#room-bugs

ok check. thx

@placid abyss nope meant the bug report ^^

huh

oh it was meant as a joke....

^^

damn im to tired for jokes it seems 😄

@lucid oasis fixed an unintended in <https://tryhackme.com/room/jack

Any chance you could clone the box and update it in there?

not a bug, but it feels like for the msf room question 7 should be underneath the last paragraph

I agree

I'll take a look when I get back from walking to the shops (:

I think Blaster has some issues. (I've re-deployed the box to check if it's just a PEBKAC issue, and can replicate the issue)
For Task 2 Q1: I scanned more open ports than what the answer was. (process of elimination narrowed down the correct answer).
Task 3 Q1: The suggested method for gaining the info turns up with nothing, as there is no || history || before what has happened in that current session.

Those are both already reported, and Dark has said they won't be fixed

ahhhh coolies!
Thanks 🙂

Yo, i've got a question....
Stuck on box Vulneversity, bcs task 4 i uploaded the reverse-shell and am listening on netcat

getting some error WARNING: Failed to daemonise. This is quite common and not fatal. Connection timed out (110

is this posible because i am using the newst version of kali

No, it won't be.

#room-help please

sorry, thank you

I've swapped those two bits of text around like you suggested @livid bane thanks for letting us know (:

anytime amigo, awesome quick fix

I completed the Forensics room but noticed that on Task #1 I got 0 points and on the scoreboard others got 30 points? Did I do something to get them deducted or is this a glitch? I have a feeling I messed something up. But wasn't sure.

@verbal spruce its due to point recalculation, dont worry about it

ah ok. I wasn't sure if clicking the hint buttons after answering did something. Thanks!

Just for attacking ics1b just with the uncomplete answers its asking for a double digit answer if double i would have assumed it was 16. But per the actual question I would have answered as above. Did I get it wrong somewhere as I've tried many permutations of the answer

Sorry its a bit blurry but the 2nd registry is showing a 1 while nozzle is filling

I haven’t given that room a go just yet Sleepy, but I’ll take a look in the morning and see if the flags are mixed up or something (:

It's pretty easy and straight forward can be done in roughly 20 when you read through the material and give it a go. Scripts a well done and simple

Actually in the meanwhile could you PM the answer you’re trying? (I can see the flags for rooms so spoilers don’t exist for me lmao)

Ah, sounds like you got it in the end then? 😄

Also I’ve took a a screenshot but your image had other answers in especially as it’s a box that came out tonight 😄

I’ve still got a copy for troubleshooting in the morning

tmux room, any command put into the Attack box after about 10 minutes or so will Disconnect me

help pls?

Hmm 🤔 The correct answer is ||6.6.1p1||

and the other one should be 2

Must be when they updated it

@obsidian kiln you updated it, it changed? 🙂

What's this?

That shouldn't have changed.

Which box is deploying there @green steppe?

Should be DVWA

No idea 😛

It will show you at the top of the screen! 🤣

i'm answering emails rn

someone emailed room help

The webpage in the Exploit development room's box just freezes in the homepage. It doesn't loads completely. I have tried deploying the machine several time and tried connecting to it both from my computer as well as an attack box but the same thing happens.

There is a bug in the first linux room. Unless you su as shiba2 you cant enter the envar in /xxxx/xxxxxx format

There is a bug in the first linux room. Unless you su as shiba2 you cant enter the envar in /xxxx/xxxxxx format
@grave depot Yes, that's not a bug

You're expected to change user when you're told to...

I'll take a look at this @tiny ginkgo

Okay, Thanks. It also says that java must be installed in my browser when I try to visit webserver-ip/files 🤔?

I believe that Question #1 on Task 4 of MAL: Strings needs updated or revised in some fashion. The answer differs than the result from Block Cypher.

Right, well, A) Please don't spoil answers

B) I'm not sure you've read the question

What is running on the highest port -- not what is the highest open port

i.e what service is it running

This ^

tnx @obsidian kiln

https://tryhackme.com/room/introtoresearchgrxhmy task 3 "outwith the scope of this room" should be "outside the scope of this room"

@lost needle

That'll be Muirland

huh, never heard that word. thx

so perhaps a Scottish person created the room.

Aye, a Scottish person did create the room... 🏴󠁧󠁢󠁳󠁣󠁴󠁿

my appologies. I have however had occasion to learn this difference: https://www.bbcamerica.com/anglophenia/2014/07/brits-spell-realize-s

Because that's English 😆

😉

Thanks @verbal spruce I've updated the answer for that - interesting that it's incremented

Ty for reporting

np. I thought it strange too. btw, digging your 4n6 rooms.

Thanks, appreciate that (:

I'll find the time to "futureproof" that specific question so that the transactions incrementing (somehow!) won't break the question

The webpage in the Exploit development room's box just freezes in the homepage. It doesn't loads completely. I have tried deploying the machine several time and tried connecting to it both from my computer as well as an attack box but the same thing happens.
@tiny ginkgo hello. im seeing the problem you mentioned but after waiting about 5-6 minutes it finished loading. im not sure what happened this is the first time im seeing an issue with the site. fortunately the example exploit still works, ill look out for this and upload a new VM if necessary. thanks for reporting

Ah perfect @maiden sorrel, I was troubleshooting this just a few hours ago. I've asked for the resources to be bumped (so that it'll deploy w/ 2GB of RAM no matter user-type)

Feel free to PM me any info about what's running behind the scenes to see if this'll do the job (:

Room: printerhacking101
Task: 2
Problem: Image is broken sometimes it does not even load

hello

Im not sure whether its me thats bugging or the room Im currently in. Im in the intro to assembly room in the if-statement continued room

and question 1 and 2 dont make sense to me

I check the value of rbp-0x8 with px and it clearly tells me 08 as a value

I'd recommend asking in #room-help first them

fair

sorry

Electron that usually means that your ISP/firewall is blocking the host of the images. Try setting your DNS to 1.1.1.1 or 8.8.8.8

@silver dust

If the images doesn't load for you even after changing DNS just @ me

Not sure if it is a bug, but it seems Task 7 (Windows PrivEsc v1.0) doesn't work as described, only gives reverse shell on logging in

What is the URL/room code for this please?

https://tryhackme.com/room/windows10privesc

thanksss - bare with

Also another issue with the same task is when req query is issued in a reverse shell, the response is empty

possible workaround to this, adding /reg:64

Okay this is super helpful

I'll go through the room when I get 5 minutes (:

If I will find anything else in there, will let you know 🙂

Appreciate iit!

There is a small bug in

Anthem

Task 1 : Q4 (What is the possible password....)

The password is accepted even without the '!'

Seems small but the RDP password will need that '!'

That's answer tolerance

Cool

@dusky junco Also few notes, it seems any reg query commands only goes through 32-bit values, to see the full list /reg:64 option should be used. Additionally in task9 there is no password in the registry directory or i'm just being blind ))

This isn't a bug but the Free Path on blog lists Shodan room as free but when I visit the link, it says Owner has made this room private. So its not free anymore?

No, it's free

It's just private

@green steppe Can you update the blog post please?

So I cannot access it then? Not sure how to access it

It was made private because the answers needed to be changed almost daily.

ohh alright. can I get access to it or is it no longer accessible to anyone? sorry im just confused if I can or cannot complete that room. thats all im asking 😅

You can get access, you won't be able to complete it most likely because the answers constantly need to be changed

@green steppe Can you update the blog post please?
@eternal summit the shodan room will be made public as soon as Cmn gets back to me :-(

ohh no problem then. Ill continue with other rooms. Thank you!

If that room is ever made public again, can you guys post it in #announcements please?

Electron that usually means that your ISP/firewall is blocking the host of the images. Try setting your DNS to 1.1.1.1 or 8.8.8.8
@dusky junco Hey Cmnatic I am using Clodflare DNS it is configured in my router's setting

Room:Attacking ICS Plant #1
like other heading the highlighted text should be bold

Hey theres a problem in https://tryhackme.com/room/forbusinessreasons

I've waited for twelve minutes and the web server still has not started

PORT   STATE  SERVICE VERSION
22/tcp closed ssh
80/tcp closed http

It's being looked in to by the testers @jaunty halo

ok thanks

@eternal summit have you guys found a possible work around

No, it's being looked in to.

Ok thanks, sorry for the ping just wanted to check in

Maybe this is bug or what idk but i am not able to go to this site by IP in Vulnversity room , i am able to do Reconnaissance and all scans but not able to go to page can some one fix this ????

@inner lantern there is no port 80, check your nmap scan results.

U need to connect through port 3333

And check if u are connected through vpn

@inner lantern

It may need some time to get ready

riseup

U need to connect through port 3333
@brazen sonnet i tried that but same result

Http is open on 3333 but when browsing its giving me this error

are you connected to the vpn

Yess

did you run the vpn script to be sure

I can pin i can scan

*ping

Hey there, the Hashing-Crypto 101 room has a broken link in task 6 which is required for the first question...What's the SHA1 sum for the amd64 Kali 2019.4 ISO? https://cdimage.kali.org/kali-images/kali-2019.4/
https://tryhackme.com/room/hashingcrypto101

@floral remnant They are still available

You have to go find them

Oh yeah...I got them

Just wanted to let you know about the broken link!

Changed to http://old.kali.org/kali-images/kali-2019.4/

In Upload Vulnerabilties, overwrite.uploadvulns.thm is broken or cannot load. I am connected to thm vpn.

btw

did you add it to your etc/hosts file

okay

I'll try anyways

it says it's mandatory

I thought I already did

I have it in my /etc/hosts

Whoops

But still

No worries, the echo thing didn't work.

LOL

did you get it to work @rugged marlin ?

Yes Thank you.

okay good

/room/hashingcrypto101, task 6, question 1
link to images reads one way but links differently, goes to cdimages.kali.org rather than old.kali.org

Updated this for you @eternal summit (::

@dusky junco I already did this

Last night.

Oh, I tried it at the timestamp above and it did the same 😳 wasn't sure if you're still moving and wouldn't get the second it took this weekend (:

https://tryhackme.com/room/haskhell, when i try to upload .hs file it returns internal server error

I think that's probably an error on your part, have you tried redeploying it?

ya i do

every time it returns error 500 code

I am facing connectivity issues in simple ctf room

What kind of "Issues"

Ip address is not connecting

Ping scan not working

Nmap,gobuster nothing works

Connected with Openvpn :)

Have you tried the basic connection troubleshooting ? (Type !vpnscript in #bot-commands
Does any other machines (Except Simple CTF) works for you ? If yes, let's s continue in #site-support
Can you visit https://10.10.10.10

So i've been told to report advent of cyber I bugs here. AoC Day 24, task 1 is possible, while task 2 is impossible to answer. Let's focus on task 2. "Read the contents of the /root.txt file" task description says. Since I have wasted my time soo much trying to find way to complete this I eventually looked 2 different writeups for this challenge. The reason task 2 is impossible to answer is because there are no ways to execute code or to somehow inject JS shell and then through LFI to pop it for us. The creds found in database lead nowhere. The log file contains no 'root.txt' neither the final answer for task 2 which i remember is 'someELKfun'. Therefore task 2 is impossible, which means it has a bug. Correct me if i'm wrong.

I don't think there is anything wrong with that task I thought it was only the Hydra task that was bugged and if it is then it most likely will be fixed after the upcoming AoC2 as CMNatic said it was on the top of his to do list

Is this correct or nah?

Is what correct?

When you're posting here, you need to post the room name and hopefully the task and question number so that someone can fix it

Oops sorry

Intro to windows room & task 4

Ok, what about it?

Windows comes equipped with two command-line tools:

Yet 3 are mentioned. I wanna know if the 3 mentioned is a 3rd party tool or sumn

Of if it’s intentional

Yes, they're all correct

I'd assume the number is a typo

Windows Terminal is an optional download at this point I believe

Ahh gotcha & thanks

That was really something you could have researched via google.

Before reporting it as a bug

It’s the typo I was trying to verify

Maybe it means these are the Command line tools from which two(CMD/Powershell) come pre installed?

Or not

This is more clear

Hydra task isn't bugged. The hint about that challenge is clearly wrong.

It is

So the hint is 'If you've tried more than 30 passwords from RockYou.txt, you are doing something wrong!'

That’s why they get told to do the standalone hydra room as they have the same flags

So this is the password for molly on her website. At line 905677, while the hint just bamboozles you into thinking you're doing something wrong.

Yes it's bugged seeing as it breaks the 5 minute brute force rule. Yes it's known and being fixed.

Network Services 2 room question 2 hint What does your ' the 'Operating System do to access a physical drive? this hint has grammer issue

@mystic ruin no need to DM me. You can just ping me in a room :)

What's up?

Hello, In the room https://tryhackme.com/room/ccpentesting an opening parenthesis also got into this link to LinEnum which is making the link invalid.

Hey there @obsidian flame , the credentials do not work.

The login fails

Heyo @high palm thanks for reporting. Updated...please refresh in your browser

I've also just fixed this @tiny ginkgo give your browser a refresh, ty!

@obsidian flame the actual password is Infinity121. Please fox this on the information! Just found it with random tries.

Yeah that's what it says in the tab too

if you ctrl+c/ ctrl+v it works

I thought the * was part of the password. 😫

I am doing the room right now.

oh, spacing, that's my bad

Thanks for the great room!

no worries, i'll fix the spacing now

Yes, that is wat confused me, the space.

owo

have a look now and let me know @mystic ruin (after you refresh)

Revelant room got this "ping 10.10.102.215
PING 10.10.102.215 (10.10.102.215) 56(84) bytes of data.
From 10.10.66.240 icmp_seq=1 Destination Host Unreachable
From 10.10.66.240 icmp_seq=2 Destination Host Unreachable
From 10.10.66.240 icmp_seq=3 Destination Host Unreachable
From 10.10.66.240 icmp_seq=4 Destination Host Unreachable"

its a windows machine it more than likely doesnt respond to ICMP requests

oh !

and so for nmap that doesn't work to ?

nmap relies by default on a ping scan to check the host is up

if the machine does not reply to ICMP requests then it will think its down

ok tanks i will try the help room

https://tenor.com/view/scott-dude-what-confused-gif-14850522

Is there a way to get attackics fixed .

image link is broken

Room: Hardening Basics Part 2. Chapter 3 Intro task is collocated in the wrong position

Is at the very end of the room instead I think it should be as first

I am talking about Task 14 "~~~~~ Chapter 3: SSH and Encryption ~~~~~"

Just a typo in persistence 1, task 2 -> ...and LPORT is the port...

@clear fern

What

Oh I see

Wtf

The task manager is always doing this to me

I'll fix

Task manager do be wack

any idea why in buffer overflow room everytime i fuzz oscp.exe the machine close?

#room-help

Yo im in the OWASP juice shop room and downloading the package.json.bak doesnt show the flag

Yes i tried turning of burp

anyone know what gives?

#room-help

Not a bug but I found this in the Kenobi room!

There's a typo under the Enumerating Samba for Shares tab where it says "refereed to"

Thanks @wheat fractal I've resolved this now (:

Upload Vulns Room - Task 8
Might be good to have a hint so that people know not to add the - in front of commands

On the Nmap room, the version should be updated. The answer and the actual version of port 22 are different.

Room Post-Exploitation Basics needs update

set up after run neo4j console is compulsory. default credential won't work anymore

@twin tapir

saw that

@lethal dagger I’ll take care of it when I get a second which honestly how my schedule is right now won’t be until the new year. Bloodhound just had a big update so I’ll work on updating it

Not sure if i'm in the right channel but about the Docker Rodeo room, in task 5 question 2 we can input a wrong registry name, and it works (i did not tried with the valid one).

@wheat fractal refresh the page, I think it might be just the answer tolerance playing with you

it sometimes accepts answers that only slightly differ from the proper one

Refreshed, and still good

I left the room and rejoined it to confirm

not really bug, it's just answer tolerance

Wrong channel then, sorry

and the normal answer gets accepted properly :)

nah, not a problem

thank you! looking forward to that

Hi,
I've reason to believe that there is a bug in this question over here.

https://tryhackme.com/room/networkservices# Task 7

I was able to run nc -lvp 8012 on my shell and establishing the reverse shell and capturing the flag... however that answer doesn't work on the app.

look at the previous question

It wants you to use that port

Ah I see...

thanks

Thought for some reason I had to enter the port of the target machine, misunderstood what was actually done before then

I need help

Anyone on?

Ask your question

Doing the OWASP room rn.. cant seem to submit this answer

Try '

Sure

I did try that.. still gave me the same issue

#room-help

I thought this could be a bug.. my fault

i think i found a bug in the owaspjuiceshop room. Task 4 Question 1.

i found the password can login but I dont get a flag. and looking at the score-board page i cant see this chalange.

When answering a question, there is a few second delay in which the room takes to respond if said answer is correct or not. As you can see here, there is no answer written because i had time to delete it before the room responded to my answer. (-n) I am assuming this applies to all rooms or it has something to do with my connection.

please lmk if anyone is able to do the same thing

@glad kettle it's because it's all done via AJAX. i.e. it's asynchronous. You have until the web request comes back to change the answer

But

It's client side only. Refresh the page and you'll see the correct answer is back again

ahh i see

thanks for the response

You're not actually changing anything. The correct answer is sent off to the API the moment you press that button

Np 👍

👍 understood

have found a bug in the rpnessus room. task4 last question. this is my scan.

but is expecting Apache/..**

the anwser is listed as one of the vulnerbilities

in the basic network scan I only have SSH vuln's

found it.

its in the apache HTTP server version.

very confusing to be honest

@trim zephyr that question is confusing, just wait for the scan to finish. I also know that the room is under active updating rn

Good to know that it is updating. Some questions did not work with the latest version of nessus. But the manual was to the rescue.

@twin tapir you have any idea for the bug message I made for the owaspjuiceshop?

Would love to finish that room so I can finish that chapter of the beginner pathway.

Hey guys, found a possible error in room "Network Services 2", task 2, last question.
Where it asks for latest NFS version, the defined correct answer is different than the actual microsoft docummentation written here https://docs.microsoft.com/en-us/windows-server/storage/nfs/nfs-overview

Let me know if I'm correct or is there somewhere else I can find this information.
Thanks!

The documentation there is wrong, if you google "latest nfs version" you'll see that

The documentation just shows support in different versions of windows

Doesn't show the latest version of nfs

ow nice! thanks!!

Problem solved!

Good good

tasks are out of order in https://tryhackme.com/room/hardeningbasicspart2. Task 14 should be task 2 and task 2 should be task 10. Basically at the moment the intro to chapter three comes after chapter 4 and the quiz for chapter 3 come before any of the content for it

I think I found a bug. in the Network Services room in the FTP part, there is a question about how many ports are open. Using both rustscan and nmap it only shows a single port, 21, to be open. The answer there is 2 however
Link to the room: https://tryhackme.com/room/networkservices

Arguments?

nmap -A -p- IP only returned 21/TCP

rustscan -a IP -u 5000 only 21 as well

@mild rapids How long have you given it to boot? because it seemed to take about 5 minutes to get FTP up which is weird

I think it took around 2 min for me ? maybe a bit less

@mild rapids A little later, it has the correct number of ports open

@dusky junco I think this needs a resource boost, but I also think it shouldn't be running a webserver at all and that will slow it down

Hi I think there's an issue with OWASP Juice Shop room, task 7, question 2. I've tried repeatedly to generate the flag following the instructions and it will not generate. No issues with question 1 and 3.

some of the room seems to be broken

unstable connection

This sounds like you having vpn problems

Hello
Is today's advent of cyber 2 challenge no more available ?
Or it's just me ?

Oh sorry, I just saw the dedicated channel

Hello, the https://tryhackme.com/room/catregex room is a bit confusing. An example: Exercise 4 with the question:"Match all of the following filenames: File01, File2, file12, File20, File99"
I found the correct answer. The answer also agrees with File23 or file42 ...
The question is not well done. Suggestion: "You are looking for a pattern for the following combinations, the minimum is 1 and the maximum is 99.

@frail vigil something for you? (you got mail)

@clear fern y revenge machine server is too slow.. idk y its happened to me

It shouldn't be slow. It's had it's resources increased a few times

Owww. I tried to end this machine but I cant type keys .like laggy server every 10mins its happened to me

Terminal stuck and works after every 5min to 10 mins

In the Breaking Windows Throwback is marked as free but is paid.

it's a mistake

Skidy and Ashu are aware

It's because it's not a subscriber room

Of course it agrees with File23 or file42. As I've said many times in the help channels today, you have to be specific but not too specific. In this case, that means being specific enough to match the filenames, without formulating unnecessarily long and complicated expressions that will match only the things that the task is asking. Your proposed alternate question doesn't help illustrate this point. You still have to wrap your head around charsets and repetitions and use those together to get the answer. Also, "minimum" and "maximum" are programming concepts. There's no way to do what you're thinking in regex.

"I've said many times in the help channels today" <- That is enough argument that the task is poorly formulated. That is my opinion and therefore a bug report here.

No it's not, because this isn't the only question in the room, and frankly not one of the questions most people had trouble with. Don't get the impression that I'm not open to feedback because I am, but your suggestion is just not a good substitution. I know some of the questions aren't clear enough and I'm trying to find them all to fix them, based on this community's feedback. But if you check the help channels, not all feedback was helpful or constructive.

I'm still amending some stuff where I think it's necessary and I'm going to try to add notes or explanations where I can, not only to hint to the answer but also to explain the proper mindset for regex.

Suggestion for: "Match all of the following filenames: File01, File2, file12, File20, File99" -> to ->
"Match all of the following filenames: File01, File2, File12, File20, File99. Other numbers are also possible ..."

That can also be a hint (Other numbers are also possible ...)

The point isn't to find an expression that matches only the things that I'm listing, or whatever else your expression could match. You literally used wildcards in the previous task. The point is to find an expression that's specific but not too specific, easy to write and read.

If someone has never encountered regex before, it's natural to find this at least a little hard, but using regex in real-world scenarios is equally hard or more. My point here is that in some cases, it's not only the room that is hard, it's regex in general.

I've added some more notes to help in the second task. you can go read them if you like.

room linuxctf : once the room is 100% completed, it won't mark the room as completed.

#site-support message

https://tryhackme.com/room/webfundamentals
Syntax/type-o on Task 5 -> Post -> Help
< should show up as <

Site Bug. I've asked Skidy to fix this as I can't fix it myself. Might give it a second go once the Markdown editor is ironed out.

This is what the shell task 11. It's not a selectable bit of text either

@tough linden in the Windows PrivEsc v1.0 I think I have found a bug.

Winlogon is disabled, so there is no default password set in order to complete Task 9. Can you perhaps see to it and confirm if there is indeed a problem?

You can see here that AutoAdminLogon is set to 0 (disabled).

This confirms it.

I could only retrieve the password with Mimicatz. I think there is a problem with this task.

Hi! There's a spelling mistake in the new Advent room. It says
if HTTP is stateless, then how to login systems work?

I think It was meant to say "how do login systems work"

Good find, fixed this (: @frozen sun thanks

np!

Room stuck on loading, any tips?

Looks like there might be an issue with the Blaster 1.2 Room, Task 3. Hint suggests looking at browser history to find recent cve article. However in my machine it doesnt have anything that looks like whats in the writeups, Any ideas?

https://discordapp.com/channels/521382216299839518/522158539129618453/744162487103914015 hope that helps

@frail vigil in the regex room, i think both "Match "username: " in the beginning of a line" and " Match all of these emails while also adding the username and the domain name (not the TLD) in groups (use \w): hello@tryhackme.com, username@domain.com, dummy_email@xyz.com" are broken?

https://tryhackme.com/room/blaster - Task 2

How many ports are open on our target system?

The answer is ||2|| but when you do an nmap scan you find 15 open ports.

broken how?

how do I add spoiler tags?

||spoiler||

|| spoilter ||

ok

|| the "Match "username: " in the beginning of a line" should be ^username:|| your answer has two trailing spaces

Notice the answer mask has 2 characters at the end

that is something related to windows being windows, sometimes it opens more ports than it should. Some people tend to avoid nmap port related questions

on the second one the " Match all of these emails while also adding the username and the domain name (not the TLD) in groups (use \w): hello@tryhackme.com, username@domain.com, dummy_email@xyz.com" you need to be way more clear what you expect for the answer as there is so many possibilities. ||(\w+@\w+|username@domain).com$|| That answer is probably the closest to what I think you are asking?

cause that's not the answer. take another look at what's inside the quotes.

between ||2|| and 15 there is a big gap, usually it's because room create launched the scan on top 1000 port when you scan with -p- but here even with top 1000 you find more than ||2||. The firewall must be disabled.

no, very far from it. 1. you don't need to specify EOF. 2. you put everything in one group, that's not what the question says. 3. there's a logical OR there, for some reason.

||alright I added a \s and obviously that works, but wow that is unclear||

yeah, I've had a few like this, I'm going to add a note about it

I mean, the question isn't clear enough cause the space was hard to see

the answer format should be an immediate giveaway 😛

your last question, even with your expanded explanation is still not clear on what is asked

yup, possibly at the time of writing the room it was done with a firewall, and after testing the firewall was disabled, as far as I am aware i heard that there is some work going in the background to update blaster

what part isn't clear?

The grouping the username and the domain name. What do you want on that. Also, (but i might be stupid) what is TLD?

that is a google question. TLD means top level domain, in this case ".com"

I'm saying, username and domain name in groups.

you put something in a group with ( parentheses ), so you should start from the simplest possible answer

also I still don't understand why you put a | in there

https://tryhackme.com/room/blaster - Task 3
Question

When enumerating a machine, it's often useful to look at what the user was last doing. Look around the machine and see if you can find the CVE which was researched on this server. What CVE was it?
Hint
||Sometimes looking at the history in a user's web browser can be very insightful||
The IE history is totally empty, when I look at write-ups there is an history where I have to look at.
This mean the deployment is buggued.

Known issue

Being fixed

so as much as some things may still not be clear enough, and I have to fix them, I think you also didn't read the task descriptions carefully enough

I'm changing the question to be clear about everything going in its own group

||\w+@\w+.com$ is the most basic thing||

spoilers

@teal barn Ok, so?

why are you adding a ||$|| in the end?

it's a known issue

It's being fixed

Just because it's not in the known issues panel, doesn't mean it's not a known issue

it's not listed a a known issue 😦

Only the room creator (And I believe some staff) can add known issues. The issue is on Dark and CMN's list of things to fix. Trust me on that.

cos based on the answer mask, it needs 4 characters at the end. I can do it without it

Sad 😦 (that CMN and Dark can't add issues)

no, you are forgetting something else

||\w+@\w+.com||

is pretty much what there should be

I mean no, you're forgetting 2 things, not one

pls read the task description again

I don't want to continue this discussion here cause we've settled on the fact that the question isn't clear enough

I'm trying to make it as clear as I can right now

further discussion on this belongs in #room-hints or #room-help

I have gone through it, but I guess I will wait till the room is updated

it is

I saved the new question

maybe you need to review the whole thing cause every task builds on all the previous ones

I now have it, now that it is only 3 characters after the .

but I still feel it is very ambigious

I didn't touch the answer field, the asterisks are calculated automatically

I mean I didn't change the answer

pls post the question* you see right not and tell me which part is ambiguous in your opinion

I asked you to match it (validate it) with regex. why should I change it to anything?

it's part of the question, and not the part that was unclear before.

added spoiler sorry 😦

yeah, you match username the same way you match the other 2.

it seems as if the username@domain.com e-mail is special and thats why you need a group

thats why I had the or flag for it

I'm still not getting this part. Anyway, it's not special, it's one of the 3 things you have to match.

is the question clear (particularly the part about groups) now?

it reads better

my suggestion is to have the following 3 example mails hello@tryhackme.com bob@nowhere.com dummy_email@xyz.com

so you don't repeat the keywords you ask for in the e-mail names

again, that's part of the question. #room-help #room-hints

Alright, I have no other suggestions. The room was really fun apart from the questions I raised

I'll add this as a known issue on the room. But yeah, as Ninja said, it's on my to-do list as AoC begins to kick off

AoC Task 6 Question 5 accepts a wrong cookie value as correct.

That's answer tolerance

But then the cookie isn't actually accepted as correct by the webserver...so it's just confusing for a beginner room.

It's a problem with THM as a whole

Answer kinda needs to exist, imagine if you typed that whole cookie out by hand into the answer box and got a single character wrong?

Erm, I would say that should be counted as wrong, since it wouldn't actually work on the site. But accepting the answer as "not a bug, is a feature".

It definitely threw me off until I popped open Burp to really really send that wrong cookie and saw the "wrong cookie" message. Then I tried lowercase and it worked 🤷‍♂️

The hint on the room also tells you lowercase

Ah damn, helpful if I had looked at the hints, lol

Well, don't mind me, day 1 works great 😄

Hi everyone

Blue machine is buged

[-] 10.10.121.105:445 - =-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
[-] 10.10.121.105:445 - =-=-=-=-=-=-=-=-=-=-=-=-=-=FAIL-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
[-] 10.10.121.105:445 - =-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=

I have already restarted several times and I cannot make the connection.

im using vpn

!dark

@wheat fractal oh come on

mfs6

thats gotta be #764491023127674910

@glad badger @remote hamlet

on AttackBox is function

plzzzzz

show options and screenshot @surreal stirrup

on mfs5

for a thousand years

I lay dorment

who dares ping me

@vocal zinc

how may I help you

#room-bugs message

read up

it was beautiful

blue room is broken

that is all.

no.

pars.

come on.

ok

let me rephrase

parsssssssssss

i wanna be in quotes moreeeeeeeee

plzzzzz

the eternal blue exploit is a fickle mistress and may or may not work sometimes

just restart the machine

and keep trying

😭

😡

Blob

one million restarted

you dont ask to be in quotes

it just happens

@wheat fractal

how is that not quotes worthy

Blob

you dont ask for it

it just happens

your time will come.

pars

you're mean

It's working on AttackBox, but over VPN it doesn't work.

mendel

my friend

my trusted companion

the eternal blue exploit, and msf in general

just sometimes does that

on attackbox is msf5

ok first, if youre using msf6 and havent updated then its broken

im using msf6 here

second, your vpn may not be working

then dont use msf6

third, pars is mean

and idk why hes being mean to me

msf6 is in active development, and honestly you should stick to msf5

all i do is show him luv

Blob no quotes worthy

msf6, not buggy

connection vpn is buggy

I do not know why

The script is the same.

Attack box may have different version of metasploit than your machine

Vpn is not buggy

yep

attackbox msf5

here msf6

So downgrade it

On my VM Kali also does not work with msf5

Hey hopefully this is the right place to post this
I just completed the first challenge on Advent of Cyber 2
I go to click on Certificate and says I haven't completed it?
Anyone else run into this issue?
Sorry for big post
https://gyazo.com/ba3e9c6995a504b793e129e527454d6c
https://gyazo.com/826a655589ed37f9a4fb524c63de3aab
https://gyazo.com/4409db48b86822412e5d135c5eb1f761

there is a task released every day until christmas

you cannot complete the room until the 25th

ohhhhhh ty

its not.

I don't have that kind of power just yet, bl0bby. Sorry :(

Hey in advent of cyber 2 where it is asked to enter santa's cookie . I entered cookie of random user still it get accepted as correct answer

answer tolerance

huh @vocal zinc ?

Refresh and you’ll see the cookie has changed to the correct one

This is due to answer tolerance

is it good idea to have answer tolerance?

its completely different answer

Yes. Imagine if you had to type out that final flag by hand and you got a single character wrong, that'd be hell to fix.

oh gotcha

Due to the leniancy of flags, the advent room accepts the incorrect hex value (Using S instead of s), whilst the site only accepts "s"
As such
2253616e7461227d (Capital S) is accepted, even though you need
2273616e7461227d (Lower case s)
Note the 3rd character

That is the answer tolerance and it has been raised countless of times

In the room https://tryhackme.com/room/lfibasics THis question expects No as an answer but The home page can be included using the lfi vulnerability just like the previous part of the walkthrough. I think the home.html file should be deleted from the html/ directory.

not really a bug but little grammar typo in task 3 of linux fundamentals 3 "their" instead of "they're"

this room doesn't want to work with browser attack boxes: https://tryhackme.com/room/furthernmap

Not sure if it should be counted as a bug or not, but the Blaster rooms Remote Desktop session is ALARMINGLY slow - The boxes CPU is perma-capped at 100%, with any action taking 30+ seconds to do

i guess you are not a subscriber?

I am not, but taking 5-10 minutes to login, and a minute to do almost anything is a bit absurd

Yeah, it's due to the fact that Windows boxes most of the times require extra resources to even work at bare minimum, but depending on the box you can always just simply evil-winrm to them or powershell

Whilst I normally would, the room specifically requires remote desktop :/

some of the boxes already have been booted with more resources, some of them have been missed. I know that blaster is in the works with CMN

I did this box the first time it was released - It wasn't nearly this slow

so it should be updated in the near future, that's what i know for certain

CMN?

CMNatic

Hey guys, maybe this is already a known issue, but just in case, looks like the ssh version of the attack box is different that what it takes as the answer, the nmap room still takes 6.6.1p1 as the correct answer which i think is outdated.

there's a typo in question 1 / task 21 in OWASP TOP10

I don't see a typo there, refresh the page and check if the typo still persists. It might just be answer tolerance accepting a slightly different answer from you

@zinc creek

the typos are the first 3 * in the answer, it's supposed to be 3 words, not 4

the full name is 4 words

not 3

just checked.... sorry my bad i didn't see, that it autofills "the" ^^

🙂

i searched for 20min about james and the sun because of these 3 * xD

is the advent of cyber room broken?
I have a valid cookie (I know because it was accepted), but it won't load the flag.
Also, I have another answer that I am confident is valid, but it isn't accepted.

answer tolerance can accept slightly wrong answers

the username in the cookie needs to be all lowercase, thats probably your mistake

@dusky junco What is AoC ?

Advent of Cyber - the event that's going on atm (:

adventofcyber2 / Task7's link is a lil drunk 😄

Thanks, will resolve

that pesky new task editor

Adventofcyber2/task7 spelling is off

This has been fixed, refreshing should update your view (:

not really a BUG but a typo

task 5 on the advent "The Story" part
"Please note, tasks are released daily and will vary in difficult"
should be
"Please note, tasks are released daily and will vary in difficulty"

Hello, not really a bug, just a difficulty I am experiencing with one of the beginner paths. If someone would like to help, I will be happy to share

Probably best to use the help chats if you're struggling with a room?

Oh, sorry, I didn't saw that there was a chat, specifically designed for that

found a typo on AoC2 : At the bottom of the dossier is a stick note containing the following message

stick = sticky

Thanks @mystic canyon updated (:

In Tor room the flag cannot be obtained because the provided onion link is dead

@next bluff This is yours IIRC?

The link is working, just try again

Re-launch the browser

Or establish new connection

Sorry, can't check for myself atm otherwise I would before pinging

Physical Security Intro -> the Video in the Introduction is missing.

Hi!, guess I've found a bug in https://tryhackme.com/room/catregex Even the Answer is shown as correct, there's no match in "Cat" for that answer. Q: Match all of the following words (use the * sign): Cat, cats, catsss A: cats* < Correct, but NOT Correct

what do you mean not correct? @sonic remnant

Cat (in uppercase C) is not a match for cats*

I just tried it and it's not being accepted. In any case, this is not a bug. THM allows you to make some small mistakes in the answer field, so if you posted something else, this is what probably happened. Refresh the page once and tell me what you see in that answer field. But let's continue the discussion in #room-help

mmmmm ... after F5 the page it changed.... Now the answer is correct! magic.... May be a double submit bug then? jaja.. no worries. Not a big deal.. thanks!

It's not a bug. Like I told you, sometimes small mistakes can be accepted. But then when you refresh it shows the correct answer.

I see. Oka, thanks again.

I think there might be a potential bug in the nmap room. More specifically, in task 14, the user is supposed to use a XMas scan to scan the deployed machine. Such scan indicates that the machine is offline (even with the -Pn flag). If I use a regular tcp scan, however, it does give me the results I expect...

does it says the machine if offline or it says the ports are filtered?

I think one of the rooms need to be updated (subject to correction)

It doesn't

Make sure you're looking at microsoft, not facebook

You're looking at facebook

ohhhhh

lol

It says look up microsoft 😉

your right !

my bad im watching tv and listening to a podcast 😆

owasp juice shop room - task 7, question 2..
executed the stored xss but doesn't trigger a flag.

Room Find Command https://tryhackme.com/room/thefindcommand is broken

HTML not even redering correctly

<span style="font-weight:normal;">F</span><span style="font-weight:normal;">ind on the page direclty

If I do the xmas scan it tells me its offline. If I do the tcp it tells me the ports are filtered (reason being no response)

it might even be a security risk

I dont know exactly what I changed (perhaps redeploying the machine), but things work as expected now...

when using wpscan in the Mr.Robot room im getting the error "SSL peer certificate or SSH remote key was not OK"

im currently doing the blue room and when i try to run the enternal blue exploit it fails not matter what. All my parameters are correct. How do i solve this?

adventofcyber2 - Task 7 (Day 2)
We then have the resource that we're selecting -- in this case that is the homepage of the website: index.php. As a side note, all homepages must be called "index" in order to be correctly served by the web server without having to be specified fully. - That's just blatantly incorrect. nginx has an index parameter so you can name your index page whatever you want.

Adventofcyber2 I'm on day 2. I deploy the machine but it's not responding. I've tried pinging to the machine ip still nothing. Can anyone please let me know what to do?

I'm using openvpn connecting using terminal

#site-support

@next bluff FYI

check the hint

Network Services 2 room, on deployed VM, home share with cappucino folder doesn't have any files within the folder, appears an SSH file or 2 should be there

For NFS excersize

is it a bug or what about the advent room Second challenge ||i got access to the upload page with an empty value : ?id= ||

I cant join advent cyber 2

When i press join room its reload site but no thing happen

log out and back in and try again?

Room:Nessu Task4:What web server type and version is reported by Nessus?
my scan shows 2.4.7

but that is not the answer

I still have this problem

@lucid oasis

Hey, you're meant to be performing a pentest on it -- no one ever said there was only one vulnerability 😛

Think of it as an easter egg

ow thats niceee

*Christmas egg

tried everything site is not reachable for some reason can you doublechceck the onion url you have posted for the room ?

Yes, it is down so that’s why i’ve put a flag in the hint

i am going to replace the website soon

sorry

will have a look at it

alright

unfortunately I have no control over that onion website so i need to find a new one

this is true

State line is there and iam not in room and cant join !!?

Hi. Found a bug (or missspelling)
Room: room/networkservices2
Title: polomysql
Task 9 Enumerating MySQL
Run the exploit. By default it will test with the "select module()" command, what result does this give you?

(but module mysql_sql in default has "select version()" ) and answer is reqiured from this module <-- not 'select module()'

because it stays charging like this

Hi
I'm trying to achieve the room Nessus. I have a problem when I try to validate the answer to the following question "What web server type and version is reported by Nessus?" in task 4. I checked the version Nessus found with nmap but I can't validate my answer 🙂

Please re-post in #room-help @wheat fractal

I did it, thanks !

Nmap room, Task12. Read through this script... The hint popped up after I submitted a valid answer. Before that there was only the green option to submit

there is a little bit error in day 4 fuzz table

it shows --hh Don't show for a certain amount of words
it should be -hw

Hye a small typo
Advent of Christmas 2 [Day 4]

Instead of word it should be chars

Same Problem like PoluxBin
The Complete Beginner Pathway is endless loading....

Actually -hh means bytes.

(Chars and Bytes are the same thing, practically speaking 😛)

I have fixed the task, however. Thank you

I'm not sure I agree that chars and bytes are the same. Conceptually it's a big difference; it's the same as saying a uint32 is a 4 byte array.

A char is (traditionally) a byte being interpreted as ASCII.
It's the interpretation of it, which is why they are practically the same, but theoretically different concepts

By theory, yes, they are different. In practice they're represented identically, to the best of my knowledge

Having said with, given the majority of website are now using utf-8 over ASCII, you make a good point, given it will be looking for characters returned, which are not necessarily just one byte long

It's an interesting question though - a word should be a 2B array, if it's a strict interpretation based on CPU architecture

Word depends on architecture

It's different on x86 etc

^^

"Network Services" room, Task1 there is a redirect link for 'Learn Linux' which has been changed to private

AoC Day3 one of the instructions is

Go to the BurpSuite application and click the Proxy tab, then click the button "Intercept is on".

But clicking the button "intercept is on" actually turns it off

Intercept is often on by default, but if not you may need to turn it on

yeah, it was on by default for me, but strictly following the instructions has you turn it off when it's meant to be turned on

many times you may want to turn it off initially as it will catch every request, then turn it on for the page you want

If it's on, it will mean you need to forward every request

They'll still get to the proxy history with it off, and it means you get a streamlined experience

It's better to have it off

sure but the very next line indicates that they wanted you to turn it on:

3. Navigate to your chosen website, as you're intercepting your traffic, you will see BurpSuite has held your request and will not forward it on until you tell it to. Let's go to our web application and submit your details into a given form, in our case its a generic login form.

i was just suggesting the wording might want to be changed for ultra noobs

🤷‍♀️

Hey this isn't a bug perse but for intro to shells room for the question "How would we get socat to listen on TCP port 8080?", the answer was like "TCP-L:8080 -" but can it also allow "socat TCP-L:8080 -"? I kept trying various things with "socat" in the front. Where do I submit feedback like this? Is this correct channel?

Hi guys, already posted this in room-help but did not get any answer. That's why I'm trying it here. I've done the Blue room before but it's been over half a year and I wanted to do it again due to documentation purposes. I'm stuck in Task 3. I use the correct post module ||post/multi/manage/shell_to_meterpreter||, I set the correct option ||SESSION||, I run it and get the following error: [-] Post failed: Rex::Post::Meterpreter::RequestError stdapi_sys_process_execute: Operation failed: The system cannot find the file specified. I tried it on my Parrot machine and I tried it on the THM attackbox. Each time with a different victim machine. sessions -u 1 throws the same error. Can someone tell me what's with that error?

@solemn totem You already have a meterpreter shell you can’t use that module

Then why does this task say to convert a shell to meterpreter shell in metasploit?

It’s outdated

Oh that makes sense. Thanks! Maybe someone should update the room tasks

I'm pretty sure there's something funky with https://tryhackme.com/room/owasptop10 [Severity 4] XML External Entity - Exploiting and the question What are the first 18 characters for falcon's private key (I'm attempting it from the attack-box, if it should matter). I've updated the payload used in previous question with the path to the private-key (my answer got accepted) and I get nothing back. I've checked writeups and they're saying this is what they did. I've tried getting other files (e.g. /etc/group) too but only /etc/passwd seems to return anything.

Not a bug i got it right

Weird, I'll try again later and I guess ask in the help channel if it still doesn't work for me

Adding to yesterday's discovery, today got another missleading redirection

Network Services room: Task3, there is a link "part of the Red Primer series here" -> (old nmap room) /room/rpnmap <private>

A typo here "To do this, we're doing going..."
Hacktivities: Vulnversity

https://tryhackme.com/room/agentsudoctf Task 3, question for SSH password accepts ||hackerrules|| even though the password is ||hackerrules!||

https://tryhackme.com/room/adventofcyber2 - Day 5 - Spell error then -> than

@wheat fractal The flag validation system is case insensitive and will strip some chars like trailing whitespaces, etc. so maybe ! is too

I'm relatively sure it's case sensitive

It will just be a matter of answer tolerance

@eternal summit I can totally assure you it's case insensitive

At least now, it may was not in the past.

Aye all possible, the thing is that the password is in a sentence so I would just assume that ||the exclamation mark|| wouldn't be part of it.
I am not sure about the case sensitivity, as I never created a room and there might be options that deal with that, but I definitely used lowercase ssh when a writeup or so used uppercase SSH.

You do not have options regarding case sensitivity or answer tolerance

Yes it's insensitive by default

Where do I go to report typos in rooms?

Here

adventofcyber / Day 5

Nmap room - Task 14

I think here it should be 1000 instead of 10000 because scanning above 1000 I find more open ports

There's a difference between nmap's top 1k and the first 1000 ports.

the task talks about scanning the first 10000 ports

and there are more than 5 in the first 10k

I've tried to enter another box and the website on adventofcyber / Day 5 isn't loading

I think there's A typo here in Day 5's Task in AOC2 ROom. Shouldn't it be "Intercepting"?

The website isn't loading? If so, did you use port 8000?

Thank you for reporting this. 🙂

Resolved, thanks (: ^

seems to be a bug in the day 06 challenge. zap finds 6 alerts. right answer is different. so not to spoil it

That's an old version of zap, I know this because the XSS alert there is deprecated @wheat fractal

ok thx

https://tryhackme.com/room/thefindcommand this looks broken (task 3)

Whats broken@wheat fractal

dat html

@eternal summit

Why?

The find room is broken

I'm a discord moderator

I moderate the discord

Anyway usually everyone mention you

For discord moderation stuff, sure

For things that are totally out of my control? No.

Okay sorry

Please remember everyone here is a volunteer

How can I ffix the website uh?🤨

I though u could😜

@vital drift how is it broken?

Look at the html code </> @twin tapir

Day 6 AoC2 - How to detect XSS? "You can lunch ZAP"

Thanks @pearl sentinel, food on the mind it seems - resolved (:

I have some issues with Day 6 too : Explore the xss alerts that ZAP has identified...... when i click completed -> Uh-Oh your answer is correct

How many types of XSS are there in the scan? ... i can not enter the correct answer .. field is empty and it is telling me correct answer

zap finds also 6 alerts but for it seems like 2 is the correct answer here.

i think dat's cos only 2 of them are "red"

the last question i can not click completed

and previous question seems incorrect too 😄

okay -> last one seems fixed when i refresh

a bit weird but okay now

That question have been removed ,please refresh your browser (:

@dusky junco thanks for the fix 🙂

room cross-site scripting > filter evasion > Challenge 3 doesn't give us the flag when we bypass the hello filter with html encoding https://i.imgur.com/pp1fr2w.png

hum.. even with base64 encoding, i can trigger an alert with Hello but i don't get the flag, is that normal ?

got the flag with a very simple payload that doesn't even bypass the filter for the challenge 3 and 4 on this room

https://tryhackme.com/room/learnowaspzap - task 9 the git clone link is a mess

Ay yae ay
@dusky junco. Gotta job for you

Aye I see it, if I save the task all the formatting is gone although

the next week is just going to be cleanup from this damn editor

trychackme.com/room/networkservices Task6, I reDeployed a few times and all the time all ports are closed from all 65535 possibilities

Using just a normal nmap -A -p- <IP> as its advised in the describtion

How long did you give it to boot?

Like 10 min

After the same results I reDeployed and still the same

It won't have changed

I get 0 open ports and this looks like a wrong answer

Smth is definitely broken which doesnt allow to progress

Ok, nvm had some ssh missconfiguration on my side

So we just post our room bug out in the open? Or is there a process for this specific task? (first time and all)

You make sure it's not just user error (assuming it's not a typo) and then just describe the problem here

Appreciated - and this may be a typo thing - and it looks like it might have gotten fixed now. Should be all good now that I review, it had to do with the (-) in one of the answer strings form today's AoC

apparently its just me, but as mentioned in #site-support day 5 in the advent, the sqlite server keeps saying server overloaded for me, but works fine for a friend.

been like that from launch till now

--btw this is resolved, its just not clear what page you are supposed to use it on, and its implied its the page you were just using--

in ''Buffer Overflow Prep'' room the script provide fuzzer.py and exploit.py are all full of error

IntadationError due to the web page.

add those "space" in the script please 😁

did you try python2

yes

its just a "space" error

i work out of it but that really add up stuff on the room

i saw old version of the website and that error doesn't exit because the code was well prompt

Error of the code provide

on the right is the code provide

Not exactly a bug, but probably a major pain-point, in the zthobscurewebvulns room, there's a tool that is recommended that uses python2. Kali no longer packages python-pip and as such the dependencies are no longer installable.

you can still use a manual exploit but it's trickier

@gleaming shadow I would suggest reinstalling python-pip. You'll thank me later.

doesn't exist anymore

Of course it exists

at least not on the kali apt repo

It's just not in the repos

Do it manually. It's literally a case of downloading a python script and running it with python2

ugh manually installing pip is a pain, I'll go look that up later

but python2 is dead.

curl https://bootstrap.pypa.io/get-pip.py -o get-pip.py && python2 get-pip.py

Literally that easy

Copy and paste into terminal. Job done

L'il research goes a long way 🙂

@wheat fractal https://github.com/muirlandoracle/stack-bof-fuzzer
Give that a shot

am looking, but my googling didn't find that script on the pip docs

i look

https://pip.pypa.io/en/stable/installing/

It's literally the main install page

I'm just blind

though pip will no longer support python2 as of Jan 2021

So it says.
Someone will come up with a solution. It's easier than converting all those bloody exploits.

fair enough, but it's still a problem

though I suppose this is why Java is technically back compatible to forever

@obsidian kiln thx

there is a typo in the AoC2 Challenge 7 Example 2 should be ip.dst == and not ip src == ?!

@dusky junco

Resolved a little while ago, give the browser a refresh @wheat fractal thanks (:

ip in question 3 is also wrong

ah its also resolved 😄

should refresh first xD

Is DevGuru Room unavailable? Because I can't reach it

@dusky junco

I found some bugs in " the find command " Room

I saw some html codes 👀 . So I reported

Yes, the room creator pulled it

Oh, so will it be available?

Probably not

What's the matter with that room?

Which room -- DevGuru?

The creator pulled it.

Nothing is wrong with the room. It's just politics

as always

AoC day 6 task 5: somehow the answer got changed to a 2 when it should be 5 unless im just a dummy lel

if you change the question to say how many types of XSS then it would be 2 but the way it is worded now is a little miss leading but i see now why it is 2

eeeeh I got an issue with OWASP Juice Shop In room rpburpsuite. I got no request with set-cookies as I had closed the thing for a bit as the proxy failed, so I can't do the sequencer task as it does something with continues when opening

not really a bug but to be complete the table of rights in Linux Fundamentals P2 Task 12 should start with 0 as no perm instead with 1

the admins are looking into that. in the meantime, can you pls add your pic in a spoiler since it contains a bunch of answers?

@mystic canyon it's specifics the alerts relating to xss

Advent of Cyber 2, today's Wireshark task, there's a typo. If this is a bit confusing - I don't blame you, just bare with me here should be "bear with me".

yikers thanks!

Naw

CMN is just very very lonely

cmn if you're lonely just bare with me

Barely. 😄

In vulnversity every file type uploaded to /internal returns Extension not allowed

@glass iron All except the explicitly allowed type are rejected.

Not a bug, it's the intended behaviour

Might want to rephrase Q1 on task 4 then? Leaves it rather broad for common file types that are blocked

Common file types. The context is webapp pentesting.

shrugs

Room agentsudoctf Task 4 the name of incident

Isn't it be more accurate to be https://en.wikipedia.org/wiki/Roswell_UFO_incident ?

plus task5 doesn't have the (Bonus)

There is a small typo in today's advent challenge, Day 8 on bonus part refers on Day 7.

In Task 18 of ZTH: Obscure Web Vulns (https://tryhackme.com/room/zthobscurewebvulns), whenever you put in the edited token, it becomes unable to connect and forces HTTPS

Fixed. Thank you for reporting. 🙂

@crystal iris #778305825797177374

you said to put it in #room-bugs

Not to you, I didn't

oh right, just checked, sorry about that

Hey

a minor issue

always, please sned your reccomendations

some spelling mistakes on the tbfc blog webpage

hey guys, is it normal that part of the section 4 is later on respect the section 5?

https://tryhackme.com/room/linux2

@dusky junco This is quite strange 😁

ah, the binary (the final challenge is before the section 5)

room easyctf 46635.py has syntax error

hey ika

i also have this problem

maybe someone can help us

❤️

maybe

maybe not

who knows

Seeing as the script wasn't written by the room creator, that's not a bug with the room

Chances are you're using python3 when you need to be using python2.

@restive plover @sudden basin

hey In Todays (Day 8) AoC there is a typo I believe.
range on Usage example is 0-1000 but on Description it is 0-100

@dusky junco

theres actually just a good amount of wrong stuff there actually. The example will scan all the ports. What you guys mean was either nmap -p0-100 or the top 1000 ports

the -p- makes it scan everything regardless of the arguments you give it after

@solemn topaz thanks

ohh, good to know. You're welcome

This will NOT make me love less AoC2 and THM 😄

haha yes, everyone is human 🙂

it'll be fixed in a bit

@green steppe do you have these omnipotent powers to fix other people's rooms

uhhh

whos asking

and for why

I am asking

#room-bugs message

@green steppe for that

ah so

i can edit tasks

but thats AoC

and its also not my job

so im not sure if Ashu would be happy with that 😛

i pinged cmn but he's a busy boi

so i wasn't sure whom else to contact

so i contacted you

because luv luv

The AoC Day 8 challenge references the Day 7 challenge but lists it as the Day 8 challenge.

As a result of Elf McEager managing to recover christmas in **"Day 8 - The Grinch Really Did Steal Christmas"**, TBFC's website has been restored for all the elves to visit.

I am connected via VPN, but this placeholder looks like not changing to assigned IP address, like under 8.7 Additional Scan Types, 8.9 Challenge, 2nd question.

@solemn topaz Did you click deploy?

It's not meant to show your IP.

yes, that's why I can see other places with a given IP

It's meant to show the target machine's IP

@solemn topaz wat

What you just said doesn't make sense.

@solemn topaz Click the deploy button.

Hope this will make more sense now for you: 🙂

I think there is one more typo.
-example is not the same (missing 3rd octet)
-I think nmap require 4 octets as fixed IP address or fixed range or at least * for octet ,

Thanks @solemn topaz will resolve now (:

Appreciate that!

Regards to the MACHINE_IP, that is a value that gets filled when you deploy an Instance in the room (and countdown for the IP address to display expires)

Thanks (: This has been resolved

thanks (: fixing - the curse of the fat fingers

i think the brackets are breaking it

Because it doesn't replace in the places with () around it

yuppp gonna give it a whirl

Oh this editor :< I'e got no idea

@dusky junco wouldn't it be like a placeholder (something like $MACHINE_IP in code or whatever placeholder it is using) that fills an IP ? and would be similar to the one that is updating "MACHINE_IP tbfc.blog" in next sentence?
ps. great job on the room , Thank you

Ayy it's done it now 😄 it was trying to HTML encode for some odd reason

thanks for letting me know (:

That is quite odd aye -- I'll swap those tasks around 😄 thanks

in "musical stego" room the task2 is buggy it require specific software. i try a lot of things to make a good qr code and the scan give me a error

is there a thing to go around ? or to fix that ?

Ive tried every combination of answers here but none seem to be accepted. Thoughts?

@thick gull use the payload, then enter the flag you're given. This isn't a bug

smh

Typos in today's advent challenge We'll quickly gaze over the basics” of getting started with Nmap, the scan types, and the syntax for these types accordingly. I think you meant graze and there's random " after basics.
Thankfully, TBFC has a wonderful up-skill program covering the use of Nmap for ElfMcEager to enrol in."enrol" should be enroll.

The vulnerable Instance attached to this task by pressing the "Deploy" button at the top-right of this task/day missing period

In a pentesting situation, you'd be inclined to use a lower value such as whereas in a lab environment

"inclined to use a lower value where as in a lab environment", such as should be removed

taking a look, apogolies

"whereas should of be within" thanks my dude. Justdoing the rest

Wait I thought enrol was valid o.o

Ah British english is "enrol" american is "enroll" 😄

Perfect, thanks for spotting those out @wary arch much appreciated

Hey guys in the introtosearch room on task 2 the 5th question on the $6$ hash it doesnt allow the answer if there is no blank space at the end

In the Active Directory Basis room, (https://tryhackme.com/room/activedirectorybasics)
There is a bug in the lab, in that the lab refers to the cheatsheet for PowerView 3. But the version on the lab machine itself is 2, and doesn't take any commands from the cheatsheet linked in the lab. Looks like h4rmj0y created version 3 about a month ago, and the lab is 130 days old, so that's probably why it's got PowerView 2 on the box still. Users could download the new PowerView or use the v2 cheatsheet as a workaround, but I guess the room creator can decide the path.

just a heads up that androidhacking101 has a LOT of grammatical and spelling errors
theres even an image of a slide that clearly has the red squiggly line under it

"Command for extract apk"
had me stuck for a while
what they meant was the command to copy the apk from the phone
nothing is being extracted

In the hackerNote room, the walkthrough for using hydra has a problem: it can only bruteforce successfully on this box if the header "Content-Type: application/json" is specified for the post requests

in the Android 101 it asks for the package name for Black Hat US (supposed to be found via play store) but that package is not available for EU citizens. The package name happens to be the same as the one for Black Hat Europe

Refresh it will give you the answer

@fringe geyser agree. It is not that well described. I am pretty stuck at "Tool for convert dex file to smali code?" Normally I would use the smali tool for that or d2j-smali but that is not accepted

@fringe geyser did you manage to answer the question about the convert dex file to smali question ?

Not sure if that's the right place, found a mistake in a table of the Intro to x86-64 room (https://tryhackme.com/room/introtox8664). This is what it says:
(Quad Word exists twice and the suffix of the double precision type should be d)

This is what i think it should be

That's not correct, the login API route accepts both JSON and form data. You just need to provide correct headers for whatever you send.

eeeeh owasp top 10 level xss has an issue

what issue? I did it a few days ago and did not notice

I did something that broke it for a bit

maybe was burp it seems

Eeeeehhh juice shop shows the answers

@green steppe the answers of juice shop are largely visible above the questions/how to do it (as opposed to hints)

ah

the room

not my job

yep

@dusky junco this is your job

okay

😂