#room-bugs

Also shouldn't Task 5 "How many CIS controls exist?" be 18? The answer required is 20 although that was the formerly SANS top controls. (Or did i read it wrong)

https://tryhackme.com/room/howwebsiteswork

Task3 does not actually require JS to get the flag. Not a big deal, but someone might accidentally do it wrong without realising as this room is for total beginners.

Fixed. Thank you for reporting. 🙂

Gave +1 Rep to @untold mural

It's on the list. 🙂

Fixed. Thank you for reporting. 🙂

Gave +1 Rep to @white osprey

Think there was a pin about boxes closing/times not being accurate. Here's one that it just happened for me on. - https://tryhackme.com/room/overpass3hosting

That will be a site bug

That's not a Windows machine so the licensing doesn't get in the way.

Intro to IoT Pentesting : Task 3 , Don't think the Machine IP: MACHINE_IP is displaying properly

the machine is deployed, right?

yeah it is, Its just a display issue with js I assume its suppose to display the box ip

refreshed a few times and its still there, could be my browser I guess

(the box works fine)

it's likely the room author implemented it incorrectly

^^^^
You often have to jump through hoops to get that working

https://tryhackme.com/room/couch
What is the credentials founed in the web administration tool? -> is -> are, founed -> found

Thank you for reporting. Also fixed the other questions. 🙂

Gave +1 Rep to @twin bay

Probably a silly question... Why does the splunk room contain ssh credentials to the machine? We don't need to access the machine via ssh for any of the tasks. After accessing the machine, I see that it only contains the dataset for the BOTSv1 in the home folder, which might be a reason for providing ssh access but a link to the dataset in already provided in one of the initial task descriptions.... ..?

Im on thm's learning path "PreSecurity" currently in a room called "Extending Your Network", i've got the flag to get but I cant seem to make the simulation work (task 6), its asking for a TCP packet and when I change it, its still stuck on ARP

Hi! 🙂 I've found room bug-typo, it's "bu" instead "by, and it's "age" instead of "page"
• Found this is Cross-Site Scripting (Task 9 - Protection Methods & Other Exploits)

Room: CC-Pentesting, Task : 9 typo

Linux strength training task 7

Linux strength training task 8

Fixed. Thank you for reporting. 🙂

Gave +1 Rep to @stiff notch

Fixed. Thank you for reporting. 🙂

Gave +1 Rep to @untold mural

thanks you da best QA man

In the Wireshark room on task 12, the steps for importing the decryption key are now outdated

the steps are essentially the same except the dropdown under protocol you have to select TLS now rather than SSL

Can anyone please help me with this?

Pre security - OSI model - layer 6 - task 3. I don't think it should accept a typo as the right answer? 😄

often small typos are allowed in answers, but tbh imo it could have like "Hey you made a typo" notification as well

That's just answer tolerance

Room creators have no control over it

Ah ok

Thanks for clearing that up 🙂

Yeah if your answer is off by less than 10% or so it'll accept it

You can refresh the page to get the intended answer

guys task 7 in this room https://tryhackme.com/room/historyofmalware has a picture that won't load :))
sending this just to notify you if you can fix it

https://tryhackme.com/room/introtoisac Task 4: https://www.nationalisacs.org/member-isacs link is 404, the updated link should be https://www.nationalisacs.org/member-isacs-3

not a big deal as there is already a link to National Council of ISACs.

thank you! I've updated this (: just refresh the page and the changes should reflect! 😄

Gave +1 Rep to @exotic remnant

Hi, I can't access Holo anymore (could yesterday) :
I only completed the first few acknowledge tasks and came back to it today

Uh, @viral cobalt?

Rest assured, you're not banned from the room. Don't know why you can't access it at this point. 🙂

Thanks, for now I'll complete other stuff in the meantime, as I can't access tasks 🙂

Gave +1 Rep to @glad badger

@lucid oasis @tiny dragon might be able to help, i don't believe we have access to see anything related to banning/unbanning users related to rooms? I don't see any banned users on the room management end

Whats your TryHackMe username? I'll check what's going on.

this maybe? https://tryhackme.com/p/CvxFous

(It is -- just looked it up via the tokens)

I've unbanned him from the Holo room - We're soon to be starting to move THM over to React, once that happens it'll be easier for us to commit to adding in other room management features where you can unban.

Network management console? 😆

Its on the list - just have a ton of other features above it ahaha.

Hehe, I know -- no rush 😄

gib network management console

Muiri and I want beta

One of those things that's useful, but non-essential 🙂

When its sort-of in beta, you guys will be the first to get access:)

Awesome 😁
Thank you 🙂

@tulip solstice ^^^^ btw

https://tryhackme.com/room/forensics
Task 2 -> "There are many suspicious open port" -> ports
Task 3 -> "In lats task" -> In the last task, "some IOC's. you" -> "You"

Several other grammatical errors that I'm sure someone going through will discover 🙂

ugh cry would like as well

heck

You think we're trusting you with it?

Let me check. 🙂

Should be better now. 😄

Is there a reason for duplicating this?

Fixed. Thank you for reporting. 🙂

Gave +1 Rep to @upper kiln

https://tryhackme.com/room/linuxfundamentalspart1 Task 2

Do switches actually break this down? No.
The answer also doesn't line up. Packet switching isn't breaking them down, it's getting them to the right place.
Intro To LAN

OSI model room seems to disagree with The Internet™️

It's the layer where the actual encryption itself happens because presentation is where data is formatted, etc

I'll make that clearer

It's very interchangable between the two depending on what function of TLS you're looking at as per RFC 5246

room - howwebsiteswork | task 5 | Problem - Shouldn't this be "CTRL"?

Extending your network, the room should probably cover the default drop rule at the bottom? Maybe the fact that the tables are read top to bottom with a default rule?

DNS In Detail, Stand should be lower case s.

Task 5, should be What's

Do you mean task 4 by any chance?

I have this updated locally & will push once I've confirmed the above ^ (:

Updated. It'll take a little bit to reflect on the site (caching, etc)

@dusky junco Yeah task 4, my bad. Super!

No worries 😎 I've resolved this. Thanks for hte reprot

Gave +1 Rep to @white osprey

Updated 😎

On Task 2 of https://tryhackme.com/room/introtolan

MAC Address solution with only 1 d

instead of 2

That's answer tolerance -- it's designed so that a typo means that you'll still get the answer more or less

If you refresh the page,you'll see that the answer gets replaced with the actual answer -- i.e. there'll be two d's (:

OK thx 🙂

👍 😄

An answer in linux fundamental room 1 that shouldn't have worked

hold on getting pic

That's answer tolerance

Ah, sorry for my overzealousness

Windows fundamentals 1 : task 7, takes improper answer

That's answer tolerance. It means that as long as you were close enough to the actual answer it'll accept it (for cases like this). If you refresh the page it'll show the actual answer (:

gotcha

i wish we could have a floating message about answer tolerance

i think this alert should include due to answer tolerance with maybe a little i to hover to get information about answer tolerance is, if the answer was accepted because of that

https://tryhackme.com/room/linuxfundamentalspart2, task 6:
Isn't "encrypted" the wrong word here? I thought hashing wasn't encrypting, am I correct?

yup u r correct

I think I raised this.
It's also not sha512 either. It's sha512crypt which uses sha512 but it's not sha512.

Alright, thank you 👍

@dusky junco Once you're caught up on pings ^^

its not a big deal but it redirects to an undefined page. room:tickets1

I was afraid to do that myself xD

Room: Shodan, Task: 1 ping is invisible

thanks updated 😎

Gave +1 Rep to @wild saffron

will get to this ty cc @winged wraith

Room: Shodan, Task: 6 Text is on the page twice

@green steppe ^

Room : Remux The Tmux Task : 2 , accept needs to be except

On intro to LAN - The arp protocol:

How does ARP Work?

Each device within a network has a ledger to store information on, which is called a cache. In the context of the ARP protocol, this cache stores the identifiers of other devices on the network.

In order to map these two identifiers together (IP address and MAC address), the ARP protocol sents two types of messages:

sents should be sends

Thank you.

Gave +1 Rep to @scenic dune

Ty

Gave +1 Rep to @eternal summit

I can't connect to the ssh

I tried but can't connecing

Room-linux privesc

Also same problem in wreath can't connect to ssh

@thick junco
Thanks for writing down the blaster bug. I was having some issues also in the last step and couldn't figure it out.

Gave +1 Rep to @thick junco

in all time

Site bug, known issue.

Fixed. Thank you for reporting. 🙂

Gave +1 Rep to @viral ingot

Minor room bug with formatting in powershell room task 5

Hi guys, I don't know if its a bug or not but in Basic Pentesting room when i ssh'ed as jan I could just do vim /home/kay/pass.bak and read the file. I don't know how this worked as I did not had read permissions.

If I'm able to break a room/lab purposely by tampering with how it is implemented, should I report it?

The static labs are not actual machines and just a mimic... Is that correct?

The static labs are just websites being rendered in your browser, same as any other website 🙂

Ahh okay... So all of the functional parts are implemented by javascript and no communications are made with the backend?

Yep, exactly 🙂

It's just a static site

Umm... Look at that... I'm able to render the dashboard inside a static lab by removing a regex validation from the javascript file... Can it be considered as a bug?

I was trying command injection... but lateron I realised that it isn't a real machine 😛 Still.... There may be possibilities of finding an XSS i guess..

just remember, if you're going for a bug, it should try to be as low interaction as possible

a lot of places won't accept reflected xss because there isn't often valid security concerns because of certain technologies like csrf tokens, cors, etc

Ahh...okay.

Having issues connecting to the box on /linuxfundamentalspart1, anyone else having this problem?

Click reconnect

Didn't work but after the 4th restart ive got a command line

But thanks anyways! 😄

Gave +1 Rep to @eternal summit

@fluid depot I was having the same issue on the windows fundamental. It would drop connection every 15 seconds and was hard to get things done. I terminated and rebooted the box about 3 times and it finally seemed stable enough to allow me to do the task

I think, since those rooms just got released, there is an overwhelming demand slowing it down

On the "PRE SECURITY" Learning path the "HTTP in detail" room on task 2. This question only accepted length spelled as lengt for me.

That's just answer tolerance.

Oh ok, wasn't sure thanks

Gave +1 Rep to @eternal summit

in the "Introductory Resarching" task 3, Vulnerability searching. The last question ask: "which CVE you would use to exploit a 2020 (as in the year) buffer overflow in the sudo program." But CVE database does not have the correct answer labeled as 2020, but 2019.
Either I don't understand the phrasing of the question or should it say 2019 instead of 2020?

No, it should not

It was made public in 2020, but the CVE was allocated etc in 2019

Just to clarify, I have the right answer, I was just confused that the CVE said 2019 🙂

Hi there. Possible misspelling in "Extend your network" -> Task 2. Isn't this supposed to be "ascending" order ?

Thanks James

Gave +1 Rep to @eternal summit

so in DNS in Detail room (refreshing and going over basic things is great) task 2 question 3 -> What is the maximum length of a Domain name? the accepted answer 253 is wrong, becouse it actually is 252 (even text says ...maximum length must be kept below 253...)

No, the text should just show that it's up to and including 253

ok, so the text is missleading, my bad

Fixed. Thank you for reporting. 🙂

Gave +1 Rep to @warm isle

windows fundamental part 2
I think the image here is missing
in task 7 cmd one

Missing a space after .NET on Holo Task 5

@viral cobalt mwah

I think that Linux Fundamentals 2 is partially broken, Filesystem Interaction Continued wants me to check tryhackme's home directory, however, the attackbox is logged in as root and no tryhackme user exists

That's not an issue with the room. You have not SSH'd into the target machine as the room guided you to do.

I don't know if its intentional but on the room HackPark if you run PowerUp.ps1 or winpeas you get the credential of the admin (default credential), when you are supposed to exploit a binary

Then... ?

HackPark is broken, it initially let me navigate to the login portal using my web browser, but it just started to no longer respond to anything on port 80. I tried terminating and then restarting the server and while it has a new IP, but it is still showing the same behavior.

Re-nmap scanning now shows port 80 as filtered.

it gives you the default credential of the admin account and its getting around most of the suppose way of the privilege escalation specified in the guide

In Steel Mountain there is a root.txt flag but nowhere to submit it

@glacial plank

Task 3. Last question.

oh duh lol,

I forgot I submitted it already after doing the metasploit version, just did it without metasploit and thought the flags would be different

It's the same box

I don't think that's a bug. I think a lot of rooms have more than one way to get the job done. I'd call it a feature 🤣

hi team

Room: web osint Task 2... question 5...This does not seem to be correct...Guess the answer needs to be revised.

Hi team🙂 I have problem with access to "Learn Rust" room... After entering the room, I can only see a "spinning circle". The problem occurs on different browsers, computers. I can access to other rooms without any problem.

Hi, following the wireshark room (https://tryhackme.com/room/wireshark), it looks like this needs updating or needs a disclaimer for the version of wireshark. In task 12 HTTPS we are asked to use an RSA key to decrypt the data. It specifies to use SSL for this however wireshark removed this option from the protocols menu and we should now use TLS option. Might be worth either adding some more notes to that section or specifying to use an older version of wireshark. Room created by Cryillic

If I change this bs one more time I’m going to liberate wireshark

it’s gone back and forth more times than I can count

It's been TLS for a long time...

I had it at TLS first then people complained so I set it to SSL then people complained so I set it back to TLS and then finally back to SSL

I can not ssh into a server with the username and password is something wrong with the box?

I’m in common Linux privsec

Can somebody help me? I want to ssh into the attack box

#site-support or #room-help

Why not just do both? SOmething like "in some versions, it's listed as foo->bar->TLS, while in other versions, it's bar->foo->SSL"

Room: https://tryhackme.com/room/introtolan
Task 2, TYPO in the explanation.... 192.168.1.10 192.168.1.0
Also the explanation seems to be vague and incomplete

This is a bug I guess Room : introtolan ; need proper validation of the string

That's answer tolerance.

pardon me ! what's that 😐

Like the probability

A roughly 10% tolerance of incorrect or missing characters.

makes sense

okie thenks @eternal summit

well yeah but kinda defeat the purpose of being a guided room with other things to do :\

Doing RBurpSuite room, and Task11 seems out of place.

It mentions a "Score board" that was supposedly previously used, but there's no previous task that mentions a scoreboard.

Wondering if Task 11 was pasted from a different room?

any help here....even the final task answer needs to be uodate

i got a bug do i have to post it here

if it's a room bug, yes. @nimble elk

Oh that's hilarious, I was moving to quick and didnt even see that. thanks

Gave +1 Rep to @eternal summit

upload vunerabilites room have issues I cant load the page for whatever reason

network services 2 task 8, needs commas

network services 2 task 9, "that you have it Metasploit installed"

Me too. Same issue. I've clicked on reconnect 4 times, and it's done. Thanks for the tip dude.

Gave +1 Rep to @fluid depot

ROOM: https://tryhackme.com/room/dnsindetail
TASK: 5

nslookup accepts flags with single -
--type= -type=

Hi Ross, Did you ever figure out how to get the images? I am having the same exact issue. Downloaded the .txt no problem, but images are stuck/empty.

Fixed the whole task. Thank you for reporting. 🙂

Gave +1 Rep to @untold mural

Whole task reviewed. 🙂

Hi, I think I've got a problem

Impossible to see the tasks

on Basic Pentesting Room

Hey! Press options -> leave room, then rejoin it @dense pelican

I try

Nice it's ok for me now

Thank you @hazy tiger

Gave +1 Rep to @hazy tiger

Windows fundamentals 3 , task 5, T isn't italicized

Typo in the tmux room "Last but now least" should be "Last but not least"; the last question

I have a problem with cc: pen testing room. Task 8, Q7. The command for exploiting is either run or exploit isnt it or am I thinking it wrong?

???

I was reading it wrong. I got it.

Room:- Steel Mountain
Task - 3
What is the name of the name of the service which shows up as an unquoted service path vulnerability?

double print the name of

Room : Introductory Researching
Task - 3
If you wanted to exploit a 2020 buffer overflow in the sudo program, which cve would you use ?

The answer is CVE-2019-18634

So the question should be 2019 buffer overflow not 2020 buffer overflow

It should not. It was disclosed publicly in 2020 @shut laurel

Okay got it @eternal summit

There is a bug in the OSQuery room. Task 5, the only question is as follows: What is the query to show the username field from the users table where the username is 3 characters long and ends with 'en'? (use single quotes in your answer)

This is the answer it accepts, which is clearly wrong:

Answer should be this or something very similar: SELECT username FROM users WHERE Length(username)>=3 AND username LIKE '%en';

That’s answer tolerance

not by that much

Refresh and it will correct the answer

it didnt btw

the asterisks were exactly the length of the accepted answer. if you look, the accepted answer has nothing in it at all about the length of the username

During presecurity path sometimes I had option to terminate from UI of the room but it did not actually shutdown machines even though I was able to start more instances (multiple running in the same time)

fixing this could save few $$

Are they machines, or are they the little web labs?

Little web labs aren't terminable, and they don't cost much at all to run because they're just webpages

machines, windows machines are last I done and had 2 running

well, at least that what I thought - maybe I confused and both of my RDP sessions were connected to the same machine

I think there have been some bugs terminating machines lately

I can't add the reverse shell in WordPress 404 template
Room -internal

Its says the error just bottom of the blue update file button

Hey guys, I'm getting all kinds of weirdness in my attackbox. nmap is misbehaving it seems. I did 2 nmap -A with 1 returning 2 different outcomes. 1 seems to be an Android phone with port 999 and 9999 open. The next scan reveals the proper ports.

Want to share pic, but can't for some reason?

ok, can't seem to send the pic, here's a link to it: https://i.postimg.cc/02td4jzL/weirdness.png

That's not a bug

If you verify then you will be able to embed images :)

!docs verify

Thanks for that. I'm new to Discord...

😁

Then what is the error 😭

You not understanding how Wordpress works in relation to the filesystem

The box creator has locked down the file system so that www-data can't write into the wordpress plugins or themes directory

But i can upload the rev shell via attackbox🙄

Oh?

I tried with ubuntu and kali those have same error
But in attackbox i can upload the file but i didn't get the net cat

You've confirmed that it's uploaded? Because that really isn't how it works

In daily buggle room i have the same problem but it will fix via attackbox

Yaa in attackbox its says upload completed message but in my own kali it's only loading for sometime and then got the error mesage like the screenshot

The box is set to stop you from uploading stuff in Wordpress, so I have no idea what's going on with the attackbox

But in some walkthroughs they also doing the same step i followed

Are you uploading a plugin or a theme

A theme should work, a plugin will not

They don't got any error msg like the screenshot

Means?

No i uploaded the rev shells in 404 template

Theme, from the screenshot. Okay, well, that should work for this one. Wrong box.

I would suggest researching that error message. The box does work

So what will i do

@obsidian kiln That's sounding like the MTU issue to me, if blank works but a file with content doesn't

As far as I can see they're just editing the theme?

Then again, could still be MTU if the request is too large

Oh, maybe not then? If it POSTs the whole content then it's worth a go

Aye

this is probably just me being an idiot but on the XSS room, when I copy/paste the XSS Key-Logger into the Stored XSS comment field, it crashes the box.

but not if I remove the comments.

and even when I do that, i see nothing new show up in the 10.10.x.x/logs page

So in OWASP Juice Shop, I succeed in changing Jim's password, log in as Jim, and am greeted with a happy green "You successfully solved a challenge: Login Jim (Log in with Jim's user account.)", followed in the next line by a little checkered flag, next to about 40 hexdigits, and a copy button. I press the copy button, and paste it into the blank for question 2 of task 4, and am rewarded with "Uh-oh! Your answer is incorrect."

Where am I supposed to go from here? Interesting. I now see that a green box had previously appeared out of the displayed area of the web page when I initially succeeded in changing the password. So I've received credit for question 2 of task 4. Still dunno where the 40 hex digits that appeared when I logged in as jim go.

Should be on the scoreboard

@dusky junco In the red bubble, "build" should be "built".

What is Networking: Task 3

On Advent of Cyber 1 2019 Day 9, I am not getting any response from 10.10.169.100:3000. I have tried both on the AttackBox and VPN.

#room-help would be the appropriate place. This isn't a bug, you just haven't mounted the folder yet.

my bad. I'll delete it and move it over there.

Could it be worth changing now that? Seeing as we have Throwback that uses that(I think)?

Defender also seems to yeet Mimikatz.exe after you use it

In CC:Pen Testing, Task 18 there seems to be a bug on the attackbox where sqlmap -u ip --forms --dump returns <blank> for database entries? I ran the same command on a virtual machine with Kali and did not get <blank> and instead got the flag

Yep, CMNatic is aware. Sqlmap needs updating

http://repairshop.sbrc in the https://tryhackme.com/room/cyberweek2021 room isn't resolving @obsidian kiln

Did you read the bit about modifying your hosts file?

Soy Idiota

works a treat when i read stuff. Sorry, must be too tired.

In Windows Event Logs: misspelled answer accepted.

I had 2 typos, fixed 1 and submitted before noticing second, but my answer accepted.

Final input for task 3 question 2:

Read events from an event log, log file or using structed query.

This is called answer tolerance.
If your answer is about 95% correct, it will be accepted.

This does mean that you can sometimes get away with typos or incorrect symbols in answers. @outer pollen :)

anyone here

?

Yes

where are u from brother ?

This not a good place to ask this question let's head over to #general

can i inbox u ?

For?

For guidance and help

U can go into #infosec-general for guidance and all

Aaah ok u dont want to talk its ok :/

Mods purge this convo if u mind it 😄

I don't know if this is a bug but I've just tried to continue with a room that I was working through and when I try and answer a question I'm getting the message "To access material, start machines and answer questions login" even though I'm logged in. Any thing I can do?

That's a site bug, #site-bugs

#room-bugs is more for bugs with the content in rooms or the VMs rather than site issues

Okdokey, cheers.

Certainly a bug tho

Is osquery bugged? It's not accepting the schema for win_event_log_data

@eternal summit

I'm not THM staff. I didn't make the room. I have not completed the room.
Don't just ping me to report bugs, you're pinging 100% the wrong person, and just report it as a bug here if you think it's bugged.

Oh sorry

don't think so, did you wait enough time in order to load the extension correctly ?

should return Done StartDriver

Room: https://tryhackme.com/room/linuxfunctionhooking
"lLnux " should be linux

I`ve a trivial typo in Linux Function Hooking by whokilleddb

Learn about function hooking in lLnux and have fun hooking functions

cancel, my chat was so far behind its already been reported

In the "Intro to x86-64" (https://tryhackme.com/room/introtox8664), in the crackme1, where you are supposed to find the password in a binary, which is intended to be ||"127.0.0.1"||, you can also submit ||" . "|| instead

@past moon might want to change that ^^

Fixed. Thank you for reporting. 🙂

Gave +1 Rep to @soft terrace

I was going through linux fundamentals part 3 and it seems there's a typo in task 5

shouldn't "systems" be "systemd"?

Great series btw, everything is explained very clearly

Fixed. Thank you for reporting. 🙂

Gave +1 Rep to @high vapor

np <:)

I guess someone from THM Team fixed it

Thanks xD

I like it in the sense that maybe beating a few less noobs will help retain users, but I hate it at the same time.

The command line knows no mercy.

That’s not the reason for it at all lmao

At this point I'm gonna put this in here, I'm working through https://tryhackme.com/room/introtoisac at the moment, Task 5 says to create a free ThreatConnect account. It looks like they've removed the option to do that now. Had to check the wayback machine to make sure I wasn't going insane.

jokervm: task 1, question 6 typo

We're all eternal noobs in the everlasting stream of learning in the age of forgetting™️ 🥳

Wait really? Let me check if so that really sucks

Ew, it seems like they’re going platform based now

I still managed to get into my account which means they haven’t taken it away completely. I’ll take a look when I can

They still show the TC Open free vs. paid page, but there's no way to register or sign-up anymore. My account still works as well. They must have hired a new Marketing Executive. 😄

There is bug in https://tryhackme.com/room/furthernmap. .. reported ports is wrong

In task 14

Working on "Hacker of the hill" submitting the Medium flags at hackerone, it keeps telling me those have already been submitted. I'm very sure I have not.

"that" what? the suspense is killing me.

John the Ripper - Task 4

Task 5 on ffuf room isn't detecting some of the machineip inputs.

it's likely because it's not in codeblocks

The second/third is the same as the one further down.

if you refresh the page, does that fix it?

nope

MACHINE_IP man, lemme tell ya, it's a curse

no blessings here

i blame Noraj tbh

john the ripper module has problems with ssh2john and rar2john

can execute from opt/john/fodler via .py execution, but comes off as "command not found otherwise"

and this is via attackbox - should of been more clear

also I think there is a small notational error in /introtolan

What technology do Switches use to break large pieces of data into smaller, more manageable packets? - the answer that makes it correct, I dont think is factually correct

I've also had issues with rar2john in the AttackBox

It's just not in PATH. Not overly a bug.

true, but not overly default, either. When you are going through the flow of instructions, and zip2john works...than seuddenly rar2john/ssh2john doesn't...it can give off a false impression that the user is doing something wrong or incorrect (which wouln't be true). There is no notation to indicate otherwise and had to figure it out outside of instructions. Just saying, could casue frustration for newer, less experienced members.

Yeah I found the same. It's sad, I was keen to take a look at the platform! Least the room was still great and had some pretty awesome steps in there. Didn't feel totally lost or anything despite not being able to make the free account.

Anyone else having trouble with the upload vulns sites? They're pretty unstable

And I keep getting this error on gobuster Error: error on running gobuster: unable to connect to http://jewel.uploadvulns.thm/content/: Get "http://jewel.uploadvulns.thm/content/": context deadline exceeded (Client.Timeout exceeded while awaiting headers)

Sometimes it will continue nicely for a bit then crash again

In holo network, srv02 is no longer domain joined, few reports are there in holo-network channel

That's usually a problem with having more than one copy of the domains in your hosts file

+1

I was actually careful with the hosts file. Will check again.

The other thing that can cause that is having a second VPN running on your host -- don't ask how

@glad badger repeated word.

@past moon

On it

Fixed it :D

Thanks man :D

Also

Splunk3 task 7 Question 3

I guess there'll be no hoth

@hazy hinge

@dusky junco I know it is adam's room but I can't seem to tag him.
DNS in Detail - Task 4 - Final paragraph:

This value is a number represented in seconds that the response should be saved for locally until you have to look it up again.
Should either swap for and locally around, or remove for.

or surround locally with ( )

How about This value is a number represented in seconds for which the response should be locally saved until you have to look it up again 😄

Grammarly's response after I changed it to that "You must have been practicing!" 😆

Since some people are non-native speakers, it might be easier to break it up into two sentences.
Something like:
This value determines how long the response will be saved in the local cache. The value is in seconds.
or:
The value's unit is seconds
The value is time (in seconds). (parentheses can be removed if that is clearer to more people).
The unit for this value is: seconds.

I'm just thinking that a google translate on a complex sentence will be more confusing 🤷‍♂️

Anyone here who can help me with correctly creating an OVA ?

Not really a bug

In room upload vulnerablities task 7, when i try to foward a request using burpsuite into the java.uploadvulns.thm it just keep loading until it eventually said "Failed to connect to java.uploadvulns.thm:80". My connection is fine bc i tried it on a different website and they responded, i got another request. It seems like the machine didn't catch the forwaded request from burpsuite

Ive had a few glitches with bthat task as well. Better to terminate the machine and restart it

Something wrong with room Archangel. I cannot get the log file showing. I've followed many different walkthroughs, the path traversal that works for them doesnt do anything on my machine

looking at the history of Archangel complaints this isnt anything new it seems. Something is fked with that room

just gonna move on until its fixed

Sometimes u need to reset the room. Iirc as its been along time since I did it. Certain input will make the log unreadable via the LFI.
Think what exactly you are putting in that log file.
The room isn't broken per say, it's more of a "think about what you are doing" part.

Refresh the page

i have tried it in differnet days

it looks like issue is just for me

The rpmetsploit room Task7 has a bug. Maybe its a MSF5 MSF6 incompatibility... But below task does not work anymore

rpmetasploit room (typo)

Although google will get you there

"John The Ripper" room. Task8. Section about custom rules. I think there is a typo in the code example: cAz"[0-9] [!£$%@]" produces Polopassword1 !. Code should be cAz"[0-9][!£$%@]" to give Polopassword1 ! (without space)

Having issues with internal, i cant connect to the domain with with my browser and even a curl is taking long

Did you add it to /etc/hosts? Has it been over an hour since you deployed it?

Has it worked previously?

First time on this box in particular, I edited the host file when I got the IP and I even waited the 5 mins to let the machine start up

and I can ping the box, just cant load the web page and everything but nmap and curl is timing out

Check the pins in #site-support, try the MTU fix

MTU ?

nvm I had my host VPN on

thanks again

In the room linuxfundamentals part1 Task 5... The number of directories and files don't match with the machine deployed

snap was added later.

In the room "Blaster "

Task 3 , Browser History was Deleted ! so i can't get CVE number

** restarted machine many times but the results are same **

Room: https://tryhackme.com/room/zer0logon
Bug: typo
Task 3
is: hNetSeverAuthenticate3
should be: NetrServerAuthenticate3

getting erros when doing the SudoVulns room. Ive tried all combonations for -u

Hi! I have tried to use the exact information given but the output is still error, may i know is it my issue or could it be room bug?

• OWASP's Juice Shop - Task 5 - Question 2

Put a space in between Mr. and N00dles

That is 100% not what you were told to do

Read the instructions. That isn't a bug.

Room: Burp Suite
Task: 9
Bug: Clicking "Download Task Files" dropps the connection to the THM AttackBox

Lmao. Sounds more like a site bug?

Room: Burp Suite
Task: 9
Bug: "For some additional practice on using Intruder, check out the older Learn Burp Suite room here on TryHackMe" -> the linked Room is Private

Possible 😄

The Burpsuite room is getting a revamp anyway 🙂

wasnt that room a revamp of the other room kekw

Revamp imminent™️

a brand new revamp (:

dear all, I think there is a bug in the "Cross-site Scripting" room on task 8: i got all the "Hello" alerts but got only the first answer

||<iframe src="https://cyberdude.it/wp-content/uploads/2021/01/science-of-earworms-explain-why-never-gonna-give-you-up-is-stuck-in-our-heads-30-years-later.png" onmouseover=alert('Hello')></iframe>||

thank you all.

Got you, thanks a lot man!

Gave +1 Rep to @urban zealot

in the Wireshark 101 room in task 12 it says you should go into Edit > Preferences > Protocols > SSL > [+] the protocol was renamed into tls
see: https://superuser.com/questions/1430350/ssl-protocol-seems-to-be-missing-in-wireshark

time for cry to change it back :)

It's needed to change to TLS all the way through

Smart way would just be putting "click on TLS (SSL in older versions)"

I am sick of Cry not fixing that smh. Added

Muir>>>Cry

Thanks bb

it’s honestly something I’ve made a note to fix a million times then get caught up with other things and forget

Riiiiiiiiiiiiiiiiiight

https://tryhackme.com/room/howtousetryhackme

No ssh login dude

:/

How is that a bug?

I can't acess the machine without the ssh login

Can't you?

There's an in-browser machine

lol

Thx

Np 🙂

it does not matter but its good to keep everything as perfect as possible

@viral cobalt fix it fix it fix it

sorry, you must have me confused with someone else

i dont know you

does that mean I can take your throwback cut?

throwback? whats that?

@obsidian kiln youre my witness I get his cut

i dont know of any cut

Hi guys! I'm not sure whether is this bug or what because the flag did not come out after I've successfully done what was being told in the task

• OWASP Juice Shop - Task 7
• Question #2: Perform a persistent XSS!

[Note: I have restarted and retry from scratch and it still appears like this without flag]
• I saw some comments in reddit to stop burp suite then try again and it still doesn't work.

This channel is for bugs with tryhackme rooms.
That's not a tryhackme room. @wheat fractal

my bad

i will dm

@viral cobalt one for you in holo?

nope

those are for Cry

Also maybe missing a space up here

@twin tapir okie one for you it seems

Fixed

Room: Cross-site Scripting
Task: 8 Filter Evasion: The word hello is filtered, bypass it.
Problem: Only one solution seems to be excepted?
How to reproduce: <p onmouseover="alert('Hel' + 'lo')">Hover me</p>
Error Description: Provided line solves the requested task but does not provide the flag.

Same goes for the last question "<p ononmouseovermouseover="confirm('Hel' + 'lo')">Hover me</p>" this will solve the task but wont retrieve the flag 😄

Room: Cross-site Scripting
Task: 9
Problem: 2 Images References seem to be broken

Also the tips in the last task suggest to check http://xss-payloads.com/ for tips which does not look correct

From Holo

Fixed

Same for me. I've tried restarting, and I get an empty history. Will just grab the CVE from a walk through.

Blaster, task 3, no history in ie.

Room: Osquery
Task 4: Schema Documentation
Problem: I'm not sure if this was intentional or not, but the task makes a point to tell the user the current version at time of writing was 4.7.0, but the answers were from version 4.6.0

Room: https://tryhackme.com/room/rpmetasploit
Task 7: Makin' Cisco Pround
Problem: In the walk through we're asked to use run autoroute -h however when running the command

meterpreter > run autoroute -h
[!] Meterpreter scripts are deprecated. Try post/multi/manage/autoroute.
[!] Example: run post/multi/manage/autoroute OPTION=value [...]
[-] Could not execute autoroute: ArgumentError wrong number of arguments (given 2, expected 0..1)

The script it suggests running cannot be run with the -h switch.

metasploit v6.0.48-dev

"The Cod Caper" -- Tasks 8 and 9 result in a seg fault (as expected) but a permission denied to read the file. I followed the instructions to the letter (I think), and also followed a couple of walk-throughs, but I still could persuade it to output the contents of the file.
Bug?

Not sure this is a bug but in the room "Buffer Overflow Prep" the exact same steps that work perfectly first time on the attackbox do not work from a personal kali vm through openvpn even with the connection verified etc

Probably python 2/3 issues

I think the code for that is designed around python2. It's fairly trivial to translate it to py3 syntax though

Task 7 of Windows Fundamentals 2

"In the above image, the line within the red box shows us an example syntax for the command.

The structure tells us the netstat command can be run alone or with parameters, such as -a, -b, -e, etc. "

it does not contain any image of netstat, even though it was mentioned as per line above.

That's just answer tolerance, try reloading the page.

Hi! Rust room not working for me. It freezes at loading 😦

In find command explanation instead of directory name here wrongly specified file name.

https://tryhackme.com/room/linuxstrengthtraining

What is Networking / Identifying Devices on a Network lab doesn't show a flag. What to do?

I'm having an issue on the What is Networking? room. I cannot seem to get the flag to show up, no matter what i do. I have removed ad block and tried different browsers. here is a video of me trying to get the flag.

Have you tried it as a separate tab in the browser: https://static-labs.tryhackme.cloud/sites/hotel-wifi/

haha, that's amazing. that worked perfectly

thanks for the heads up, i'll keep that in mind for the future

Is the THM Request catcher borked?

the new room, rocket... the web server crashes and stops loading whenever you fuzz it. im not going with too many threads either (10). I think this needs more resources with the vast number of services its running because you need to fuzz for the room but you cant because the server stops responding and the room just dies. and whgen you do get to use services they run super slow too.

cc @glad badger I think this is your domain now?

my shell keeps dying also - this is a big issue i think

https://tryhackme.com/room/webosint last question in TASK 2 is outdated, writeups have different answers than the actual domain info now ( correct answer is Panama, actual answer now is Iceland )

On Extending Your Network, task 2, first question my answer differ from the ones shown in the tutorial, but both are correct.

I'm having an issue with the "Upload Vulnerabilities" room. The specified link is not working (http(s)://overwrite.uploadvulns.thm).

Also came on his for this bug, is this also reported to the room owner? Workarounds are fun but not the intended way the room should work of course 🙂

In the Metasploit room, that last question about autorouting seems to be outdated. https://tryhackme.com/room/rpmetasploit

run autoroute -h does not work anymore in msf6

You don't need to fuzz directories, as per the pinned message in the room

Apparently if you leave it alone for a bit it comes back

I’ve done now - I was chatting with the cyber geek on day one and he suggested fuzzing it.

Yeah I’ve rooted it now

Just painfully slow

Did you configure your hosts file?

My shells and SSH have about a minute of uptime for 2 mins of downtime so I have to plan and execute the plan fast

That's odd, I didn't have that kind of issue

Maybe it’s been given more resources now to mitigate

On the Alfred room, the .ps1 code snippit provided does not work

https://cdn.discordapp.com/attachments/522158539129618453/868422152888651837/unknown.png

I suspect you have used the webpage, rather than the actual script content

Check what you're hosting, as in the file and make sure it doesn't 404

is there a problem with the rust room cant join it

it just loads for ever

It's a site bug.

any way i can reach the room

Not until the site bug is fixed

f no problme

Question 8 on Nax, the exploit it expects has had a name change within metasploit so is no longer correct

hmm, pretty sure stuxnet isnt here anymore

@obsidian kiln bb

Stuxnet is still here

Oh, weird. They weren’t showing up under my @ but when I search their user it shows up

Hello all. Task 7 on OWASP Top 10 is telling me to go to http://<box IP>:8888 but it's refusing connections there.

Restarting the room machine fixed it. Odd.

hello for the wireshark room in the http traffic section it asks me to print the entire uri request for packet 18. ive tried it a bunch of times and it has not worked if anybody can help me

the answer it says even on wiresharks website is not correct

jsut seeing if someone can pm the correct uri

https://tryhackme.com/room/musicalstego Pretty sure this box isn't possible to finish. The pastebox link is removed. (Not intentional) Not sure we get answer 5.

Oh Lord that is an old room

@glad badger one for you

nvm

the owner put a comment in a hint.

just have to go to a github for it now

Musical Stego, that's not music to my ears. 😄

What do you mean on wiresharks website, wut?

It’s there but you haven’t given me enough information to really help

audio stego is always painful

Is there a chance I could send screenshots? It'd make this easier

you can verify

!docs verify

Cheers

should be able to post screencaps now

Was just triple checking to make sure it wasn't something a misunderstanding on my part, and upon having done that posting screenshots would be overkill.

I can post details if asked for them, but, suffice it to say "Linux Fundamentals Part 1" is completely broken. It leads to a generic AttackBox instance instead of what I assume once was a room-specific box, making the room impossible to pass on your own.

are you clicking the big green button in the task?

and not the one labelled "Start Attackbox"

It's blue for me, but yes

this one

So much for triple checking. I can see the machine name changed, I'm sure it'll work. Thanks

Start Attackbox will start the attackbox

that thing may need to be renamed tbh, you aren't the only one to get confused

I just didn't know there were more instances of boxes, and assumed it was the same machine since it was in the same room.

yeah it's tricky.

generally the target vms are the big green button 🙂

Don't you worry, I won't forget :D

Start Machine change to Start TargetBox might be good for that green button. 😄

Answer tolerance. Refresh the page.

It accepts your answer when it is slightly off, in your case 1 character.

In the Linux function hooking room there is a small typo in task 7, the last bullet point says “And lot more” but it should say “And a lot more” :) I’m on mobile so can’t send a screenshot of it unfortunately

Fixed. 🥳

I Got the same issue. Any solution?

How do we insert (before the cursor) however the answer is small i. Mistakenly typed Capital I even though the solution got accepted. I found most of it ignore case sensitive. Could you please look at it?

https://tryhackme.com/room/toolboxvim

@glad badger

@true moon yeah I think I figured it out. The boxes on thm don't have any internet access, I guess for security reasons , so therefore my understanding is that the room explains all the ways you can use those Sysinternals apps whether from the internet or locally. This part is actually explaining how to access those apps if you were using your own machine ( which as internet connection ) . Then, because we are doing the room connecting to a thm windows machine , we have to use those Sysinternals from the local folder C:\sysinternals . That's my conclusion , maybe I'm wrong

Oh ok! So we don't need to perform any actions related to task 3?

No, expect if you would try it from your own windows machine , you know what I mean ?

Yep Got it! Thank you very much! I'll try again later on! 😄

Gave +1 Rep to @tired hull

@true moon right on

How do we write the file, but don't exit?

For this question even though the answer is correct but it is not accepting the solution

https://tryhackme.com/room/toolboxvim

Not a bug

Check the answer format

Hi guys,
I've been trying to defeat the room "for business reasons" but every time I try to upload my exploit as a plugin or page, it says there's been an error with the machine.

I also cannot activate the plugins due to the same error

I believe I'm doing it correctly and that the problem is with the machine and not myself

TY

How Websites Work - HTML Injection -> I input the HTML code (correctly) for the site, but I do not get a flag.

The link appears and when I inspect it, it is showing correctly. I'm not sure why the flag isn't appearing (Chrome v92.0.4515.111)

Hey guys, I am running PowerUp.ps1 on the "Steel Mountain" room and am getting errors. Anyone run into this issue?

try opening the frame in a separate window, that will allow it to show alert() boxes that are usually used to show flags in that way

Room: https://tryhackme.com/room/learnowaspzap
Task: 5

Without importing ZAP Certificates, ZAP is unable to handle simultaneous Web request forwarding and intercepting. Do not skip this step.

False information. The Zap root CA certificate is used to encrypt and decrypt the ssl traffic from and to our browsers. Therefore it will only be required for https websites.

TASK: 9

Hunt scanner is included into community scripts for ZAP Proxy.
Therefore it is not required to be downloaded from the git repo.

https://tryhackme.com/room/nax
The answer to question 8 has changed as the module in metasploit is now named slightly different.

Hey there, I am doing the Steelmountain Room. Unlikly there is no possibility for me to run the process to get a reverse shell. I have tried with 3 different writeups and my own kali Box. Is there a Bug?

Hello there, i have a bug in this room : https://tryhackme.com/room/whatisnetworking, i have spoofed the ip as asked but i can't see the flag

Have you tried opening the site frame in a separate browser window? The alert box doesn't work well when it's framed.

Nope how can i do that ?

The way I did it is in chrome you can right click on the target site, and 'view frame source', and in the window that opens remove 'view-source:' from the URL. Maybe there is a more elegant way but it works 🙂

Thx it doesn't seems to work on brave i'll test on chrome

Gave +1 Rep to @swift hearth

It doesn't work for me 🤔

room : https://tryhackme.com/room/rust
bug : wrong answer
task 6 : Data structures
question : "Given the number 65536, what is the smallest unsigned datatype we can fit this into?"
expected : "u16"
given : "u32"
screenshot : https://puu.sh/HZljl/df30ef809d.png

What's 16 ones, if you were working in base 2?

1111 1111 1111 1111

What's that in base10?

65 536

Nearly.

*5

Last bit is 1, so it's odd for certain

So you need 17 bits to store 65536

neat

my bad

Everything clear there now?

yeah no worries i should have double check before sending my message

Okay sweet, happy hacking

hey are you guys having issues with rooms right now ? like starting a room and not being able to access the webapp , that kind of stuff ?

like I can access 10.10.10.10 fine

but when I deploy a machine , for some rooms it works fine , for others nada

I think the correct formatting for this:

Should actually be 0 */12 * * * cp -R <et cetera>

The slash means "increment." Without the slash, maybe this will just execute every 24 hours at 12pm.

The room is https://tryhackme.com/room/linuxfundamentalspart3# ... hope that helps. Thanks.

this maybe a typo. nothing big... room: https://tryhackme.com/room/zer0logon

I think that the order of the tasks in this room is a bit mixed up XD
https://tryhackme.com/room/hardeningbasicspart2

Room: https://tryhackme.com/room/malmalintroductory
Typo... Whom Which

Room: https://tryhackme.com/room/extendingyournetwork
Practical - Network Simulator will not show flag after sending a tcp packet (I'm on chrome, not sure about the others)

I believe the solution to that problem was to go to the network simulator URL itself

I can't get the hackpark web page to load (it just says Loading Tasks... with a spinny wheel) . I have tried from several different browsers and even different machines (both Windows and Linux). Is this room broken for everyone, or is there just something wrong with my profile?

I don't see any url to it

Hi guys, I am not sure if there is a problem with the room or the my vpn or something else, I ll just post it here.

On room metasploit, I keep getting the following error

Do you thing it's something on my part?

Hi guys, I've started the Linux fundamentals part and started an Ubuntu. For some reason it is just very different from what I'm seeing here and from the videos. For example, my Ubuntu is showing root instead of tryhackme as a user. Also I don't find any folders like the ones from the video. I ended up typing the answers from the video because my terminal does not seem to be the same as what it is supposed to be. What am I doing wrong? I am using the attackbox

Did you try changing users or moving to the user directory?

Yes

I've found nothing I could recognize

When I use whoami it returned root. Also the default location does not have folder 1, 2,3 or 4. It has Documents, and some other folders.

Maybe I started it wrong. I'll try again later

Ty

you need to deploy the machine for the room, it is different than the attack box

Network services, Task 4: When command smbclient is run, I get an error, 'WARNING: The "syslog" option is deprecated'

Not a bug with the room
Will not stop you from being able to complete the room either.
@lusty basin

(Moved from #site-support)
Having issues with the new NIS Cloud Funcdamentals room. Task 2, question 4...about the NGFW layers. There seems to be an issue with the format of the answer.

ahh, you're right it did not stop me from completing the room, thought I would point it out. Ty for response!

Gave +1 Rep to @eternal summit

It's something with the attackbox, rather than the room

It's also just a warning, not an error

I see, I'm new to linux and cyber sec, not very familiar yet.

Good to know though :)

It sounds like you're on your own local Ubuntu. If so, I think the part you're missing is 1) make sure you deploy the tryhackme victim machine from the web site. 2) Connect to tryhackme via openvpn. 3) ssh to the victim machine with something like ssh tryhackme@victim-ip.

This is seems wrong:

from https://tryhackme.com/room/johntheripper0

John will complain that there is no such format. Also you can see from the man page that an NT format does not exist.

The correct answer, I assume, would be LM.

That said, I couldn't ge tthe password out of john for whatever reason. It was easy to crack with hashcat though.

^ On second thought, maybe I'm missing a package or something. The tutorials are mentioning other formats that john doesn't recognize.

You don't have John Jumbo which is why you're missing the formats

Hi, not to sure if this is the right channel or not. Working back through BOF prep room in prep for OSCP next week. For some weird reason im experiencing something weird with mona. Despite knowing the bad chars already from my prior attempts mona doesn’t ever return “Unmodified”. I’ve tried this on a few overflow examples to test and they are all the same.

https://tryhackme.com/room/owasptop10 task 20 references xss-payloads.com but that site seems down, might be worth checking if its only temporary or if the site is gone.

https://tryhackme.com/room/owasptop10 task 26 mentions "First, we need to set up a netcat listener on our Kali. If you are a subscriber, you can control your own in-browser TryHackMe Kali Machine." but I don't think our attackbox is (still?) Kali, that paragraph might need an update.

Buffer Overflow Prep, Mona isnt in c: any more. Cant seem to find the bytearray.bin now. Have been working on this the last few days, overflow 1 and 2 went smooth yesterday, working on 3 now, and I cant do the !mona compare because the path is wrong now. Doin a search on the c drive I cant seem to find the mona folder now o.O

I said "now" way too many times..

Im a dumby, forgot to make a working folder..

You having any issues when using mona compare not showing unmodified when all bad chars have been eliminated? I’ve done all the rooms but working through them again and im getting the same issue on each overflow.

I just forgot to make a working folder so when I said c: --> mona there was nothing there xD

Dont get rid of eery bad char, only the ones that have another behind it in chronological order. They arent all bad, the first one is causing the second one to be bad

off to an appt, hope that helps!

Yeah yeah, I get that. I’m rerunning through the room. I’ve already been through it before. But for some odd reason when I compare the esp with the byte array it never returns unmodified despite eliminating all bad chars. Assume your not having that issue. I’ve just spun up the browser box and I’m still getting the same issue. Might be an issue with my process however, followed the tutorial to the letter

just wanted to say that this is written 2 times by mistake

(on holo)

probably better for #holo-network

@vagrant sedge

Not so much a bug but just a missing word in the question:
Room https://tryhackme.com/room/tokyoghoul666
Task 4 question 1, text is missing a word but could also just be simplified to

What did the message say?

There are other issues with the presentation of this room I.e. The hint text for Task 4 question 1

In the 'Introductory Networking' room, Task 7 (last question) is out of date and the answer sought is no long available (Tech Admin email address - has changed in WHOIS reality!) Impossible to find in current records.

(https://tryhackme.com/room/introtonetworking)

Make sure you're using the correct domain, it changes part way through

@eternal summit Yup, from FB to MS.

Spoiler Alert msnhst@microsoft.com (answer), now shows as admin@domains.microsoft online.

Hey , in the basic pen testing room , when you do ssh into it , the ssh crashes on any major output , like if I cat a long file , so just a report

Has anyone encountered a bug in the "What is networking room"?

I put in the correct MAC address for Bob's computer but it wont progress the module

what browser are you using

chrome

if you have firefox, it works there

Thank you!

https://tryhackme.com/room/malmalintroductory

Typo: adware ads

on the team box, key won't work,

https://tryhackme.com/room/malmalintroductory
Another one.. These can are These are

@wind plover I am doing overflow3 and having the same issue as now

you now**

@wind plover Sent you a friend request, pm me if youd like. We can work on it together, and not blow this room up Dx

Hello, im unable to terminate the machine in the windows fundamentals 1 room, when i click terminate it looks like it is off then i try to open another it says i have one open then i refresh the page and it is still active.

Did any experience a delay/lag when trying to load the cmd for tib3rius windows privesc course? My cmd won’t load and I’m connected to the vpn

Hello, the room Agent-sudo keeps on dying. Sometimes I can't ping it, sometimes its working. Can anyone help? Thanks!

if you type ifconfig, ip addr do you see tun0 and tun1?

if so, restart your box and make sure you only have one openvpn instance running

Hi @viral cobalt, yes I'm always connected to the vpn. normal browsing seems to be fine, but the room machine does not respond sometimes. I already tried to restart the machine. Issue still persist

yes, I'm aware your connected to the VPN. That symptom is common when you have multiple OpenVPN sessions running at once

my apologies, I misread. letme try that. thank you

Bug in Linux challenges, task 4, the cronjob isn’t there

In the Learning Cybersecurity room, the Bruteforce task says to use a 4 digit token but the instructions say to go from 1 to 10,000 which would be a five digit number. Should be from 0000 to 9999

gotta be a bit more specific

assume 10000 exclusive?

https://tryhackme.com/room/malmalintroductory

The server machine took more than 15mins to boot up and login completely 😦
Also it is very slow and laggy. It is taking more than 10secs to open a folder.

Impossible to use this machine😢 Responding like a snail.

any devs here, there's something that could confuse a lot of ppl in tryhackme, On "How websites Work" The answer in the video is "front end", but it didn't work, but "client side" worked (might confuse some people, can yall change it) (dm for screenshot, it's not letting me post it

Verify yourself in order to post media
!docs verify

https://cdn.discordapp.com/attachments/741832875065737276/870354771717025863/unknown.png

Given the answer is in the text, I feel like discouraging copying from the video in that way isn't exactly a problem

hello

I have one bug on TryHackMe Training

on quest

Deploy the interactive lab using the "View Site" button and spoof your MAC address to access the site. What is the flag?

this is bug what I can't answer

help me pleaseee

?

What do you mean you can't answer it?

If your struggling with the question, #room-help / #room-hints is a better place to ask.

@buoyant skiff

Also be patient, we're all volunteers here

It is easy quest but It can't show me for answer

You'll have the flag once you enter the correct MAC address

is it not working ?

Hey is microsoft sql server not booting up in this room? https://tryhackme.com/room/ustoun seems bugged to me

waiting on another nmap to confirm

can confirm port 1433 is not present

will move on but can staff have a look into this 😮

https://tryhackme.com/room/extendingyournetwork
don't get any alert or something like this. Solved the simulator several times now and don't get the flag.

no it's not, because the alert will not trigger. Also needed to copy&paste it out from the DOM Script

Seems like google chrome isn't really helpful with THM Rooms.
The alerts won't trigger and so therefore many roomy can't complete.
When using microsoft edge ( 🤮 ) the alerts will show up.
Damn it...

I always use built-in Firefox when doing CTFs so yeah it is possible, I don't know thought

Not many rooms, there's only like 3 or 4 with the mini website labs like that.
It's a new change to chrome

guess there are more 😄

There's really not many.

https://tryhackme.com/room/httpindetail
https://tryhackme.com/room/extendingyournetwork
https://tryhackme.com/room/whatisnetworking

Those are the "beginner" rooms. So you are making life harder than it's currently is for them ? 😄

No. I'm doing nothing.

Chrome pushed an update that breaks some stuff.

It's documented here, reported a few times. It'll be fixed. It's three rooms out of over 400, less than 1%

another one: https://tryhackme.com/room/howwebsiteswork 😄

Yeah, but three, four, maybe five important rooms. It's for the beginners. Who aren't aware of all this stuff which is needed to get the right answers.

Seriously. It's a brand new change to chrome that breaks stuff. It'll be fixed. You have to be patient.

yea

I was also annoyed by the bugs, especially since they are in the first few rooms most new people will encounter it gives the wrong impression that this is normal for the rest of THM, but trust me it isn't 🙂

https://tryhackme.com/room/networkservices
Last question in Task 4, it is impossible to connect to the host via ssh with the private key (it asks for a password, and yes, I used the -i flag and changed the file permissions to 600) I had tried everything, so I finally decided to find a Write up about this room and see what I was doing wrong, but everything I was doing was right, which means something is wrong.

No, it's definitely possible

How?

I'd recommend going to #room-help and providing screenshots

https://tryhackme.com/room/linuxfundamentalspart1
i can't start this machine

Hmm, did the juicy details room logs get updated or am I just being dumb? It's asking for the timestamp of the successful login, which is not the correct answer from the logs...

Did you put Yay or Nay before the timestamp ?

yes

And added +0000 at the end ?

the accepted answer is the end of the attack

Can you write here the answer you tried ?

So I can compare with mine

Nay, 11/Apr/2021:09:15:03 +0000

Oh ok I see, you got the right format

but

not the right time

this is wrong, as is:

Yay, 11/Apr/2021:09:15:03 +0000
Nay, 11/Apr/2021:09:20:43 +0000
Yay, 11/Apr/2021:09:20:43 +0000

oh frack there it is.

Its something like 09:16:xx

hydra is dumb and I hate it

Ahahaha yeah it can be pain in the ass sometime

cat access.log | grep 'login .*" 200' catches it

because http 1.0

As you said Hydra is dumb ( and so its output ) so I've had been through the logs by myself

But nice you finally got it

I'm not sure I understand the next one though

nm got it

Hit me up if you need some extra help

it'll give the city as well

Ok, I figured it out, thanks!

Gave +1 Rep to @eternal summit

there is no deploy button for the newest room

i refreshed the page on both my actual machine and the vm

I'm not sure why that is happening. Thank you for reporting. It happens for Task 2 and 4.

Gave +1 Rep to @thorn forge

The www.xss-payloads.com site is not down. 🙂

The older Kali Machine still works, but probably should be updated to refer to the AttackBox indeed. 🙂

Adware is a valid classification. 🙂

Same here

Fixed. Thank you for reporting. 🙂

Gave +1 Rep to @tiny ginkgo

Noted it down to be checked. 🙂

The answer was changed after the video was recorded. 🙂

ohh, thx

Do you happen to know at what version of Google Chrome browser this started?

not sure when it started but I helped a few people in some of the pre-security rooms where had to use firefox to get the response