i tried some stuff on 3000, but i used someones script in the bunny folder to get password hashes
#koth
weak haven
leaden spoke
I did the same till cd got locked out
weak haven
i couldn't get my reverse shell to work, but thats probably my own lack of knowledge to upgrade it
gg though
weak haven
i tried to edit king through it but couldn't get it to either stick or read it back to me
leaden spoke
I could edit, but It wouldnt take it for me. I would cat the file and see my name, but no luck after that.
weak haven
yah i tried to cat the file but nothing but blank came back after several echo tries
leaden spoke
@rancid pewter do you want to tell us a little bit about what you did?
weak haven
who's script was that in bunny
rancid pewter
I used port 3000 to get root reverse shell
You might want to read about chattr for modifying king.txt
leaden spoke
Thank you
rancid pewter
No problem
weak haven
ah you sly donut lol
rancid pewter
I was able to completely spy your shell
I could see you typing live and see command output
weak haven
then you definitely saw me tossing random stuff at it
leaden spoke
Lol
rancid pewter
Ohh and there was my rootkit on the box so there wasnโt a lot you could do to get king
weak haven
this guy
rancid pewter
What do you mean ?
leaden spoke
Did you put the root kit in the box?
rancid pewter
Yeah
leaden spoke
oh man ๐
rancid pewter
I really overkill the game
weak haven
hey 110% i like it
leaden spoke
I did too! This was my first
rancid pewter
Ohh you should said that before I would have been less savage
leaden spoke
No, I wanted the real thing. Thank you for sharing with me what all you did.
weak haven
same
terse willow
I'd be interested to see how you would do against the box creators @rancid pewter. Something tells me you'd wipe the floor with the people who built the things at this point...
Might have to build one where it's impossible ๐
rancid pewter
Would be interesting to try out
exotic quiver
Meanwhile I'm here hoping I don't encounter Donuts in a game 
final nest
Suntsam gg๐คฃ๐คฃ๐คฃ
royal pilot
Yes man
Sorta fun it is
;))
I almost left my screen thinking it's over but you people reset the box eh ;)) fair enough
final nest
Lol man i did kill ur shells @royal pilot
U were cating dev/urandom right ๐คฃ๐คฃ๐คฃ
brittle flicker
This koth dude must be fun
teal field
@quiet schooner You should update the "offline" room at koth. With the MS17-010 vulnerability, this was far too easy.
slate crow
ye
teal field
We just played 'Hackers' and didn't get any further. In retrospect, someone might have a tip on how to get root.
@teal field he didnt made offline.
@nova tide I did
Here
@nova tide
nova tide
what about it?
teal field
That's the link to the game where I made offline
nova tide
You didnt made offline you won the game -_-
@teal field he didnt made offline.
by this i meant he isn't the creator of offline box
teal field
Ok, sry
slate crow
terse willow
Uh...
(You're aware that everyone in here will have already joined the server, right?..)
teal field
I mean voice channel
glossy vessel
@terse willow that was an invitation for voice chat
terse willow
I can see that
Does it not show up as joined for you?
I mean, nothing wrong with it ๐
glossy vessel
terse willow
Huh, that's odd
glossy vessel
yeah ;_;
terse willow
Are you on Desktop?
glossy vessel
yup
glossy vessel
it's fine ๐ nothing to worry about
quiet schooner
@teal field it's not vulnerable to eternal blue.
Eternal blue will crash the box, so it's a DoS
teal field
@quiet schooner u can use exploit/windows/smb/ms17_010_psexec
warm chasm
I don't think you can
teal field
So I hacked the maschine
full grove
It might be slightly vulnerable to EB
Unless you have insider info on the VM you wont be able to exploit it kekw
there's two direct exploit paths that will bring you to NT Auth
one is EB
the most unstable thing ever created
and the other... well...
go find it.
teal field
It's okay, I just wanted to say that maybe it's a little too easy
quiet schooner
@teal field If you think that's easy, play some of the other boxes
They all vary in difficulty
teal field
I know, but I can't choose which one I get
leaden spoke
@teal field are you who I'm playing with in the koth?
teal field
Create a private game if you want to choose
@quiet schooner I'm not a subscriber
@teal field are you who I'm playing with in the koth?
@leaden spoke Yes
leaden spoke
cool, good luck!
neon sleet
It's okay, I just wanted to say that maybe it's a little too easy
@teal field Do me a favor, tone yourself down and take a breather. Nobody wants to hear your pushback on the mods. Respectfully ๐
teal field
Sorry, I didn't want to attack anyone
mellow bough
Like most games KoTH is easy until you play against people that also have a good feel for the game. It's good that you're starting to get the hang of it though
And all good!
teal field
I'm sorry if it came across like this
mellow bough
No worries!
carmine hemlock
https://tryhackme.com/games/koth/join/85a5395870cb6753f3e98ac9
Public game if someone wants to play
carmine hemlock
who killed ssh lmao
carmine hemlock
3/4 resets... phew
leaden spoke
@carmine hemlock do you mind if I ask you some questions about the box after all of this?
carmine hemlock
Its fine, just dm me
btw: first time on this box, im surprised i got that so quickly xD
leaden spoke
lol
carmine hemlock
Well, a script someone left helped me out, they missed something they shouldnt have missed ;)
leaden spoke
was it the script I left in root?
teal field
Has someone a hint for prvEsc in Product
quiet schooner
slate crow
reset
fair adder
why?
slate crow
he patched everything lol
fair adder
surely every person has an escalation
in fact multiple escalations
i am working on what i can do with the 2nd user
i think i am on to something
fair adder
um... there is somethign on an NMS?
hollow stone
just a note, someone having patched the machine is not a valid reason for a reset
slate crow
oh, ok
hollow stone
resets are for when a machine is broken
quiet schooner
It's not the intended use for a reset
You can use resets tactically
you're not supposed to
hollow stone
it's a dick move
slate crow
no it's not
hollow stone
you're basically invalidating any patching that was done
slate crow
the goat can do it again
hollow stone
"oh, this guy is better/faster than us, let's reset"
slate crow
patch everything
well, doing the machine 3 times a day doesn't mean he's better
it's unfair for a "first timer"
hollow stone
play with other people who haven't played the machine yet if that bothers you
slate crow
that doesn't bother me, that's bothering you actually
there's a reset button right there
I just requested a reset
you don't have to make it dramatic
hollow stone
whatever, i don't actually care, i'm just saying there are good reasons for a reset, and losing is not one of them
slate crow
well, that's your opinion, yea
fair adder
seems dramatic that you are getting sassy about it in chat instead of trying to find a way in?
happy hacking
slate crow
yea, whatever makes you sleep at night
fair adder
look i am just trying to escalate here, stop pinging the channel ?
slate crow
I'm not even mentioning you at all, do whatever you want
terse willow
Is there a problem here guys?
slate crow
nah everything cool
terse willow
Good ๐
Glad to hear it
carmine hemlock
https://tryhackme.com/games/koth/join/d63920464a084d3d4efb3eaf
starts in 20min
wild needle
@carmine hemlock want to go into the voice chat?
wild needle
lol ok
carmine hemlock
im in koth-1
burnt depot
https://tryhackme.com/games/koth/join/04ba26b30e577ca796cb6faa public game bout to start
burnt depot
@rancid pewter great script you got lol
burnt depot
yeah.. tint ๐
rancid pewter
Did you win the game of tetris ?
burnt depot
nope!
raw bear
@rancid pewter I have never failed it cuz I am a tetris god outside of doing this stuff haha
burnt depot
@leaden spoke gg!
misty vine
I had all flags and a person with 0 flags won
leaden spoke
I noticed that you removed my root after you kicked me. Nice job!
full grove
how would you guys feel about a sort of pseudo root user for KOTH?
leaden spoke
what do you mean
full grove
so to prevent stopping services & promote patching add a user who has root like perms, but is restricted in the sense that they cant do all the distructive stuff you normally could
chrome pumice
Sounds like it would help the noobs out. Might kill the ones that have been doing it a while, though. No rootkits and peekfd.
leaden spoke
I like it
rancid pewter
@raw bear Glad to know that someone have actually beat it. From all the testing that I have done I think I got some tetris skill too. Ohh and I can easily change the speed and the level next time we play against.
raw bear
lmao if the input lag wasnt so bad, I could do it easily
leaden spoke
@rancid pewter did you make that script?
rancid pewter
@leaden spoke I have modified an already existing tetris script it originally called tint it on github
@raw bear It depend if there a bunch of people brute forcing for the king.txt making the box slow
leaden spoke
oh cool. would you be willing to let me see it? I heard about it on a map we played on, but I didnt get hit by it. I wont use it, but I do what to see what the fuss is about.
rancid pewter
@leaden spoke For sure
leaden spoke
Thank you!
rancid pewter
Want to try it out in a game or want me to send you the binary
leaden spoke
can you send the binary? i'm about to get off
rancid pewter
Sure can I DM you ?
leaden spoke
yes
fair adder
Anyone in this game having connection issues with the machine?
harsh obsidian
Anyone in this game having connection issues with the machine?
@fair adder Which machine?
fair adder
Shrek
harsh obsidian
I'm not in that room. Send me an invite and I can check it also
harsh obsidian
Its
It's definitely up. Someone likely patched access to prevent others from getting in.
fair adder
For me I can't ping it at all from the start
Thanks. I'll look at all my stuff and see if something's messed up
harsh obsidian
I've had that a few times. I disconnect my vpn, wait a couple of seconds, and reconnect. Usually works.
fair adder
Were all the vpns reset recently?
harsh obsidian
I don't think so. my ovpn has been working for a while now
harsh obsidian
Is your VPN connected?
fair adder
Yeah
harsh obsidian
run this in your terminal and make sure that you have an IP on the server: ip a | grep -i tun
fair adder
Yep
harsh obsidian
and you're pinging 10.10.57.1 ?
fair adder
Yeah
harsh obsidian
hmmmmm......
use killall openvpn to ensure that all connections are terminated, try reconnecting, and try ip a again.
if ip a works again then try pinging once more
If that doesn't work then I'm out of ideas beyond restarting your machine
fair adder
Guess a restart is in store then haha
harsh obsidian
lol
fair adder
That did it
harsh obsidian
Sweet! gl !
fair adder
Nice
burnt depot
need moar chattr
fair adder
The feeling when the rsa isn't working to get in anymore
I'm way too lazy to crack it with this amount of time left
๐
burnt depot
gg yall
fair adder
gg
harsh obsidian
gg @finite turret @fair adder and xnx
fair adder
Cool
finite turret
Gg ๐
harsh obsidian
nice! just don't get so focused on KotH that you forget to keep completing rooms.
twin rapids
ya joined in last 10 mins or so xd
harsh obsidian
@finite turret and @fair adder , I recommend doing the tmux room if you haven't already. it's helped me be a LOT faster on things, not just KotH. https://tryhackme.com/room/rptmux
twin rapids
imma look at that ;D
harsh obsidian
It turns out that you can write bash scripts to fire up a tmux session with multiple windows, multiple panes in each window, you can even echo commands to those panes. it's effin awesome
slim umbra
whos playing koth public right now please reset the machine
nova tide
reset the koth machine only if its broken not when its patched
reset wont change much though
twin rapids
man i got some boxes to do rly not coming in 
true dragon
this is the stupidest shit i've ever played
twin rapids
๐ฎ
nova tide
slim umbra
He has patched it within 5 mins
nova tide
@slim umbra i just changed ssh key for shrek
slim umbra
I know
true dragon
yeah this skid just plays it over and over and thinks he is good cause he watched a youtube video on how to complete the box, game mode is def flawed and pretty shit
slim umbra
Again I was kicked from the box
nova tide
3rd reset? you guys kidding right?
gusty cradle
Keep it civil everyone(rule 4), Shrek is one of the easiest boxes in KoTH.
nova tide
yeah this skid just plays it over and over and thinks he is good cause he watched a youtube video on how to complete the box, game mode is def flawed and pretty shit
@true dragon GL finding that on youtube
true dragon
nova tide
have fun trying that ๐
aah 3rd reset.. you win i aint playing anymore
there are still 2 possible ways in the box
true dragon
i am keeping it civil. someone shouldn't brag about fucking ssh up so no one else can use it, its just whoever ssh's the fastest. might as well play typeracer
nova tide
i only know 4 ways in for shrek
slim umbra
please dont kick us out of box
nova tide
please dont kick us out of box
@slim umbra not playing anymore
gusty cradle
@true dragon SSH isn't the only way in to the box, there are 3-4 ways in 
gusty cradle
Nyan cat?
nova tide
๐
well i am not patching anything anymore
also urandom on root can be closed by ctrl c
Imagine getting root but still resetting the box
true dragon
yeah you are so good dude
nova tide
have fun with 4 resets ๐
true dragon
have fun being a newb the rest of your life
slim umbra
lool
gilded prism
Spicy KOTH chat in here as usual.
slim umbra
Thats too obvious cuz they cant create a new box everytime with a new vuln
gilded prism
There are many, many, many vulnerabilities to be played with.
viscid forge
@teal field nice one
primal field
Can people please share their KOTH notes, I would like to build a list and publish it on github
quiet schooner
@primal field Write them up yourself.
gilded prism
xD
burnt depot
i just spun up a GitBook instance for myself to start organizing notes on all my OSCP prep, including the KOTHs here
there's a million and one solutions but i'm gonna give that a go
final nest
@quiet schooner can i pm have to say something
quiet schooner
I bet you don't, but you can PM.
brittle flicker
This Koth dude, whatโs a chad
brittle flicker
What do you mean?
I donโt know anything about Koth
And yet everyone talks about him
On HTB, LHC, and even some other websites!
Ever since I looked into cyber sec he comes up almost daily
Iโd like to meet Koth! ^-^
nova tide
i'm KOTH
magic gorge
static monolith
happens
static monolith
@astral belfry :c
burnt depot
no ping yet
astral belfry
Yes?
static monolith
I managed to do effectively nothing
teach me sempai
Was /flag something useful or just a red herring?
burnt depot
is the server up for anyone playing https://tryhackme.com/games/koth/3922 ?
astral belfry
@static monolith it is a flag
astral belfry
You'll get it
rancid pewter
If someone want to compete with my new rootkit https://tryhackme.com/games/koth/join/e92288cd28e0f98f087546ed
rancid pewter
Not sure this is going to happen
nova tide
well he knows he aint getting it but still worth a shot ๐
stable horizon
Man, I thought we were frens
nova tide
How you doing? you were inactive in last couple of days
glass flare
Anyone know, When Koth has first released?
nova tide
Anyone know, When Koth has first released?
@glass flare somewhere in the start of april this year.
official release ^
glass flare
Ok, Thanks!
brittle flicker
Koth got released from prison?! Badass!!
stiff egret
๐๐ @brittle flicker
nova tide
Just waiting for the rule: Reset the box when its broken not when its patched ๐
nova tide
10/9 flags ๐คฃ
teal field
Nice ๐
teal field
You probably just hacked THM
teal field
That's not possible
gilded prism
uh oh
teal field
is sw1tchbl4d3 here on discord?
gusty cradle
They are, why?
clear linden
I tried this twice today but no luck
wide sparrow
im new to THM . How many points are needed to play koth
lusty portal
0, its based on your experience level.
lusty portal
wide sparrow
thank you for helping me out
anyone coming to play in 20mins
heres the invite link
gilded prism
clicks link, realises it was posted 2 hours ago
fair adder
Itโs not defense if your previously rooted the box in another game
nova tide
Why is it cool to troll people
@fair adder that's the fun part
fair adder
Youโve
gusty cradle
Trolling is the best part after you root a box
nova tide
well not everyone knows all of the ways to root all of the boxes, you can try finding other ways in
terse willow
Please don't root foxes. Poor animals
gusty cradle
@terse willow That was a typo 
fair adder
This guy had root in less than a minute.
quiet schooner
It's easy on some boxes
fair adder
He knew this box prior to the game starting
nova tide
@terse willow Typo
@gusty cradle intentional
quiet schooner
@fair adder so?
terse willow
As the pool grows, this should happen less and less.
Believe me, we're working on growing the number of boxes ๐
fair adder
Itโs like starting a race and Iโm at the starting line and the opponent is one step away from the finish line
Iโve even seen write ups on the KOTH boxes
quiet schooner
Yes
nova tide
quiet schooner
that's allowed
gusty cradle
Writeups are allowed.
fair adder
John Hammond Iโm coming for you
weary kindle
Reminder:
fair adder
Just teasing
quiet schooner
Remember, #522158404614225920 exists
gusty cradle
@fair adder Are you in a KoTH match against John?
stable horizon
That would be fun
fair adder
No no I was just trying for be funny
I would like to get TCM Ippsec and john in a room
nova tide
i think you missed Nahamsec,Stok,John and optional in one room?
stable horizon
Excuse me I'm just as good, I'm like 200th in the website
Just to prove it, I'm going on a room run
gusty cradle
I doubt your as good as them ๐
stable horizon
I doubt so as well, I was putting a positive twist on the truth for comedic affect
primal field
How do I claim king on the Windows KOTH's
fossil ledge
I don't think @quiet schooner will like that question...
How do I claim king on the Windows KOTH's
nova tide
He didnt made offline
fossil ledge
I asked the same and he didn't like it
quiet schooner
You didn't
nova tide
Try to avoid unnecessary tags ^
quiet schooner
You asked how to hack the box
Not how the system works and what file is the equivalent of /root/king.txt on the Windows box
I can't tell you how to hack the machines, that'd spoil them
fossil ledge
@quiet schooner maybe you can read this https://discordapp.com/channels/521382216299839518/695343809726513292/711716695328423947
and the following messages, and understand what I said
quiet schooner
Completely different question
fossil ledge
if you think as a programming language, yes. It's not exactly the same
quiet schooner
I don't understand what point you're trying to make
You asked if you need to report the fact you rooted a box
fossil ledge
my point is your attitude when someone asks about something they don't know
fossil ledge
aha, is that illegal?
quiet schooner
If you have a problem with my moderation, please raise it with @terse willow or Dark.
fossil ledge
I won't raise anything
quiet schooner
I answered the question you asked in a straightforward way.
fossil ledge
I'm just saying I'm free to chat here
primal field
what
quiet schooner
Yes, but please don't tag me to create drama like you did.
primal field
did
nova tide
You are free to chat here without bothering others
primal field
i do
quiet schooner
@primal field You're fine. @fossil ledge is trying to create trouble with me.
fossil ledge
so I can't tag a moderator?
quiet schooner
You shouldn't tag someone just to try and make them give an angry answer.
They asked a perfectly valid question.
primal field
no you didnt
you tried to antagonise James over nothing
I was asking a valid question
quiet schooner
@fossil ledge Please move on. This is a formal warning. Rules 2 and 4.
If you have a problem with something I did, this is not the appropriate space to air that complaint.
fossil ledge
@primal field, valid.. yes man. I'm not complaining about your question. Just about this guy's attitude when someone asks something legit.
fossil ledge
If you have a problem with something I did, this is not the appropriate space to air that complaint.
@quiet schooner sir Ninja doesn't accept DMs as well
nova tide
Forget about it @fossil ledge i would suggest you to move on
quiet schooner
@fossil ledge Literally the rules.
quiet schooner
I have warned you officially and told you to move on
terse willow
^^
Everyone cool down ๐
Not worth getting upset over
fossil ledge
@nova tide ok. I will move on. Won't refer to that person again.
primal field
@quiet schooner do you know how to answer my question, sorry for ping
terse willow
Yes
quiet schooner
I would be surprised if the KoTH information on the page didn't say
primal field
It doesn't....
nova tide
There should be txt file on the desktop of Administrator account named king.txt just put your name in it
primal field
I checked everywhere
terse willow
C:\\Users\Administrator\Desktop\king.txt
primal field
@nova tide thank you so much :D
@terse willow thanks dude
I literally lost a KOTH because I wrote to the wrong file...
Omfg
I'll know next time...
teal field
I though that the king.txt file in offline is at \Users\Administrator\king-server\king.txt
@terse willow But thanks for the right spot
teal field
Maybe some other deleted it
fair adder
Damn
How else can I get points
Iโm in the lead
Defending well
Need some insurance
teal field
But if you know where it was maybe you can try to make a new one
teal field
If it is at the right spot (maybe it is important to write it in small letters) u will get your points automatically
Witch Maschine do you play?
teal field
That is a very nice maschine
fair adder
I am only one with foothold
stable horizon
...
fair adder
This is my second KOTH not sure on rules with king but machine is done in 3 mins
I have the most points
teal field
๐
teal field
Dude took lead at last minute
@fair adder Happened to me before
fair adder
I hope I get that box again
opal hazel
New game starting in 4:30
@fair adder hey man u there... I was the one who took the lead
With about 3 mins to go I finally found my way into ssh (took me that long) but once there there was 2 flags, 1 in the home dir and the other in the website /var/www/.....
3rd flag was the samba one
As for your problem with the king file it has to be "/root/king.txt" and has to contain only your username
I wasnt able to gain root at all
New one starting in < 1 min if anyone wants to join
wild needle
yes link
opal hazel
I think im stuck... tried just about everything... not sure if Im getting the stupid domain wrong of I just have incorrect creds
opal hazel
Congrats BadTaste
wild needle
thank's, my first one
fair adder
@opal hazel nice job man
fair adder
Rematch
opal hazel
Want me to make a private one so it can start sooner?
fair adder
Btw root was very easy on Tyler not sure if I found an unintended way or not
opal hazel
no I didnt find it, just went between 3 users
oops
Just created a private room that starts in 5 if you wanna join @fair adder
and @wild needle
fair adder
Yea letโs go
opal hazel
All are welcome... just didnt want to wait 20 mins lol
@fair adder its down to 2 mins if you wanna join lol.
btw... im switching discord accts to match my username on THM
half nest
There we are
fair adder
Who invited the fried donut
half nest
rancid pewter
@fair adder Sorry I just needed to test one script and it seem like it working.
terse willow
Seen this box before
The guy likely knows these boxes better than the creators ๐
terse willow
I am going to stick all of my future Koth boxes in docker containers, just so it's possible to mess with that...
feral wigeon
You reminded me that I have to finally start learning for K8s cert
fair adder
@rancid pewter why so serious ?
rancid pewter
I just comeback
fair adder
I thought rules were we couldnโt close ports or disable services
rancid pewter
The box got reset
fair adder
you are evil
rancid pewter
Why ?
fair adder
i want to be an astronaut
I have a CEH master can I have the role ?
Yโall got me Iโll be back on in a little while
Gtfo bin failed me someone fill me in
icy cave
aha unlucky.. no tetris for me today thanks..
rancid pewter
No problem
fair adder
i love you โค๏ธ
rancid pewter
I got a new script to spy on everyone terminal but it need tmux
rancid pewter
Do KoTH count in streak ?
quiet schooner
I think so?
terse willow
@rancid pewter There should be an easy way of doing that if you've already got root
And yes, they do
rancid pewter
Interesting
manic estuary
hey man @rancid pewter
how did you get admin?
I managed to get into scarra and fed account but i didn't manage to get admin account
rancid pewter
@manic estuary Maybe look at the higher port
manic estuary
Ok thanks alot @rancid pewter
rancid pewter
No problem
fair adder
Anyone want to play a quick game ?
full grove
It's also worth it to note that once you have creds you should check out GetUserSPNs.py @manic estuary
manic estuary
I didn't notice that python file ,thanks man @full grove
autumn iron
half nest
@rancid pewter Hey man... do you have a link to see how you did that tetris game... that was awesome
weak haven
oh goodie
half nest
GL All
half nest
https://tryhackme.com/games/koth/4024 to spectate
rancid pewter
@half nest I just modified an already existing tetris script on github it originally called TINT
stable horizon
Neat.
half nest
nice
nova tide
No one hacked carnage yet?
weak haven
nada
half nest
Dang this carnage box aint nice
I have figured out how to upload code but there is decent protection against execution so I cant seem to get it to work
nova tide
Well may be try other methods instead of just the reverse shell then?
grand ember
nova tide
James made carnage,right?
nova tide
You gonna stream? ^
grand ember
probably not but if I do end up streaming it'll be on discord
nova tide
well he was talking about a couple of times to wait till his next machine comes out and people will start hating him even more than for Hackers ๐
gusty cradle
@nova tide That's a room he's creating ๐
nova tide
probably not but if I do end up streaming it'll be on discord
ping me if possible please
oh ok.. i thought he was talking about koth as Hackers was the topic
half nest
where do i set the king.txt on a windows box for KOTH
nova tide
C:\\Users\Administrator\Desktop\king.txt
half nest
Im logged in as the administrator... the file just dosnt exist
nova tide
Well then make one i guess.
half nest
I just created this one
But the king.txt is not counting up
found it
its C:/Users/Administrator/king-server/......
Dang... this is the first time I have ever gotten all the flags
Im gonna be kind and not defend... let these guys try to get in
For the 2 guys with me... please note that nmap reports the windows domain incorrectly... it is actually "KingOfTheDomain"
nova tide
Sorry about that. Haven't rooted it myself yet
brittle flicker
Poor Koth, he prolly canโt get root 
nova tide
Now milk gonna say something weird
brittle flicker
^-^ nah
full grove
btw, there's the netbios name, which isn't the same as the domain name
OFFLINE being the netbios name iirc, KingOfThe.Domain being the domain name of the box
half nest
so Offline is the netbios name but for authentication purposes... KingOfThe.Domain is not correct... Windows dosnt seem to understand KingOfThe.Domain and instead requires you to use KingOfTheDomain
I feel like being a windows admin helped me on this one lol
Fishing and Elliot... are you guys online?
fair adder
guys just a doubt
can i make videos on the boxes (easy machines) in tryhackme ?
king of the hill
hollow stone
check the faq at https://tryhackme.com/games/koth
gilded prism
This koth guy sucks, hasnโt got a flag or root on anything yet. Poor guy. ๐
slim umbra
Man Carnage is tough
fair adder
Carnage is well done
fair adder
@fair adder videos and walkthroughs are allowed, last i checked
ooh thats good news
now i am making one
brazen cloud
You can make writeups of koth boxes yes ๐
cobalt jackal
@dawn verge gg
jovial moat
If it dosnt exist do I just create it
@half nest Does this mean some boxes don't have it by default? Or that someone has deleted it?
exotic quiver
Interesting, only got to looking through the code now but I guess I found the source code of a rootkit on a machine a few days ago
quiet schooner
That'll be Donuts
exotic quiver
Will have to try and understand the code to figure out how it works ๐
stiff egret
@exotic quiver Take my money!
Oh wait I don't have any
rancid pewter
@exotic quiver I donโt think it my rootkit since I have done all the compilation on VM. I have actually imported the source code on a live KOTH machine but that was a week ago. If there is my name in it probably my rootkit but only the first version.
rancid pewter
That probably just a rootkit to get shell persistence
exotic quiver
Yeah, looked like it's mostly just a backdoor with a few extra features, haven't looked too much at it
slate crow
lots of guys in here
stiff egret
Who's OreoByte?
reef storm
gj @slate crow
grand ember
@stiff egret like who is he on discord?
stiff egret
Yep
grand ember
NuclearPro iirc
slate crow
I'm waiting for y'all to bring me down
stiff egret
Well He's got Rank 5 on THM, and he's in my KOTH game, Should I be worried?
grand ember
well I am #1 and I suck at koth so no idea 
stiff egret
Shit that idk. gave me some hope, I mean I can do all boxes, except windows so, testing the waters
tardy gull
I got every single flag in carnage but could not echo my user into king.txt lmao what even
tardy gull
won't let me run chattr
quiet schooner
Yeah, because people remove it
tardy gull
what do you mean by rootkit lmao
quiet schooner
nova tide
For the love of God understand this one thing that you dont have to reset the game everytime i patch just one way in -_-
i am done with this game already.. have fun..
whats the point of even playing if someone just gonna reset the box when i just change their ssh key -_-
GGWP
slate crow
@nova tide it's time to give up
nova tide
@slate crow wat?
slate crow
you gave up ?
opal hazel
I gave up about 2 hours ago... when I accidently deleted my VM LOL... Reinstalling now.
nova tide
you gave up ?
@slate crow Sir i am not going to play against you and mve next time.. When someone gets root you have to find other ways in instead of spamming reset
get good sir
and have fun with your game
Peace out
opal hazel
Sorry to hear that Naughty... Once I get reinstalled Id be happy to go at it with you... sure you'll beat me but atleast itll be fun
nova tide
@opal hazel i would love to play, just ping me when ever you want to.
opal hazel
Will do... PS: my user on THM is "SPraus"
nova tide
wat?
well whatever just forget about it... i have started doing a room anyways
btw that last account is surely a second account of mve924
slate crow
๐ง
teal field
Sry I had copied the false
slate crow
@nova tide good luck
nova tide
Please dont do unnecassary pings.. i am not even in your game
slate crow
hahahahahah
teal field
btw that last account is surely a second account of mve924
@nova tide Why?
grand ember
@nova tide want to take a look at carnage together in ~15 minutes?
grand ember
I don't have a sub rn
grand ember
Ok, I'll hop in vc in 10 minutes or so
nova tide
should i DM the invite link or share here?
grand ember
dm me, I'll add you
teal field
@nova tide Not meant badly, but I don't have a second account
nova tide
No Worries ^_^
nova tide
GG
lusty portal
who made carnage?
@grand ember I designed it, but it was made by @vapid jewel
lusty portal
Why, good bad?
Ahh cool cool. Thank @vapid jewel for that, he did a ๐ฅ job on making it.
grand ember
funky privesc, used it in the last minute
vapid jewel
Me and @solemn surge ๐
grand ember
You've done a really good job with it :)
vapid jewel
Thanks ๐
solemn surge
@grand ember thanks, @vapid jewel and I built the box, hope you had as much fun defending/pwning as we had building it
grand ember
not really defending 
took a long time to get in
solemn surge
what way did you find to get in?
nova tide
if only the ssh key wasnt ssh-ed25519 i may had a chance to get in
fair adder
you should have spammed reset naughty, its waht all the cool kids do when someone gets root.
grand ember
nova tide
fair adder
KoTH ... so much anger from so many people .. naughty, i feel your pain bro. patch one thing and people lose their dang minds and resort to reset. Takes the fun away from it
grand ember
i got root in the last minute so wouldn't change much 
solemn surge
๐
fair adder
btw, good job on carnage @solemn surge and @vapid jewel ... not gonna lie, that one made me angry at first!
solemn surge
@fair adder good to hear, I guess? but thanks!
Great that you guys enjoyed it
@vapid jewel and I have some more Challenge boxes on THM
brazen cloud
awww yea
fair adder
by angry i mean.. you get in, think you are all set... and ... dang it... nope not all set gotta do some other tings first
solemn surge
@fair adder I know what you mean, and before you know it, someone else has kicked you
fair adder
@cobalt jackal nice job
teal field
@solemn surge @vapid jewel Best box ever. Cool stuff
brittle flicker
koth is prolly missing out on a lot
i've never seen him actually write in this channel
tawdry owl
misty vine
has anyone gotten into carnage
half nest
Draft are you on discord?
Drat*
Anoyone up for some KOTH... public game is 25 mins away... was going to start a private one sooner
brittle flicker
koth doesn't seem to be very happy tonight
half nest
Hey yall working on Lion... has anyone patched anything out because I feel like im hitting a brick wall going from user to root
half nest
Hey all, was anyone here from the Lion game that just happened
half nest
Ok there is like 5 mins left... can anyone help me just simply figure out how to decode this flag.... its not base64 I just cant remember what the other very common encoding method is
Ha I found it
lord help me thought I wasnt even going to get 1 point
nova tide
i've never seen him actually write in this channel
@brittle flicker i do
weak matrix
*can anyone give me some tips about koth?
{*beginner in this}
nova tide
By tips what you are asking specifically? @weak matrix
glossy vessel
advices
weak matrix
@glossy vessel yeah, true
glossy vessel
- Enumerate 2. Gain access 3. Patch vulns & change passwords
gusty cradle
4. Troll people
nova tide
~~ 5. echo "Naughty" > king.txt~~
slim umbra
hello
reef storm
it's not fun breaking my tmux and not giving me a chance to fix it during KOTH
nova tide
i am scared of 0x1
clear linden
Lol
nova tide
Space Jam sux.. imma play carnage instead
nova tide
yeah
clear linden
๐
uneven sedge
might want to patch that first ๐
jovial field
hey did anyone to play koth https://tryhackme.com/games/koth/join/0db01325971b61d555e1d9fc
Lets go into the koth voice channel!
(KOTH-1)
grand ember
@jovial field any box specifically or random?
jovial field
random
grand ember
hopes it's carnage
I need to find more entrypoints for carnage
i only have 1 or 2 rn
quiet schooner
@nova tide You got the privesc from production yet?
Interested how you did it if so
nova tide
yeah
quiet schooner
DM
nova tide
i told you already/...
jovial field
Its my first time koth!
grand ember
gl :)
jovial field
I hope i have a chance
grand ember
didn't get in it so far
grand ember
i had only one attempt at hackers so far
jovial field
can you give me an exploit for metasploit
quiet schooner
@jovial field Don't assume you can use metasploit on every box
jovial field
yes ok
nova tide
Dont visit backdoor xD
jovial field
did the machine have fail to ban
nova tide
@jovial field what?
jovial field
like a blacklist when you try too often a password
nova tide
no there's no such thing
nova tide
@nova tide fail2ban is a program tho
@quiet schooner ik. i meant there is no such thing here(in koth)
nova tide
umm i havent faced anything like that yet in koth ^ o.O
jovial field
bye
nova tide
bye
fair adder
grand ember
sly cedar
thats what i read
i check out the site when i 1st joined and saw it
I look forward to being competent enough to play
half nest
Anyone got a game starting soon?
I just queued up KOTH https://tryhackme.com/games/koth/join/eba2711ec20ab2f41059de55
It is set to start in 25 mins
icy cave
@half nest im up for a game.. what box you fancy playing?
half nest
Im up for anything... just a slow day at work lol
nameless wanna speed this up and make it private
@blissful frigate are you the one in the KOTH game with us?
blissful frigate
no?
half nest
sorry for the ping then... there happens to be a guy named nameless in here
half nest
ill move over there
I know they link ranks to users... it would be helpful to link usernames to users
https://tryhackme.com/games/koth/join/2237d729adaaac9199b69f5e
Starting in 1:30
nice job @icy cave I cant seem to even find the flag that seems obivious lol
icy cave
@half nest played the box a few times.. but it was my first time gaining access as a user and not root
half nest
nice... this is my 4th box ever so im still kinda new at this
I feel like there should be a flag at the http... /flag but I know im doing something wrong
half nest
ah
wild needle
hey, anyone wants to do a KOTH?
fair adder
yeah join
rancid pewter
Is carnage the hardest box ?
rancid pewter
Canadian vs Turkey
lone gorge
yeah brother
wild needle
lol donuts, no box is too hard for you right?
@rancid pewter
@fair adder did you find anything on this box?
rancid pewter
@wild needle On KOTH I didnโt found any box quite hard.
fair adder
@wild needle no i was in store and then took a nap gm also
grand ember
@fair adder wanna do carnage now?
fair adder
Can we do it in like 30 min my younger brother is now on pc watching youtube?
grand ember
probably yes
fair adder
Okay i will let you know when im ready
wild needle
i'm in too @grand ember @fair adder
wild needle
i found sqli and directory traversal but didn't get anything, i want to try again ๐
fair adder
I didnt even get a chance to play it but gonna get it this time bahahah
grand ember
sure thing :D @wild needle
fair adder
Is carnage a good box ?
lone gorge
where was the other flag dude