#koth
brave kettle
ive never played a koth is it fun
harsh obsidian
<@!692486061762543718> well played
Same.
harsh obsidian
ive never played a koth is it fun
it can be frustrating at first when you're trying to get enumeration and footholds, but as long as you keep good notes so you can pick up where you left off, you should be good
brave kettle
it can be frustrating at first when you're trying to get enumeration and foothol...
ah i see
i worry im not good enough yet
harsh obsidian
i worry im not good enough yet
that feeling doesn't go away. just keep pushing yourself and you'll get there. just don't forget to keep doing regular thm rooms so you keep learning
brave kettle
yes i recently started the complete beginner path and im now on the owasp top 10. i find all this really fun and interesting.
i think i might try a koth match sometime soon
fair adder
the thing is most people who play already know how to get in the machines and privesc so i would say try some machines in private with a dummy account of yours so you learn
or try to get as much help as you can
like aboodking helped me
now i can beat his ass anytime
π£
@ebon heron right?
ebon heron
ππππ’yesss
brave kettle
the thing is most people who play already know how to get in the machines and pr...
okay im going to play one by myself with an alt acc thanks for the recommendation
pearl gladeBOT
TryHackMe
brave kettle
read this:
will do
nova tide
There is also an awesome blog post in there π Go through that it would be super useful
wild escarp
any body up for the game
fair adder
it's all about skils men u can see that..
pearl gladeBOT
TryHackMe
nova tide
Give it and rules a read if you are new to KoTH
gentle hatch
hey @nova tide and @stiff egret I've been making a script with Koth in mind, basically a very basic blue team framework - check whose logged in and for how long, hash common directories and poll for changes. not intended to do anything active, won't harden anything but strictly monitor certain things that defenders should check for. just wondering if that would be allowed in koth?
nova tide
Sounds good to me π€ . As long as its not breaking anything π
gentle hatch
cool, ill share obv when I'm done, I'm hoping it can help people like me who were once clueless about what to check for once you have king
stiff egret
Agreed, as long as it's only a monitor, it's fine. :)
terse willow
How about we don't call people out in public for perceived offences @fair adder. If you have a problem with someone's conduct in KoTH, speak with one of the KoTH staff please :)
fair adder
k ;s
vocal shell
what are some of the low hanging fruit to secure a koth box and really lock it down from others?
quiet schooner
Weak passwords, straightforward RCE vulns
marsh sierra
Is using while :; do chattr -ia /root/king.txt; echo USER > /root/king.txt; chattr +ia /root/king.txt; done allowed?
last ether
Yep
candid geode
Is using ```while :; do chattr -ia /root/king.txt; echo USER > /root/king.txt; c...
Sometimes when I run that command, it disables my time as king, so I donβt get any points for being the king.
I usually add a sleep in there.
fair adder
Is using ```while :; do chattr -ia /root/king.txt; echo USER > /root/king.txt; c...
I wanna know what this command did please?!
stiff egret
Break it down and read.
Also, that command is not correct. There is no file given to chattr to change the attribute of.
It is an infinite loop to lock down king file.
stiff egret
I usually add a sleep in there.
Adding sleep makes the command less efficient. It gives a window to other loops, which, if are not using sleep will def. win.
marsh sierra
I wanna know what this command did please?!
What This Command Does: while means we are utilizing a while loop. : means infinite And do And Done ARe Used To Start And End The Loop
This Command Will Infinitely Make King.txt writable, Write Your Username And Make It Inwritable
Anyone Up For A Game??
Starts In 3 Minutes
sour swallow
Heyy, anyone down for a KOTH tomorrow night (West European time)?
fair adder
no
candid geode
Heyy, anyone down for a KOTH tomorrow night (West European time)?
EST here 
fair adder
https://tryhackme.com/games/koth/join/08b365703abbebad80a34ecd please join π
fair adder
no no u
sour swallow
sinful berry
that is portuguese ?
sour swallow
Yeah :) but i made a mistake, I'm actually in UTC +1 (France) . Anyway I'm free tonight if anyone wants to join a beginner KOTH, probably after 20h00.
harsh obsidian
hey <@!267010557889085440> and <@!580609268261191680> I've been making a script...
I'm very interested in seeing and learning from this. Do you have it up on github/gitlab?
gentle hatch
so I actually have a pretty basic beta version done if you like Ill push it at lunch
its nothing fancy, hashes a baseline of files in the popular directories (/var, /home, /root, /etc/, /bin), and after you have the baseline you run the tool to check if any files have been added or changed
and another feature will show you new logins via w
i've been trying to think of any other features to add, I've been looking at mirroring a given users TTY but its a real PITA to do properly
last ether
i've been trying to think of any other features to add, I've been looking at mir...
I think @stiff egret can you help you with that?
stiff egret
Yeah, tho as droogy said, it's a PITA to do that, it'll be interesting to see how you are going for it. I can make PRs once you push it on GitHub :)
gentle hatch
appreciate that, my wishlist is to set this script up as a C2, drop the agent on the box somewhere and issue commands remotely but figured I'll make the agent good first π
adding/testing one more quick feature and I'm gonna push it
urban vortex
gentle hatch
okay guys, my shell script is all set, I made this mostly with KoTH in mind to help people think a little more defensively and not just run a script to echo your name into king π
so please offer some feedback; features you'd like, you hate it, you love it, whatever
quiet schooner
I think that's a really good idea, and I agree that people need to start patching vulns smh
gentle hatch
agreed! i think the biggest problem is people literally do not know how to patch, what to look at and too busy wrestling for king
nova tide
https://github.com/Droogy/Mentat
Also check for new files in /dev/shm.
and that looks nice.
sour swallow
Beginner Linux KOTH if anyone is down https://tryhackme.com/games/koth/join/b1d4c211ba6d6c66c9db18f4
quiet schooner
ah good point, I forgot people hang out there
I'd also watch for new fifos in /tmp
Maybe watch for new network connections outbound?
gentle hatch
very good ideas thank you, network connection module to create some attribution is next on my list
fair adder
gentle hatch
okay got the outbound connection module sorted π
fair adder
hello π£
pastel forum
how can start koth?
nova tide
go to https://tryhackme.com/games/koth/ click on join a public game.
moreover read the docs for koth
!docs koth
pearl gladeBOT
TryHackMe
nova tide
how can start koth?
^
pastel forum
Thanks
grim narwhal
fair adder
helo π£
sour swallow
fair adder
oke
fair adder
π£
opal dove
@gritty tapir try get the ip of the user using w
gritty tapir
Its just avobe you
quiet schooner
Its just avobe you
Killing shells or patching vulns is not against the rules.
opal dove
youre funny bro
isn't it an unspoken rule to not run auto shell killing scripts?
fair adder
i dont know, why would i care if i dont use any scripts whatsoever
dapper yew
isn't it an unspoken rule to not run auto shell killing scripts?
freddie , you wanna do some windows study , π ? m free
opal dove
i dont know, why would i care if i dont use any scripts whatsoever
oh no worries, it sounded like you were running a script to kill shells, but I'm not playing so don't have a clue
opal dove
freddie , you wanna do some windows study , π ? m free
sure, not for too long though
we can start at the very basics?
dapper yew
sure sure .
dapper yew
sure, not for too long though
chilling in small study:)
opal dove
gimme a second
fair adder
helo π£
pure beacon
Anyone else expirienced this bug? Can't view the ip, or name of the box. Any solutions?
nova tide
Anyone else expirienced this bug? Can't view the ip, or name of the box. Any sol...
refresh might fix it?
and it's been a long time. Haven't seen you around π 
Last we spoke was 10 months ago xD
lethal mural
Anyone up for koch?
https://tryhackme.com/games/koth/join/ec693e2e89a7be7da66f9971
small axle
who is playing?
join this
4 min left
why someone disabled private key access
@matheuw
quiet schooner
Patching
ebon heron
isnt it against the rules
nope
nova tide
isnt it against the rules
re read the rules π
fair adder
helo π£
any game?
https://tryhackme.com/games/koth/join/0a7b9d8a31def42e0083a6ff 1 min π hogwarts
lethal mural
We're starting in 10 minutes
https://tryhackme.com/games/koth/join/20d3fa47de2a4b66b7048f0c
cerulean maple
lethal mural
https://tryhackme.com/games/koth/join/d85484722152ca70b42d70ee
20 minutes if anyone wanna join
ebon heron
fair adder
helo π£
fair adder
boring
fair adder
hey everyone can i play king og the hill with anyone please
???
if yes please join with me here
@fair adder
wanna play
no
can i join you please
@fair adder
?
im not playing bro
oh ok sorry to ask
tame veldt
fair adder
@tame veldt thank you so so so much
fair adder
gtg to bed good bye everyone
fair adder
53 seconds 
fair adder
https://tryhackme.com/games/koth/join/6de6c5637350d5d534526501 2 min π fast
π£ come play please π£
fair adder
delicate cedar
How I be the king so π
You have to create one if it doesn't exist.
midnight meadow
You have to create one if it doesn't exist.
I created one and insert my name into it. But it's not display on challenge screen
vocal shell
Does anyone wanna play KoTH?
fair adder
send location
delicate cedar
I created one and insert my name into it. But it's not display on challenge scre...
Not sure what's happening.
delicate cedar
https://tryhackme.com/games/koth/join/114f2156bc34626542c5659c
I thought this was public game π
vocal shell
sorry, i wanted to start it faster
fair adder
i thought too
i dont understand why im not king tho
its been some time my name is in there
ok i guess
midnight meadow
Not sure what's happening.
Maybe a bug in ctf
fair adder
well im also having some problems with this
king.txt exists and my name's been in there for 10 min but nothing happened
delicate cedar
Maybe a bug in ctf
Or someone messing up with koth service
midnight meadow
Or someone messing up with koth service
Maybe it's the problem
last ether
king.txt exists and my name's been in there for 10 min but nothing happened
Same thing happened to me in my previous game
But it was the h1-hard machine
midnight meadow
But it was the h1-hard machine
That machine is insane π₯Ί
midnight meadow
π
stiff egret
I can't find king.txt file in Hogwarts machine
Sorry for that, but king file doesn't exist in hogwarts machine by default, you have to create on in /root/king.txt.
midnight meadow
Sorry for that, but king file doesn't exist in hogwarts machine by default, you ...
I created one. But it doesn't display in challenge screen
midnight meadow
It is not updating king time
I think that's the problem
stiff egret
That happens when someone is hammering the file too much.
For example, someone ran a loop to empty the file and add their name, and it's too fast, then the file would look empty to the king service.
last ether
That happens when someone is hammering the file too much.
But I am not doing that and I am pretty sure the others in the game lobby are not doing anything of the sort π
stiff egret
π€ If that happens again, can you ping me before the game ends?
stiff egret
@last ether The issue could be with site this time, another user also reported same issue with an active game, I was able to take a look and report it to skidy, if this is a persistent issue, hopefully, it'll be resolved soon. :)
last ether
Cool. Thanks π
rain cairn
fair adder
https://tryhackme.com/games/koth/join/2b97ffc99de09666cf7eba7d please come play π π£
4 min
fair adder
wispy sequoia
@fair adder GG, atleast I got on the board this time with a flag! π
fair adder
did you figure out how to get access?
wispy sequoia
No I didn't, im guessing one of the ways in via smbclient? Or possibly brute forcing the login page with hydra?
fair adder
can i dm?
wispy sequoia
Yeah of course
remote eagle
@unreal jasper link ?
remote eagle
that wasn't nice xd
brave drum
lmaoo
remote eagle
do you see me on the box now ? :p
fair adder
i joined too late π£
remote eagle
@brave drum do me a favor
and log off root
and log in again
real quick
before the box expires
remote eagle
I think the message is hilarious lmao
you can use other shells
besides bash
to login
brave drum
gg
remote eagle
gg
unreal jasper
another 1?
remote eagle
sorry, it's getting late for me
fair adder
https://tryhackme.com/games/koth/join/7855f1fe36f3ed8e261c0b48 @unreal jasper public game
8 min
unreal jasper
@frigid current voice?
errant marten
anyone wanna play?
fair adder
https://tryhackme.com/games/koth/join/37bf85b6834883fe1b1bd4bf come play π 8 min
brave drum
toxic xd
fair adder
he is running shell killing scripts π
quiet schooner
Not like that's against the rules tho
fair adder
Not like that's against the rules tho
but should be ig
dapper escarp
but should be ig
oorrrrr hear me out. Find a way to evade his script
fair adder
oorrrrr hear me out. Find a way to evade his script
sounds good
fair adder
I !!!! Just made a bash script that automatically hacks in to the lion machine in koth but sadly I can't use it cause that would be cheating
And it adds my name to headmaster kings goodbyes ect.... and rooting the lame VM
stiff egret
Uh, you realise that's very much against the rules.
(Also, your name is supposed to be in king.txt and NOT in headmaster.txt)
brave drum
anyone 1v1 koth?
low mango
somebody wants to play koth? The game will start in 20 minutes https://tryhackme.com/games/koth/join/0053b032368bdc466aeae426
grand ember
:>
solemn dome
fair adder
Anyone wanna play KOTH ? π
https://tryhackme.com/games/koth/join/633399be604cd2d25a90c95d
Its a public room, all the other people have left lol
digital forge
double '>' appends
stiff egret
You simply have to add your name to king file. And there should be only one name. How you do it doesn't matter.
digital forge
Eg.
if you type
echo name > king.txt
then the king.txt file will be overwritten containing only name
stiff egret
Almost all languages can write to files. You can use any.
Python, c, c++, go, bash (mostly used)
digital forge
assuming the file is not empty and contains randomString
and when you type
echo name >> king.txt
then your file contents will be:
randomString
name```If you were to do lsattr king.txt in carnage machine, you can see a flag on it. That means you can only append to this file. Other than that you might want to use chattr binary.
man chattr would be helpful.
Also that is intended in carnage.
gloomy estuary
go everyone
rocky viper
go
gloomy estuary
could have put 10 or 15 minutes
rocky viper
could have put 10 or 15 minutes
Next time I go for 15
lethal mural
starting in 20 minues
https://tryhackme.com/games/koth/join/45491246496bd8a5ddf8b5b1
mortal iris
hi guys
i was playing king of the hill and i noticed that user king closed ssh then we restarted the machine but unfortunately he changed the password too
I have the proofs
short tusk
Email koth@tryhackme.com :)
mortal iris
done ^^
ebon heron
i was playing king of the hill and i noticed that user king closed ssh then we r...
are you sure that he close it maybe he change ports?
nova tide
are you sure that he close it maybe he change ports?
he's been answered on mail i guess. π
ebon heron
π
vivid scaffold
stiff egret
Hope it's not windows or Hogwarts, I'll drop out in either of them. (I can play Hogwarts if no one in game got any problem with that :) )
plain tulip
last ether
Hope it's not windows or Hogwarts, I'll drop out in either of them. (I can play ...
Bruh you go sleep π€£
"Creator of the wizarding world"
stiff egret
"Creator of the wizarding world"
lmao imma take that as a compliment
stiff egret
π np
last ether
For the record, I love harry potter
errant marten
Im in π
stiff egret
Close call, 10 secs :)
errant marten
yee
stiff egret
All the best π
stiff egret
bruh i dont even have nmap scan for this machine
use rustscan π
Ah damnit, I gotta go, deployed my code in the box. password for food user is rustscanisbetter all the best.
errant marten
Ahaha someone changed ramen password π’
stiff egret
Well, I haven't defended anything, not on system anymore,. But the food's password is rustscanisbetter, so you can try to priv esc from that
errant marten
rustscanisbetter is not the password
Well, I tried my best but I was too slow both of the users i found "food" and "ramen" passwords were changed. Good luck with the rest of the game π
stiff egret
Ah, damnit, then, someone else must've changed the password.
charred hare
digital forge
pastel forum
how can play loth?
wispy sequoia
@brave drum GG mano cant seem to find a way in π
brave drum
gg
wispy sequoia
I liked your message you left behind π
ebon heron
loth
Meaning of loth in English
loth
adjective formal (also loth)
UK /lΙΚΞΈ/ US /loΚΞΈ/
be loth to do sth
to be unwilling to do something:
I'm loth to spend it all at once.
Synonyms
averseindisposed (NOT WILLING) formalunwilling
Thesaurus: synonyms, antonyms, and examples
not wanting to do something
unwillingShe was unwilling to hand over the money.
lothI was loath to spend all the money at once.
balkThe MP balked at a proposal to raise council tax.
reluctantI was reluctant to leave because I was having such a good time.
disinclinedI am disinclined to take on the extra work without more pay.
See more results Β»
SMART Vocabulary: related words and phrases
(Definition of loath from the Cambridge Advanced Learner's Dictionary & Thesaurus Β© Cambridge University Press)
loth | AMERICAN DICTIONARY
loth
adjective [ + to infinitive ]
US /loΚΞΈ, loΚΓ°/
unwilling; reluctant:
Sheβd be loath to admit it, but she doesnβt really like opera.
(Definition of loath from the Cambridge Academic Content Dictionary Β© Cambridge University Press)
EXAMPLES of loth
loth
Most governments are loath to increase water prices for fear of political retribution from an active farm lobby.
From the Cambridge English Corpus
In fact habaneros are generally loath to own up to being especuladores (' speculators ').
From the Cambridge English Corpus
i think he mean this
candid geode
Meaning of loth in English
loth
adjective formal (also loth)
UK /lΙΚΞΈ/ US ...
Interesting.
stiff egret
PS I don't need a shell to run commands anymore, you can kill them as much as you want
stiff egret
LOL
apparently my script isn't clearing the file correctly, or you are writing in a weird way
stiff egret
π
last ether
PS *I don't need a shell to run commands anymore, you can kill them as much as y...
Why not bro? π
stiff egret
the machine is on my side
last ether
*the machine is on my side*
It looks like the machine is on both our sides π€£
stiff egret
lol yeah
stiff egret
Can I DM?
candid geode
I thought the TryHackMe bot was typing, but it was Holmes.
candid geode
check the date mate
Yeah, nothing is weird today.
stiff egret
fair adder
hey im new to koth[been 3 days]
even when i get root i cant set my name on king
/bin/sh: 23: cannot create king.txt: Permission denied
i get this
stiff egret
Read about chattr binary
fair adder
i tried that and it says chattr not installed
stiff egret
usually any player who uses it, deletes it afterwards.
stiff egret
Upload your own chattr binary
fair adder
do i install it ?
stiff egret
Download from busybox binaries.
https://blog.tryhackme.com/guide-to-king-of-the-hill/
Give this a read
leaden kernel
"You are allowed to use rootkits. But as implied by rules, while planting rootkits, make sure you do not break the machine or make it unusable for everyone but you." π€
stiff egret
what is confusing in that?
leaden kernel
I have a slight memory someone broke a machine doing that π
might be wrong though π
stiff egret
dry wigeon
I broke machines on htb
stiff egret
...
leaden kernel
Remember something you said @stiff egret "Oops i think my code broke the machine" π
Might be wrong whatever π
stiff egret
that was during a friendly match, and that wasn't any rootkit. Regardless, if hackers are hacking and fighting in a machine, things are bound to go wrong. The rule is to prevent someone trying something they don't know properly about.
dry wigeon
I had an issue on htb TBH
leaden kernel
Ahh i see π
stiff egret
re. when I broke the machine, I referred to the king file crashing because the code writing in it too fast.
leaden kernel
Ah right, that was the issue, i remember now π
Very nice post @stiff egret , should start using rustscan.. π
stiff egret
thanks :)
Rustscan is just so fast that it should be illegal.
leaden kernel
Is like nmap obsolete nowadays or is the usecase for rustscan narrow ?
stiff egret
imo, rustscan isn't something you can use in real world, (unless you tune it down using config file)
But in practice env like THM, it's just way better then nmap alone.
leaden kernel
Oh, its noisy ?
stiff egret
π€·ββοΈ you can't scan 64k ports without being noisy in less then (what was it?) a minute?
leaden kernel
Haha yeah π thats very true
ahh, i love rust and cargo, such a well made language and package manager
dont know why i suspected the build process would crash, im too familiar with nodejs
stiff egret
I build it for the first time, after that, i've been downloading the pre-compiled versions.
leaden kernel
Oh they had that available in their repo ?
stiff egret
yeah, check for releases.
stiff egret
π
terse willow
Oh, its noisy ?
Noisy, and quite likely to bring the target down
Which, irl, is not a good thing
leaden kernel
Noisy, and quite likely to bring the target down
Esch, just get some good insurance π
remote wasp
weak crag
hey guys, is there a way to write to king.txt after someone use chattr +i?
nova tide
hey guys, is there a way to write to king.txt after someone use chattr +i?
Do chattr -i king.txt and add your name in.
If you can't find any chattr binary on the system, upload yours.
weak crag
Do chattr -i king.txt and add your name in.
I did , just when i try to echo 'name' > king.txt it says permition denied...
nova tide
Someone might be running chattr in a loop
weak crag
Is that permitted? run scripts in KOTH?
fair adder
yes you can
nova tide
Depends, if it's within the rules then yes.
fresh summit
candid geode
Is that permitted? run scripts in KOTH?
I donβt think that counts as a script. A script would be, automatically uploading and executing the chattr binary every 10 seconds to a very secret directory and automatically removing files uploaded by other players to stop them from playing.
sick raptor
fair adder
gg
brave kettle
gg
brave drum
what?
spice verge
How am i making them unreadable?
brave drum
before u start making accustations actually show us proof because i know i didnt
spice verge
I'm not sure if i've done something wrong or not. How would i be able to make it unreadble?
Gain root access then
Well again.. I don't know how it's been made unreadble
fair adder
π£
static aspen
stiff egret
lsattr shows attributes on the file, and there isn't any that shows the readability of it.
errant marten
errant marten
https://tryhackme.com/games/koth/join/4533cefdd9a2b115fdeec196 24min
10min
errant marten
ahah GG!
errant marten
What user did you get root from
brave kettle
What user did you get root from
fortuna
fair adder
π¦
fair adder
i was so dead when i saw /usr/bin/ALL
brave kettle
bro i went with tyche and it was a headache
lol
brave kettle
i was so dead when i saw /usr/bin/ALL
lmao
fair adder
brave kettle
bro i went with tyche and it was a headache
xargs had suid bit set so i just spawned shell
brave kettle
gg
brave kettle
gl hf :)
errant marten
I cant cat root.txt
errant marten
ggwp
brave kettle
gg wp
spice steppe
https://tryhackme.com/games/koth/join/3d60fc432eab3bbd5abdfc2e I'm wanting to practice on this one if anybody wants to collaborate
limpid flume
Hello @cold hearth
limpid flume
Any luck @cold hearth
cold hearth
not realy and you XD
limpid flume
me too
cold hearth
next i will try nmap scripts for mysql
limpid flume
Let me try that too
cold hearth
me too
limpid flume
You found it @cold hearth Finally lol
limpid flume
gg
cold hearth
in 30 min
brave drum
ill play if u want
limpid flume
@cold hearth I patched it thats why you can't find the flag (root flag)
tulip bough
Can you send an invite url
nova tide
https://tryhackme.com/games/koth/join/b133b1a8f9b4a1de4a793c0a
this one might be still ongoing.
tulip bough
Well joining midgame isnt a lot of fun xD
brave drum
especially when they have an auto kill shell script π
tulip bough
i dont know why my account is a intermediat user i dont even know how to run nmap
π€£
well i was pretty good a year ago but i havent done it in wayyy to long
cold hearth
cold hearth
@tulip bough goodluck too
remote wasp
good luck guys
tulip bough
i need it harder then anyone i guess
tulip bough
my brain lmao
remote wasp
heauehaeu
narrow warren
remote wasp
<3
tulip bough
is it normal that i only see port 22?
remote wasp
is it normal that i only see port 22?
no
run nmap again
try enumerate the mysql port
remote wasp
gl
tulip bough
@finite garden gl
finite garden
<@!584090729551364106> gl
Thanks brother
tulip bough
even tho you will beat me so badly xD
fair adder
can i have those shell killing scripts π
stiff egret
Those shell killing scripts are not allowed. Iirc (cc: @nova tide )
nova tide
Those shell killing scripts are not allowed. Iirc (cc: <@267010557889085440> )
Nope, not allowed.
idle mulch
anyone free here ?
might play some koth together !
Starts in 10Mins
starts in 4
Starts in 1
drowsy vector
gloomy estuary
go go?
fair adder
https://tryhackme.com/games/koth/join/2d84ac5c968456ad417f65cc
me and my friend are joining
next swan
Sure!
fair adder
my bad π€£
next swan
Do you want to join into the voice chat during the game?
fair adder
i closed my shit
gloomy estuary
lol
why?
I give up friends
it is already 3:50 am and I can't take any more sleep
@fair adder @next swan
good game
fair adder
good game man
gloomy estuary
another time we can play again with more people
next swan
good game guys
gloomy estuary
gg
unkempt adder
gloomy estuary
ok
unkempt adder
yh, today is my debut on KOTHπ
gloomy estuary
unkempt adder
let's goo
shadow pivot
somebody wanna play? https://tryhackme.com/games/koth/join/341672b950edf6259539ea92
starts in 15 min
5min
errant marten
bruh joined a game that already is in process.
errant marten
to be honest there should be a warning when you enter a game that is already in progress. Maybe something like this "this game is already started, do you wish to still continue?"
in 4 mins
remote wasp
gloomy estuary
lkajfhds
stiff egret
to be honest there should be a warning when you enter a game that is already in ...
Will push that forward.
unkempt adder
https://tryhackme.com/games/koth/join/b138423147ff81342b707307
any can join|public game
pliant moon
.
next swan
https://tryhackme.com/games/koth/join/a2203e4a0cf264c35e436a39
Public game guys 20 min
remote wasp
gloomy estuary
dr black
rapid crest
yes ?
rapid crest
didn't find your process π¦
rapid crest
where ?
gloomy estuary
I created a loop by playing the command wall "message"
slim lake
rigid bone
hi
remote wasp
candid geode
I created a loop by playing the command wall "message"
π
gloomy estuary
@candid geode what?
slim lake
opal dove
anyone had much koth experience here?
stiff egret
Heyo, depends, what do you mean?
opal dove
I'm looking for a partner
fair adder
nova tide
anyone had much koth experience here?
ππ
nova tide
Yes you should.. @ me whenever you play
remote wasp
@nova tide @short tusk let's go ? https://tryhackme.com/games/koth/join/b3296ae1543d70b719fd3c6d
short tusk
Ah, yes. Ping the top player to play KoTH π€ π
short tusk
<@!267010557889085440> <@!270975958511517697> let's go ? https://tryhackme.com/g...
Doing coursework at the moment :)
short tusk
Maybe on the weekend. :p
nova tide
<@!267010557889085440> <@!270975958511517697> let's go ? https://tryhackme.com/g...
It's iftar time and I'm too tired rn
nova tide
Maybe Tinder?
imagine getting a match
blissful kettle
Bumble ftw
terse willow
IRL ftw
nova tide
Bumble ftw
same experience as tinder
blissful kettle
Nah going pretty well
nova tide
I guess i need to swipe harder π
terse willow
I just can't imagine dating someone off the bat. Like, at least make friends with them first smh
snow tundra
https://tryhackme.com/games/koth/join/533959696adb3b5d795f4e1f
Who wants to join in?
Game starts in 5
remote wasp
'suntsam' breaking the machine
GNU nano 5.6.1 x Modified
nwkz@evilab~# whereis bash bash: /etc/bash.bashrc /usr/share/man/man1/bash.1.gz nwkz@evilab~# echo $PATH /usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin:/usr/games:/usr/local/games:/snap/bin nwkz@evilab~# whereis ls ls: /usr/share/man/man1/ls.1.gz nwkz@evilab~# whereis chmod chmod: /usr/share/man/man2/chmod.2.gz /usr/share/man/man1/chmod.1.gz nwkz@evilab~# echo * .* kworker . .. -sniffer nwkz@evilab~# whereis echo echo: /usr/share/man/man1/echo.1.gz
@brazen cloud @sly crown @still bramble @short tusk @sonic belfry
still bramble
Ouch
sour vectorBOT
β Warned eae filhΓ£o sΓ³ nos compiuter#7310
nova tide
GNU nano 5.6.1 ...
- Try sending a screenshot, also it looks like your machine not the koth machine?
- Mention koth-staff for issues regarding koth not the THM staff.
- If you believe someone is breaking the rules, reports go to
koth@tryhackme.com
royal pilot
https://tryhackme.com/games/koth/22485
this is suntsam here, I am sorry guys(for those who were in this game) I broke the machine by mistake, was just trying to remove the busybox in the /bin dir
candid geode
<@!510116322722447360> what?
I donβt know π€·ββοΈ, something doesnβt sound right to me.
gloomy estuary
I donβt know π€·ββοΈ, something doesnβt sound right to me.
like this?
candid geode
like this?
Like what?
gloomy estuary
nothing, I just wanted to know why you sent that emoji @candid geode
shadow pivot
https://tryhackme.com/games/koth/join/512e020efb175ec13bd88ee8 starts in 20 min
10 min
3 min
opal dove
Maybe Tinder?
@terse willow middle aged men arenβt quite my type, but I appreciate the suggestion
terse willow
You sure? π
gentle hatch
I'm looking for a partner
when im not feeling super lazy I should test out my blue-team koth script against someone live
although its not that great for 1v1 stuff
remote wasp
opal dove
when im not feeling super lazy I should test out my blue-team koth script agains...
yeah, I could try emulate a bunch of attackers if you want
just to see how well it runs one of these days if you want?
shadow pivot
https://tryhackme.com/games/koth/join/96d2d65dea00767ff632e440 everybody can join. It starts in 20 min
5 min
fallow heart
Just getting EXPIRED when we try to start 1v1 koth. Any idea what the issue is?
fallow heart
Tried hard refresh?
Ctrl + F5 on non-Mac systems.
did that, to no avail
Also tried to create a new match
stiff egret
https://tryhackme.com/games/koth/join/1ed9016ef226384eec973789
Join this, for testing.
Starting in 4 minutes.
fallow heart
huh, EXPIRED again
stiff egret
Yep, noted, pinging others now. Thanks for pointing it out. Should be fixed soon.
fallow heart
Alright, appreciate it, thanks
stiff egret
:)
final nest
@royal pilot this guy kek @stiff egret
stiff egret
<@660511966250663957> this guy kek <@580609268261191680>
ah thanks, will ping him in DM later :)
final nest
Coolz
stiff egret
@fallow heart If you still want to play KoTH, the issue is resolved and KoTH is back and fun as ever.
Happy hacking!
fallow heart
Wohoo, thanksπ₯³
stiff egret
π
remote wasp
fair adder
slim lake
@flat pendant
junior rose
fair adder
any game starting soon?
orchid sentinel
https://tryhackme.com/games/koth/join/49aba6dc10c19987e3c34fc4 2 mins
dude
like fr you had 5 flags in the first 5 mins of the game
u ok man?
fair adder
Notes notes notes notes
orchid sentinel
and i cant get a shell!!!!!
it just hangs when i set up a nc listener
everyone in the current koth game pleeeeasseeeee reset the machine
we have 3/4 rn
nova tide
everyone in the current koth game pleeeeasseeeee reset the machine
Is the machine broken?
fair adder
Reset only happens when the machine is broken
nova tide
im pretty sure it is
What is wrong with the machine?
orchid sentinel
What is wrong with the machine?
im unable to get a shell for whatever reason
and ive done nothing wrong
it just hangs
fair adder
like fr you had 5 flags in the first 5 mins of the game
so?
orchid sentinel
something is definitely sus
nova tide
Then try other possible ways to get foothold. Resetting might not help.
fair adder
thats cheating
do you have any proof?
nova tide
thats cheating
It's not.
orchid sentinel
there is no hacker in the world who does a koth and gets 5 flags in 5 minutes
its impossible
nova tide
there is no hacker in the world who does a koth and gets 5 flags in 5 minutes
I can get them under a minute. But that's not the issue here.
orchid sentinel
ok thats not the point
nova tide
something is definitely sus
Like?
nova tide
He might have done the machine before.
orchid sentinel
but thats not the point here
nova tide
but thats not the point here
Then what's the point exactly?
orchid sentinel
i cant get a shell
fair adder
nova tide
So you can't get a shell means he is cheating?
orchid sentinel
So you can't get a shell means he is cheating?
can you please read the first thing i said
no.
it does not mean he's cheating
there is nothing i am doing now that is wrong that should prevent me from getting a shell
its hanging
nova tide
there is nothing i am doing now that is wrong that should prevent me from gettin...
Maybe try using some other exploit? Other possible way to get a foothold?
orchid sentinel
Maybe try using some other exploit? Other possible way to get a foothold?
im doing it the way i always have and i cant get a shell
ive done this koth game lots of times
nova tide
Then there are still different ways to get a shell. Well the machine got reset anyways good luck
fair adder
Notes notes notes notes
not really tho, i just remember most of them
fair adder
vital tide
anyone want to play?
fringe sigil
stiff egret
You need to share the invite link and NOT the spectator link, others can only join using invite link.
orchid sentinel
that's fun playing with people who vote reset for no reason
bro you rendered the box unusable
wdym
fair adder
i didn't π but ok
i mean if you wnat to reset it thats no problem
the outcome will be the same
again and again
did you even get access btw?
i havent seen anyone in the machine other than cleverrat
orchid sentinel
brother i couldnt even ssh into the machine because you have changed the contents of one of the files like sshhhhhhhhhhhhhhhhhhhh
i left the game anyway
fair adder
ok but that's not against the rules tho?
orchid sentinel
no way im playing against you again
fair adder
why?
orchid sentinel
removing the ssh key == rendering the machine unusable?
mods is this guy breaking the rules?
orchid sentinel
removing the ssh key == rendering the machine unusable?
you literally stopped anyone from getting access, thats the only way in to the machine
therefore being unusable
orchid sentinel
lmao this guy is a π€‘
stiff egret
mods is this guy breaking the rules?
?
fair adder
Guys let's chill out
fair adder
can you please read the rule just below that one?
4-5 ways to get foothold
Oh...Holmes is here
don't spam resets
btw all it takes to find another way is take a look at port 8080
charred delta
And for what its worth I would love to do a CTF or KOTH soon. Never did one! Watched some guys do it live today and it looked pretty kool! Would love to learn methodologies and strategies! Expect questions from me in the future!
stiff egret
All the best!
charred delta
arigato!
fair adder
quiet schooner
can you please read the rule just below that one?
Patching is allowed.
@orchid sentinel ^
orchid sentinel
ok
frail ridge
Can i edit the passwd file to block any shell from new users?
fair adder
Can i edit the passwd file to block any shell from new users?
probably not
nova tide
Can i edit the passwd file to block any shell from new users?
Just take it as a real life scenario, you are hired to defend for a company. By removing access for all of the employees would that be efficient?
quiet schooner
@remote wasp We don't post that command here
bleak trail
Heeey !
My first KOTH ever : https://tryhackme.com/games/koth/join/428c8debb7f6b149b1ab9305
if you want to join and come Discord :))
remote wasp
<@!819930253069778954> We don't post that command here
:(
quiet schooner
-warn @remote wasp Repeatedly posting destructive commands, even after being asked not to. (rule 17)
sour vectorBOT
β Warned nwkz#7310
fair adder
vital tide
anyone down for KOTH
vital tide
1 sec
fair adder
oh i think i just joined it
vital tide
<@!705962461609590875>
i started one
vital tide
oh i think i just joined it
want to play?
vital tide
https://tryhackme.com/games/koth/22711 ?
do you want to start a new one>
fair adder
no
vital tide
okok ill just do this one then
vital tide
im doing some stuff on the web server
vital tide
idk what the thing with the panda.thm thing is
in the robots directory
im still kind of a noob
fair adder
that means you should add panda.thm to you /etc/hosts
vital tide
that means you should add panda.thm to you /etc/hosts
wait how do I do this
fair adder
put 10.10.183.246 panda.thm in there
fair adder
but you don't need this if you're not going for the wordpress foothold
vital tide
lmao
vital tide
why did I have to add the host then?
shoudnt I already be able to access the wordpress directory?
got a flag ajsdbasd
im tryna find some credentials and maybe get something through the mysql
fair adder
why did I have to add the host then?
because the webserver is setup to identify virtual hosts by hostname i believe
vital tide
because the webserver is setup to identify virtual hosts by hostname i believe
ohhh icic
fair adder
so when you add it to /etc/hosts your browser sends the request with the host: panda.thm header
vital tide
thats the only thing close that I found so far
vital tide
so when you add it to /etc/hosts your browser sends the request with the `host: ...
ohhhhh I see
fair adder
i have no idea
vital tide
its just on the home page html code
its in a comment
hmmm maybe some stego on the image?
lemme just keep messing with the tomcat ajhsdbabd
vital tide
yeaaa i was experimenting
vital tide
didn't work
want to play another one after?
fair adder
nah i'm tired
vital tide
ah okok
sad
im trying stuff on the smb server
Known Usernames .. administrator, guest, krbtgt, domain admins, root, bin, none
anyone else want to play another one?
fair adder
fair adder
@fair adder why you left
fair adder
<@456226577798135808> why you left
im gonna do a ctf
fair adder
ok and i'm gonna cry
why did you leave me evan
why did you do it
because i gotta install ram
ok
i download keyboard now
sudo apt-get install 16gb of ram
vital tide
only the best
fair adder
i'm typing like this rn https://www.youtube.com/watch?v=Zcz-Hq1NP98
good luck @vital tide
vital tide
good luck <@!705962461609590875>
good luck!
vital tide
BRUHHHH WHY IS IT WINDOWS
NAHJHHHHH
IMA BE DEAD
I CANT DO WINDOWS STUFF FOR MY LIFE