#koth

1 messages ยท Page 33 of 1

fair adder
#

lol

ashen hamlet
#

heelllooo

#

guys can someone give a hint on panda machine!

#

i am startin out in this field....

terse willow
#

Koth is probably not the best place to start out...

ashen hamlet
#

sometimes you run before you walk jarvis!

#

๐Ÿ˜† ๐Ÿ˜† ๐Ÿ˜†

#

i just tried it out.๐Ÿ˜† i am planning to do other machines

#

but leaving something undone is something i dont like๐Ÿ˜ซ

quiet schooner
#

These have a time limit

nova tide
#

TryHarder,Learn a few things,Get good and comeback and root it on your own.

quiet schooner
#

Not the best place to start

ashen hamlet
#

can i do panda again!?

#

or is that randomly alloted b the server

quiet schooner
#

If you're a subscriber you can make a private match with your choice of box

ashen hamlet
#

okey

eager flint
#

Hi, is there any possibility to extend koth time?

terse willow
#

Not as of just now, no

inland onyx
#

join public game

hollow portal
fair adder
#

@terse willow, is this being developed?

quiet schooner
#

@fair adder Is what being developed?

fair adder
fair adder
#

@quiet schooner, zayxcev's question.

quiet schooner
#

It won't be.

fair adder
#

OK, I'll post it there.

#

thanks.

fair adder
#

what the hell

#

you're winning !?!?!!?! @fair adder

paper wharf
#

@fair adder what's your username in THM?

fair adder
#

slavkosmith

paper wharf
#

k

fair adder
#

yep me is winning ๐Ÿ˜‚

paper wharf
#

by far I see

#

can I DM you to ask something?

fair adder
#

me ?

paper wharf
#

yes

fair adder
#

yes lol don't ask ๐Ÿ˜‚

paper wharf
#

some ppl get mad if you DM them ๐Ÿ˜›

fair adder
#

im elf ๐Ÿ˜‰

paper wharf
#

Naughty got his first flag ๐Ÿ˜ฎ

#

that was quick

nova tide
#

well i am also root but cant do anything

paper wharf
#

gj ๐Ÿ˜„

fair adder
#

oh i wonder why

nova tide
#

wth why is it saying that?

Connection to <ip> closed.```
fair adder
#

i want to know that 2...

nova tide
#

ok i think i found the way to get back in

#

ok who reset?

#

elf you did?

fair adder
#

kekw

nova tide
#

omg

#

finally found the way

#

@fair adder wanna play more koth?

fair adder
#

@nova tide no im in bed lol

nova tide
#

okay

#

took me 40 minutes to find a proper way to get root

#

but now i have two ways in for prod โค๏ธ

fair adder
#

okay lets play one more

#

@nova tide

nova tide
#

ok

fair adder
nova tide
#

Rule 1: No resetting the box unless its broken ^^^

fair adder
#

im losing this one so hard ๐Ÿ˜‚

nova tide
#

๐Ÿ˜„

#

lol nah

fair adder
#

bruh im not proffesional

nova tide
#

me neither

#

....

#

carnage o.O

#

really ๐Ÿ˜„

#

@fair adder have you done carnage before?

#

or new game?

fair adder
#

no hang on

#

i mean i did

#

but never rooted it

#

brb 5 min

#

ok im back

nova tide
#

GG

#

well i never even got a shell on it

fair adder
#

me neither

#

but i know how

#

@nova tide can i dm you spoil ?

fair adder
nova tide
#

what is this invite? @fair adder

fair adder
#

I forgot lol

fair adder
last ether
#

In 10 mins

autumn iron
#

random room

#

13mins left to join

stiff egret
#

Hello any mod whom I can DM?

quiet schooner
#

Why?

stiff egret
#

Not anything trash. Its some information I need.

quiet schooner
#

Then why does it need to be a DM?

stiff egret
#

The information is sensitive. And so is the question.

quiet schooner
#

Ok, but if it's something that doesn't need to be a DM I reserve the right to be annoyed

stiff egret
#

Alright.

inland onyx
#

hackers machine too slow

quiet schooner
#

??

#

If it's being slow, tell people to stop beating on it

#

There's nothing intensive running

humble breach
hollow spoke
fair adder
fair adder
#

Come join

#

starting in 2 min

fair adder
fair adder
#

gg @fair adder

#

lmfao

#

gg

#

i got 0 flags

#

i got lost and just went flag seachin

#

4 i think

#

you should edit that. i don't care but some peopel get a lil sensitive about colorful language ๐Ÿ˜ฆ

#

oh okay

fair adder
#

ggs boys

#

rohukas here

#

was an epic box we did there

fair adder
#

someone join koth

nova tide
#

someone join koth
@fair adder public game?

fair adder
#

yea

nova tide
#

i just woke up lemme join. not sure if will be able to play it for an hour

#

have to do stuff as well

nova tide
#

@fair adder i would suggest to delete the screenshot

fair adder
#

why?

nova tide
#

why?
@fair adder because it contains a spoiler..

fair adder
#

marked as a spoiler.

nova tide
#

marked as a spoiler.
@fair adder you cant simply upload the passwords as spoilers specially for koth..

fair adder
#

Not to get arguementatitive... but walkthroughs and videos are allowed... so is it really a spoiler (didn't see the screenshot)

rose quail
quiet schooner
#

@fair adder in this chat, yes.

#

If you're going to write it up, do it properly

fair adder
#

Could anggabvmv and trinity please stop resettings the fn box every minute because they cannot ssh in....

#

jesus christ you people

#

The reset button should be for when the box is unusable not when you cannot get in

nova tide
#

I can feel the pain.

sonic belfry
#

That is hilarious. When you can't get in: RESET

fair adder
#

Literally

#

5 times already

#

We ssh race into the box. I get in first. rm * .ssh and then 2 min goes by and IT WAS VOTED TO RESET THE BOX

nova tide
#

which box?

fair adder
#

Production

nova tide
#

Prod is easy idk why they have to reset...

fair adder
#

yeah

#

I think they rage quit now

#

so its ok

silk gyro
#

has chattr been removed from all koth machines?

#

or is e2fsprogs just broken?

fair adder
#

perhaps someone removed from said machine...

#

after it spawned

quiet schooner
#

Often, it's not installed

livid dagger
#

starts in 15'

autumn iron
#

18mins

#

random room

hollow portal
quiet schooner
#

@inland elbow no

waxen fossil
#

mine is game #5110, how can i get into that games discord channel?

#

help anyone

brazen cloud
#

There are no individual channels for games @waxen fossil this is the only one

waxen fossil
#

ok

humble needle
untold pilot
#

what are the default king.txt file attributes?

quiet schooner
#

Not immutable

#

Standard file

untold pilot
#

for me it was showing ----ia-------e--

quiet schooner
#

Think it comes up with an E

untold pilot
#

and chattr was not there

glacial magnet
#

Hello

untold pilot
#

so how to proceed further any help?

dapper escarp
#

The i means it canโ€™t be written to. Youโ€™ll need to search for static binaries

glacial magnet
#

@dapper escarp how do I look for static binary? Find perm?

untold pilot
#

this is common in koth?

glacial magnet
#

find perm 4000?

untold pilot
#

i already have root access

dapper escarp
#

No google static binaries

#

They arenโ€™t on the box

steep raptor
harsh obsidian
glacial magnet
#

@dapper escarp thanks

#

@harsh obsidian wait, turning on the pc

harsh obsidian
#

@harsh obsidian wait, turning on the pc
@glacial magnet Will do

glacial magnet
#

Yes

#

I'm a beginner

#

take it easy kkkk

harsh obsidian
#

Lol, okay

nova tide
nova tide
#

lmao reset the box ๐Ÿ˜„

viscid forge
#

AHAHAH

#

i think im leaving, i need to eat

nova tide
#

well no need to reset when you cant get in ๐Ÿ˜›

viscid forge
#

that was fun reset thx bro

nova tide
#

ohk

pseudo bobcat
#

hey

#

anyone here

harsh obsidian
harsh obsidian
brittle flicker
#

I wish Koth was around, everyone talks to him except me ;-;

leaden spoke
#

hahahaha

#

I love that @brittle flicker

brittle flicker
#

Who's Koth?

#

Why is he so popular?

leaden spoke
#

Are you joking...

brittle flicker
#

no!

#

||yes||

leaden spoke
#

ok... good

brittle flicker
#

When will Koth come back? I wanna learn!

leaden spoke
#

it is up now

brittle flicker
#

||shhh||

leaden spoke
#

...

frozen orchid
#

Hi guys

leaden spoke
#

hey

#

Are you new? @frozen orchid

frozen orchid
#

Yes please

#

I want help

leaden spoke
#

cool! what do you need help with?

frozen orchid
#

About installing kali linux

leaden spoke
#

VM or install on PC?

frozen orchid
#

Usually im always trying to install normal mod but today i need help because i got to expert mode so much answer is needed

#

Im using pc

leaden spoke
#

Do you have your bootable?

frozen orchid
#

Yes

leaden spoke
#

ok, so what is the problem?

frozen orchid
#

By the way i almost done hulf of the installation

#

Some part i dont understand

leaden spoke
#

can you take a pic?

quiet schooner
#

Wrong chat.

leaden spoke
#

we should move this

quiet schooner
leaden spoke
#

thank you!

#

I just noticed, I am sorry

quiet schooner
#

Also, please don't just message in every chat until you get a reply. Really bad thing to do. @frozen orchid

frozen orchid
#

Im sorry im very new

#

I dont know how is working

#

Apologies friends

hollow portal
#

20 mins to start

lofty copper
#

2m 3s

fair adder
#

lion has no ssh?

hollow portal
#

look closer

quasi fjord
#

how do you usually spectate a koth match?

nova tide
nova tide
#

starts in 5 minutes. ^^^

#

Random public gme

nova tide
#

random public ^

nova tide
#

Anyone else keeping record of their koth games??

445
1388
1419
1420
1423
1428
1485
1491
1493
1494
1496
1497
1499
1508
1539
1564
1570
1575
1599
1601
1604
1613
1615
1621
1622
1635
1638
1652
1654
1658
1661
1665
1688
1689
1693
1697
1702
1712
1714
1715
1720
1721
1761
1764
1768
1769
1770
1802
1814
1820
1855
1857
1878
1988
1993
2036
2042
2044
2049
2192
2233
2235
2265
2269
2283
2311
2327
2598
2708
2753
2761
2764
2769
2820
2829
2844
2941
2947
2976
3041
3751
3754
3832
3854
3936
3944
4089
4100
4190
4251
4277
4281
4282
4392
4568
4780
4788
4916
5026
5159
5243
5246
grand ember
#

O_o

nova tide
#

i still have missed alot of games in between 445-1388

neon sleet
#

Anyone else keeping record of their koth games??

445
1388
1419
1420
1423
1428
1485
1491
1493
1494
1496
1497
1499
1508
1539
1564
1570
1575
1599
1601
1604
1613
1615
1621
1622
1635
1638
1652
1654
1658
1661
1665
1688
1689
1693
1697
1702
1712
1714
1715
1720
1721
1761
1764
1768
1769
1770
1802
1814
1820
1855
1857
1878
1988
1993
2036
2042
2044
2049
2192
2233
2235
2265
2269
2283
2311
2327
2598
2708
2753
2761
2764
2769
2820
2829
2844
2941
2947
2976
3041
3751
3754
3832
3854
3936
3944
4089
4100
4190
4251
4277
4281
4282
4392
4568
4780
4788
4916
5026
5159
5243
5246

@nova tide
No

nova tide
#

I think i am the only one then. Gotta find those missing games as well

dapper escarp
#

I might make a tool that checks games played

grand ember
#

I don't think Skidy would like bruteforcing 6k IDs just to check the games

#

just bully him into making an endpoint that will list them for you

dapper escarp
#

I mean it would be better to implement an endpoint for random flags but thatโ€™s unlikely

#

So itโ€™s even less likely to get that endpoint for checking matches

terse willow
#

Random flags will be coming soon

#

Like, really soon

dapper escarp
#

I don't think Skidy would like bruteforcing 6k IDs just to check the games
@grand ember it could be designed to only do the full range on first run and then go from where it left off on additional runs

#

Still brute force but hey

grand ember
#

or bruteforce it once and just expose the dataset on heroku or smth

dapper escarp
#

Tru tru

charred carbon
#

Hello everyone, i'm quite new on tryhackme but i made a lot of rooms already and i would appreciate to try a koth game, my english is not very fluid but if somes of you could introduce me (and ofc help me) i would be very glad (i'm french)
I discovered the game thank's to @woeful sundial
Veikoon

ornate token
#

hehe same
Newbie aswell. What's a better introduction to koth than joining one?
--> Optional has a stream pinned in here <--

fair adder
#

when do you want to koth?

ornate token
#

Never again koth :c

harsh obsidian
harsh obsidian
#

Remember that scene in Top Gun where Goose says, "Holy shit, it's Jester!" ? That's how I feel every time I see @rancid pewter show up in KotH....

rancid pewter
#

I apparently really scare a lot of people

harsh obsidian
#

It's the speed at which you act, and tetris

terse willow
#

Mate

#

You force people to play tetris to get into the box

#

That is terrifying

#

Chess next?

#

That could be fun

rancid pewter
#

If I got some time tonight I will do chess

harsh obsidian
#

Why you gotta give ideas like that @terse willow ?

rancid pewter
#

Any other idea then ?

terse willow
#

Sure

#

Connect 4 could be fun?

#

Othello maybe?

#

Ooh, Monopoly, if you're feeling really mean...

#

That'll have people there for hours

quiet schooner
#

I mean chess just between players on the box

#

Only one gets to stay

terse willow
#

Oof

#

A waiting room for players with shells...

fair adder
#

@harsh obsidian can you stop?

harsh obsidian
#

lol, yeah

ornate token
#

The KOTHs game results don't stay on the profile no?

harsh obsidian
#

I am, once again, impressed by @rancid pewter.... without chattr has managed to lock king.txt.....

rancid pewter
#

You cant beat a rootkit

harsh obsidian
#

true....i need to get smart on rootkits. creation, use, hiding, etc

fair adder
#

gg

#

lol

rancid pewter
#

Reset the box, I wont use my rootkit this time to make it a bit more fair

harsh obsidian
#

Did your rootkit just bypass what I had done or undo it then do your thing?

rancid pewter
#

It doing some magic

harsh obsidian
#

word

rancid pewter
#

First time that I use this script in a game

#

@harsh obsidian Still using some bash script ?

fair adder
#

I was playing tetris :(

harsh obsidian
#

lol

rancid pewter
#

Seem like Chess on a terminal look really bad

winged charm
#

hmm I'm interested in what kind of koth rootkit you'll make for my new koth machine considering that there are so many possibilities it can spawn with, I don't even know how it will spawn

rancid pewter
#

As long as I have root access or sudo I will be able to get my rootkit on your box. I only need to compile it for the specific kernel header.

winged charm
#

what if its windows ๐Ÿ‘€

rancid pewter
#

Ohhh that a problem

winged charm
#

evil laugh

rancid pewter
#

@harsh obsidian Seem like you were beating my little script with 5 thread. Now try to beat my script with 50 thread in 4 process so about 200 thread constantly brute forcing the king.txt

harsh obsidian
#

lol

rancid pewter
#

GG

harsh obsidian
#

gg!

fair adder
#

Had fun playing tetris

rancid pewter
#

I think my new game will be .... pacman

full grove
#

space invaders!

sonic belfry
#

Galaga

fair adder
#

donkey kong

harsh obsidian
ornate token
#

Is donuts in there with the rootkit? :)

harsh obsidian
#

Not right now, lol

fair adder
#

joined a game. @harsh obsidian is here... promptly leaving. don't feel like playing pacman tonight

harsh obsidian
#

joined a game. @harsh obsidian is here... promptly leaving. don't feel like playing pacman tonight
@fair adder But I'm not the one with the games, that's myDonuts....

fair adder
#

doesn't mean that you don't have them kits either!?

harsh obsidian
#

sure don't!

#

Although one of these days i'm gonna learn how to make and use them..... no really, i will.....

ornate token
#

Last and only time I've entered a koth game with you, you hacked the machine in 34s
Pentesting is my hobby, but koth is on another level xโ€ฟx

harsh obsidian
#

Lol, that's because I've played that machine before

ornate token
#

aww man, I thought that the vulnerabilities were random aswellkekw

harsh obsidian
#

A few passwords and keys are rotated on some of the boxes

fair adder
#

well you are still the king @harsh obsidian hahaha

harsh obsidian
#

lol. are you on the box at all?

fair adder
#

no xD

#

just got the flag

#

hahahahahahaha

harsh obsidian
#

did you run gobuster?

fair adder
#

yes

harsh obsidian
#

what list did you use? kitchen sink will show you one that's very interesting

fair adder
#

i used the big.txt from dirb

harsh obsidian
#

Try /usr/share/seclists/Discovery/Web-Content/KitchensinkDirectories.fuzz.txt

fair adder
#

ohhh that must be on kali im using parrot

#

xD

#

i need to download seclists

harsh obsidian
#

definitely d/l seclists. it's absolutely worth it

fair adder
#

yes i will download it thanks @harsh obsidian at least i got 10 points xD

harsh obsidian
#

Hell yeah you did! Good job! The first time I played Hackers, it kicked my teeth in

fair adder
#

@harsh obsidian thanks ๐Ÿ˜„ itยดs very funny the KOTH

harsh obsidian
#

It's Food.....one minute

fair adder
#

i see your name

#

hahahahah

harsh obsidian
#

lol

#

Ports 15065 and 16109 have http servers........

#

Telnet doesn't HAVE to be on its standard port.......

fair adder
#

iยดm feeling very dumb right now

#

hahahah

#

i need to train a lot more

harsh obsidian
#

crosses fingers for Carnage since I haven't yet played it

kind bay
#

hi

fair adder
#

Anyone on KOTH rn?

hollow portal
nova tide
#

Did you know?
There is a specific voice channel named "KOTH" that you can join while playing koth and communicate with others, and have more fun playing??

nova tide
#

starts in 5 minutes

#

Random private game

charred carbon
#

just for fun i'm a beginer

nova tide
#

cant even access general anymore

weary root
nova tide
#

Dont go in general

#

Mods doing their work

weary root
#

damn skiddies

nova tide
#

aah fixed

weary root
#

not you skidy

hollow portal
#

24 mins

harsh obsidian
nova tide
#

imma sleep

#

too tired

fair adder
#

first koth hope it goes well

nova tide
#

Good Luck @fair adder

#

@fair adder kick @harsh obsidian's ass for me :D
(JK)

dense nest
#

hei, what was the username for that one?

nova tide
#

hei, what was the username for that one?
@dense nest for what?

dense nest
#

nvm

dense nest
#

answering tomorrow, bye!

harsh obsidian
harsh obsidian
harsh obsidian
#

gg 254

fair adder
#

Can you live stream it?

harsh obsidian
#

It's live streaming now as we wait for it to start, actually

#

join us

fair adder
#

join me

harsh obsidian
zenith juniper
#

will be my first try at KOTH - take it easy on me ๐Ÿ˜†

harsh obsidian
#

will be my first try at KOTH - take it easy on me ๐Ÿ˜†
@zenith juniper You got it. Good luck and remember the basics htat you )hopefully) learned in the rooms

harsh obsidian
#

Space Jam is definitely a good box to learn on

zenith juniper
#

i wish there were more flags

quiet schooner
#

Spacejam was the beta box

#

First KoTH box ever made

zenith juniper
#

lots of ways in

split stump
#

Hey guys, do you guys think that learning windows privelage escalation is going to help me in doing KOTH?

zenith juniper
#

not this one

#

but sure, if the KOTH box was a windows box

quiet schooner
#

There's a single Windows KoTH box

#

Learning the skills and methodology behind all types of privesc will help, but the boxes are overwhelmingly Linux

zenith juniper
#

that was fun. thanks!

sturdy plank
robust prawn
#

restart my brother it was a minor mistake

#

: )

stiff egret
#

Why do color tags of 0x1 look more awesome than of 0x9?

No offence I just randomly noticed

nova tide
#

Why do color tags of 0x1 look more awesome than of 0x9?

No offence I just randomly noticed
@stiff egret WHAT ARE YOU TALKING ABOUT? yELLOW IS BEST MOST UNIQUE COLOR IN DISCORD

stiff egret
#

You can say, bc you got green! I got yellow with no skills to increase my level m trying to make it loook goood! ;-;
@nova tide

nova tide
#

You can say, bc you got green! I got yellow with no skills to increase my level m trying to make it loook goood! ;-;
@nova tide
@stiff egret i kept my yellow for quite some time till i get 0xD

#

Every other color here have a copy but yellow is unique

stiff egret
#

Tho it doesnt look as cool as the one on 0x1 dangit should'nt have updated my level with verify bot xD

nova tide
#

Well welcome back again from all that ctf work (i guess)

#

happy to see you again

#

Now waiting for that rootkit

weary root
#

You can always ask the mods to reset your rank xD

nova tide
#

Or use alt account discord token..

#

Or leave discord

stiff egret
#

๐Ÿ˜‚๐Ÿ˜‚๐Ÿ˜‚๐Ÿ˜‚๐Ÿ˜‚

quiet schooner
#

Yep.

fair adder
granite chasm
#

Anyone can help in Webgaming please

gusty cradle
#

....

sturdy plank
#

start in 5 min

coral fractal
brave yarrow
#

Hi which of the machines in king of the hill is considered the easiest ??

quiet schooner
#

Spacejam, food, possibly production

stable narwhal
#

Anyone can help in Webgaming please
@granite chasm you asked this in #site-support earlier and I replied ask in #room-help

brave yarrow
#

i can't start a private session to play by myself can i?

winged charm
#

only if youre a subscriber

quiet schooner
#

You still need someone else

#

And you can create a private game as a non sub iirc, just can't pick what VM.

brave yarrow
#

dont get last sentence

quiet schooner
#

If you are not a subscriber, you should still be able to create a private game

#

You just can't choose what box you get.

winged charm
#

you could also go into one of the koth rooms like food or hackers that is a room but its the same machine as koth

brave yarrow
#

oh i get that i am subscribed

quiet schooner
#

(but only the ones I created have that atm @winged charm)

jovial field
jovial field
#

This machine is so laggy, please reset!!!

autumn iron
coral fractal
#

It was nice playing with you

quiet schooner
#

@coral fractal Keep in in English please

dense nest
brazen pendant
#

hi i have a question someone could help me

#

today in a KOTH i saw and file look_at_this.txt

#

with this while true; echo "adan" > king.txt; sleep 1; done

#

someone could tell what does it do?

hollow portal
#

that will put the name 'adan' into the king file every second

brazen pendant
#

thanks do people use this to prevent that someone change his name

hollow portal
#

bascially yes, even if someone else puts their name in the file his will echo in immediately afterwards

#

the loop can be killed if you kill his session as he didnt use & to background it, if he had killing him wouldnt stop it but you can find it in ps aux

brazen pendant
#

i imagine that, but sometimes when i try to kill the others sessions i kill my own one there is some way to know in what proces im running mi session?

quiet schooner
#

tty as a command

hollow portal
#

yup

#

i concur

#

or if you want to be fancy you could echo a message into their pts and if it appears on your screen then its your session

brazen pendant
#

ty i will try it the next KOTH i think KOTH should have a chat or a box for message i think the other player was trying to tell me that

quiet schooner
#

That's what this channel is for.

hollow portal
#

no problem bud, good luck!

brazen pendant
#

if C0D3RX see this ty to you too

hollow portal
#

:)

late stratus
#

Just took part in my first ever KOTH.... that was intense... zero points... but so close to getting a foothold

#

๐Ÿ™‚

vast kite
#

max players in koth?

nova tide
#

10

vast kite
#

thanks

nova tide
#

speaking of koth i was in a game i think

nova tide
#

closing services is against the rules ๐Ÿ™‚

quiet schooner
#

Moving them is allowed.

nova tide
#

well my king timer is still going up i dont have the problem with this anyways

#

lemme check

#

nvrmnd just realized i dont even need ssh to get in

#

I have seen many people using /bin/bash while thinking it would hide their pts but it don't

๐Ÿ“Ž unknown.png
late stratus
#

haha that wasme

#

nice koth @nova tide (I'm Etreyix on TryHackMe)

#

that was my second ever KOTH.... so much fun ๐Ÿ™‚

nova tide
#

Noice ๐Ÿ™‚

#

it was a fun match

late stratus
#

i got 3 flags!!! yipppeeee

nova tide
#

you changed ssh ports right?

late stratus
#

couldnt privesc to root though... and spend my whole time getting kicked out and getting back in

nova tide
#

8888

late stratus
#

nope not me

#

I was going in through 9001

#

and a reverse shell

nova tide
#

oh nice

#

well there is still a better way to do it. Good luck finding that.

late stratus
#

could get my pwncat to work.... grrrr .... need someone to walk me through it

#

couldnt*

hollow portal
#

22 mins

stiff egret
#

@hollow portal If its windows, m out xD

nova tide
#

@stiff egret you done with carnage?

stiff egret
#

Um I think so

#

Did it once

#

Its a pretty easy one

fair adder
#

cat I download something with apt?

quiet schooner
#

The boxes do not have an internet connection.

final terrace
#

Sup

fair adder
#

Whatโ€™s the max for a game??

#

Max players

nova tide
#

Whatโ€™s the max for a game??
@fair adder 10

solid raft
#

hi

#

anyone started a public KOTH box

nova tide
pseudo bobcat
#

hey I am here

nova tide
#

sorry i was late in game. had to do something

nova tide
#

you can ask me here what you want to ask

fathom badger
#

Helli

#

Hello sir

pseudo bobcat
#

hello

#

@nova tide

nova tide
#

hye

#

hye @fathom badger ๐Ÿ™‚

#

@fathom badger as i said i am more than happy to answer any question you got here instead of DM ๐Ÿ™‚

fathom badger
#

@nova tideok bro

nova tide
#

@fathom badger when you added your name in king.txt it was just a simple file but when i added my name i also used chattr binary to make it immutable

#

non-writeable you can say

fathom badger
#

How to do it bro?

nova tide
#

google about chattr binary

#

or in your terminal type man chattr

pseudo bobcat
#

Thank you

fathom badger
#

Thanks bro

#

What about themes

#

like this bro

nova tide
#

that is nyancat ๐Ÿ˜„

pseudo bobcat
#

how did you do in other terminal?

nova tide
#

i added nyancat binary into the system, maed it execuatble and ./file > /dev/pts/<pts here>

solid raft
#

i am stuck at the beginning

#

dont know how to get in

nova tide
#

@solid raft i would suggest trying some rooms before you start playing koth?

#

it would be super helpful

solid raft
#

ok

fathom badger
#

@nova tidethanks bro
We learnt a lot from you

pseudo bobcat
#

Thank you very much

nova tide
#

if you need any help regarding koth just ping me here ๐Ÿ™‚ I will be more than happy to answer anything you like except telling you straight up answers how to get into the box

solid raft
fathom badger
#

@nova tide after downloaded nyancat
And run make & cd src
./nyancat > /dev/pts/

#

am i right? Bro

nova tide
#

i just use chmod +x nyancat

#

and in /dev/pts/(You have to give a pts id here)

pseudo bobcat
#

any how to remove after adding?

nova tide
#

also dont forget to background that process with &

#

because when you will run it you will have to ctrl + c to get back to your terminal that will also close nyancat on that pts. so just background it and leave it running

#

any how to remove after adding?
@pseudo bobcat its just a binary, add it somewhere that others wont find easily

pseudo bobcat
#

pts id is user id??

nova tide
#

maybe i can stream in discord voice in a couple of hours

fathom badger
#

Thanks you bro

nova tide
#

pts id is user id??
@pseudo bobcat if you do ps aux | grep pts you can see all of the pts/users connected.(almost)

fathom badger
#

Waiting for it

nova tide
#

that pts number is like 1,2,3,4...

fathom badger
#

So
./file > /dev/pts/1 (example)

#

like this?

nova tide
#

yeah

#

also you can do:
echo 'Hello Naughty here' > /dev/pts/1

#

it would show this text on their screen

#

and you may have noticed that random garbage text on your screens? thats:
cat /dev/urandom > /dev/pts/1

#

Means you can literally do any simpler things like those methods ^^^

#

and be creative

fathom badger
#

I wanna ask one last thing bro

nova tide
#

sure?

fathom badger
#

How did you use broadcast message

wall "hello"

#

like this?

nova tide
#

yeah

fathom badger
#

Everytime you sent message
type like this by one line?

nova tide
#

yeah

stiff egret
#

Eeeh @nova tide making all secret tricks public ๐Ÿ˜‚๐Ÿ˜‚๐Ÿ˜‚๐Ÿ˜‚

nova tide
#

๐Ÿ˜„

#

well you still got some ๐Ÿ˜›

#

really looking forward to lose against you

fathom badger
#

Okay i understood bro
Thanks you

stiff egret
#

P.S. use -n with wall, otherwise people can see which tty you are sending the msg from, and next thing you know , connection lost broken pipeline

nova tide
#

thats why just use echo

stiff egret
#

yeah makes sense

nova tide
#

I just use last stand instead darkchamp

stiff egret
#

๐Ÿ˜‚ I have no knowledge about Games so. ,๐Ÿ˜‚๐Ÿ˜‚๐Ÿ˜‚

#

All I have expertise in is Minecraft

nova tide
#

havent played minecraft that much. except when my friends introduced me to it and we made our base in a public server far far away. i remember the struggle to finding a place that far.. we used boats,builds,run alot ๐Ÿ˜„

fathom badger
#

@nova tide how can i privileges escalation with tmux in Carnage machin bro

nova tide
#

havent done carnage yet..

fathom badger
#

yes

#

Any suggestions

#

?

quiet schooner
#

Probably do some research?

nova tide
#

^^

#

As i said i can help with the questions non related to getting into koth machines

winged charm
#

@fathom badger maybe do some normal machines and understand attacks before doing koth youre trying to priv esc with a screen splitting tool...

#

unless tmux is a binary in that machine then nevermind

gusty cradle
#

Tmux can be used for privesc, through I have not done Carnage.

nova tide
#

@jaunty turret ask here instead of dm

jaunty turret
#

@jaunty turret ask here instead of dm
@nova tide How to avoid pts spamming? Who first get foothold have upper-hand?

lone gorge
nova tide
#

kind of but you can still get root from other possible ways in

jaunty turret
#

kind of but you can still get root from other possible ways in
@nova tide Thanks. So, there are multiple vulnerabilities to exploit the box?

quiet schooner
#

Always.

nova tide
#

in KOTH there are atleast 3,4 ways in for every box

dense nest
#

lf fun

solid raft
autumn iron
native flax
#

.

mint cargo
#

@nova tide u changed ur dp from hinata to mob >.< couldn't recognise u lol

nova tide
#

mob is โค๏ธ

jovial field
fair adder
#

As i said i can help with the questions non related to getting into koth machines
@nova tide technically, he didn't ask how to get into the machine. he asked how to move ahead in the machine. By your statements, you owe an answer ๐Ÿ˜„

fair adder
reef nest
runic mulch
quiet schooner
#

@runic mulch wrong chat.

autumn iron
autumn iron
#

@minor notch heya

mellow bough
#

Please don't ping the admins

#

We're looking into this currently

autumn iron
#

sorry

mellow bough
#

No worries

zenith juniper
#

rule #6 No attacking other users -- this only prohibits directly attacking the machine of other users, right? we can kill other user's processes or spam their pts on the KOTH box, correct?

quiet schooner
#

Yes

wintry sundial
thorny valley
serene bay
fair adder
#

Hi

quiet oyster
#

Hello guys, im newbie in this field and i've completed linux, nmap and metasploit rooms

#

I've attended 2 koth games but wasn't even succesful to get into the machine

#

do u have any tips on how to improve? seems to me like attempting koth games is pointless ๐Ÿ˜„

jovial field
livid dagger
#

my bad

#

tyler does respond to pings

#

I was connected and searching for flags and out of no where, I lost connection

grand ember
#

maybe the box was re-set?

livid dagger
#

nope, just checked and it didn't. Just reset now but earlier it hadn't

#

oh well, now after the reset it works

quiet schooner
#

@grand ember VPN server died

fair adder
#

Who wanna play

#

?!!

paper quiver
#

I'd play the Tyler room

fair adder
#

I can't I play random

#

I m not subscribed

paper quiver
rancid pewter
#

Tyler for you

livid dagger
#

lol

#

whoever thought they could get away with trolling in this game

#

thought wrong

grand ember
#

wat

reef nest
split stump
#

starting in 5 min

#

join up

#

or i'll kick your cat

fair adder
#

is there a spectator option?

brazen cloud
#

:< not the cat

#

There should be once the match starts if it's public

#

They might have to share it if it isn't on the match list (:

reef nest
autumn iron
#

some on changed the permisions of king.txt i cant cat it

#

or echo and nor my king time is increasing

quiet schooner
#

lsattr

autumn iron
#

no

#

wait leme check it again

#

got new ip

quiet schooner
#

I mean, it's empty

#

You can't write to it

#

That's all

autumn iron
#

but it shows iam the king

quiet schooner
#

Yeah it will if the server can't detect who's king

#

But it won't give you points

autumn iron
#

ho okay thanks

wintry sundial
#

is it ok (per the rules) to change permissions/disable services/close other connections etc?

quiet schooner
#

Have you read the rules? Some of those actions are not allowed.

#

explicitly not allowed @wintry sundial

wintry sundial
#

I am asking since its says "Patch the machines vulnerabilities"

quiet schooner
#

What about it?

wintry sundial
#

taking a service down while you patch it

quiet schooner
#

You can't kill services unless there's literally no other way to patch them. 99% of the time, there is a way

wintry sundial
#

got it

quiet schooner
#

Restart != Kill or disable

wintry sundial
#

ok

#

so people are removing binaries

#

like find

#

wget

#

etc

#

yeah...

quiet schooner
#

That's fine

wintry sundial
#

how is that fine?

quiet schooner
#

It's not against the rules.

#

It's also quite easy to work around

wintry sundial
#

does that not fall under "harden the machine" ?

quiet schooner
#

... you're allowed to patch the machine

fair adder
vital shadow
#

does anyone want to join a koth

fair adder
#

@autumn iron because u did while loop

latent crest
latent crest
#

Anyone give some hint about Hackers ? I just get 1 flag from ftp

quiet schooner
#

The box has a writeup

latent crest
#

where should I find ? @quiet schooner

quiet schooner
#

I recommend doing some research

#

I mean

#

It's out there

#

And not difficult to find

latent crest
#

oo I just found ! It's by you ! Thanks

robust prawn
steep raptor
fair adder
#

Hh

late stratus
#

lol has someone deleted the root flag???

#

@rigid orbitmenot?

quiet schooner
late stratus
#

in terms of rules... is hiding software like "chattr" ok?

late stratus
#

also is hammering the king.txt with repeated chattr +ia allowed too?

terse willow
#

Yes, and yes

quiet schooner
late stratus
#

lol ... ok any tips when you are both root and the other is just hammering chattr scripts on the flag?

quiet schooner
#

Boot them out, patch the way they got it.

late stratus
#

I assume "no attacking" other users means I cant close their shells?

quiet schooner
#

You can't attack their machines.

#

You can close shells

late stratus
#

ohhhh but their terminals is ok?

quiet schooner
#

The shells exist on the KoTH machine, they're in scope.

late stratus
#

ahhhhh ok that makes it easier

#

well... sort of!

#

that was the first time I have ever got king... for a whole 2 mins lol

rancid pewter
fair adder
#

Next can we have space invaders?

rancid pewter
#

Yeah sure

fair adder
nova tide
#

any one playing koth?

cobalt flower
nova tide
ashen hamlet
#

guys anyone now on public?

nova tide
#

@ashen hamlet share the join link i will jump in

ashen hamlet
#

public bro

nova tide
fair adder
#

a poorly identified service?

steep raptor
#

if it's not on a well defined port. Nmap may give a miss leading service name

robust prawn
stable horizon
#

Naughty just use WSL 2

full grove
#

do ot

carmine hemlock
carmine hemlock
#

@cobalt flower dm?

stiff egret
#

Anyone I could DM in mods? Got something that might be an issue, not sure.

terse willow
#

Anyone I could DM in mods? Got something that might be an issue, not sure.
@stiff egret Is it a site thing, or a Discord thing?

stiff egret
#

Discord thing

terse willow
#

Go for it ๐Ÿ‘

stiff egret
#

Kinda mixed, (?)

#

Ok

fair adder
hazy zodiac
fair adder
#

guys.

#

i wanna register a nick on thm.

#

on a new acc.

#

but some guy that joined 85 days ago with 0 points and 0 activity got the nick.

#

what can i do lol?

obtuse oxide
#

I don't think they will delete someone's account...

#

Perhaps they will, I don't know their practices.

#

Either way, I don't believe this is the channel for that.

fair adder
#

Either way, I don't believe this is the channel for that.
@obtuse oxide yep.

scarlet pike
#

any tips for koth?

#

im not new to pentesting but im new to the koth format

#

how do u guys usually blue team once u get on the box

fair adder
#

where I can find hackers box writeup please

glossy vessel
fair adder
#

@glossy vessel thanka man

glossy vessel
#

np

nova tide
#

how do u guys usually blue team once u get on the box
@scarlet pike usually patch the way you came through. No stopping the service unless there is no possible way to patch it. Find what else is running on the system, which other possible way people are getting through in, change passwords, change or replace ssh keys etc

scarlet pike
#

ohh

#

is persistence important?

#

or do people usually

#

not kick you out

nova tide
#

Well if you are fine with cat /dev/urandom or getting nyancat running on your screen for one straight hour then its not important

scarlet pike
#

do they not

#

kill the nc

#

pid

nova tide
#

Persistence mostly helps in the late game. When most of the common methods have been patched, and people who are already into the system start messing with other people's pts

#

Patching includes killing those nc

scarlet pike
#

ohh

#

how often are pub games

#

i wanna try one sometime

nova tide
#

Well if you are asking for official thm games there was a tournament a few weeks back. And some people stream koth games and people like to play against them. You can share invite in this channel and people who want to can join you in. Or just ping me whenever you like i am always up for a koth game ๐Ÿ˜Š

scarlet pike
#

sure!

#

im new to THM though so ๐Ÿ˜ฆ

#

might not be as good at koth

nova tide
#

There may or may not be more tournaments in the future. I am mostly waiting for koth teams update.

scarlet pike
#

ooh teams

nova tide
#

Well I ain't that good either. But its fun to play with

scarlet pike
#

im like HTB medium level

#

is that enough

#

for THM

#

koth

nova tide
#

Enough what?

scarlet pike
#

like

#

skill

#

to root the boxes in koth

#

i usually do low medium HTB boxes

nova tide
#

Well some machines are not that hard. There are 3,4 possible ways in for every koth box. So you can always find a few or one to get in.

#

If you are out of options or dont know what else to do just start a hydra in a new terminal meanwhile you look for other ways in.

scarlet pike
#

hydra?

#

why

nova tide
#

Brute force on ssh/ftp/web/wordpress logins.

scarlet pike
#

do those usually work

nova tide
#

Not in every box but it would work in a few i know of. If you are using the right command/hints you found.

scarlet pike
#

ohh

#

are there writeups of koth boxes

#

to make it fair

#

cuz ppl who have done a box before

#

know the way in

#

no?

nova tide
#

Not sure about food but there is for hackers. Search for food/hackers in hacktivities

#

Ohk there is also a writeup for food as well

scarlet pike
#

ohh

nova tide
#

Record updated โค๏ธ 242, 411, 440, 441, 445, 1388, 1419, 1420, 1423, 1428, 1485, 1489, 1491, 1493, 1494, 1496, 1497, 1499, 1508, 1539, 1540, 1544, 1546, 1564, 1567, 1570, 1575, 1599, 1601, 1604, 1613, 1615, 1621, 1622, 1635, 1638, 1642, 1652, 1654, 1658, 1661, 1665, 1688, 1689, 1693, 1697, 1702, 1709, 1712, 1714, 1715, 1720, 1721, 1761, 1764, 1766, 1768, 1769, 1770, 1771, 1801, 1802, 1814, 1820, 1855, 1857, 1878, 1883, 1891, 1938, 1939, 1940, 1951, 1956, 1963, 1973, 1977, 1984, 1988, 1993, 2007, 2009, 2014, 2021, 2030, 2036, 2037, 2038, 2042, 2044, 2049, 2054, 2115, 2122, 2192, 2197, 2233, 2235, 2238, 2246, 2263, 2265, 2269, 2283, 2302, 2311, 2327, 2402, 2423, 2424, 2594, 2598, 2708, 2711, 2715, 2719, 2749, 2753, 2761, 2764, 2769, 2820, 2829, 2832, 2844, 2915, 2924, 2941, 2947, 2976, 3038, 3041, 3497,3701, 3751, 3754, 3832, 3854, 3936, 3940, 3944, 4089, 4100, 4155, 4190, 4250, 4251, 4252, 4277, 4281, 4282, 4319, 4392, 4568, 4780, 4788, 4792, 4794, 4909, 4911, 4916, 5026, 5159, 5240, 5243, 5246, 5348, 5353, 5355, 5587, 5632, 5633, 5684, 5948, 5957, 5958

wintry sundial
#

its not fun anymore, when people kill your session and kick you out

keen raven
#

is there anyway to get back in?

#

nvm

latent crest
fair adder
#

is making a cronjob that constantly echos your name into king.txt against rules?

quiet schooner
#

Have you read the rules?

fair adder
#

yes, but i saw john hammond do it on a stream

livid dagger
#

anyone know how many flags (if it's allowed to say) there are in the KOTH for Space Jam?

late stratus
#

๐Ÿ‘จโ€๐Ÿ’ป Just got completely destroyed by Th3J0k3r in KOTH ... got onto machine in minutes... but every terminal closed... then all the doors in closed within minutes... zzzzzz

#

oh hello!!!! @livid dagger

#

Im Etreyix... nice play

livid dagger
#

you were in like in no time lol

late stratus
#

I had nothing...

livid dagger
#

this one is new to me

late stratus
#

what?>?? you were so quick

livid dagger
#

and the first flag was passed in less than 1 min

wintry sundial
#

@livid dagger were you killing my seesions?

livid dagger
#

and logs show you got in 2 mins after it started

late stratus
#

I new one way in already but even then I couldnt get a foothold

#

I need to learn more....

livid dagger
#

@wintry sundial not sure? What koth was it?

late stratus
#

I have no idea how to keep people out or close up the vulnerabilities

wintry sundial
#

Carnage

late stratus
#

15 mins in and the machine is now completely secure

wintry sundial
#

I saw you had some a few commands running there in sleep

#

and my sessions kept dying every 5 seconds...

late stratus
#

yea was that a script? or were you doing it manually?

wintry sundial
#

either way, its against the rules

late stratus
#

oh really? I thought it was legit?

livid dagger
#

sorry but no it's not

#

it's called defense

quiet schooner
#

@livid dagger Hover over the box next to the flag submission field

#

@wintry sundial You're allowed to kill sessions

wintry sundial
#

last time i asked, you said it was not

#

good to know

quiet schooner
#

@wintry sundial I did not.

wintry sundial
#

that's fine. now that i know its ok, ill have a script ready

gleaming saddle
#

Would that not be a script that hardens the machine? ๐Ÿค”

wintry sundial
#

that's how I saw it

quiet schooner
#

You are allowed to kill sessions, that's all I've said

#

That's all I will say on it.

wintry sundial
#

IMO, the idea should be to capture all flags... the first to do so wins.

gleaming saddle
#

It was just a question, that's all I will say on it ๐Ÿ˜‰

livid dagger
#

thanks @quiet schooner

#

I asked because most of them have more than 2 flags and I thought they might have disappeared

quiet schooner
#

@wintry sundial The goal of KoTH is attack and defend. Maintain root access.

#

@livid dagger Spacejam was the first KoTH box ever made

livid dagger
#

oh I see ^

quiet schooner
#

Later boxes have more flags, the guidance was 8-10 IIRC

wintry sundial
#

no problem at all, I saw it as get all flags, get root without interfering other players

#

but i see that is not the case, so i will be ready for the next one

livid dagger
#

FYI, I don't have a script to do this

#

just commands

#

in multiple shells/terminals

wintry sundial
#

scripting=automation

#

it does not have to be a file to be a script

#

and the shell env is irrelevant

#

but what do i know ๐Ÿ˜‰

livid dagger
#

lol

wintry sundial
#

Scripts that automatically hack and/or harden the machine are forbidden

#

not sure how this line is to be interpreted

livid dagger
#

yes, and I don't have that

#

geez! I don't even know how you could create a script to automatically hack the machine!

orchid furnace
#

are things like sqlmap not allowed or is it just a COMPLETE auto hacking tool that is forbidden

wintry sundial
#

I was referring to the 2nd part of the sentence

livid dagger
#

either way, I don't have such scripts

#

aight, I'm out

wintry sundial
#

t.c

nova tide
#

Scripts that automatically hack and/or harden the machine are forbidden
@wintry sundial no autopwns

quiet schooner
#

@orchid furnace You're allowed to use tools, just don't write a script to hack the box

#

Like, I have a script that will root hackers in under a minute. That's very against the rules

#

@nova tide I made the box, dynamic passwords make it a pain to test

#

I can root it in under 30s without a script anyway

nova tide
#

@nova tide I made the box, dynamic passwords make it a pain to test
@quiet schooner i know ๐Ÿ™‚ you mentioned it before

wintry sundial
#

while true; do who | awk '!/root/{ cmd="$(which pkill) -KILL -u " $1; system(cmd)}'; sleep 5; done is this allowed?

late stratus
#

just had a fun game with H.Dekisugi ๐Ÿ™‚

brazen cloud
#

Looks like it (: nice one!

late stratus
#

I didnt have the knowledge to patch the ways in ... so it was just shell bashing for 40 mins...

#

i need some mentoring!!!

#

how do i see what pts the other logins are using?

livid dagger
#

In my opinion, the best way to learn how, is doing private challenges with friends or whoever wants to do it with ya'

fair adder
#

you deleted the damn /home/usrers joker!?

livid dagger
#

erm, what?

#

no?

#

box reset

#

maybe that's why there are no contents? But I swear that I did not break the rules

#

I've never done so

fair adder
#

shocking that 20 seconds into the box going live, the root id_rsa key doesn't work either and the user password is reset

livid dagger
#

lol

fair adder
#

all good bud

#

can't keep me

#

out

livid dagger
#

mk

#

btw, if you type faster, you might be able to get in the box faster

fair adder
#

20 seconds from spawn and its 75% patched. no matter how fast you type bud, you aren't that fast

#

kudos on your win

terse willow
#

(Small reminder: Logs are kept of these matches -- if you suspect someone is cheating, email koth@tryhackme.com. It can be investigated ๐Ÿ™‚)

livid dagger
#

@fair adder if you really suspect me, find the logs and report me. But again, I have NOT cheated at all whatsoever

#

that's not the way you learn nor is it fun

#

also, find the logs like @terse willow said

fair adder
#

i don't care enough to try and find logs on a machine i can't connect to anymore nor do i care enough to write an email. as i said, kudos on your win

livid dagger
#

I don't understand why people quit looking for other ways to get in! Me for example I always leave an open door so whoever finds it, we can have fun trying to be king

livid dagger
#

wooooow.... people

#

so you reset the box and don't do anything. noice!

#

well, that one was fun

#

especially at the end ๐Ÿ˜‰

scarlet pike
#

hmm

#

how many vulns are there usually in a box

#

4-5?

quiet schooner
#

Vulns, initial access vectors or privescs?

#

There's at least 3 initial access and at least 3 privecs

#

That makes 6 vulnerabilities

scarlet pike
#

ohhh

#

ok

#

whats their definition of auto defense scripts

#

ive seen people on youtube do stuff like have a bash loop to echo their name into king.txt

#

is that allowed?

quiet schooner
#

Read the rules carefully.

scarlet pike
#

oof lemme check

obtuse oxide
#

There's no way...

#

I bet people have those scripts, but no way it's allowed\

scarlet pike
#

oh what

quiet schooner
#

It is allowed

scarlet pike
#

ohh

#

so anything that isnt outright autopwn/autoharden is basically allowed?

quiet schooner
#

I mean, the rules state much more than that.

scarlet pike
# 

The machine should not be made unavailable (shutdown, firewall rules to stop all communication, all services terminated, machine botching etc..)
Only stop a service if it can't be patched any other way. Services should remain available for "genuine users of the box" if at all possible.
No modifying/removing flags
Do not attack, modify or stop the service on 9999
Any sort of DoS against the machine
No attacking other users
Scripts that automatically hack and/or harden the machine are forbidden
Games are moderated, and failure to abide by the rules will result in a game and/or site ban.```
obtuse oxide
#

Damn! That's going to be fun to do in a koth game...

scarlet pike
#

doesnt mention anything else here tho

#

other than the usual

#

dont dos the box

#

etc

obtuse oxide
#

echo "akaElite" > /root/king.txt

#

Or wherever it is.

scarlet pike
#

ye

quiet schooner
#

DoS, closing services are the ones that get people.

scarlet pike
#

ohh

#

but it says

#

only stop a service if it cant be patched any other way

#

so we can close services?

#

if they cant be patched

quiet schooner
#

99% of the time they can be patched

#

It's a matter of how.

scarlet pike
#

ohh

quiet schooner
#

You can restart the service to apply a patch just fine

scarlet pike
#

ohh