.

lilac lantern
#

Nope there does seem to be an issue

#

constant push requests

quiet schooner
#

Control C, reconnect

lilac lantern
#

I did, but this has happened 2-3 times now

#

Just FYI, I'm not fussed I should really go to sleep anyway

#

Inactivity timeout?

quiet schooner
#

Shouldn't be if you're using it.

lilac lantern
#

Never seen it do this after 30 seconds

quiet schooner
#

Route add failed

#

!multivpn

pearl gladeBOT
#
TryHackMe
โ€ข Step 1

Type ps aux | grep openvpn into your terminal and press enter

โ€ข Step 2

If there's more than one line (and the second doesn't have "grep" in it), do the following steps

โ€ข Step 3

Type killall openvpn into your terminal and press enter

โ€ข Step 4

Start the VPN with sudo openvpn <path-to-config>

From TryHackMe with โค!
dapper escarp
#

Just gunna put this out to both of you

#

not koth

lilac lantern
#

Optional, I know xD

#

It was just a passing by comment

#

rather than actually turning into a tech issue report

dapper escarp
#

More aimed at James

lilac lantern
#

๐Ÿ˜‚

dapper escarp
#

as you're both trouble shooting in the wrong channel

lilac lantern
#

ah no whip emoji

harsh obsidian
#

ah no whip emoji
@lilac lantern /me grabs his Indiana Jones whip

merry jungle
#

hey

gusty cradle
#

๐Ÿ‘‹

glass flare
gusty cradle
late quest
#

im so bad at persistence pepehands

latent quest
#

Aye. I feel you. Game today is going to be interesting.

noble nacelle
#

hey

#

how people are able to finish there nmap too soon
that they have flag
and my scan isnt done yet

late quest
#

they already did the box

#

and have the nmap saved

azure rover
#

Hey I saw someone having 5 flags on "production" box. It announced only 4. Anyone has an idea?

#

@noble nacelle Yeah sometimes you get kicked out because of someone else and can't continue. So you need another round to finish your stuff.

#

I've seen a guy rooting a box and becoming King in less than 40 sec

late quest
#

Hey it was me

#

My bad, i dmed skidy too if he could remove the points

azure rover
#

Yeah, it was you ๐Ÿ˜„

#

How did you do?

late quest
#

Its gonna be fixed soon

#

Ill tell you after the patch is live

#

I rather not have people do it, i shouldnt have done it either

azure rover
#

What's the bug? There is only 4 flags or the info number is wrong?

late quest
#

Ye only 4 flags

azure rover
#

Oh! So it's an THM site bug? ๐Ÿคช

noble nacelle
#

can someone give tips to how to find flags efficiently

#

or common places/probable place

#

commands to find them

#

please help

late quest
#

literally

#

find

noble nacelle
#

yup i know but sometimes its unable to do job

latent quest
#

Then start poking around there are a couple of places they often show up in boxes KOTH boxes included.

noble nacelle
#

like what places

#

any want to play??

harsh obsidian
#

Has anyone played Production?

noble nacelle
#

can u help me with production

harsh obsidian
#

can u help me with production
@noble nacelle PM me

harsh obsidian
#

gg

fair adder
inland elbow
void rivet
#

legit couldnt find any other flags

latent quest
#

Good game!

harsh obsidian
#

gg!

void rivet
#

๐Ÿ™‚

rancid cove
#

Yea interesting games.

#

Productivity is interesting

primal stag
#

13 minutes ^^

#

good luck ironzelato

primal stag
#

Well that was a quick beating...

noble nacelle
#

anyone for koth

harsh obsidian
#

gg. @noble nacelle were you able to get on the box?

noble nacelle
#

nope

#

are free for now for a game

#

private

harsh obsidian
#

for a bit. might not be able to stay for the full hour, but I'm down for a bit at least

noble nacelle
#

ok

harsh obsidian
#

Has anyone fully pwned Space Jam? I've got everything on that box except jordan's password and it's driving me crazy....

dapper escarp
#

You donโ€™t get his pw

fair adder
clever spoke
#

hey someone removed the flag.txt in root?

gusty cradle
#

@clever spoke Which box is this?

clever spoke
#

10.10.62.145 currently koth room

gusty cradle
#

Which KoTH box is it?

clever spoke
#

10.10.62.145

#

i can find 3 flag as root user only

gusty cradle
#

The name not the ip

clever spoke
#

production

#

linux machine

#

this is the first time im playing it and just wanted to make sure that all the flag format is flag.txt right?

fair adder
#

@clever spoke that is incorrect. some flags are hidden in other filename formats

primal stag
#

gg!

clever spoke
#

oh i see my that's my bad then

#

thanks for the info @fair adder

noble nacelle
#

can anyone tell me how many flags are there in space jam

vernal gust
#

if you hover the the place where you input the flags it will tell you how many there are

fair adder
#

user:dumbo
issue: killing processes from koth machines sessions
reported: Yes

can someons talk to that user for breaking the ToS

gusty cradle
#

@fair adder What processes are they killing?

fair adder
#

the process to access the box

#

once we get a shell or anything he kills the box

#

we had to reset the box multiple times

#

and multiple times he did the same thing

gusty cradle
#

You're allowed to kill shells...

fair adder
#

are you allowed to modify the box too?

gusty cradle
#

You're allowed to patch the box.

fair adder
#

sure you are

gusty cradle
#

Check the rules.

terse willow
#

You are not allowed to stop services

#

But you're allowed to modify them so that they're secure

gusty cradle
#

But you're allowed to kill shells.

#

^

terse willow
#

And you are definitely allowed to kill shells ^^

frigid hawk
#

Hey

#

I did not kill any machine

#

mehran you are the one who removed the chattr file

#

And why would i stop. I got terminated like 5 times

#

i was reset the box. But only 3 members pressed it. Even i was waiting for the shell

fair adder
#

so someone else did it? @frigid hawk

#

cuz i couldnt even ping the box

#

after you got king

frigid hawk
#

I was not the king when the box went out down

#

did you observe ?

fair adder
#

uhh yes you were

frigid hawk
#

Nah.

fair adder
#

if you wasnt king then who was

frigid hawk
#

Mehran you were the king.

#

Since i was having most of the time.

#

check the king changes if you can

noble nacelle
#

why then change id_rsa again agian always

#

why my ssh disconnect automatically

#

now it cant login using the same file

#

any one want to play

fair adder
#

how tf binsec got them all

noble nacelle
#

what?

fair adder
#

how bins3c has all of them in 7 m mins

noble nacelle
#

we must have done the machine

#

and now he changed ssh key

#

and now i cant connect using the same file

#

hey are u playing we are playing a new game

fair adder
#

nice

#

how you got the second flag?

#

@noble nacelle

#

who tf is bins3c?

#

he changed the ssh key

late quest
#

wew close one

distant zealot
#

need reset

noble nacelle
#

bro need help

fair adder
#

with?

tulip bough
#

streeaming koth now ๐Ÿ™‚

#

xD i stream and i immideatly get the hardest box (tyler)

dapper escarp
grand ember
lilac lantern
#

yoyo who's on the game in 21 mins?

harsh obsidian
#

Game 1049 starts in 22 mins and I'm in that one.

quiet schooner
#

over 1000 games

#

Impressive

lilac lantern
#

This is a nightmare! xD

#

really good game guys, think I'm out of ideas !

#

gg @rancid pewter

#

Completely got me and held up well on defence

rancid pewter
#

Thx

lilac lantern
#

mind discussing how you managed to do it?

#

I was completely screwed when those sh files were there

rancid pewter
#

Yeah sure

lilac lantern
#

Sweet, let me go for a cigarette quickly and I'll join you on voice ! ๐Ÿ˜„

rancid pewter
#

Cant voice dont have mic

lilac lantern
#

Ah, mind a direct message? ๐Ÿ™‚

harsh obsidian
#

I'd also like to ask a questions @rancid pewter

rancid pewter
#

DM no problem

lilac lantern
#

anyone on the next one?

#

vm crashed loool

harsh obsidian
#

anyone on the next one?
@lilac lantern I can join if you send me an invite rq

lilac lantern
#

@harsh obsidian will do give me 2

#

need to leave this one

#

@harsh obsidian

#

Do you have voice too

#

@thick coyote vc?

lilac lantern
#

My first win!

fair adder
#

yayyy

harsh obsidian
#

My first win!
@lilac lantern Congrats!

lilac lantern
#

Thanks dude.

#

Feels great tbh

quiet schooner
#

@lilac lantern which box?

lilac lantern
#

Shrek

quiet schooner
#

Ooh nice

lilac lantern
#

only 4 flags

#

25 min king time

#

but still worked

lilac lantern
harsh obsidian
lilac lantern
#

go for it!

harsh obsidian
#

You're not joining us?

#

Is everyone else not seeing the IP address in box KOTH 1055??

lilac lantern
#

gg @potent oyster

#

we are in

#

but @potent oyster kicked us out

#

now we're screwed

dapper escarp
#

Surprised they haven't been banned yet considering last time they played they modified all the flags

lilac lantern
#

there is no other way in

dapper escarp
#

Yeah the guy is known for getting in and removing literally everything

#

They remove any fun from the game mode

lilac lantern
#

thanks @dapper escarp

dapper escarp
#

I'd just say report them to koth@tryhackme.com

lilac lantern
#

Thanks honestly I'd rather not

harsh obsidian
#

@low whale Mind if I DM you when I get up?

lilac lantern
#

panda has fucked me up

harsh obsidian
#

panda has fucked me up
@lilac lantern Same. I was able to get just one flag, and I finally got web creds....that's it....

lilac lantern
#

got mmore than us

#

I'm looking into that binary file

lilac lantern
#

gl guys

low whale
#

@harsh obsidian go for it

#

yeh I'm going to double check our KOTH reports to make sure we've not missed anything

lilac lantern
#

@harsh obsidian press reset

#

๐Ÿ˜‚ ๐Ÿ˜‰

#

machine is borked

#

can we reset please @harsh obsidian

#

@serene willow

primal stag
#

got a KOTH kicking off

primal stag
#

@potent oyster am I locked out?

stiff egret
#

anyone playing rn?

hardy imp
#

someone joining? 7u7

fair adder
#

Shrek was fun aka xxunknownxx

hardy imp
#

i hacked only tomcat

#

but you patched openssh default password and also bruteforce didn t work

fair adder
#

yep

#

i was waiting for someone to get the second flag so i can move on but no one did

lilac lantern
#

lol

harsh obsidian
#

gg scra1ch and zreek KOTH/1092

stiff egret
#

how the hell to do "food"

#

that shit is hard

quiet schooner
#

@stiff egret it's one of the easiest boxes in rotation

#

There's a bunch of ways in

steep raptor
#

@mellow bough can't talk here

#

oh well

lusty portal
harsh obsidian
#

how the hell to do "food"
@stiff egret My method for every box is to look at every service running on every open port, and open every port in the browser.

primal estuary
#

Good luck in competition

quiet schooner
#

@harsh obsidian That only works for web servers

#

nmap -sV

desert kernel
#

yo

#

where is the stream link

deft portal
desert kernel
#

ty

#

thats a spectator

#

who is streaming

#

@mellow bough

spark mist
desert kernel
#

where are the streams

#

ah

#

thats optional

#

thanks

spark mist
#

๐Ÿ‘

desert kernel
#

ah damn

#

i hear the sound twice

#

๐Ÿ˜„

#

coz im on discord haha

#

ROFL

#

๐Ÿ˜›

#

the flag didnt wanna work

glass flare
#

WoW!, I got 2 passwords, But... nothing works ๐Ÿค”

harsh obsidian
#

@harsh obsidian That only works for web servers
@quiet schooner Often I find useful information even if it's not a webserver...

quiet schooner
#

Not with a browser. Maybe with netcat

harsh obsidian
#

Not with a browser. Maybe with netcat
@quiet schooner Even with a browser. #ToEachTheirOwn

quiet schooner
#

@harsh obsidian Show me you accessing something in a browser that isn't a webserver

#

I want to see this

terse willow
#

(ftp server, local files..)

#

(although definitely not most stuff)

harsh obsidian
#

Not most, that's for sure. But on a couple of KotH boxes it's given me information that I wouldn't have otherwise and allowed me to ultimately get access

devout gulch
#

i was wondering if anyone other then optional actually playing

void rivet
#

donuts doing bits

#

@rancid pewter GG dude

harsh obsidian
#

I was, just getting my ass kicked. I'm not that familiar with windows boxes yet

glass flare
#

WOW!, Much PAIN!!!!

young walrus
#

i kind of liked the pain vm

#

the first time i played I didn't get any-fucking-thing

#

it was a little bit oversimplified this time

full grove
#

There's a couple easy grabs just like any other box -- I'm curious to see how its going to do later in the season

void rivet
#

i dont like pain

#

hehe

dapper escarp
#

I feel pain should be renamed to Offline

harsh obsidian
#

I feel pain should be renamed to Offline
@dapper escarp Kinda feeling like Food should be renamed DoS right now

dapper escarp
#

dos isn't that bad

#

running alright from where I'm sat

#

not sure what Donut has running tho

harsh obsidian
#

I think it's the other folks beating the p!$$ out of it with dirb and hydra

#

I think I was too slow getting my initial foothold in and am paying the price now

dapper escarp
#

maybe

#

I know I murdered the ssh service

#

as it's not needed on food

harsh obsidian
#

I'm attempting to check the other things (also getting murdered) but my initial is via ssh

dapper escarp
#

Yeah I think most people use ssh as initial

harsh obsidian
#

I hope to be able to get king with an admittedly long one liner like I did with Space Jam

quiet schooner
#

after the patch, probably

harsh obsidian
#

after the patch, probably
@quiet schooner lol

quiet schooner
#

I patched food because people kept ignoring the other routes in

harsh obsidian
#

Not accounting for ssh, I have two to three other routes in that I want to explore....but I can't get anything to connect

void rivet
#

@quiet schooner good job on food btw I really like it

quiet schooner
#

Question is, how many of the routes did you find

void rivet
#

Only one lol

#

But it works

#

So I'm happy

harsh obsidian
fair adder
#

Does skill level matter?

rugged pumice
#

high skill level can help you in finding the vulnerabilities

harsh obsidian
#

No. Remember, it's all about learning and testing / refining your process. This isn't DEFCON CTF lol.

dapper escarp
#

Iโ€™d argue if you end up in a game with me and Iโ€™m actually trying you wonโ€™t find any easy ways in so yeah it can be beneficial to have a starting base

fair adder
#

True, you're quick on it too

dapper escarp
#

Like if you end up with someone experienced whoโ€™s actually trying to patch stuff itโ€™ll be insanely difficult

harsh obsidian
#

Like if you end up with someone experienced whoโ€™s actually trying to patch stuff itโ€™ll be insanely difficult
@dapper escarp For the sake of those less experienced, I tend not to patch things. I'll just do what I can to maintain king. . . . Not always though.

dapper escarp
#

I think the only boxes I try patch are tyler, food and now offline

#

just have to get lucky and get that box now

gilded valley
#

anyone wanna come join and help ? (im bored)

hidden island
#

Quick question for some of the subscribed members. Since I have a subscription and can create private rooms, can I invite members who don't have a subscription to play with me?

dapper escarp
#

no

hidden island
#

ah, okay. thanks

#

It would be a neat idea to let non-subscribers have like 1 free koth attempt. Could create more engagement and if they like it, they'll likely sub. I know you all just had the week free koth which was a great idea, but that'd be a more neat permanent idea. just a thought

gusty cradle
#

@hidden island That's a pretty good idea ๐Ÿ™‚

lilac lantern
#

Yoooo @lusty portal . Is there any way we can request a machine on koth privately? (for stream)

lusty portal
#

When retired KoTH machines happen (beginning or next month) yes:)

#

Until then, no sorry

lilac lantern
#

No worries buddy! thanks for the reply ๐Ÿ™‚

lilac lantern
#

panda is the vein of my lfie

#

life *

#

got the one flag, the rest makes me want to cry

#

especially the relevance of tomcat

lilac lantern
#

every god damn second killing the ssh session.

#

@serene willow

fair adder
#

not anymore huh @serene willow

full grove
#

if you're having some difficulty with Linux, maybe you should hop into the next windows game >:)

serene willow
#

you ruined my game @fair adder

lilac lantern
#

๐Ÿ˜‚

fair adder
#

@full grove windows game?

#

you mean Pain? @full grove

#

you missed a flag buddy @serene willow

serene willow
#

It's the new windows machine name

lilac lantern
#

fight harder ๐Ÿ˜‰

fair adder
#

@serene willow yes its called Pain

#

i managed to crack it in 5 minutes

#

or less

serene willow
#

Me too but somebody keep kicking me out

fair adder
#

welp thats how it works

lilac lantern
#

Annoying, aint it? ๐Ÿ˜‚

fair adder
#

Karma @serene willow

#

you kept kicking my buddy out so you deserver it @serene willow

serene willow
#

I don't know how it's done

fair adder
#

learn bash

#

and you'll know

serene willow
#

Is it done by killing the process

fair adder
#

is that a question? @serene willow

serene willow
#

Yeah

fair adder
#

not just that

#

you got to do more than just killing processes

#

but i dont have to kill processes to win

#

@serene willow

gusty cradle
fair adder
#

I've never done space jam

#

lol

#

so i'll be screwed

full grove
#

spacejam is wicked easy

gusty cradle
#

^

#

@fair adder I've already patched everything ๐Ÿ˜‰

fair adder
#

well i expected you to do it anyways lol @gusty cradle

gusty cradle
#

@brave pilot @fair adder gg

fair adder
#

really bro

#

lol im dead

gusty cradle
#

๐Ÿ˜„

stiff egret
#

anyideas on FOOD

#

fr cant do nothing in that box

narrow parrot
#

ur in the koth game atm right? ๐Ÿ˜„

terse willow
#

Can't really help with active Koth boxes I'm afraid ๐Ÿ™‚

stiff egret
#

yeah, guessed that much

#

ur in the koth game atm right? ๐Ÿ˜„
@narrow parrot yeah you in same?

narrow parrot
#

@terse willow after the game=

#

?

#

ye

terse willow
#

Hmm?

narrow parrot
#

can u give us some tips after the game?

stiff egret
#

whats yo tryhackme alias ? @narrow parrot

terse willow
#

That wouldn't really be fair for anyone else doing the boxes this rotation. When they switch out to the next set then I have a feeling there will be walkthroughs released for these boxes

narrow parrot
#

okay thx ๐Ÿ™‚

quiet schooner
#

@stiff egret tips: there's a bunch of ways in. Enumerate harder.

#

I made Food

stiff egret
#

@stiff egret tips: there's a bunch of ways in. Enumerate harder.
@quiet schooner while true; Tryin

quiet schooner
#

Keep looking basically

#

Enumerate fully

steep raptor
#

will pain or well offline be retired next month or keep in the rotation?

lusty portal
#

As it was released near the end of the month, Pain and Panda will remain in rotation

steep raptor
#

how many new boxes in the following month?

lusty portal
#

4-5 maybe? Still being decided:)

quiet schooner
#

has it not proven it's popularity? There's been over 1k rounds played since launch

steep raptor
#

@lusty portal just ready for next month. Digging for pain is near impossible. Would like to try that one again after my failure...

lusty portal
#

Thats persistence, I will make KoTH games playable from retired boxes

#

And will include Pain

#

So its in new games, and in the retired pool

#

has it not proven it's popularity? There's been over 1k rounds played since launch
@quiet schooner Very very true. Crazy really. I think you're right yea

quiet schooner
#

@lusty portal Will that mean Pain is streamable?

steep raptor
#

@lusty portal just make a retired room with all the last month's machines

#

so we can spawn them up and down as much as we please.

quiet schooner
#

Flag submission gets iffy tho

#

We'd need a new form of flag box

steep raptor
#

@quiet schooner with no flags just to play with them

#

see what people missed

quiet schooner
#

If that doesn't happen, I'll talk to Skidy later on and upload Food as a standalone

#

I have an idea on how I can handle the flags for it

lusty portal
#

@lusty portal Will that mean Pain is streamable?
@quiet schooner I'ma pass that question onto @low whale as he made the streaming decision last time:)

low whale
#

hmmm not streaming pain for now as we just released it ๐Ÿ™‚

quiet schooner
#

@low whale next month

dapper escarp
#

Back to the fight to change the name from pain to offline

full grove
#

how about a week and a half grace period?

quasi briar
#

hey a quick question about koth

#

are we allowed to modify ssh keys once we are on the box?

#

say i remove anything in authorized_keys.. and put my own ssh public key

terse willow
#

Yes

quasi briar
#

okayy!

#

if anybodys up for a game

#

starts in 2 mins though

narrow parrot
#

if someone wants to join

dapper escarp
orchid tulip
#

nice one keep up a good work, these materials helps to learn

lilac lantern
#

good afternoon everyone !

void rivet
#

anyone up for a game of koth

lilac lantern
#

just on the pain ยฌ!

#

first time trying this box

void rivet
#

i just left a pain one

#

fuckin hate that box

lilac lantern
#

hahaha

void rivet
#

i can get 2 or 3 flags

#

then im stuck

lilac lantern
#

how bad is it?

void rivet
#

its not bad if u know windows machines

#

ik windows machines

#

and i kinda struggled with it

lilac lantern
#

I love windows

void rivet
#

i prefer linux

lilac lantern
#

guessing this is nothing like blue

void rivet
#

lol, try eternal blue on it, it will blue screen and reset

#

so if u ever wanna reset the box

#

force reset it with eternal

lilac lantern
#

haha thanks dude!

void rivet
#

np

#

i just wrote an autopwn for prod

#

so wanna test it lol

lilac lantern
#

yeah me too ๐Ÿ˜‰

#

hahahaa

quasi briar
#

hope we dont get prod then ๐Ÿ™‚

lilac lantern
#

๐Ÿ˜‚

#

struggling to even get one flag on this pain