In a public game, strictly no, but in private games, players do all kinds of experiments, from testing their loops to practising how to spam others, 🤷♂️ the person who makes the room and invites others to it is responsible for this,
#koth
stiff egret
fair adder
Well, thank you @stiff egret
I hope you enjoyed the game anyway @opal pond, and i hope you will find better partners for your future games.
I was respectful with you from beginning to end.
opal pond
I hope you enjoyed the game anyway @opal pond, and i hope you will find better partners for your future games.
@fair adder yea same for both parts
I was respectful with you from beginning to end.
@fair adder so was i ?!
fair adder
A little bit less respectful than me when you write but it's okay 🙂
fair adder
terse willow
There you go 😄
fair adder
thanks
stiff egret
/tenor whyy
terse willow
Because I felt like it
fair adder
its something like "you dont have a stable country"
google translate kinda lacking ngl
stiff egret
~~Because I felt like it~~
!ban for power abuse
winged charm
its something like "you dont have a stable country"
Who’s that from?
@short tusk it’s fine I got it
short tusk
Cry ❤️
fair adder
Who’s that from?
the guy who is getting these messages is @austere frigate
winged charm
@fair adder can I get the game id please
winged charm
I need the game id
winged charm
he is the one getting these messages
Sending or receiving?
winged charm
@austere frigate can you send me the game id?
winged charm
Thank you
austere frigate
I thank you
winged charm
@austere frigate dm me please
winged charm
@austere frigate are you https://tryhackme.com/p/belph3g0r
winged charm
can you dm me 🙂
austere frigate
sure
nimble dew
I didn't write this. it's Italian written with Google translator.
terse willow
Right, but you did send it. Let's not start this up again please
terse willow
@winged charm this is your job 🤷♂️
nimble dew
it was probably the other guy who was on the ssh
winged charm
@nimble dew please you admitted to it in my dms. Currently it’s a 24 hour ban please don’t make it longer
nova tide
Koth-staff is back?
Do i need to mute the server again? 
winged charm
I think only for muiri
terse willow
Only for muiri when he decides to switch it back on for five seconds
jolly hornet
pale helm
green axle
Who sends a link for a koth?
terse willow
Who sends a link for a koth?
H(i)mmm ^^
crisp needle
Is anyone keen for a game of KOTH tonight?
stiff egret
Ping me if it's not Hogwarts 😄
sick turtle
Or carnage
nova tide
Or windows
opal hull
Is anyone keen for a game of KOTH tonight?
yes
warm nova
Anyone knew to king of the hill? I wouldn't mind playing but with someone new like myself
autumn pawn
I know i don't have the level lmao. Would love to once i'm a bit more experienced
valid flume
@warm nova me
sharp salmon
im down for koth
crisp needle
@stiff egret Are you ok for a King of the Hill in 30 mins?
crisp needle
r u guys ready
Are you ok for a King of the Hill in 30 mins?
stiff egret
<@!580609268261191680> Are you ok for a King of the Hill in 30 mins?
I'll try, but in a ctf rn so nothing solid
opal hull
bro i'm sleeping gn8 have a blast - from India
warm nova
Sorry I went afk had to get back to work
topaz spruce
Hey! I want to play koh vs a friend we are both in the room and after the timer runs out we have no IP adress displayed only "EXPIRED" and status: Scheduled
did we miss something?
stiff egret
You can refresh the page, that should do it.
topaz spruce
still the same
stiff egret
Can you share the game ID or invite link?
topaz spruce
you got a message
topaz spruce
alright
stiff egret
Um, when did you start it? From what I can see it was started on 21:17 EU, and it's 23:36 right now, if I am not wrong, it ended about almost an hour ago?
topaz spruce
its 22:38 now in my time zone we started it at 22:12 with a 5minutes timer
sound like a timezone problem
stiff egret
mhmm, could be, still something's is def wrong,
nimble dew
<@680416755428229227> please you admitted to it in my dms. Currently it’s a 24 h...
hi .. i think it's been more than 24 hours now but i'm still banned in koth.. Could I kindly have some updates regarding my situation? thanks a lot
winged charm
hi .. i think it's been more than 24 hours now but i'm still banned in koth.. Co...
@mellow bough @lusty portal
fair adder
||rot13|| @broken berry
lusty portal
hi .. i think it's been more than 24 hours now but i'm still banned in koth.. Co...
DarkStar deals with all KoTH ban appeals, if he gives you the greenlight to play again, I'll unban you.
nimble dew
Ok, thanks
pseudo horizon
.
stiff egret
Please don't post flags openly, use ||<spoiler>|| if you want to post something specific,
Regarding your issue, some flags are purposely encoded in basic encodings like base64/ROT13 etc as a part of challenge from the room creator. What you are seeing is an example of this.
broken berry
Please don't post flags openly, use ||<spoiler>\|\| if you want to post somethin...
Sorry I'll delete it
stiff egret
👍
sour zealot
lilac pollen
hey guys, how can i be eligible to play koth? cuz whenever i try to join a public math it says : Uh-oh! Only intermediate and advanced experienced leveled users can play King of the Hill.
what rank do i need to be?
teal root
you can change your user level to intermediate or advanced in the profile setting
the rank is not affected
lilac pollen
ah alright, thanks a lot man 😄
teal root
👍
green axle
Koth ?
coral spire
dense compass
you can change your user level to intermediate or advanced in the profile settin...
How?
nova tide
ez
steel hornet
hard stone
Is the rule: "6. No attacking other users" meant to prohibit killing processes or doing stuff like $ cat /dev/urandom > /dev/pts/1 ?
stiff egret
No, It means attacking the real machines of other users. You can do anything on remote box, (the visible IP on the koth game) as long as it abide by the rules.
But not the machines of other users. @hard stone
hard stone
Sure not attacking their machines was clear from the beginning 😉
stiff egret
Glad you cleared the confusion beforehand, because attacking other users is prohibited site wide. So breaking that one would've resulted in a site ban. (IIRC)
trim girder
fair adder
hey
primal shoal
https://tryhackme.com/games/koth/join/94b3fe0c277080aa3a118d1c
Come prove you are the true 👑
velvet nexus
quiet schooner
@broken berry Please don't post discord invite links, thank you
broken berry
sorry wrong channel
broken berry
<@!573087577394118688> Please don't post discord invite links, thank you
sorry
gaunt timber
i am beginners just want to learn Metasploit , i try tryhackme Metasploit room but it doesn't work for me plzz help
alpine mango
i am beginners just want to learn Metasploit , i try tryhackme Metasploit room b...
Refer #infosec-general
quiet schooner
@alpine mango If they want help with a specific tryhackme room, that's #room-help or #room-hints
#infosec-general is for infosec discussions that aren't requests for help with a specific THM room
@gaunt timber ^
gaunt timber
okk @alpine mango sorry I don't know that
stiff egret
Yes you can. @weary axle
weary axle
the guy im playing with is saying it aint allowed..that is hardening the file and all...so just for confirmation i asked 🙂 thankyou for u reply
stiff egret
NP, you can also tell them to give the blog a read, the rules on site are described a bit more in the blog for easier understanding.
Pinned messages for the reference :)
spark forge
Dea
fair adder
Hey all
fair adder
short question. Is there any reason why I will get lion 4 times in a row?
broken berry
short question. Is there any reason why I will get lion 4 times in a row?
i'm getting lion for the 3rd time
fair adder
good to know
hearty wing
will there be more machines in koth
okay looking forward to it
and also why is koth vc locked
stiff egret
@hearty wing that's probably because you are not verified.
hearty wing
Okay
hearty wing
How do i get verified
dense compass
Take your token from your profile and send message to the bot (tryhackme bot)
The message should be in format
!verify <token>
hearty wing
OK thx
nova tide
Someone kick Muri from #koth-staff
terse willow
Oh, I'm sorry -- was that not meant to be teased?
I was under the impression we were drumming up interest @nova tide
nova tide
Not yet
terse willow
Whoops
nova tide
No point deleting that now 😂
rotund topaz
anyone feeling up to a casual koth and vc?
tiny loom
No, It means attacking the real machines of other users. You can do anything on ...
How would you even be able to do that? All the boxes I've used were only accessible to me (not shared with lots of other people like i.e. HackTheBox does)?
stiff egret
How would you even be able to do that? All the boxes I've used were only accessi...
Since they are in the same VPN, it opens them up to other users in the VPN , although there is security in place to prevent that, but just to be clear about the rules, it's stated to not even try that.
tiny loom
ahh yeah
I'm always a bit paranoid when I python -m SimpleHTTPServer to ferry something over, that someone else also uses the open port 😄
winged charm
Someone kick Muri from <#756155548269019246>
I already leaked it like a month ago don’t worry
stiff egret
I'm always a bit paranoid when I `python -m SimpleHTTPServer` to ferry something...
No, all users are given unique IP (iirc), so it's not like it's shared, but it's just that if you open the http server for uploading something, someone else can download it as well, as they are in same network. More than that, I'd rather not say.
winged charm
I'm always a bit paranoid when I `python -m SimpleHTTPServer` to ferry something...
They theoretically could very easily if it happens you’ll see a pop up and just let a staff now
stiff egret
The python server shows every ping
stiff egret
i guess i see it in the http server log
yeah ^
winged charm
The other thing is you have to know what files you have in order to get from that open port and there’s not really any way that I know of to enumerate that
tiny loom
linpeas.sh seems like a safe choice
winged charm
Wait I’m being dense you can just get it from the GUI
nvm
anyways yes it’s a thing that can happen but there’s no real need to worry
stiff egret
Wait I’m being dense you can just get it from the GUI
you are 'being' dense?
tiny loom
anyways, the questions I actually wanted to ask:
-how did you get your various roles
-what is koth hacking? 😄
winged charm
I hang out with too many scots and brits alright bugger off
Being 1337
king of the hill it’s a competition with 10 people all hacking one machine
stiff egret
anyways, the questions I actually wanted to ask:
-how did you get your various r...
Give the blog in pins a read, that should clear things up
stiff egret
!verify <discord token from tryhackme profile> send this to tryhackme bot
native shore
brute forces taking so long 😩
nova tide
||-t 64||
native shore
I'm using that flag
native shore
Even with rockyou.txt?
nova tide
yeah
autumn iron
broken berry
Hackers can be rooted in less than 10 seconds
i got acces but not enough time for root
native shore
nvm, i got access to the pass
broken berry
nvm, i got access to the pass
didn't you get the second flag?
nova tide
Better luck next time
opal pond
Yea its a known bug
stiff egret
Yeah that's a known bug. I thought that was fixed, @lusty portal ?
terse willow
There we go
Problem with being a member of the KoTH staff
@nova tide Try it now please?
-8ball
sour vectorBOT
8Ball <What to ask:Text>
Invalid arguments provided: Not enough arguments passed
terse willow
-warnings @nova tide
sour vectorBOT
stiff egret
oh boi
stiff egret
-8ball
sour vectorBOT
8Ball <What to ask:Text>
Invalid arguments provided: Not enough arguments passed
terse willow
Bingo
stiff egret
-warnings @nova tide
terse willow
Try -warn @winged charm Being a goober?
stiff egret
-warn @winged charm Being a goober?
terse willow
Perfect
stiff egret
ah dang
terse willow
Can you delete messages in here?
stiff egret
did it work?
stiff egret
ooo
terse willow
Ok, so you can delete messages, but can't use the bot
winged charm
we have no powers
terse willow
You don't
I yoinked your KoTH mod
Also
Warn @winged charm swearing. Again
-warn @winged charm Swearing. Again
winged charm
Oh bugger off
sour vectorBOT
⚠ Warned Cryillic#6015
terse willow
Oh, no, that was for the assholes
winged charm
This is mod abuse
terse willow
Mhm
Better believe it
Right, you should have powers in here, but no ability to use the bot, other than 8ball
quiet schooner
@winged charm
quiet schooner
@broken berry There are slurs there. Please remove them or mark them as a spoiler at the very least.
winged charm
do you have any ideas of who it is?
broken berry
do you have any ideas of who it is?
i think its gloomless
quiet schooner
@winged charm Plz grab images now, I'm gonna delete them
broken berry
i don't know for sure
winged charm
I already did
quiet schooner
Cool deleting now
winged charm
@broken berry theres too many users on there all in the same position I cant make an informed decision on who it is. If you can find any other information of who it is please let us know
broken berry
<@!573087577394118688> theres too many users on there all in the same position I...
its probably gloomless he's the only other person trying to put his name in the king file, the messages were walled by pts/0
nova tide
I already did
You can delete them too
deft cliff
Ooops clicked without knowing what I'm doing 🙂
dusty canyon
Who made all of the previous koth machines?
cerulean sparrow
quiet schooner
Who made all of the previous koth machines?
Various people
I made Hackers and Food
Muir made fortune
Holmes made hogwarts
dusty canyon
Ah alr ty
crude zodiac
oops didnt mean to join
fair adder
its always better to remember to put your name in king.txt, if you are root 🙂
viral stirrup
its always better to remember to put your name in king.txt, if you are root 🙂
I wish I heard that a few months back haha
stiff egret
I wish I heard that a few months back haha
if you are new/ less experienced, then give the blog in pins a read, that'll 100% up your game in KoTH.
:)
viral stirrup
if you are new/ less experienced, then give the blog in pins a read, that'll 100...
Thank you for the advice, but I figured it out after a few games haha
I'll give it a try though
There's always time for learning something new 😄
stiff egret
There's always time for learning something new 😄
true, hopefully you'll find something new in it.
nova tide
@fair adder @hazy geode @pablocordova which one of removed/chmod all of the binares?
primal shoal
https://tryhackme.com/games/koth/join/bb32256c9156e8b2889b5295
See yall in 10 min 🍻
stiff egret
Uhh so what do I do?
Try a bit more specific question.
fair adder
NVM, I get it, it's just it requires ya to have lot's of knowledge about other tools
Wish there would be hints at least lol
stiff egret
:) there are loads of rooms on THM to solve & learn from, give them a try
fair adder
yea sad thing is I barley understand the basics
I did the first basic linux room, and doing advent of cyber
stiff egret
give this a read, https://blog.tryhackme.com/free_path/
fair adder
Yea I'll probably start that once advert of cyber is done
white wolf
https://tryhackme.com/games/koth/15097 anyone? :3
hazy geode
hello
sour vectorBOT
8Ball <What to ask:Text>
Invalid arguments provided: Not enough arguments passed
winged charm
this is nonsense
terse willow
I separated the overrides out into two separate categories -- one for mods, one for everyone else
Hey, you still have manage messages!
winged charm
I cant threaten dark with revolution now
terse willow
You couldn't anyway
He still has manual mute powers
Even if the bot breaks, you can mute you with two key presses
And ban you just as easily
winged charm
he would then have to deal with the like 10 other servers Im in with him
@terse willow no exit clause brah
terse willow
Nah, this is the one he cares about @winged charm
Doesn't matter if private servers get messed up
Here, it's an issue
delicate cedar
I feel like someone is cheated here, Everytime I patches something they voted to reset the machine
delicate cedar
I feel like someone is cheated here, Everytime I patches something they voted to...
I don't think anything is break on that machine
stiff egret
Taking a look
~~Can you tell me which is your username?~~Or better, get verified on discord here. That way we can tell who is who.
@delicate cedar
delicate cedar
@stiff egret Done verified
stiff egret
Just saw the details, for now, it clearly looks like someone is controlling the resets using alt accounts, that is currently a bit shady because we kind of allow alt accounts in game.
delicate cedar
Just saw the details, for now, it clearly looks like someone is controlling the ...
Oh okay, That's a bit annoying though
stiff egret
Agreed. I hope we can find some middle ground for this, I've pinged admins as well.
stiff egret
What the heck what the heck @winged charm
broken berry
Is it illegal to steal files from my machine via the python server I put up to send exploits to the target machine?
stiff egret
Yeah, but you can see the ip of users if they try to connect to your actual machine, you see them, you report them with screenshots.
hearty wing
idk not rn
lilac topaz
Awesome
jovial phoenix
I feel like someone is cheated here, Everytime I patches something they voted to...
are u a PvtSec?
delicate cedar
are u a PvtSec?
Nope
jovial phoenix
aww ok
patent forge
Is it illegal to steal files from my machine via the python server I put up to s...
If you hosted a folder in which were located important files, and got any kind of problem, it's your fault. (my opinion)
how can we be surprised of someone downloading data from our host in a KOTH? we should be "hackers"...
viral stirrup
how can we be surprised of someone downloading data from our host in a KOTH? we ...
but still, it's against the rules
patent forge
@viral stirrup yep, I know that and i totally agree as we are in a educational environment
but ehy, data is data, and security should be our main focus
I think it's correct to report, but not beeing surprised
viral stirrup
but ehy, data is data, and security should be our main focus
I totally agree with you, someone who is somehow experienced in the topic shouldn't allow this to happen
patent forge
also for "educational" reasons, getting the exploits from another player, can be useful to understand what he is doing and rush to patch
long story short, don't touch other people's stuff, but at the same time don't be superficial with your data @broken berry
stiff egret
also for "educational" reasons, getting the exploits from another player, can be...
Uh uh, any interaction with other player's actual machine is not allowed, :)
patent forge
@stiff egret i know, rules are rules and i don't do that, i was just referring to an hypotetical scenario
concept is pretty much the same as using stuff like pspy etc to track other players activities
stiff egret
Yeah, I got that, I personally just start a spy to see what others are downloading and download them from the vuln machine
stiff egret
concept is pretty much the same as using stuff like pspy etc to track other play...
Yep
patent forge
can wireshark be a way?
stiff egret
Overkill
stiff egret
It could be, but yeah, for a 1 hr game, it's too much, you have to defend and attack as well.
patent forge
next time playing with @nova tide i'm preparing macros just to pop up wireshark and sniff only.
viral stirrup
lol
stiff egret
LMAO, try xte, the thing is epic.
I've like 20 scripts to do specific stuff with xte
patent forge
the java text editor?
stiff egret
Uh uh, linux package
viral stirrup
xautomation
patent forge
i got more tools from koth players than everything else
stiff egret
LoL
viral stirrup
i got more tools from koth players than everything else
samee
@stiff egret what else is up your sleeve?
stiff egret
Play a game and find out
pallid cosmos
i got oofed
pallid cosmos
@sacred schooner aint easy
i see
trying to gobuster my way
gobuster is not de wae
yeet
lol
mamadgholi speedy boi
lol
man howtohack
i am lost
did you even find a page?
what tool did you use?
ah i see
9999?
anyways i started blasting
ye
i am depressed now
need to learn more
ye i remember now...
should do that always if there is nothing interesting
viral stirrup
guys use rustscan to scan ports 100x faster than nmap
pallid cosmos
is it louder?
viral stirrup
is it louder?
yh but if you do koth time is more important
also the port 9999 is for the KOTH flag service and you shouldn't exploit that
viral stirrup
sure np 🙂
viral stirrup
looks hella fast
it is
pallid cosmos
thanks
broken berry
Yeah, but you can see the ip of users if they try to connect to your actual mach...
This was the ip address.
hearty wing
You should make a attack defense type game as well
pallid cosmos
Blue Red Teaming?
stiff egret
Can you share the whole screenshot in DM?
uncut basin
;
hazy geode
.
gloomy estuary
Any recruiting teams? or would anyone like to create one?
jovial phoenix
Any recruiting teams? or would anyone like to create one?
I wanna :3
delicate cedar
https://tryhackme.com/games/koth/join/112c99272887cbb38b0f60bb
I accidentally clicked it and now I'm part of the game -_-
So does it mean we can join the game even the game has running five min or more?
delicate cedar
I accidentally clicked it and now I'm part of the game -_-
So does it mean we c...
@stiff egret
gloomy estuary
I accidentally clicked it and now I'm part of the game -_-
So does it mean we c...
yeah
nova tide
I accidentally clicked it and now I'm part of the game -_-
So does it mean we c...
You can join a game even after its ended.
stiff egret
IIRC, it's to be fixed issue, where the invite links will expire after the game starts, but for now, yep they work
signal hinge
fair adder
Hey there. I am in a koth and we had two or there resets already. Looks some old accounts are used to reset the session
koth is running id 15268
stiff egret
Giving it a look rn :))
fair adder
bruh i don't even remember joining that room 🤔
i was playing koth with friends today tho
tall cove
Quit braggin'
fair adder
https://tryhackme.com/games/koth/join/e11f40fa1ee9d509ac23c7ae
i dont even dare to play against you tbh 😂
rancid pewter
Haha, I'll take that as a compliment.
rancid pewter
Lost my rootkit, all of my notes and I don't remember most of the box. That a pretty big advantage for you if you want to play against me.
2mins
short void
Does the 'hack with friends' feature let you collaborate on any room, or is it only for KOTH?
stiff egret
No, it's for KoTH only. @short void
(tho If you see it this way, all challenge rooms have scoreboards, so technically, you are hacking with friends whatever you hack on tryhackme :)) )
short void
@stiff egret Thanks for clarifying. I was actually hoping it could be used as a sort of co-op mode (as opposed to competitive race mode) in order to get some of my friends into hacking without them feeling lost. Maybe THM will add it in the future.
stiff egret
In case you are unaware, you can create private rooms, and invite only your friends in them, that way you can decide your own rules and speeds :)
broken loom
hlo
broken loom
first
latent osprey
noice
broken loom
why i cannot connect using creds.txt
broken berry
maybe someone changed the password?
broken loom
???
broken loom
i don't know much but is this the way to patch ????
broken berry
i'm not actually sure its allowed but it can be considered as a patch
changing the password restricts other users from accessing the session
broken berry
but there's always an other way
quiet schooner
i'm not actually sure its allowed but it can be considered as a patch
Yes, changing passwords is allowed. No, you don't have to leave any ways in to the box.
fair adder
@regal notch just dont forget to paste 6 flags in 12 seconds after just freshly booted machine 🙂
u must be hella good
patent forge
@rancid pewter vc?
rancid pewter
My speaking english is really bad
regal notch
<@!723588122054623362> just dont forget to paste 6 flags in 12 seconds after jus...
Cant i collect it and submit ?
fair adder
Of course you can, but not 10 seconds after booted machine. I havent even finished my enumeration bro. 🙂
oh wow i didnt know you can find flags without shell
regal notch
I meant collecting it during the play not saving it Omg
regal notch
Of course you can, but not 10 seconds after booted machine. I havent even finish...
Its not seconds. never ever seconds
I started it even late then how could i submit with first 12 seconds?!!!
And I didn't submit it by 12 seconds,
I turned up king and then I started the submission of flags
Is 12s enough for to be the king? Don't need anything to find for privesc?
Yes it took time, several minutes. But how this guy is talking about seconds
formal gust
anyone who has played space jam, is it possible to like get an ssh session
dusty canyon
keygen
nova tide
i don't know much but is this the way to patch ????
You can always read the blog post from pinned messages to learn about KoTH
This ^
delicate cedar
@regal notch please stop abusing reset button
marsh perch
regal notch
<@723588122054623362> please stop abusing reset button
Eh? I was asleep
marsh perch
@fair adder Can I DM?
short tusk
<@723588122054623362> please stop abusing reset button
@winged charm Just so you're aware /shrug
stiff egret
Nothing we can do about that for now, skidy did say that he'll edit some rules for that, but nothing as of now.
short tusk
Rip
winged charm
<@!439150902230777882> Just so you're aware /shrug
We’ve been keeping an eye on it thanks
fair adder
@lost compass can we reset the machine in koth?
lost compass
Hey sorry @fair adder i just saw your message
fair adder
Its okay
lost compass
Gg it was tight
fair adder
me too!
fair adder
https://tryhackme.com/games/koth/join/03ce923c1571f1a2143b6c42
send again
i'm getting on my vpn, just one sec
fair adder
do i need to just click on the link or also open my vpn configuration file?
pearl crane
just click link
then you can get config
bruh i might need a new link
kk that one starts in 15 mins
pearl crane
?
pearl crane
dude u can change in setting lol
fair adder
pearl crane
just go to settings and change it lol
fair adder
okay i need to be back!
how long you going be on here?
i'll be back in 40 mins need to go to store!!!@
brb
fair adder
y
torpid ridge
whats a koth and hows it work?
do all 10 ppl ssh into the same machine or something
terse willow
Hack their way in
But yes
Lots of people target the same box. The first person who gets in tries to keep the others out
trail hinge
think of it like blue teaming
you could keep everyone out by shutting down your servers
torpid ridge
interesting
trail hinge
but it's useless
the fun is finding the root cause and addressing it without interrupting service
torpid ridge
im assuming these services can all be patched and restarted without restarting the target machine then?
are all the machines the same? or randomized vulnerabilities per instance/game?
trail hinge
They maintain a pool of machines
torpid ridge
when it says new machines added every month, do they swap them out or straight up add new ones?
trail hinge
Check out the FAQ https://tryhackme.com/games/koth it covers a ton of these questions
torpid ridge
i just found the page lol
trail hinge
Plus you can see some previous games
torpid ridge
is it possible to patch everything? or is it too much to do in an hour
trail hinge
So alternatively, If you are curious, JohnHammond has some videos of a playthrough if you wanna get a feel of how the game plays
torpid ridge
oh cool, thanks
trail hinge
torpid ridge
I love this guy, such friendly
grand ember
is it possible to patch everything? or is it too much to do in an hour
depends on your knowledge of linux/languages used and prior machine knowledge
it's certainly doable in a match but i'd say only if you knew at least part of the machine before
torpid ridge
gotcha, thanks!
terse willow
<@&756155733468512386>
winged charm
ree
winged charm
is writing script to automate finding flags against rules?
yes very
terse willow
Boy asked you a question
fair adder
so its against rules?
for example this
... i can't make it spoiler
can i upload it on dm?
terse willow
Just upload it smh
fair adder
okay
terse willow
We can delete it after
fair adder
import re
import os
regex_pattern = r"(^thm{.*}|thm{[a-f0-9]{32}}|[a-f0-9]{32})"
text = ''
os.system("find / -type f 2>/dev/null >> file_names")
with open('file_names','r') as f:
for files in f.readlines():
files = files.strip("\n")
try:
with open(f'{files}','r',encoding='ISO-8859-1') as r:
for lines in r.readlines():
text += lines
resault = re.findall(regex_pattern,text)
if(len(resault) == 1):
print(f"{resault[0]} - {files}")
text = ''
except Exception as f:
print(f)
os.system("rm file_names")
print("done")```Ok Im going with an its within the rules assuming it is only looking for flags if any of the other koth staff disagree we can discuss in #koth-staff
terse willow
Like. Immediately
You're indexing every file on the system and dumping it into a text file
terse willow
I can do it in a oneliner
winged charm
straight up just do a locate flag I gurantee youll find plenty
terse willow
In native bash
fair adder
~~I can do it in a oneliner~~
i don't know how to use grep properly xD
winged charm
the command really wouldnt be that hard
trail hinge
grep -R my dude
terse willow
^^^
fair adder
grep -R my dude
doesn't work on all flags
terse willow
It'll work the same way as your program
trail hinge
either way
trail hinge
you are essentially just benchmarking disk io
fair adder
i have an idea
terse willow
Oh God
fair adder
you are right
terse willow
This never ends well
fair adder
that would kill a box cuz im indexing files to one file right?
why not make it opet what i supply as argument 🤔
terse willow
Eh?
fair adder
yeah that should work
so like then i can
find / -type f 2>/dev/null | python3 main.py
trail hinge
find / -type -f 2>/dev/null -print0 | xargs -0 egrep '(^thm{.*}|thm{[a-f0-9]{32}}|[a-f0-9]{32})'
would probably be significantly faster
and won't fork a bunch of pids
one pid
fair adder
`find / -type -f 2>/dev/null -print0 | xargs -0 egrep '(^thm{.*}|thm{[a-f0-9]{32...
nooo why did you ruin it for me 
thats evil
why 😭
terse willow
would probably be significantly faster
I'd be inclined to agree
trail hinge
honestly
fair adder
i will use it anyway tho 
trail hinge
i just couldn't in good conscience watch you do that to a server
terse willow
i will use it anyway tho <:blobknife:689626579600801822>
If you dos the server accidentally we're banning you from KoTH
fair adder
If you dos the server accidentally we're banning you from KoTH
no using
terse willow
If you dos the server deliberately, we're banning you from everything
fair adder
i will use this thing
fair adder
`find / -type -f 2>/dev/null -print0 | xargs -0 egrep '(^thm{.*}|thm{[a-f0-9]{32...
this
terse willow
Good Elf
fair adder
elf don't be bad guy
fair adder
[root@dhcppc3 elf]# find / -type -f 2>/dev/null | grep -E '(^thm{.*}|thm{[a-f0-9]{32}}|[a-f0-9]{32})'
[root@dhcppc3 elf]# find / -type -f 2>/dev/null -print0 | xargs -0 egrep '(^thm{.*}|thm{[a-f0-9]{32}}|[a-f0-9]{32})'
``` this not workmight need to mess with the regex
trail hinge
also my typo with the -f
it works in spirit
the -print0 is important as it inlines the matches
fair adder
yeahhh @terse willow just gonna go and optimise my code so i don't dos a machine
trail hinge
it keeps everything in a single pid
keeps you from forking off an ungodly amount of processes
stiff egret
```py
import re
import os
regex_pattern = r"(^thm{.*}|thm{[a-f0-9]{32}}|[a-f0-9]...
Ok, though I agree that scripting to find flags is allowed, this script specifically, will as Muiri said, kill the box, it's technically making a file of entire system.
fair adder
Ok, though I agree that scripting to find flags is allowed, this script specific...
i came up with solution tho py import re import os import sys regex_pattern = r"(^thm{.*}|thm{[a-f0-9]{32}}|[a-f0-9]{32})" text = '' for strings in sys.stdin: strings = strings.strip("\n") with open(str(strings),'r',encoding='ISO-8859-1') as r: try: for lines in r.readlines(): text += lines resault = re.findall(regex_pattern,text) if(len(resault) == 1): print(f"{resault[0]} - {strings}") text = '' except Exception as f: print(f) print("done") do you think this is more stable?
cuz like then you are not making anything you are just opening files?
glad turtle
stiff egret
cuz like then you are not making anything you are just opening files?
You really don't need that, most of the flags are in places which are often common or places where you'd reach anyway while rooting the box.
regal notch
koth koth koth kotheyyy
fair adder
Anyone wanna play ?, send link here..... @pearl crane
fair adder
here is fine 🙂
fair adder
one sec my vpn is giving me problems
fair adder
Not sure what's happening to my Parrot OS
My VM box isn't turning on bro. I can't play with you @faint tinsel
fair adder
I'm gonna have to fix this. I'll brb man 🤦
faint tinsel
its 8am here not in pc rn
grand delta
can someone share spectate link while you guys play .......it might be helpful for others
pearl crane
pearl crane
go to settings and change your level
fair adder
gl!
pearl crane
if you cant do it look for a tutorial as last resort
pearl crane
lol
stiff egret
what port do i use to connect to the ip address ??
Give the blog a read, it'll help you get started :)
quiet schooner
You're gonna want to do quite a few easy to medium CTFs first
fair adder
I need the the password lol!
I keep getting a connection refused when trying root into the ip address does this mean they have patched the vulnerability there?
And now my machine froze completl;y
fair adder
You're gonna want to do quite a few easy to medium CTFs first
You are absolutely right /:
stiff egret
And now my machine froze completl;y
try nmapping it again, check your vpn connection.
fair adder
keeps telling me TCP/IP fingerprrinter requires root previliges
i've even included the -Pn switch
just like nmap room taught me but no working
wow i needed to add the sudo!
dusk cave
So nice to see your enthusiasm 😄
fair adder
okay! i found port 22/80 and 23 open!
fair adder
So nice to see your enthusiasm 😄
Thank you!! so freaking fun !!! 🤩
i ran -T4 and -vv to get faster results but its still going super slow lol
dusk cave
-vv is making it more verbose
pastel sparrow
dusk cave
this isnt coop 😄
fair adder
Man o man this is fun
dusk cave
did u manage?
fair adder
I need to learn how to use curl
i'm reading on one of the write ups that i need a listener also ?
so not sure what that is lol
Didn't realize how much of a noob i was
Looks like PKyahhh won
congrats bro!
dusk cave
i'm reading on one of the write ups that i need a listener also ?
you need a listener if you want to create a reverse shell
hoary lava
What rooms do you guys recommend before taking part in one of the koths?
quiet schooner
What rooms do you guys recommend before taking part in one of the koths?
Do a good number of easy to medium CTF rooms
Try out Hackers and Food which are available outside of KoTH in standalone rooms
tribal socket
How many machines are available altogether?
grand ember
10, you have a list on the koth page
quiet schooner
10, you have a list on the koth page
I think it's more than 10
But it only lists the most recent 10
grand ember
oh well
tribal socket
how many are there in all?
pearl crane
how many are there in all?
OVER 9000
pearl crane
i ran -T4 and -vv to get faster results but its still going super slow lol
its never gunna be lightning fast try checking the website and running gobuster on it to find somthing
while its scanning*
fair adder
I'm doing a couple more CTF's and finishing my "Complete Beginners" path before I do another one 🙂
tribal socket
lol
regal notch
@Mr.Holmes#3066
Redirecting traffic of port 9999 is restricted?
nova tide
You are not even allowed to touch that port.
quiet schooner
I'm proud to be the reason for that rule
quiet schooner
You are *not even* allowed to touch that port.
Isn't it just attacking it or messing with the service that's off limits?
Like you can see who's king happily, right?
I have an idea for a mini project is all.
nova tide
🤷♂️
quiet schooner
Long as you can read from it, we good
hearty wing
anyone up for koth today
nova tide
Maybe later tonight
nova tide
Okay
regal notch
🖐️
dusk cave
starting in 1 min
dusk cave
if i try to access the machine ip i get redirected to a website from another player is that allowed?
full grove
is the website malicious?
winged charm
if i try to access the machine ip i get redirected to a website from another pla...
Are you positive it’s from another player?
dusk cave
Are you positive it’s from another player?
it was his username on it said he was doing his cybersecurity master and some other stuff
winged charm
can you dm a screenshot to me
dusk cave
the game is over but i will check my history
winged charm
That doesn’t do any good
dusk cave
is the website malicious?
i hope not lol
full grove
its a google site, so nah
west zenith
hello
tribal socket
readed 👍
nova tide
can someone share invite link for the game?
west zenith
the game is over
west zenith
west zenith
ok this one isn't corrupted
nova tide
No, i just want to play.
west zenith
😄
tribal socket
I am no longer available 😡
tribal socket
@west zenith are you afk?
quiet schooner
@tribal socket Please keep it to english only
tribal socket
🙂
plucky totem
solemn dust
https://tryhackme.com/games/koth/join/8494d8fcacc6fc1d5b08d3e1 game in 13 mins
feeling kinda lonely here being the only guy in the lobby
nova tide
@regal notch editing the king service is not allowed.. you totally broke the rules by editing the service as well as stopping the king service..(Twice)
regal notch
<@!723588122054623362> editing the king service is not allowed.. you totally bro...
I didn't stopped it. completely and aint editted it
The service was down before the reset, and i just held 3m till the first reset
And I wa toally got out of the box and stayed still and voted the reset
stiff egret
This is not the first time.
nova tide
you stopped king service, we reset. after 40 minutes into game. You edited king service and changed king.txt location to /opt/king.txt
regal notch
I didn't stopped it
stiff egret
Also, but this time I was watching Naughty's stream too
regal notch
yeah it was running
nova tide
yeah it was running
So you accept you edited king service?
regal notch
just moved it to another location,
rule siad editing or stopping
nova tide
editing
regal notch
was editing means moving it
stiff egret
That's not allowed.
nova tide
I don't think so.
regal notch
Expecting the rule to be elaborated a bit more
stiff egret
I am not so sure about that.
regal notch
I was not clear about it
and few others even attacked my shell
Lemme see whats gonna happen.
Never gonna touch that hot thing again😅
winged charm
@regal notch Hey mate can you dm me?
feral niche
What to do with this binary file in smb@nova tide
nova tide
in Panda?
feral niche
Yes
nova tide
i don't remember if there was anything in smbshares
feral niche
Ok
nova tide
Also someone closed ssh service earlier.. That's not allowed.
winged charm
we love mystery binaries
run it and see
is it minecraft?
is it ransomware?
who knows
its like a mystery box
nova tide
Wow, people really like the quote "If i can't play, i wont let anyone else play"
winged charm
Like you can see who's king happily, right?
yuh you can read the data from it all you want basically just dont attack modify or stop it
winged charm
@delicate cedar so they’re just killing your shell?
delicate cedar
Nothing has been patched yet, We just keep changing the king😩
stiff egret
Then you patch the stuff 🤷♂️
delicate cedar
He's killing the shell
nova tide
Kill their shell, learn how you can hide yourself from tty sessions.
delicate cedar
Already know how to hide pid, The problem is he's killing my sessions like crazy
stiff egret
You need to hide your tty.
stiff egret
Already know how to hide pid, The problem is he's killing my sessions like crazy
No, your pid is visible, that's the reason he can kill you.
delicate cedar
Hmm, I thought remount the proc using hidepid option did the job
stiff egret
🤷♂️
nova tide
I tried using hidepid as well but it didn't work as i expected it to. 🤷♂️
delicate cedar
Did searching on the internet and found this but still can't hide the process from ps
tribal socket
what command?
delicate cedar
ssh ... -T
nova tide
I don't want to get out of my bed and turn on my PC
stiff egret
Nvm that, it's windows
grand delta
anyone up for a game >?? for a public game it literally takes 24 mins
dusk cave
anyone up for a game >?? for a public game it literally takes 24 mins
still there? i would be up for a game
urban violet
Is it illegal to modify /etc/ssh/sshd_config so that:
(a) SSH port is set to non-default, e.g. 2222
(b) a specific user is denied (with the DenyUser syntax)
winged charm
I mean
Is point b not though?
that’s never come up and the rules are still very vague
I’d say it would technically still be within the rules
stiff egret
No, making machine unavailable for/by users is/shouldn't be allowed.
solemn dust
god i wish there would be a shoutbox in koth
delicate cedar
Man I wish there would be ranked system when user win they get point and lost point when losing
winged charm
Man I wish there would be ranked system when user win they get point and lost p...
That actually is already in place and they’re working on a leaderboard system now
solemn dust
@marsh perch you want to hop on the vc? im 0xMcshoothy
marsh perch
Hey how is it going man? @solemn dust
Not sure why ssh creds are not working. I am on my way to bruteforce ssh
if it's not working then I will try FTP
Oh I see
You also changed cred?
stiff egret
Avoid the spoilers please.
solemn dust
yeah sorry
stiff egret
Np :))
marsh perch
Apologies @stiff egret
simple bough
Hey
nova tide
Hi 
grand delta
sup
simple patio
who wants to join my public game?
broken jackal
@simple patio yay am in