#room-bugs

Have you tried restarting it

Restarting makes no difference (I can't see why it would either, unless some one has deliberatly removed the file). It is still no-where to be found

C:\Windows\System32\config>whoami
whoami
nt authority\system

C:\Windows\System32\config>where /r c:\windows root.txt
where /r c:\windows root.txt
INFO: Could not find files for the given pattern(s).

C:\Windows\System32\config>where /r c:\users root.txt
where /r c:\users root.txt
INFO: Could not find files for the given pattern(s).

@keen carbon you don’t share the VMs so nobody could have messed with it unless you gave out the IP. And restarting sometimes makes a difference cuz AWS sometimes borks the image when it spins up

@keen carbon you don’t share the VMs so nobody could have messed with it unless you gave out the IP. And restarting sometimes makes a difference cuz AWS sometimes borks the image when it spins up
@vocal zinc I understand AWS can screw things a little, I use it at work. However, removing a single text file seems highly unlikely. It seems to me that it just isn't in the machine. It could be, if the machine is fired up using docker etc... that the file is not pushed to the machine or something like that. However, if it is a self contained machine, that is just fired up, then obviously the file is not there to begin with. Turns out several people are having this issue

That's interesting

I'll have a look and see if I can find it myself within the next hour or so (:

That would be cool. I have moved on to another machine for the time being anyways

@keen carbon @dusky junco worked for me

That looks like you have done it via msf?

I did the whole thing manually, and I don't get most of that output... which is very odd

I will give it another crack in a second

i did it completely manually

thats not via msf thats a powershell shell

@keen carbon

thats not via msf thats a powershell shell
@vocal zinc oh yeah, obvs 😂 That's so wierd then. I will do it again, should it make a difference if I use powershell or not? I didn't last time, do it all via cmd

if it does make a difference its cuz theres a bug

so no

it shouldnt theoretically

if it doesnt work for you again i can do it with a cmd instead of powershell and check

I figured as much, I am not really following the guides, I am doing the machines my own way, so some stuff I do differently

yea, should still work

I'll finish off my notes for hackpark and come back to it

no rush 🙂

Thanks for sanity checking it though

of course

i used correct password and email i also test it for sometimes but it didnt work :C

Then it’s not correct

ok

||https://miro.medium.com/max/1196/1*HEv5_4pgcaz3Gv9Kf07jqA.png||

@vocal zinc i looked at write up there is a image from loging in and i think i enter everything correct ^

What you just linked there doesn’t have the password

it wrote password in the write up

Writeups should not have passwords

Don't copy from there

i tried wfuzz @next bluff there is a virtual host on that website and i just send it because some people things that i enter password incorrectly

also please dont tell me what to do @next bluff i dont like people who tell me what i should do "_"

...

It was an advice. You should not copy from writeups because it's simply a waste of time 🤷‍♂️
Use writeups to guide yourself throught out the room, not copy

I am sorry if you felt like I was telling you what to do

But I was just using the common sense

ok

anyway i linked the message in here if anyone want to see it https://discordapp.com/channels/521382216299839518/748285185803419668/748585827843440700

anyway i linked the message in here if anyone want to see it https://discordapp.com/channels/521382216299839518/748285185803419668/748585827843440700
@spring crane Regardless of whether you are willing to cheat yourself, please do not spoil challenges for others. Equally, Swafox is a moderator in this Discord; you're welcome to dislike the mods if you wish, but please do not disrespect him for doing his job and enforcing the rules. Consider that a warning.

/room/ninjaskills doesn't have the bny0 file

is this intended?

Hey, I'm stuck in https://tryhackme.com/room/rpwebscanning on [Task3] #7 ... I'm quite sure that "PHPSESSID" is the correct answer. There are only two Cookies ("PHPSEESID" and "security") available as answer, an neither does work?

#room-help this is not a bug

It's not asking for the name of a cookie

oh, thx!

@obsidian kiln bruh, did u guys look at the message, please give a look again one of the mentor told me that email and password is incorrect so i looked at the write ups which wroten in the room page i found one that has email and password i told mentor to first look at room again then come and speak with me then one of mod came and told me "that dont look ar write up" bruh :| why u think i looked at write up and mod work isnt to tell me what i should do or give me advise, i dont against the rule or anything i just give the write up that has password and email to one of the mentor please look at messages then give me advise but please dont give me advise i hate it

please read messaages completely and dont advise in the wrong channel :)

also please fix the bug

@spring crane Oh, I believe I've read your messages perfectly, thank you. Would it be the one were you posted credentials to a box and a link to a writeup that contravenes the rules around said writeups, or the one where you attempted to tell one of my moderators to not do their job that you would like to draw my attention to? The former, for the record, is very much against the rules. The latter is both rude and disrespectful.
Frankly, I do not much care for the entitlement in the attitude that you're displaying here; however, I suspect that there's a language barrier, so again, I would highly advise that you stop digging a move on.

hi in the room relevant if the timer passes the 1 hour mark it sometimes just crashes or dunno and I have to redeploy the room. anybody met anything similar ? also if I left the reverse shell open sometimes the room goes down :S searched discord for similar issue but couldn't find anything yet

the more i mess with ms boxes the more i hate windows in general 🙂

Already known, happens on most windows machines you just have to restart I'm afraid. Admins are looking into it though!

Hi

I have an issue with Mr.Robot CTF, who I need to contact?

What's your issue?

I tried to upload a shell inside the worpress admin page, but it keeps saying it "encoutered a fatal error"

not a bug

#room-help

ok thanks!

https://tryhackme.com/room/powershell Task 6 the Answer is wrong on this one its 2 but only accepts 11 - 11 ports are scanned 130 to 140 ( 0 - 11 (11th being 140) 2 ports are open the rest are closed

Friends I have a question regarding updated version of OWASP juice shop

erm... what is the question?

pls halp

@warped talon?

@wheat fractal it would be significantly more helpful if you told us what task you're working on

Sorry, from Task 3 onwards we have questionless answers

The questions are kind of weird, but they're at the "top" of the question.

Wait what?

Looks like you're on question #1

https://puu.sh/GmXuw/6b4220fd65.png

so okay what is the question here?

Look at the top.

Log into administrator account?

Yes, once you log into the administrator account, the flag should pop up.

We have flags now in owasp juice shop? Thought it was something related to logging

TY

I didn't realize it wanted flags

apologies

Yeah, @warped talon might be worth restating exactly what's supposed to be going into those answer boxes at the end of each question?

Agreed, it's not the first time that somebody had that confusion I think

Thank you very much, friends. Sorry for any inconvenience ^_^

Nah don't worry about it, it's good feedback for the creator of the room :D

❤️

Oops thats my bad. I'll state more clearly what the questions are

Hey, I don't know if this is a bug - Beginner OWASP Juice Shop, Task [5] Question 3 - I have the flag, but it's not being accepted

Did you try it on package.json.bak?

I'll make some changes so that its more clear in the question

I retract my question

I guess I was getting the flag for a different challenge. Thanks for looking though Cake, It's appreciated.

the new juice shop isnt giving a flag for the administrator page question

scroll up

not working

and already tried refreshing or restarting the machine

In OWASP Juiceshop, Task 7 Question 2, the method shown isn't producing a flag for me. Followed the instructions and the xss works as it should but still the flag doesn't pop up. I've tried it on a few fresh VMs. (Attached the edited HTTP header just in case it's something I'm doing wrong)

hello, i was making the beebop room and found another privesc on it, after connecting to the "supposed drone" by telnet, y grab the user flag, and i just mad cd /root, and i didnt need to use any another thing, just that, then i did cat root.txt, and thats all, nothing more to do, i was reading the writeups, and its supposed to use some binary, and i guess what happened its a bug, idk, anyways i say it if its useful.

hey Guys ,
i'm redoing the juiceshop ROom , seems the new version thoses to page load blank now ?
I've tried on the Hosted attack vm and mine trought VPn
Juice-sh.op/adm#####
Juice-sh.op/score-####

#room-help or #room-hints

@tall lark do you mean i should post there instead ? , i know it's a bug , i know juiceshop ( before THM ) , those to pages should load

aaa

ok ok

May reconsider how you're attempting to open those pages.

I believe it's /#/score-board or /#/administration

Hi, I guess the s should be inside of the black rectangle, there more things like that in this room (cc: radare2)

in nmap task3 after i scan i got only 1 port open but the answer is not correct for 1

Connect to the VPN

All ports are filtered that most likely means you're not connected.

oh i forgot yes mb after i reset my computer i didnt open again

For https://tryhackme.com/room/rpnessus, nessus home (https://www.tenable.com/products/nessus-home) is now renamed nessus essentials (https://www.tenable.com/products/nessus/nessus-essentials), the course task 2 should be updated.

Still on the nessus room, task 3,

A short quiz on the features and functions of Nessus, this includes the Nessus 7 manual as well for any clarification.
Now the major version of nessus is 8 not 7 so updating the doc would be nice too.

https://tryhackme.com/room/rpnessus, [Task 4] Scanning!, #9

What web server type and version is reported by Nessus?
The answer is in HTTP Server Type and Version which is grouped under
HTTP (Multiple Issues): Apache/2.4.7.
But the Apache HTTP Server Version grouped under
Apache HTTP Server (Multiple Issues) reports Apache/2.4.99.

However the room is expecting the wrong answer

Obviously 2.4.99 is an invalid version that doesn't exist and is a false positive or a bug, 2.4.7 should be the correct answer.

The room is 500+ days old. I'm not sure if Dark will update it or not. But we know it's out of date at this point.

It's not a question of out of date or not, 2.4.99 isn't a valid version at all, that never existed.

day one of the room this answer was already wrong.

I'm more or less referencing that you've left several comments, which is appreciated. But again, the room is likely not going to be updated with the updates. And it could be that Nessus gave that answer. A lot of people have completed this room while requiring that answer.

As I said 2 modules are telling 2 different versions, one if the right one, the other is wrong and doesn't exist, the room is expecting teh wrong one. People where able to solve becasue they tried both or found teh wrong first. Which doesn't prevent to solve the room, it's just the wrong answer. But if the box won't get updated it's no use to continue report bugs on it.

Thanks for letting me know.

By the way for Task 6, a web server is missing so it's impossible to answer to question 3, 4, 5, 6. Also question is expecting a version that is not the one used anymore. To answer those question I had to check a Write-up. This means that Task 6 is no longer solvable.

The room is 500+ days old. I'm not sure if Dark will update it or not. But we know it's out of date at this point.
as was said before

the room is severely out of date

A lot of people have completed this room while requiring that answer.
I was responding to that part. Which is true it's still solvable for task 1 to 5 (my previous bugs). So I just added that task 6 is not solvable anymore.

agent-sudo easy ctf, can't download the images from ftp

Well, the files are being downloaded, aren't they?

exit ftp

I have

and no they aren't it just gets stuck on that screen and nothing is downloaded

Oh, maybe thats a problem with the VPN or your internet connection

How can I download the .txt and not the images though?

I don't know

Did you try to redeploy the machine?

Yeah I've tried 3 times, that's why I'm assuming its a room bug

Oh, i'm stupid, for some reason i thought i was in room-hints, sorry

haha all good bro

For the room 25daysofchrismas on task 10 #4 im putting in the correct date, and even followed some steps from some write ups and they all lead to the same exact date im getting but i keep getting a response that my answer is incorrect...can i dm anyone about this?

hey guys im getting a weird bug in room Common Linux Privesc
/ task4 /#6 when i input the answer im getting a red box that says "undefined" instead of Uh-oh! Your answer is incorrect. and im certain i have the right answer and i tried refreshing the page and still getting the same error

here is the screenshot

hey guys im getting a weird bug in room Common Linux Privesc
/ task4 /#6 when i input the answer im getting a red box that says "undefined" instead of Uh-oh! Your answer is incorrect. and im certain i have the right answer and i tried refreshing the page and still getting the same error
@silver frost Are you running BitDefender?

BitDefender seems to detect it as RCE which is crazy because it's not related to RCE

@eternal summit yes i have bitdefender running

There's your problem then

@eternal summit

yeah exactly

It doesn't like it

Detects it as RCE which is nonsense

yup it was running on autopilot so never saw the notification thx for the heads up 🙂

typo in AD room, task 6 step 1.
using utility can we map .... should be Using what utility ...

@twin tapir

also question 1 in task 3 should probably be changed because I've seen a lot of users with varying port counts

including myself - the number of open ports doesnt match what the question is looking for

I have like 4 AD rooms which one is this?

sorry

attacktive directory

@viral cobalt take care of your shit

I mean you said the AD room, I thought you meant AD basics because that's what you were doing last time @sharp wave

When you're asking for help or reporting bugs, please use the room code from the URL or the full room title

Will do, my apologies

and thank you for the suggestion on how to be more helpful

@twin tapir is Korone the person who needs to fix that for this room? Assuming that message was related

wanted to do this room, but it's private :C
https://tryhackme.com/room/ctf100

is there a way to clone or something¡?

That isn't a bug really is it?

nope

its the room introductory networking. task8

i did whois search on facebook.com

and this is not the right answer

Not a bug

Check back. It's not asking you about Facebook.

oh shit

!!!!!

thanks jamie

Love

its been a rough day for me

Don't call me Jamie. That's objectively not my name

thanks ninja

NinjaJc01

@next bluff wrong flag in use for task 8 question 1 -r but no requset file "-u" or do with request file

@tardy lynx It's not a typo

It's answer tolerance

@next bluff not a typo?

yes

-r isn't for url

?

It's answer tolerance
@next bluff ^

Not my fault

answer tolerance what's that?

THM is using a special answer handling mechanism that in some cases can allow answers even with 1 character mistake

It’s ReGex IIRC

It’s more of a bug from THM’s side

D:

Refreshing the page will fix it

Iirc thm saves your own answer and refreshing might not work, that how i remember it when I had problems with it

That was updated I believe 🤔

I ran into that a few days ago, refreshing grabbed the 'right' answer for me 👍

Iirc thm saves your own answer and refreshing might not work, that how i remember it when I had problems with it
Refreshing seems to be working for me for quite some time.

/ # find / -name root* -type f 2>/dev/null
/etc/crontabs/root
/etc/init.d/root
/ # whoami
root```

there is no root.txt file

sorry i mean gaming server room

There is one, it's due to the privesc

If you understand the privesc you can find the root flag easily

This room claims it contains a precompiled bof executable. It does not appear to. https://tryhackme.com/room/sudovulnsbof

re-deploy

it should be there

I'll redeploy again. Tried it once. Will report back.

I'll redeploy again. Tried it once. Will report back.
@bleak jewel You're in the wrong container

Read the task carefully -- it's telling you a different port

Ah crap

thanks

Np 🙂

Not really a bug but in the room Powershell Scripting, is this part of the challange or typo, cause I was searching only for "interesting-file.txt" for a couple mins

neither

its a windows stupidness

files get appended their extension depending what type they are

if you name something interesting.txt it gets named interesting.txt.txt by windows

oh lul I see what u mean

if you go to regular windows rooms youll see flags are sometimes like root.txt.txt for the same reason

thanks for the alert totally forgot about that

no problemo

https://tryhackme.com/room/shodan some of the results on shodan have changed, so (
What is Google's most used Google product, according to this search? Ignore the word "Google" in front of it) can nolonger answered correcly according to the question .. and some more of the later questions

@green steppe 🙂

https://tryhackme.com/room/shodan some of the results on shodan have changed, so (
What is Google's most used Google product, according to this search? Ignore the word "Google" in front of it) can nolonger answered correcly according to the question .. and some more of the later questions
@vestal locust name the task numbers 🙂

They are referring to task 2, question #6.

@vestal locust name the task numbers 🙂
@green steppe ignore the one I mentioned, I must have goofed up. The one not matching is 4.1,

What show does Jim reference in his review?

in OWASP Juice Shop

@nova cove is that a bug?

i'm looking for solution -- hint says Try googling what's in his review

#room-help / #room-hints would be a better place to ask that.

ok thanx

Room networkservices, task9 #1
How many ports are open on the target machine?
I think the answer is wrong. I typed 2 got correct
should only got ftp port opening

Hello,
I'm doing the Post Exploitation room, I'm at the task 5 (Golden ticket)

After creating the golden ticket, I do misc::cmd as in the WT, but then when I do dir \\Desktop-1\c$ it says The network path was not found
Okay I didn't see the last message x)

^^

@green steppe ignore the one I mentioned, I must have goofed up. The one not matching is 4.1,
@vestal locust fixed kinda

shodan didnt show the OS

so I just changed the question lol

Was working on GamingServer room, the ssh client is real slow and at some point it freezes

is that part of the box?

No

It’s probably because boxes without sub are limited so they’ll be a little slow

I’ll test without sub and see if it is unbareable

In the blaster room, There was no history in internet explorer to check on the rdp

Don't post in multiple chats please :)

[removed]

[removed]

ow nvm this

Series badges not being issued if the rooms have already been completed prior to the Series system being added it seems.

@vale hearth Do not post discord invites here. That's your last warning

@next bluff He also posted a discord invite in #544951750801752079 but spooky took care of it

👀

Okay, but one more invite = ban

So. I got a problem on https://tryhackme.com/room/25daysofchristmas on day 9. I cant access the ip and therefore cant get the flag

Are you connected to the VPN?

Are there any errors?

Does it load forever?

How do you know you can't connect?

I am connected and it says the server isnt available

specifically The connection has timed out

Possibly VPN

No. my vpn is working

What;s the machine IP?

Its not a deployable machine

thats the thing

Its just the IP

Oh Day 9

ye

I thought you said task 9, my b

np

Are you going to port 3000?

uhhhhhhhhhhhhhhhhhhhhhhhhhhhhhh

id like to say yes. but then i realised how dumb i am lol

I kind of got confused on why its not deployable so i didnt even think further

McSkidy has been going keeping inventory of all the infrastructure but he finds a random web server running on port 3000.

yea i read that probably three times lol

No worries, its working now though right?

yep. thanks

Awesome, happy hacking!

ye thanks

https://tryhackme.com/room/owaspjuiceshop
is somthing wrong with answers fields of this room or i'm wrong

When i did the room it was okay, what's the problem you're having?

https://tryhackme.com/room/attackingkerberos mimikatz keeps getting deleted after I use it once.

sounds like you did something to make defender trip up again

reset the machine and it should be fine

I can’t imagine the machine just rose up from aws and decided to turn on defender

but I dunno aws be doing weird things

AWS can do really weird things to Windows boxes. When I was testing Set it kept opening RDP and closing Win-RM

On literally every re-upload 😆

Not sure what else I'm suppose to do to not make that happen. I'm literally following step by step instructions

hello people maybe you can help

I am about to complete the learn linux room

but I can't see any question box

Leave and rejoin the room

Leave the room and rejoin

It won't reset your progress

ok thank you I'll try

thank you @hazy tiger and @eternal summit now I can see the question boxes!

Happy hacking!

really grateful!

🙂

i've got some clicking to do

😄

@timber bone all the answer fields are the same

what do you mean? they have the same number of characters? it is suposed to be like that

@timber bone ??

OWASP Juice Shop room does not specify what it wants as answer ie: password, flag. From the context I assume it is asking for flags however to a new comer this may not be obvious and could confuse them

Shodan.io room - Task 4 - #5 seems to be messed up. It expects 6 characters for the operating system. That's neither linux or windows

Not a bug, Linux and Windows aren't the only operating system.

https://tryhackme.com/room/25daysofchristmas in this room after executing 2-3 commands either im unable to execute another command or its taking so long to execute (like:ssh, ping, or commands after ssh) I tried terminate the machine and deployed again but facing the same issue

i am facing the issue after task 9 day 4 before that it was fine

Is anyone else having an error on the upload vulnerability course, with the Magic section. I found the /graphics and /assests but i keep getting a 301 response and will not work on just this page.

Message #room-help

Is anyone else having an error on the upload vulnerability course, with the Magic section. I found the /graphics and /assests but i keep getting a 301 response and will not work on just this page.

Hi ! That's not a technical bug but an error in a room :

In https://tryhackme.com/room/commonlinuxprivesc at question 6 the hint is :

'Think about where passwords are stored on Linux'

Which is /etc/shadow

but the good answer is /etc/passwd which contains users only

Shadow holds the information

Passwd holds the passwords

The encrypted passwords and other information such as password expiry information (the password aging information) are stored in /etc/shadow

Older UNIX variants stored the encrypted passwords in /etc/passwd along with other information about each account.

Newer ones simply have a * in the relevant field in /etc/passwd and use /etc/shadow to store the password, in part to ensure nobody gets read access to the passwords when they only need the other stuff (shadow is usually protected more strongly than passwd).

oh ok

didn't know that I tought it was an error

thanks 😉

That's alright. Remember google is your friend 🙂

is this a bug or what i added announcments role since that day some new rooms don't appear in new rooms category

Wut

thats kinda weird

but for example the newest room

i couldnt find it i copied the link

I don't think the announcements role interacts with your THM profile

But the new rooms haven't appeared in the new releases section for a while

I don't think the announcements role interacts with your THM profile
@hazy tiger yes

ow

i see

Not a bug, Linux and Windows aren't the only operating system.
@compact meadow Thank you. I ran out of requests.

on #4, the accepted answer is Mountain View but it does not show up in the list of top cities for US

Hi, am currently doing Owasp Juice Shop, task 4 #1. I have brute force and gotten the admin password. But after successfully logging in as admin, there dont seem to have any flag.

I think the Blue box is slightly borked. MS17-010 won't complete successfully. I have terminated and launched the box multiple times, reloaded my connection pack a couple of times and ensured the exploit options are correct each time.

bLuE iS nOT bROKeN

I'm guessing you get this everyday? lol

Yeah, Eternal blue is a very un-reliable exploit. 😄

8 times though? 😂

!dark

damn it

Hop on over to #room-help and I might be able to help 😄

.

Hi I have query with xss room

It's being replaced

i'm unable to complete Dom-based xss task

@robust wadi Right now, I'm developing a replacement for it 😄

The issue is it looks for specific payloads to generic problems

in writeup the tag is "imgdiv.innerHTML" and now in room it is "imgEl.innerHTML"

is this a cause ?

Probably just messing with different elements

The room won't have changed

am i missing something ??

@eternal summit is this reported by others or is it me missing something ??😅

Is what reported by others?

The whole room is a painful mess really, that's the main reason that I'm working on a replacement

cool

then i will move to another room.. till xss is ready 😆

The issue is it looks for specific payloads to generic problems

ROOM: Jupyter101
Task: 3
Supporting material excerpt link is dead.
https://blog.cmnatic.co.uk/posts/thm-room-jupyter101/

@dusky junco

fixed, ty @fossil relic @obsidian kiln give it a refresh (:

👍

In Blaster 1.2, task 3.1, it looks like the search history has been cleared in IE. Is that accidental? I can't view what I think I'm supposed to be looking for.

Known. Check pins in #room-help

Gotcha, thanks. Didn't see it in the known issues tab so didn't know if it was known or not. I'll check there first from now on. 🙂 Thanks!

JWTHS256 VM before checking a valid JWT

supposed to identify is it input identical to the sample JWT. otherwise can just copy the default to get the flag.

hey, so I'm doing the Buffer Overflow Prep Room, and when fuzzing using the first script, it crashes after the first iteration and send an exception. Any ideas?

What's the EIP value when the program crashes?

EIP 76F670B4 ntdll.KiFastSystemCallRet

Try using Python2 🤔

yup, works now 😄 thanks a lot

i wasnt sure about where to post it but anyway
In the cc : radare2 room , a question is "How do you enter the console without opening a file?"

actually the answer would be -- , but they expect only one -
moreover , the header tells us to "Include all parts of the flag including the -"

Question and Task?

Oh I see, Task 2 Question 4

yea

What it is saying in the header is include the - for the flags but to enter the console without opening a file, you don't type -- you just type -

Well at least in my experience I have not

ok so i tried with a single tick and it works

but (in my opinion ) , a cc should be based on the man of the software (unless they give tricks which they didnt in this case )

@wheat fractal ree

the web page at Scripting Room is kinda broken

it works for like 40 seconds

then stops working for 3-4 mins

stops responding

or is it supposed to happen?

10 mins already and it's not up yet

yeah, i had similar issue wasnt sure if it was meant to be like that or not

@safe hatch please read the information before reporting a room

Each port is also only live for 4 seconds. After that it goes to the next port. You might have to wait until port 1337 becomes live again...

lol, port 3010 is not supposed to change...

@hazy tiger

It doesn't and either way you don't need it. I just put a script to refresh the page until I get no output and it is still running.

You probably caught it in some downtime, if it does not come back up its is clearly an issue which can be solved by restarting

But if you are using the port, you're doing it wrong

gamezone room got a bug where local forwarding of ssh is not working

False

You’re just doing it incorrectly

i followed the writeup still got the bug

#room-help then

any known bugs with king service ?

Not really

Can room snowball be used again ?

??

The VM has been replaced with a similar but different VM

@eternal summit It should have been pulled again?

Yeah but if you're joined to the room then you can access it

Ah, yeah

Super tnx gr8 job

Hi, in nmap room, the hint of the question 4 of the task 3 is worng, at least nmap show me a version on the virtual machine that is not which the questions accept. Look it, I solved it with a version that is not wich nmap shows me.
It shows me a newer version.

Guys, not sure if rpwebscanning is a non-XSS vulnerable or it's just me that I can't run ZAP
Task 3: Q 8

The alert is deprecated and won't show up. It's a known issue. @still jackal

is snowball still bugged?

No, it's not

It's still not public though

Is CTF100 room working i can't ping any machine?

@upbeat hare have you tried -Pn

Actually I did nmap scan it didn't work so I tried pinging the machine all packets are lost.
I did few questions few days ago so I thought it would work.

uncertain, try redeploying

Did that many time

hmm, i need to boot that room up to see what's going on, i've worked on it a while ago

Okay I will check nmap with no ping

was it not that you had to do a port knock from 1 stage to the next

Oh thanks chev it worked
🤦‍♂️ i was doing wrong

it's okay lol

don't worry

nightmares are hardly forgotten

OWASP top 10 room task 21 question 2 Go to http://10.10.153.79/reflected and craft a reflected XSS payload that will cause a popup saying "Hello". gets me to an error page meanwhile when i remove the /reflected, i get to the home page of the XSS Playground and then manage to get to the /reflected right link. i don't know if it's a bug. but feels to good to let you know

OWASP top 10 room task 21 question 2 Go to http://10.10.153.79/reflected and craft a reflected XSS payload that will cause a popup saying "Hello". gets me to an error page meanwhile when i remove the /reflected, i get to the home page of the XSS Playground and then manage to get to the /reflected right link. i don't know if it's a bug. but feels to good to let you know
however question number 4, Now navigate to http://10.10.153.79/stored and make an account. that link works and getsme to a working web page

If you used discord’s find feature you’d figure out this has been reported many times :)

If you used discord’s find feature you’d figure out this has been reported many times :)
@hazy tiger sorry for not doing it i suppose

In the CORP room you cannot access the admin screen because it says that the password must be changed and the error will not go through. So this box is broke

No it's not

You can change the password. It works. @wraith tangle

Yeah it wont let me login anyway.

Use a different client. It's not broken.

because it says that the password must be changed tells you exactly what you need to do.

Can assure you it works

I am starting a new machine up and see what happens

Now the password for the administrator will not connect due to the login failure, but all other accounts will connect

Nevermind I went in a different way without a password.

however question number 4, Now navigate to http://10.10.153.79/stored and make an account. that link works and getsme to a working web page

OWASP top 10 room task 21 question 2 Go to http://10.10.153.79/reflected and craft a reflected XSS payload that will cause a popup saying "Hello". gets me to an error page meanwhile when i remove the /reflected, i get to the home page of the XSS Playground and then manage to get to the /reflected right link. i don't know if it's a bug. but feels to good to let you know

@latent flint

It’s been reported thousands of times. Please read the chat before reporting bugs because it’s annoying

It’s not being fixed either

:^)

Discord has a search feature. Use it.

Don't be rude. Jabba is a CM

Jabba deserves respect

No but that person has earned the role. Hence if that person should be respected not told to "don't read chat". Anyway enough not gonna continue this

SQL Injection In [Task 6] Unit 6 - Boolean based SQLi

10.10.180.144/sqli-labs/Less-8/?id=1' OR 1 < 2 --+ = True
or
10.10.180.144/sqli-labs/Less-8/?id=1' OR 1 > 2 --+ = False

should use AND not OR

Why should? It works with OR and this was just a showcase example

Later on you'll see AND used (where actually needed)

because those 2 lines behave the same. above description said it's 2 cases since it's boolean SQLi

what's the point to make 2 payload, returning the same result?

Because it's a showcase of both True and False operators

= True
= False

@green steppe I have some input regarding your rust room. May be a bit much for this channel though.

Is it a bug?

Some questions expect answers that are not completely correct or just wrong in some cases.

So I think so.

Doesn't sound like a bug..

maybe post it in feedback?

@cinder bone misspelling. also, i dont know if you're actually polomints but you're the only one who came up when i searched for polo lmao

nice room btw

Doesn't sound like a bug..
it is a bug if it’s wrong 🤔

@wheat fractal Yes I am he, thank you very much for letting me know! I'll fix that right away

np :D

also, great room @cinder bone. provide a lot of resources and further learning, and very straight forward. many thanks for creating 1st and 2nd one as well

@wheat fractal Thank you very much! Who knows, maybe there will be a third 😉

https://tryhackme.com/room/jokerctf
1.) Title (jokervm) does not match room URL (jokerctf)
2.) Question 8 contains "aunthenticated"

VM Name doesn't have to match room code.

You can have multiple VMs in a room so it wouldn't make sense for it to be tied to the room code

Missing word on "Learn Linux" page 32/43?

👀

@wheat fractal ⤴️

@eternal summit

Will send shibe if u fix now

fixed

@eternal summit

Pars actually fixed a bug in Learn Linux? 🤯

I always fix bugs!

there's just so many of them

Did you receive the shibe? @wheat fractal

I did

James always follow through

Post it here!

Or in #general

I tab through and click enter and generally use my keyboard a lot and... apparently I got the correct answer here in the rpnmap room 😅

Hmm perhaps I put in the correct answer, then deleted it cuz there was a delay in the "oh no that's the wrong answer" and then the input field was blocked from the fact that it was correct. Bottom line, I just gotta slow down sometimes haha

in the room Network Services task 9 question 1 : How many ports are open on the target machine? the answer is 2 but it have only one port when I do nmap -p-

In the room Common Linux Privesc there isn't any login information for accessing the deployed machine. I looked up a writeup that gave me credentials for accessing the machine and then I was able to start going through some of the tasks.

Is the lack of credentials in the getting connected section intentional? I spent a lot of time looking around the instructions in case I missed something.

You are definitely given credentials.

@gentle echo

reading is hard

So drained by the Day 8 OWASP10 I can not get the payload to connect to port 4444 no matter what flags I use it does not connect with my kali linux

The payload is all correct with IPs and port

need help please

#room-help first please

Hey so in the "Crack the hash" room the "BEAST GLATISANT - Cracking the hashes by glatisant" http://glatisant.me/blog/2019/06/24/tryhackme-crack-the-hash.html the link is broken.

I have also created a write up for this room and submitted it via the website 🙂

Is someone in Easy Peasy Room?
I stucked I ve found all hidden directorys /hidden /hidden/whatever /robots.txt
then I read a Writeup and there should be something in the HTML but I didnt see anything there.. 😦

#room-hints

This is my robots

#room-help

In https://tryhackme.com/room/25daysofchristmas there is a bug. ||On day 13 you should be able to access chrome on the target device using rdp to view the search history. Though on my machine, chrome wasnt installed.||

Oh and also. That picture is missing. (https://carlisletheacarlisletheatre.org/images/aws-logo-cloud-5.png)

@fervent hearth The VM changed to Blaster rather than retro, not a bug

Sooo.. This isnt really a bug. I just wanted to address that the 25daysofchristmas writeup [Hacking walkthrough] THM: Cyber of advent (Christmas Event) by DesKel doesnt exist anymore since the domain isnt active anymore

It’s on a github one now iirc

Lemme see if I can grab a link

https://deskel.github.io/posts/thm/advent-of-cyber

beat you to it, boo

someone should update the link tho

only admins or muir can

someone

Thanks Spookz lmao

Sooo. idk if im on a typo or if im just dumb. Ive been doing day 22 of the 25daysofchristmas. The task is i should read local_8h before main ends. It tells me its 8, the source (which is provided) only makes sense as 8 too. So why does the answer say 9?

if you refresh does it still say 8?

refresh what

the page on THM

you mean 9?

yea

yes it does

and similar local_4h (b in the sourcecode) should be ending with 4. though the answer is 2

i havent done the room, can you show the entire logic?

the assembly logic?

is local_8h just a?

yes

and local_4h is b

is that the whole code that you showed?

yes

huh seems buggy to me

@obsidian kiln fixxxxxxxxxxxx

good. ive been finding "bugs" for the whole day. first time something actual is a bug xD

i mean to be fair i havent done the room so i could be totally wrong lol

well. but thats the only thing that makes sense

Here. thats the assembly

are you looking at the correct binary?

im looking at a writeup and it doesnt look like that at all

its not specified if its the file "if1" or "if2" im trying if2 right now

fucc

lol

i literally read through the task like 5 times lol

yea ok. now the assembly makes sense too

muir ignore that tag, we're sorted

This would correspond to local_8h = 9 and local_4h = 2

which is the answer that you showed above

yep

🆗

👌

In Android Hacking 101, Task 6 tells you to download the BlackHat USA app and find a firebase instance in it. Problem is, that app has been changed from BlackHat USA to BlackHat Asia on the play store and no longer contains a firebase database. I tried getting an older version of the app that has the firebase instance but the one I found has a different database than of what the task expects for answer. I don't think the room can be completed like this

(maybe add the apk from 3rd party sources like apkhere etc?)

I looked at 3rd party sites but none have the blackhat usa apk (the one I found doesn't have the correct firebase instance)

https://discordapp.com/channels/521382216299839518/522158539129618453/757199416745656370

as I mentioned in the link above, this code will also not run

fn print_name(name: String) -> u16{
    println!("{}", name);
    6;
}

@green steppe I included the second snippet here to keep it more organized

@mental fulcrum I fixed that

can you also confirm that this question expects the right answer?

its just 6 now 🙂

task?

yeah

Error Handling

yup

https://doc.rust-lang.org/std/result/

it's right 🙂

Where do I report spelling mistakes in a room? 🙂

Here

https://tryhackme.com/room/googledorking

parantheses

oh, I think that you meant more common Result, I wouldn't expect a type of hint to return an error so I was thinking of
Result T: hint>

but I found the explanation thanks to Rust-analyzer

@cinder bone Task 9 Q2 on Network services 2 depends on what client you have installed, mysql or mariadb.

ill just leave this here ( https://tryhackme.com/room/kenobi )

https://tryhackme.com/room/toolboxvim

correct wording should be sudo pacman -S vim

no install

also

it should be Type "vim"

since typing Vim won't work because of case sensitivity

The problem is Vim.

spelling mistake in cross-site scripting room. im not 100% sure who to tag here since the room is created by the account tryhackme, but ill tag an admin

@lucid oasis

another bug: this hyperlink leads to http://xss-payloads.com/ without the www. which leads to a weird page

Hey, thanks for reporting @wheat fractal! I choose you @obsidian kiln, is this something you could have a look at after classes etc please?

https://tenor.com/view/pokemon-poke-ball-ash-i-choose-you-gif-4444793

@cinder bone Task 9 Q2 on Network services 2 depends on what client you have installed, mysql or mariadb.
@eternal summit Thanks for saving my day. I have installed mysql and was scratching my head on why my answer was wrong.

np :D @dusky junco

@green steppe
I, think that you might want to add a few things to your Rust room.
As pentesters part of our job is about offering solutions, and telling Python developer that low-level language is a good alternative sounds crazy at first. But Rust holds your hand even here, as it supports calls from functions written in other languages.
It means that you can use it to rewrite security or performance-critical parts with Rust and they will cooperate with your existing codebase(Discord switched to Rust from Go, Firefox is partly using Servo as it's web engine and you probably didn't even notice).
Here is an example of calling a C function inside Rust.

extern "C" {
    fn abs(input: i32) -> i32;
}

fn main() {
    unsafe {
        println!("C believes that the absolute value of -3 is: {}", abs(-3));
    }
}

It uses unsafe because it can't guarantee anything outside of its ecosystem.

Those libraries of resources would also be nice to have in Conclusion.
Huge list of resources: https://github.com/rust-unofficial/awesome-rust
Smaller list, but it contains resources in foreign languages: https://github.com/ctjhoa/rust-learning

Last but not least, I believe that it's not fair to omit the only relevant(in my opinion)trade-off of choosing Rust.
Rust does not support inheritance, you have to individually implement behaviour for each data type you create. If you think about it long enough, it becomes an advantage, at least from the security point of view, as it gives you time to rethink what you are doing. You might want to use different hashing algorithms or authentication methods for employees in different departments or customers.

@mental fulcrum thanks a lot! I'll add them now 😄 (well, they'll be added soon™️)

added!

You're welcome

I also liked that challenge of yours, it took me longer than I would like it to, but I finally got my messy solution

does anyone else have troubles with the 'One Piece' room?

Yes lmfao

how about Blaster?

What about blaster @mental fulcrum

if you're referencing the fact that only two ports are meant to be open when there are clearly more, that is a windows bug we can't do anything about it :p

I get mixed results from scans, I had either 3 or 6 ports open, but the answer is 2 but yeah, I assumed that it's just Windows thing

Most if not all old rooms have been noted.

I also couldn't finish running the exploit, System32 directory was listing only directories and a txt file

I'm downloading the VM now, because working with a single core Windows machine is just a pain

Root Me has the root privilege exploit stored in /var/www/.bash_history

@hazy tiger
same thing, I can't see any other files, is it also a Windows thing?

I'm confused

this is the VM from Blaster room

one of the tasks hints that checking browsing history might be useful, but it's empty

Known issue

Check pins in #room-help

The thing you are looking for is there @mental fulcrum

@faint ridge the CVE number is there, but I'm already past that point, now I can't run this exploit, because the cmd.exe is not listed in System32 directory

Something has gone wrong then

Have you restarted the target machine?

I downloaded the VM and tried to reboot it over a dozen of times

I also can't get network connection on this box

regardless of network adapter settings

You downloaded the VM?

@mental fulcrum Can you explain what you mean by downloading the VM?

I'm sure Dark stores the VMs on his github

For download

I got it from his website

from his google drive

I guess that it's his drive

Try the one on the website

The offline version may not be allowing you to exploit due to incorrect configuration

okay, also basic html also doesn't work or I'm doing something wrong

Well

Please just use the one on the website

As the offline version may be out of date or bugged

As I did blaster the other day I can confirm the deployed room works

well, in my case it does not work

got the same issue from the room

guess that it's time to move on to another room

Wait

Can you type cmd.exe into the task bar at the top?

I don't know if it will work but it's a try

@mental fulcrum You appear to be in the wrong directory....

Try C:\Windows\System32\cmd.exe

nope I'm in System32

the screen above shows the full path

@hazy tiger you're right

it worked

thanks

I totally forgot about it

:p

thanks

I love how the spelling mistakes I pointed just got left on read

In Advent of cyber day 10 I've been trying to exploit the server using struts2 exploit. But it always end up with exploit completed but no session was created

#room-help is probably better, it's unlikely to be a bug

@eternal summit i think its a bug beacuse every option is right still getting this

I don't think it's a bug. #room-help.

Would a bug also be an answer that is incorrect within a room?

ya

Technically yes

but make sure you've put the answer in correctly (the input box tells you the format in *), it's defo correct

Shouldn't this be 3 ?

@dusky junco 🤓

What room is this for, sorry? @rustic stump

The new one, iOS Forensics

Hehe yup!

Thanks for pointing that out

Refresh (:

Appreciated!

That's a nice room btw 🤓 Thanks

not sure if it's bug on brainstorm, but I'm trying to understand why Task 1's "How many ports are open?" does not seem to tally with what I enumerate. Watched some videos and walkthrough and I don't find anyone seemed to explain

@green steppe I can’t get a valid answer at Task 4 #5 :/ for shodan room

In the Network Services 2 room. The bash file you have to download doesn't seam to work and gives errors when using it as instructed. Do I report that here?

I am Unable to SSH to the machine deployed in Room: "CC: Pentesting"
Task 24
It just takes a lot of time and display's connection closed by <IP> on port 22
Any help!?

@unique tusk
Go to #room-help u may get some help there

@obsidian kiln You there?

I think you're missing a word in your (glorious) file uploads room in task 9: "Bear in mind that this technique be very effective ..." 🙂

Not much of a bug, but thought to report it anyway

Fixed, thank you @halcyon anchor

introtox8664

what about it

hi please check the highlight part

what about it
@hazy tiger

Oh Isee I dind't see the other higlighted part

@hazy tiger
can you please highlight parts in image written in points

@hazy tiger
introtox8664
sorry I am disturbing you again

It’s not my room sorry

how can i find whose room it is?

either scroll all the way down, or sometimes there is a "More" tab to see

@worldly apex thanks

np

It’s one of the Admins

Ashu's specifically

Thank you Ma1, wasn’t aware of that 😄

Room tmuxremux has a typo

horizontal should be -h and vertical should be -v

I think that kinda depends on how you think about it

well the questions asked below don't work on how I think about it, they accept only 1 opinion!

Ok, but they work in the way that it describes

https://tryhackme.com/room/tmuxremux

task 5 question 2 and 3 are the same

No they are not

@rustic stump they was

They are different rn

No they are the same still for me

Read it carefully

I am not aware if they were changed since posting

No still the same

Read it carefully
@faint ridge What, no. They are not the same

Task 5. 2 and 3 both say the same thing

No they don't

Oh yeah it's been fixed then

They both was saying up earlier

The Learn Rust room has a stray quotation mark in this example in Task 5 https://tryhackme.com/room/rust
@green steppe

The Learn Rust room has a stray quotation mark in this example in Task 5 https://tryhackme.com/room/rust
@green steppe
@proper hatch thannks!

How to connect to in browser kali Linux machine using rdp ?

That doesn't seem like a room bug to me?

yeah, sorry... wrong room

@flint plover Not a bug

Soab wrong room XD

My apologies for posting if this isn't the area per se, but I am going though the learning Linux room and it is missing the instructions on when to change user accounts while proceeding, and also when change the home directory as well. I wouldn't mention it if it weren't something that a super new person to Linux might not get.

@polar heath I believe that the instructions go over all commands needed and just a little thonking is needed. If the user is still having trouble they can go an watch dark’s new video on the rooms

Sure, why not improve on the guides. As is is best XD

we’re all about hand holding but I don’t believe that our goal is to hold your hand at every possible point @polar heath

Except it's an important detail you miss. In a guide designed for people new to linux. In fact, I wouldn't have noticed if I didn't already know a decent amount of linux. That's the point.

Idk if it's a bug but eternalblue exploit doesn't work on Blue room for me

which version of metasploit are you using

6

that one is broken you need to use metasploit 5

Thanks!

You can find the download link in #site-support in the pinned messages

Anyone who have completed Jeff?

#room-help

there is a bug in room blaster when i try to get the flag using msrdp

the web browser history does not contain the flag

any solutions ??

||msf5 exploit(linux/http/nagios_xi_authenticated_rce) > show options
Module options (exploit/linux/http/nagios_xi_authenticated_rce):
Name Current Setting Required Description

PASSWORD n3p3UQ.....Wdy yes Password to authenticate with
Proxies no A proxy chain of format type:host:port[,type:host:port][...]
RHOSTS <IP> yes The target host(s), range CIDR identifier, or hosts file with syntax 'file:<path>'
RPORT 80 yes The target port (TCP)
SRVHOST 0.0.0.0 yes The local host to listen on. This must be an address on the local machine or 0.0.0.0
SRVPORT 8080 yes The local port to listen on.
SSL false no Negotiate SSL/TLS for outgoing connections
SSLCert no Path to a custom SSL certificate (default is randomly generated)
TARGETURI / yes Base path to NagiosXI
URIPATH no The URI to use for this exploit (default is random)
USERNAME nagiosadmin yes Username to authenticate with
VHOST no HTTP server virtual host
Payload options (linux/x64/meterpreter/reverse_tcp):

Name Current Setting Required Description

LHOST <tun0 IP> yes The listen address (an interface may be specified)
LPORT 4444 yes The listen port
Exploit target:

Id Name

1 Linux (x64)
msf5 exploit(linux/http/nagios_xi_authenticated_rce) > exploit -f

[] Started reverse TCP handler on <tun0>:4444
[-] Exploit aborted due to failure: not-vulnerable: Target is not vulnerable. Set ForceExploit to override.
[] Exploit completed, but no session was created.||

sorry because its a long message

in nax room

any solutions ??
@wheat fractal the thing you’re looking for is in #room-help’s pins

im doing the blaster room atm. the room tells me there are ||2|| open ports.

though im getting more of a ||6 port vibe||

@fervent hearth windows machines are unreliable

lol

should include a hint then @hazy tiger

It shouldn’t

trying to exploit ||CVE-2019-1388|| in retro doesnt work because this dialog box pops up

setting the default browser in the settings doesnt work either

It does.

I did it yesterday

This is intended behavior

In the default apps i set the def browser to IE though it doesnt change anything

There is also a kernel exploit for this particular CVE, if you wanna research some more

Which is easier

imma look and come back if i need any more help. thanks so far

There is a workaround for this too

Although I did not set the default browser cause that didn't work for me

so the "user" patched that vulnerability and thats where im hanging off right now?

@rustic stump

No one patched anything

why do i get that prompt then? i cant find any reason for it

There's a workaround 🙂

not in the other remix rooms i played

any tips on the workaround?

i searched for patches but didnt find anything i could reverse

#650425164894568455 @fervent hearth

Check the pinned messages

It's a Windows Bug that Dark activated deliberately

ah okay 🙂

Thanks Muir

not quite a bug. but really misleading. Advent of Cyber [Day 8] SUID Shenanigans #3

tried 2 hours pkexec /bin/sh to get the root. It required Auth as a user named ubuntu. keep going the horizontal path with login as ubuntu.

please just remove the SUID on pkexec since the answer is just a normal binary. run it you get the root

@lethal dagger pkexec is a binary that usually has suid.

Somewhat of an alternative to sudo. This isn't a bug, seeing as it's kind of core to ubuntu. Along with a long list of other binaries.

good to know that, thank you. maybe change the Auth to root user or just remove ubuntu?

What?

You fell down a rabbithole in a box. I strongly disagree with that being classed as a bug.

yeah, it's a not a bug. it probably can save other people time if that ubuntu user doesn't exist? i mean why there is a rabbit hole 😆 . since it's only a walkthrough room

Because that's how the OS comes

https://tenor.com/view/fall-tip-over-fall-into-hole-stumble-tremors-gif-16628039

sir who put this hole there

by not specified the username(user ubuntu here), then it will be root. like me, i won't think about using that

in the room "Common Linux Privesc" Task 6 - #3 - a password has to be created, and the hash has to be posted as answer....
hashes are different with each execution of the command.
Its kind of frustrating to post the hash and it is prooved wrong.
I know, that it's quite difficult to test if everything was done right.... maybe there is an other solution, than parsing only "the" one hash?

@ruby quest if you followed the directions and used the salt and password provided then the hash will be the same

#room-help

ok^^

thank you.... it was just a lost - 🙂

Hello all. Currently in the Cross-Site Scripting room task 7 "XSS Keylogger". Whenever i attempt to run the script, it disconnects from the server. Then the whole deployed IP cant connect to my browser

I tired restarting the room and waiting ten minutes. The site returns, but will disconnect again when I attempt to repeat the task

The room is being remade ATM

So that will fix all these things

Ah, thanks. Will move on to the next task then

https://tryhackme.com/room/introtonetworking task 6 question 2. it tells you to ping muirlandoracle's site adn ask for the ipv4 address but it doesnt return it.... not really a problem since there are multiple ways of getting the ip

Not a bug @split pebble

hi team! i was solving shodan.io and the answers have changed over time. but the thm room accepts old answers which are no longer correct. please kindly solve the issue.
Link to the room:https://tryhackme.com/room/shodan

Due to the nature of Shodan updating a lot, the room tends to break quite often.

If this is the case, post on Reddit / The Discord / The forums these details:
* Question / task number that broke
* The correct, current answer
* The search query (URL of the search) that shows you this answer.

guys, I don't know why, but I can't ping the
The Blob Blog machine. I can reach it with my browser but I can't ping it for some reason. Curl works fine too

It's not a vpn problem because, the other machines work fine as well

machine *

Intended. You don’t need to ping it. If you can reach it from the web browser that’s all you need

ah, my bad then.Thanks

Just noticed the Beginner Pathway is showing all rooms completed but the border of the Linux Fundamental section is still showing red

check the rooms for unfinished tasks

if the room was updated after you finished it it'll still show up as completed

@acoustic fjord that would still constitute a bug no? I mean, I would expect to be notified which room was updated so I can finish it 😉

you don't really get notified about room changes

not sure if its a bug or im just missing something on my side.

then its nothing

the new mnemonic machine.

Looks like you can not download the file, isn't it?

its a 404, not even an authorization restriction or something like that

Are the webmasters path is right? I don't think it's a bug. Just ask in #room-help . 🙂

i think its the right path.

Are the webmasters path is right? I don't think it's a bug. Just ask in #room-help . 🙂
@vagrant holly sure.

@vagrant holly its not a bug, i was wrong about the path

@acoustic fjord you are correct. One of the rooms added a question. If this does not constitute a bug, then at least is should be added as a feature that tells you which room has been updated so like that I could make sure I clear off any of the updates added.

Anyone know if the Room OWASP Top 10 Day 2 Broken Authentication Practical is working? I can't access the site over port 8888. Day 1 works fine and I can access the site itself but appending the port says Unable to connect.

Hey @gentle echo sorry to hear that, do you mind sharing the IP address of your instance please? There's no harm in showing the IP of the instance that you deploy

It's only your VPN & Public IP (:

Even then, VPN IPs are easily changed

indeedy do

It's just that I'm VPN'd on atm so I could just randomly check frm my side (:

Granted it's been a few hours now since you've posted that (Whoops!) so if the problem required terminating the instance and redeploying - hopefully you'll be a-okay next time around

Actually, sounds like the wrong VM was deployed

Injection is for a previous day

Hi everyone, just want to check in and see if anyone has reported any bug on the OWASP Juice Shop room, specially in task 7 question 2 and 3. I have redeployed the instance 2 or three times and performed the XSS attack, got the XSS working, but no flag

@late wadi if thats the question I'm thinking of then try clearing your cache and cookies in your browser

@grand jackal I'll try that tomorrow, however when I checked the score-board the questions #2 and #3 where not in the list, so I'm not entirely sure what to think of it...

Hi, I want to report the room tmuxremux is full of typo and missing words.

ex :
That doesn't mean you can make one.
which should be
That doesn't mean you can't make one.

@sleek jay

lots of details which are hurting the global comprehension

I thought it was Nuclearpro? @hazy tiger

@hazy tiger He made it

^^

I will let him know

I got told that both 0day and someone else made it by malware lmao

My b

It says both our names, because I was a "Collaborator"

I see

great

I got told that both 0day and someone else made it by malware lmao
@hazy tiger

hey guys, i would like to report that i could take 3 badges of this room, fix it asap

5 badges*

Where are you seeing that?

visit my profile and you'll see it

https://tryhackme.com/p/pu71n

So you took down the server to fix it @eternal summit ?

No.

I'm a discord moderator.

Ok, Sorry

ok printer hacking ||Send a test sheet job to the printer and see the size in the 'jobs' tab|| no jobs are there

I don't get it

@next bluff ^

where is @next bluff

Somewhere, be patient

@next bluff Seems like the answer is ||A4|| but that doesn't work

You need to send it a print job @tardy lynx

As in, go into the printer management, send a test sheet to that printer, then look at the job

It won't exist by itself

how to add if all i get is failed to add new printer

You're not adding a new printer -- just sending a test page to the one that already exists

There should be one printer there already, which you used in a previous question

Send it a test page, then look at the jobs

where do i send the test page

I must be blind because only found admin "printer config, jobs output, and basic printer information

Should be the "Printers" tab along the top

Gimme a sec, I'll boot it up again

Ok Im just stupid

Or better yet, what's the IP for your box @tardy lynx?

Did you find it?

ya @tardy lynx is just stupid

Aha, fair enough. Well done 👍

@obsidian kiln thanks for the help though

Np 😄

Does the chatserver.exe from brainstorm run on windows 10?

I didn’t have problems with it

Make sure you’re in binary mode

When you get it

But also that room is apparently broken so don’t quote me on this

But also that room is apparently broken so don’t quote me on this
@vocal zinc Quoted you on it

Got an issue, I deleted a room without first deleting all the tasks and now I have a VM I cant get rid of... any hints?

@lucid oasis ^

I don´t know if this is a correct place for this question ... Buffer Overflow Prep´s room works? I can´t establish connection with it

Yes it works

Connect to the vpn

I launch a nc IP PORT, and doesn´t works, i will try again, thanks

You need to rdp into the machine

https://tryhackme.com/room/basicpentestingjt - The first, second, and third-to-last writeups 404

^ - There also seems to be a flag in the /root folder which doesn't seem part of the room itself (Privesc VIA SUID vim.basic)

vulnversity logo is borked -

Same for me

Room "XSS Playground", page 8, tasks #3 and #4: the room backend does not recognize some valid answers (e.g.: ||<img src="abs" onmouseover="alert(String.fromCharCode(72, 101,108,108,111));">|| and ||<img src="abs" ondrag="alert(String.fromCharCode(72, 101,108,108,111));">||) The code works, but no string is displayed.

(Any workaround to finish the room would also be welcome)

didnt James tell you yesterday he is making a new room

that room has been broken since I’ve been here and no one has fixed it so James is just making a new one

not a bug but a typo it ||is ARPANET not ARPNET on question six correct? new malware room||

@hexed hawk was it you that made this one ? not a big deal just was scratching my head like how have i not heard this

@hazy tiger

how did you even get ori from the room lol?

I mean i didn't but is that not the room of the week? Idk just thought whoever wld want to know before they get 10 messages like mine 🤣🤣🤣🤣

? What room of the week. I am very confusion but that’s pretty normal nowadays

Fixed, thanks :)

? What room of the week. I am very confusion but that’s pretty normal nowadays
@twin tapir It's a thing in Dark's discord

Hello, I was going to solve the reflected xss question in the owasptop10 room, but I saw a typeerror output.

Go to the homepage of the website, click reflected from there @last sage

@rustic stump alright, thanks

https://tryhackme.com/room/jurassicpark
In Question 8:
It is disabled, saying that there is no fourth flag.
But in https://tryhackme.com/room/hackback2019
Task 4, Question 8th, it is asking for fourth flag. IIRC The VM for both challenges is same?

👀

Ma1, I am starting to think you have a bot to reply with 👀 everytime someone msgs.

I was the one that asked Dark to disable the flag

um, isn't the VM/ challenge same in both rooms?

For some reason flag four was different in the vms

Well. 🤷‍♂️

DM me, and I'll give you the flag

this is noice,

I can DM about any room?

you didn't specify

It's broken

Isn't Jurrassic Park the one where you had to go into Discord to ask for the flag

I remember that distinctly, Sherlock was talking about it once 😛

How times were different!

God that would be impossible now

user1: I need the flag

user2: Blue is broken pls help

user3: *meme*

*user 1's message was lost in chat*

Guys, is there a problem with the creds provided in Post-Exploitation Basics room, cause i can't use them for RDP or SSH

did that room no problems here

Are you giving it 10 minutes to boot up properly @wheat fractal

Cause the creds are all right

@twin tapir can you look into dis

@rustic stump @wheat fractal let that machine to ran for more than 30min used the provided creds with rdesktop and ssh and xfreerdp, and in all cases i get wrong password

so this are the arguments i am using for xfreerdp

xfreerdp /u:Administrator /p:P@$$W0rd /cert:ignore /v:[MACHINE_IP] /size:90%

[11:26:11:747] [3598:3599] [ERROR][com.freerdp.core.rdp] - rdp_recv_callback: CONNECTION_STATE_NLA - nla_recv_pdu() fail
[11:26:11:747] [3598:3599] [ERROR][com.freerdp.core.transport] - transport_check_fds: transport->ReceiveCallback() - -1

are you connected to openvpn

yes

also ping works

have you tried wrapping the password around single quotes? it contains metacharacters

hmm no, let me try now

no luck

and i am getting wrong password when i am using rdesktop

Is one file supposed to be missing in Ninja Skills room, or am I missing something?

There’s two files missing in that room iirc idk why

There's a typo in the beginner linux room (zthlinux) in the description of task 29 (their -> they're) @wheat fractal

There seems to be a problem with the "Google Dorking" room. Underneath "Enter: Search Engine Optimisation" #3 wants to analyse a website. That website is not reachable and may be down so it is not possible to get the answer to #4 without guessing.

Shot in the dark here @dusky junco this your room?

Yea his sub domain is down

Owch, that’s not fun. I’ll take a look at this today

Thanks (:

Adventure Time is running soooooo slowly. Ssh into the box takes like 1min for example.

@here Guys, I'm having issues with the Blueprint room. My connection to the machine seems to be unstable and I can't stay logged in the machine for long until the connection times out. I've checked my own network connection and other rooms seem to be fine. This one seems to be giving me some issues. Can anyone help?

It’s a windows room and the window rooms usually time out after an hour

That should be fixed

It’s a windows room and the window rooms usually time out after an hour
@topaz thorn when I said that I couldn't stay connected for long I meant less than 5 minutes :c I keep shutting it down and restart the machine but it's always the same, I can't connect to the machine for long

!vpnscript

try running this

Vulnversity, task 4, #2 theres a spelling mistake

try running this
@topaz thorn im not sure if it was this that fixed it or simply using another exploit but i got it, thanks!!

EDIT: turns out it still doesn't work, I still can get hold of a shell without closing

isnt this a bug https://tryhackme.com/room/rpmetasploit on step #10 in task 5 it tells me to use icecast again. doesnt that result in the other steps not working? I dont get the whole process of this room....