#pre-security-legacy-path

It should just look like this more or less

Ahh okay I think I am miss understanding from the screenshot in the task

That screenshot is wrong

NO, that one is right.

It's this one.

Wait so, am I meant to run wget somewhere else then?

Yes.

Your own terminal.(one not SSH'd in)

You're meant to run the wget command from your attackbox directed at the victim machine. Not as that screenshot shows, which is running from the victim machine directed at the victim machine

How do I run a basic command? I don't have any preference, I just want to build up and become an Ethical hacker

Okay I'm with you I believe hold on a sec

A basic command in what? Linux Terminal, CMD, Powershell?

Have a read over #start-here

CMD

Sorted thanks

I'd do what Scrubz said and maybe checkout the Windows Fundamentals rooms on TryHackMe. I think Windows Fundametals 2 talks about the CMD a bit to get you going

Is it a website or something? Sorry im new to all this

Please delete the screenshot.

Thanks, it's just so we don't spoil the flag for others.

Yes, this is the community discord server for the website tryhackme.com. Which is a learning platform for cybersecurity and ethical hacking

Ahhh yes ofcourse my bad!

Thanks for the help both of you, going to stop here today as my brain is just not taking in information at all right now haha

+rep @warped wind

Gave +1 Rep to @warped wind (current: #50 - 136)

Thank you @warped wind

Gave +1 Rep to @warped wind (current: #50 - 137)

thanks for the heads up, that was actually a great place to start with something comfortable.

Gave +1 Rep to @warped wind (current: #47 - 147)

Networkchuck has a great video on cmd prompts, worth checking out!

In a linux enviorement?

in the OSI Model part, task 4 (Session layer) asks "What is the technical term for "small chunks of data"?" and the answer it wants is packets, but packets are actually Network layer PDU

Can someone give me a hand with Ports, what happens if a port is in use? As I don’t understand this because multiple people would be using port 80 at a time so how can more people connect to it if it is in use? Thanks

Typically, when a port is in use, you can't use it for another purpose. What do you mean by multiple people using port 80/443 at a time? Are you pertaining to people simultaneously accessing a website?

Hi guys! Newbie here.
I'm in the Windows Fundamentals rooms. I deploy the Windows machines but I can't use them browser-based: the gui doesn't load up in the splitview nor in a new tab. That's odd since they're up and working (they respond to ping and can be accessed via rdp on the AttackBox). Anyone else who's got the same problem? I'm getting crazy sorting it out.

Can you send a screenshot so we can better assist you? You'll need to verify your account to do so.

Okay, just verified. Thank you for the doc 😄

Gave +1 Rep to @limber flint (current: #308 - 14)

These regard the 1st room

While these about the second one; almost the same as the previous one

I tried to spin up the VM attached to that room and it worked for me. Did you try to wait a couple of minutes for it to load?

Yeah, I waited even 3-5 mins before interacting with it but nothing showed up

Only thing I can think of is a reboot.

How do I do that?

Because I also asked to the support and it suggested me to do some things which didn't work either: disabling VPNs and browser extensions, clearing the cache and coockies, etc.

I meant terminate the machine and start it again.

I already tried. Many times 😅

How fast is your internet connection? Are you using a home connection, your school's or something else?

Pretty fast. Home connection on fiber.

I'm on a 5GHz wi-fi rather than a 2,4 one though

guys as we all know that firewall operate in layer-3 and layer-4 but in tryhackme room it is showing layer-3 and layer-7 as correct

in osi model

I'm having the same issue. I get the sense that I am not seeing the correct screen. I'll provide a screenshot

I can't seem to get a screenshot in here either. Rip

I think the intent on firewalls operating in layer 7 is for web application firewalls (WAF).

What after pre-security ?

There is a recommended path here:

#general message

thanks

Gave +1 Rep to @brave cobalt (current: #19 - 365)

Hi I’ve just done the command mv myfile myfolder

My question is how do I put my file back to the place it came from as in the home page?

Use the mv command.

What about the destination?

Where you want it to be.

Yeah that’s what I don’t know what to put, say I wanted to put it back to where it came from?

As in when I press ls the file will show with all the others

Where do you want it to go?

The main page when I press Ls

The place it started

pwd

That didn’t work unfortunately it just changed the name to pwd

in HTTP in detail room at task 7 I can not do 2, 4 and 5. I guess I should do something with parameters but how?

What is the flag that you obtained by following along?

Is this from a room? If so then which one, which task and what exactly are you stuck on?

hi all, I am new to tryhackme and currently working through the linux fundamentals part 2. I am stuck at the very beginning trying to log into my acct using the ssh command but I keep getting a response back in the terminal saying the access is denied. I have changed my password and made sure everything is being typed correctly. I am just stumped at what to do from here. If anyone has any advice it would be greatly appreciated. Thanks!

What credentials are you trying to use to SSH in? It should be tryhackme:tryhackme iirc

ohh okay i must have misunderstood, I was trying to use my own user and password

Ah nah, you would never use your tryhackme account's information on one of the machines. The credentials will either be provided in the task or you might have to find some through enumeration/hacking in the challenge rooms. This is from Task 2 of that room though, it gives the creds.

that's super helpful to know going forward. I definitely missed that portion of the text. thank you sm!

Gave +1 Rep to @warped wind (current: #46 - 153)

np

I am doing the module "Walking an Application" and seem to be stuck on this part

"External files such as CSS, JavaScript and Images can be included using the HTML code. In this example, you'll notice that these files are all stored in the same directory. If you view this directory in your web browser, there is a configuration error. What should be displayed is either a blank page or a 403 Forbidden page with an error stating you don't have access to the directory. Instead, the directory listing feature has been enabled, which in fact, lists every file in the directory. Sometimes this isn't an issue, and all the files in the directory are safe to be viewed by the public, but in some instances, backup files, source code or other confidential information could be stored here. In this instance, we get a flag in the flag.txt file."

I cannot find the "flag.txt" file in the html code. Any help?

In this example, you'll notice that these files are all stored in the same directory
Looking at the code what directory is stuff being stored in? Can you navigate to that directory and see anything interesting?

Yeah I just figured it out. Thanks!

[] Started reverse TCP handler on 10.X.X.X:4444
[] Retrieving session ID and CSRF token...
[] Uploading and deploying 0UG2A7Yee9ujHk...
[] Executing 0UG2A7Yee9ujHk...
[-] Exploit aborted due to failure: unknown: Failed to execute the payload
[*] Exploit completed, but no session was created.

sorry wrong channel

Hello! I have a small issue regarding connecting to the Windows fundamentals machine via RDP. I'm trying via kali using xfreerdp since for some reason I can't get remmina on kali as in the attack box, but also tried via the attack box with remmina and the screen stays black. I've tried troubleshooting with some solutions that I found on the internet but didn't seem to fix the issue. Can you please let me know if there are some flags that I have to put here or if there is something wrong with the machine itself(I'm connected to the VPN in the kali machine) I've tried restarting the machine a few times as well. My connection is good I'm on 1GBPS broadband. Any suggestions would be highly appreciated. Thank you in advance!

When connecting to the target machine using your kali, are you connected to THM network via OpenVPN?

Yes

I've also waited for a fair amount of time for the machine to load but it gives me a glimpse of a wallpaper then goes blank

If you can share a screenshot, that will be helpful. You'll have to verify your account to do so.

for some reason it worked now with the exact same command as before 🙂 sorry for the unncessary trouble :))

hello, Im on the network fundamentals module and in the practical room i cant able to start a machine and open in a new page as it used to be in before modules like it has a option to start the machine and it will open on a new page but now it only has view site option and it opens in a split view .

is it possible to get the start machine option as before by changing any settings are it is normal in this module?

i wanted this option

This depends on how the room was designed or how the room creator deems it better to teach the concept. If it has been updated, you will no longer have the option to start a target machine.

okay

i can only able to exit the split view ,how to possibly terminate this static labs ?

That's ok.

You can't terminate the websites as they're running 24/7

lol

okay

Hi👋 I have struggle at a question at Linux Fundamentals Part 2. At Task 4, there is a question as "On the deployable machine, what is the file type of "unknown1" in "tryhackme's" home directory?". But when I open the machine I'm at root and there is no file called as tryhackme's. How I can find the tyrhackme's home directory?

You need to ssh in to the machine

sorry but I don't know how ssh to the machine

It tells you in the task

oh, thank you I find it

Gave +1 Rep to @tight ingot (current: #2 - 1918)

Hi, who can I contact to as moderator in order to update my token linked to this account?

Suggest to post this in #general to get more traction.

Hey wassup

Wanna study together?

it's me

i tired to login in the ssh module from linux fundamnetal part 2 room and it shows the password is wrong even though in the module instruction it said password and username both are tryhackme but its showing wrong password.

Wrong IP

You need to start the machine in task 1

okay ,ill try that

understood , thank you

Gave +1 Rep to @tight ingot (current: #2 - 1941)

hello i am doing the "intro to offensive security" module, and when i run the command gobuster -u http://fakebank.com -w wordlist.txt dir i get an error: Error: error on parsing arguments: wordlist file "wordlist.txt" does not exist: stat wordlist.txt: no such file or directory
can anyone help me?

You're in the wrong machine. 🙂

wdym?

which machine should i use?

You're in the attackbox currently.

That room boots up a seperate machine.

i see, i havent noticed that button lol

thanks scrubz

Common mistake. 🙂

The error you got was becasue the wordlist wasn't in the directory, however this time it's in the Desktop

👍

Um guys

Im currently on 35% on the pre security path

But i keep missing some sectors cause i cant pay premium

Now im at linux fundamentals 1 and im confused

can you tell what you confusing about ?

well i think it's because i wasnt able to access some classes cause i dont have premium

The 7th task in linux fundamental was by far the most confusing thing ive done so far

I wasnt able to undertand properly, although i watched the video attached to it to be able to answer the questions but i just feel bad i just did what was explained in the video without aactually understanding it myself

that's oke, sometimes when i got stuck i read some writeups to but i am learn the step by step on that and try to understand what i do. if i can not understand i ask on this discord channel;.

Currently stuck on linux fundamentals part 2 Permissions 101. I switched to user2 but cant seem to find/access 'important' to answer the last question. Nothing I try points me to the file/contents. Any pointers?

EDIT: Nevermind, I feel dumb...

Im stuck in Windows Fundamentals 1 - Tassk 3 GUI last Test Question "Besides Clock and Network, what other icon is visible in the Notification Area?". I right klicked on all icons in the area and tried all names of icons according to the task text and one works. Any hint?

Right click > open ****** ******

Where please should I Right click and put in > open ** ** ? The started Windows machine doesn't gibe me any option in the notification area (right part of the task bar close to time and network icon)

Right click the notification area. It's should be at the top of the menu

The best i can get is a menu with a toorbar menu selection on the top; no entry field to enter open ** **

It's a type of center.

Discord ate my *

You lost me, I cant find any expression that resembles a time of center

Right click the notification area.

I can't screenshot, I'm on my phone.

ok. it is "action center". This is difficult to discover, as the green TryHackMe Help Cloud Icon obfuscates that area. And the way, the question is asked is somehow confusing. Anyway, thank you very much for the support.

Gave +1 Rep to @tight ingot (current: #2 - 1961)

In the vimtoolbox room how to learn this tool ,its like the author provided left ,right, etc but there is no commands provided to complete the excercise also the author mentioned to use help command to learn about that but if i use help command like :help left like this i cant even understand wat to do in that guide

its like this but in that given guide i cant understand what to do to perform those navigation

so this room is basically look into the vim guide by yourself and perform the operation that im saying by knowing from the help command thats it i can say like that?

someone help?

Someone help me with the first line couldn’t find the link

which task?

walking in web application

task 3

should you show the task in ss

?

yeah sure

this one

whats wrong with this,can you elaborate the issue you are encountering

difficulties in finding the flag from the html comment ? I didn't got this

this two also

tried on attackbox?

haven't tried ?

have you done it ?

nah

where are you ? yet

Iam at linux fundamentals

can i get your ig?

ig?

instagram

im wanted to run the python http server module in background using & pipe operator but cant , is it possible anyway

yeah

how

Have you viewed the page source?

just put && in the last of the code

yeah i do visit

i did , but it is only &

see it on the ss

You have to go to the webpage that the comment mentions

run another task in the new terminal without killing the python process

I'll check

thanks mite

lol, yeah so it cant be run on the background

sorry, I don't know

cool

is it possible to do this in tryhackme instance

it does have a internet now but the user account is not existed in sudoers like the username:tryhackme and password:tryhackme account

is there no way i can try this command in the instance?

You're not root.

Have you SSH'd in to a machine?

yes

understandable 👍

yo , I was completing the bash scripting room but in last task he does some condition which is to check whether the file is already in there and also it should be readable to execute a statement or else do something else kind of . i also did that but i already created bro.txt and changed my file(bro.txt) to read only by using chmod -w bro.txt so even though the bro.txt is not writable how it is executing the if statement

for a better context please look at this ss to know my problem

Because you are running it as root, e.g. just try echo 'test' >> bro.txt in your terminal, even when that file doesn't have the write permission, root can still write to it

oh understood, thank you👍

Gave +1 Rep to @soft snow (current: #3 - 1811)

Yo, any hint to complete the tasks in Regular expression room. i ran some charset in the regexr but it shows like this so how should i present this output and complete the thm task?

Anyone pls

try it without the / at the beginning and the /g at the end?

cant able to erase that its like in default

In regular expression room the task is to match all the specified filename in the task4(second ss) except File7 then how the answer is correct (first ss) [Ff]ile[^7] yeah it will output except File7 but they asked to satisfy the fourth question(second ss) also like it should find [Ff]ile[1-9] also

In the first ss question it will find the files except File7 but it doesnt able to find the file or File that are specifically within File1 to File9 and file1 to file9

so how it satisfied the question4 (second ss)?

how this is the right answer for the regular expression (i found this in a walkthrough site), to find EOF$ at the end of the line why EOF\$$ is used like $ is used to find the end of the line that matches the string but why two dollars are added simultaneously although the string we need to find is "EOF$" in which it included the dollar itself but why after \$$

can anyone explain i also searched in chatgpt and also in that walkthrough but not explained this

?

My regex is not awesome but $ should mean end of line. Since you are looking for EOF$ at the end of the line you include the $ in the end. The \ is for escaping so $ is treated as normal $ character and is combined to EOF$ at the end of the line.

okay👍, thanks

Gave +1 Rep to @finite thunder (current: #403 - 11)

Hi

Hello

Do I need premium to complete this room

Room, no.

Path, yes.

What is the difference,(I'm new and am seeing some levels which aren't free)

These are the learning paths, which contain rooms.

Okk I understand thx

I installed a tool named gimp from the apt respository but i dont know where it is presented in my machine

from where to see the download software from the apt respository

Did you try locate or find?

IMO locate must update the db first

Probably. Didn’t mention that one explicitly

tried to connect my tryhackme OVA file but showing up like this

tried deleting the profile and redownloading and reconnecting but it loads so much time and pop up this error

any help?

use the command line to connect to the openvpn.... as the graphical versions are not supported
i.e
sudo openvpn /path/to/username.ovpn

but im using windows

wait you are trying to connect to the vpn on your host???

yes

sorry this is the first time im using

would not recommend that.... although tryhackme is mostly safe from bad hackers and people doing bad stuff you are still connecting your computer to a network full of hackers

look up how to install a kali linux vm... then try using the openvpn from inside the vm

okay cool

good luck

thank you👍

i tried using reminna but its asking a password(login keyring)

Try Just hit cancel.

ah yes gnome keyring password prompts

yeah but i didnt set any password or is there any default password for this?

okay

how to view the standard user acc password in lusrmgr.msc(local group and policy)?

i cant see password in any of the option

?

Isn't it this one?

what

In the description field?

is it the password?

Have you tried using it?

nope but i dont know the computers name in order to perform rdp

Ip.

Or scan the box

okay

workin

👍

can i able to connect my physical hard drive to my attackbox?

Physical hard drive? For what purpose?

Just thought like whether is it possible to do that

?

Is blt1 course enough to crack the exam?

wat exam

Blue level team 1

is that cert worth it ,like on demand and well recognised?

Yeah

cool , i think you should ask this in offtopic channel

Yes, but do you want to?

Probably not.

Okay, cool

You could possibly set up one folder to share.

But if you're going to have to store hacks and what not, you'd need to whitelist it.

Then if you white list your folder, you're running the risk of the potential to be used against you.

Oh I see, what if I restrict some access through NTFS

So badguys don't get to my drive and do stuffs

Trying to do Windows Event Log room, but in that Vm's event viewer crashes with poping this error when i try to view the detail option of a log(event)

Im doing this because its in the rooms instruction

any help?

room: windows fundamentals 1
task 6: user accounts, profiles, and permissions
question: What is the account status?
question format: ******* ** *******
i cannot find an account that has 7 characters...

pretty sure its talking about the account from the previous question

||```What is the name of the other user account?
tryhackmebilly

What groups is this user a member of?
Remote Desktop Users,Users

What built-in account is for guest access to the computer?
Guest

that one at the bottom. what is the status of that account

like if it's an administrator or standard user?

can you use it?

how can i check that? 😅

is it enabled?

Guest is not shown in the "Other users" setting

How can i check whether a user is enabled or not?

look at the properties

I found it, thank you!!!

Gave +1 Rep to @simple swan (current: #1326 - 2)

im a bit curious in burpsuite that why do we have to right click and choose change request method instead of manually editing the GET method to POST method ? it is not working when im manually edit it

Hi, what happens when we log into an account on a Linux machine? Do we aim to 'hack' the remote computer or the user? I'm a bit baffled

when we use ssh

Well technically, the user would be human so naturally we would try to manipulate them first. (Jk by the way)

Seriously though, you hack the remote machine to gain access to the user(s)

its a real thing.
https://en.wikipedia.org/wiki/Social_engineering_(security)

Lol, yeah I know quite a bit about social engineering actually

hello

linux ssh isnt working

does anyone know where i can talk to dis ownere rq

Can you clarify? Talk to whom?

wdym?

I'm just getting started into Cybersec Field but I've little knowledge about somethings in IT

I got to know about TryHackMe as a good entry point in the Cybersec field. The platform suggested me to go with Pre Security path

I completed the 1st module - Intro to Cybersec and now onto the 2nd - Network Fundamentals (completed 1 concept in it too) but the rest in it are premium only

Idk much about TryHackMe, just exploring, what should I even be doing?

Hello !!!! @opaque yacht If you want to evolve in cybersecurity, take out a subscription so you can have more content to practice with.

What layers of the OSI model do firewalls operate at?

The answer is Layer 3 and 4, but I can have firewall layer 7 and 2 too...

You can look at the following and decide later on if you want to purchase a subscription:

https://github.com/winterrdog/tryhackme-free-rooms

https://tryhackme.com/r/resources/blog/free_path

https://tryhackme.com/r/resources/blog/free-offensive-security-training

Is there any scholarship or fee waiving for students bcoz I'm one?

Thank you are there any certificates involved in this ?

Gave +1 Rep to @brave cobalt (current: #15 - 450)

THM does offer student discounts on subscriptions.

Oh

Certficate of completion you mean? Those are only available upon completion of learning paths or Advent of Cyber events.

@opaque yacht ^

Yea Thanks

Certificate of completion or any certificate to prove my education?

Depending on what you intend to use it for.

Ohkay fine thanks

Gave +1 Rep to @brave cobalt (current: #15 - 451)

just finished mine 😄 was actually really helpful ❤️

whats the difference between the learning paths and the modules?

i finished the introduction to cyber security and at 39% of pre secuirity, just wondering

I have a question on networking, when connecting to a modem or router they request for an ip from the dhcp server with your isp right? Does that still apply with your phone when using a sim card to connect to the internet? I don't fully understand how ips are assigned automatically, the static ips make sense

for the router at your home the dhcp is hosted locally and is not required to ask the isp

though the public ip of your router to the outside internet is indeed handed out by isps

and yes when you connect to data/lte with a sim card it contacts the phone towers and then the isp to ask for the stuff it needs to start the connection in a similar fashion to dhcp

OHHHHHH I forgot private ips even existed that's why I was confused, so private ips are hosted locally while public ips require the isp, Makes sense now

Thank you

Modules are a collection of rooms with a particular theme such as nmap, vulnerabilities, privilege escalation, etc. For the most part (and to my knowledge) , modules are a part of the learning paths.

^ this is also true

a lot of the modules get backed into the learning paths

in the linux fundamental 1 room

the room is bugged

the terminal wont open with the machine and answers cannot be answered interactively, only to copy from the instructor video

Yep it's a terminal copying cross platforms might not be possible sometimes rather just type it out

Also check your internet connection, because the room isn't bugged I just completed that room an hour ago

some of them rooms don't seem to like edge :V

Why is there a dedicated channel to this pathway???

because people have questions

for help and questions

and for more detailed explainations

for people to pop their certs of completion

can someone please explain me what is the use of get? is it to download files from the target to the virtual machine? if yes, why is there a website address before the path? why not only the path?
and why would a user know the path to a file from a website in the first place?

wget*

i assume that's because its trying to get something from a web server not a regular machine?

as for knowing the path, using tools and recon,
but I'd wait for someone more knowledgeable than myself to answer 🤣

no, the file that needs to be downloaded it from the target

i think the pyhton3 command opens a web server from the target machine that from it the wget downloads the file, not sure tho

you use it to grab files from webservers. you can use either an ip address or a url.
you can use the command python3 -m http.server 1234 to create a webserver in the current directory on the specified port (port 1234 in this case). this makes is really simple to transfer files from the attack machine to the target and vice versa; just start the python webserver in the directory of a file you want to transfer, then on the other machine, use wget http://<python machine ip>:<port>/<filename> to transfer it over.

thanks

Gave +1 Rep to @simple swan (current: #405 - 11)

do you know also why systemd isnt my first proccess? as says in the guide?
USER PID %CPU %MEM VSZ RSS TTY STAT START TIME COMMAND
root 1 0.1 0.5 102756 11408 ? Ss 14:44 0:04 /sbin/init
root 2 0.0 0.0 0 0 ? S 14:44 0:00 [kthreadd]
root 3 0.0 0.0 0 0 ? I< 14:44 0:00 [rcu_gp]

init is similar i think

sorry, no clue on that one. are you using the attack box or kali? might be a difference in the os (attackbox is ubuntu)

"Init and Systemd are both init daemons but it is better to use the latter since it is commonly used in recent Linux Distros. Init uses service whereas Systemd uses systemctl to manage Linux services."
from git, so yeah looks like could be os dif

yea with the attack box

You can use wget on a url.

can someone help me with the answer for the question "windows fundamentals1" task 3, 3rd question

there is nothing that fits the answer format

do you still have the machine open? if i remember correctly the answer isnt in the text

yea its open

ok so look around in the notifications area

oh you have the answer now

There are no URLs in that message.

windows fundamentals 3, task 8, can someone help please with the queston? i dont find the answer
anywhere

the answer is in the linked documentation

Hi, I am not able to open the machine in Linux fundamentals 1 but I am able to open the attack box? Am I missing something?

If my memory is not messed up, the Linux fundamental doesn't have an interactive machine, you have to connect to it via attack box, Kali Linux or OpenVPN

On the YouTube video I can he they have only the one interactive machine open, if I open mine the interactive machine gives me a network error but the attack box works fine. On the YouTube walktrough they do not use the attack box

If you use VPN run on terminal di not close or terminate that it’s will destroy the connection

Hey all,
Can anyone help me with the task4
https://tryhackme.com/room/linuxfundamentalspart3

Im trying to download file from webserver but when I enter the | wget https://assets.tryhackme.com/additional/linux-fundamentals/part3/myfile.txt | command into the attacking machine, it's too slow and I did wait too but didnt get any response so I added -T5 to get it done but given network unreachable error. Any help please.

Hey man, thanks for your help but this thing kept on mucking around so I just followed the steps in the attack box (obviously not the same) and used the answers in the YouTube video. Fundamentals 2 and 3 work fine though. Cheers

Gave +1 Rep to @small mango (current: #216 - 24)

don't use that one use .falg.txt. I had the same thing

Tried using flag.txt but still the same

Have you started the python web server?

No, before to that, I need to download files from webserver right

did you start the python3 http server before doing wget, i was stuck there too, for this reason

you need to start the python web server on the remote machine to wget a file from there

This is just an example.

You need to do the steps on the task, with the machine.

already finishing osi model

Yeah I tried taking different site as well

I face problem in connecting to openvpn in my kali machine , can anyone here to help...

Hello

What should I learn first for cybersecurity/ethical hacking,

ah. I meant the learning path "pre-security".
this is just the discord room for that. 😛
https://tryhackme.com/path-action/presecurity/join

ofcourse you'r right

#start-here

Did you manage to resolve this? Also, this maybe better posted in #site-support

Thanks I resolve this problem successfully,

I gain knowledge from that and from my research

I was stuck here too because the green THM cloud covered the whole thing... I knew the bell was under there (I can see it on my own desktop task bar) but couldn't access it. finally had to go full screen on a wider external monitor for a tiny clickable portion to be available.

I need help

In my kali linx , home directory there is a folder which is empty and if i remove it, it appears again on every reboot at same position

I want to install Kali Linux but I don't know if I should install it directly or on a virtual machine. I looked it up on YouTube and saw some of the YouTubers using a virtual machine but I still don't know the point. Can someone tell me why I shouldn't install Kali directly?

Kali isn't a stable OS to use as a daily driver, it's prone to breaking far more easily.

It's best to use this in a vm, where if it breaks you can revert to snapshots or build a new vm, which is much easier.

Thanks for your helpful comment 🙏

Gave +1 Rep to @tight ingot (current: #2 - 2067)

Bro ! But this is not when i install kali linux, it appeared after at few months , and this is in another language , i think it's in chineese

anyone know the rdc that's being used in the windows fundamentals modules?

is it just the basic ms rdc?

I think it's VNC.

Dear RiSiN! Actually rdc is Remote Desktop Connection tool which being referred to most basic Microsoft Remote Desktop Connection tool , i hope understand my words.

Bro you'r right but there's a cons of using kali linux in vm, this use more resources and slow then normal direct kali linux runing on system. If someone has less resources then , According to my reserch using kali on vm is not more efficent.

Bro ! you'r question is the question which i ask from myself, because when first i touch kali linux

It is very bitter for me , as i utilize almost three days on it , i try again and again and when i tried i sleep near laptop and awade and then try again, ha ha , i just behave like elon musk, ha ha, until i successfull and i install kali after some research and painful times.

But I recommed , to learns who are new in this field , first of use Ubuntu OS , it is more lightweight and same as kali linux.

In hacking , Keep learning and stay Strong

Hi,
for certain questions, it is requested to carry out actions such as looking in the log files or creating GPG keys, and you therefore need root rights or a user with additional rights but the basic tryahckme user doesn't have sudo rights so how to do it?

bro you'r quesion is cool, ha ha , i have same question , okay i find the ans for you and for me , ha ha

Which rooms are you working on? If you are using the Attackbox, you should have root access and if you have your own VM, you can add sudo in your command.

@brave cobalt I am taking the Linux Fundamentals Part 3 course and I do not have root access with the tryhackme account when I connect by ssh to the remote server.

i use the attack Box

Aahh.. you have root access on the Attackbox but only a regular user on the target.

You don't need to if I remember it correctly

I have the prb with the course Maintaining Your System: Automation and Maintaining Your System: Logs. I can't see the content of the log and I can't download the GPG key and use commands like apt-key for examples

@brave cobaltYou're probably right. It must be that !!!! because we can do anything on the target

Thanks a lot.

I remember that while you cannot view the log file used in the example, there is a log file you can view if you just do ls -la to see which one you have access to

As we use THM attack box , we remember that we access only those area which are alloted to us by THM, so we cannot become root user, we bybass that if THM ask or allote us that to us, otherwise we can't do ...

inf0s3cw4nn4b3 , maybe you'r right , ls -la is used to view hidden files

thank you for helping @crisp ferry and @brave cobalt you were right !!! you just had to work on the Attack box and not on the target.... We are root on the attack box so we can answer questions by executing the commands on the attack box.

Gave +1 Rep to @crisp ferry (current: #2029 - 1)

Hi, guys, is the deployable Linux machine and the AttackBox or the Target. I am asked for the IP of the machine in the access.log file but apparently it is not the correct IP. Maybe I'm not on the right machine...

we can't post images on the forum ??

in order to post images, you need to first verify your THM account

what is the machine that I have to connect to took for the apache2 logs on the deployable Linux machine

the one on the left via ssh (10.10.240.164)

thanks @simple swan but The problem is that I don't have root rights on this machine, so I can't see the content of the logs, if I'm not mistaken.

Gave +1 Rep to @simple swan (current: #260 - 19)

what command are you using to view the content of the logs?

cat or more on the file /var/log/apache2/access.log or access.log.1

you should be able to read access.log.1

indeed, thanks a lot

any idea why this is not working?
tryhackme@linux2:~$ /etc$ ls
-bash: /etc: Is a directory
tryhackme@linux2:~$
it should be like that
tryhackme@linux2:/etc$ ls
shadow passwd sudoers sudoers.d

Bro it is not error

I know but why it is not working like they want

Bro just give me mint i check it now

@crisp ferry

Can we please ask before DM'ing members, it's in the rules that you accepted.

Nothing, I just see you alot sending DM's to people without asking.

This was just a friendly talk, you're ok.

Please guys I am finding something confusing about DNS

It says a second level domain is limited to 63 characters+ TLD (Top level domain)

Now the subdomain sits on the left hand side of the second domain. And it has the same restrictions like the second level domain with 63 characters

But I read again that the length must be kept to 253 characters or less

So I don't understand can someone explain to me please. Thank you

This is it please.Thank you

its in the last bit. you can have multiple subdomains to the left of the main domain, each limited to a max of 63 chars. but the whole added together must be less than 253 chars

so if we had something like a.b.c.d.e.f.g.tryhackme.com
each of a, b, c, d, e, f and g are subdomains, and each must be less than 63 chars and the whole thing (a.b.c.d.e.f.g) must be less than 253 chars

Wow thank you so much 😊👍

Gave +1 Rep to @simple swan (current: #224 - 23)

@simple swan so a.b.c.d.e.f.g. tryhackme.com must not be more than 253 characters right?

Right?

yh, the full thing, a.b.c.d.e.f.g.tryhackme.com

Thank you

Gave +1 Rep to @simple swan (current: #219 - 24)

anyone online

Yes

nope

i currently working my way through How websites work. Currently at the JavaScript exercise. The second one where you have to enter java code

i was trying to send a screenshot

what is the button suppose to do ?

"Add the button HTML from this task that changes the element's text to "Button Clicked" on the editor on the right, update the code by clicking the "Render HTML+JS Code" button and then click the button."

when i try to put the code in it dosent load i follow the hint and i get to render but the button still dosent change the message

When you click the button, it's supposed to display text that says "Button Clicked"

Here's the button you're supposed to add
<button onclick='document.getElementById("demo").innerHTML = "Button Clicked";'>Click Me!</button>

Notice that you are using an ordinary html (button) tag with javascript in it. This is known as in-line scripting. The alternative would be to write all your javascript in another file and then reference it from there using "src = /path/to/javascript/file"

Since we're scripting in-line, all you have to do to complete this task is to replace this block here:
<script type="text/javascript">
// add your JavaScript here
</script>
with the button tag that already has javascript scripted in-line with it.

Thanks you 🙏🏿

I am going through the windows room and I have no idea on a question ||In the Control Panel, change the view to Small icons. What is the last setting in the Control Panel view? . I input Taskbar and Navigation as per the last setting, after chaning the icon size to small, but no luck||

well, I found it in the end but you had to || manipulate the control panel window size, different sizes give you a different last setting lol||

Just completed pre-security 🙂

onto finish intro to cyber security then complete beginner

Way to go bro

thanks👍

is " OSI Model " really matter in pentesting ?

@lament dune OSI Model is essential to understanding network communicate ||and for finding vlunerablilities. Its most improtant if you choose network pentesting||

Yes, application is one of the OSI Model.

is anyone else having a problem with the intro to lan task 1 website it wants you to open up

once you get pass the ring topology and it trys to go to the next one it blanks out

Tried this just now and mine works. Did you try to do a Ctrl + F5?

Yeah it worked

Thanks

Gave +1 Rep to @brave cobalt (current: #14 - 476)

Having some trouble in the OSI model room on the layer six question. I know that they layer is meant to Standardize all data sent to it so I can be read in the same way regardless of origin, but the room wont accept any variation of standardize or translate

If you read the question carefully you will know that the main purpose of the presentation layer is that it translate the data from the application layer

I tried translate as an input

What did you put as the answer?

I tried:
Translate
Translation
Standardize
Standardization
and a few other things

If you read the passage we'll you will see the answer

It acts as a translator for data from the application layer

Just put exactly what you Saw when reading it

I came across it also....I tried translate it didn't work, I looked at the passage again I saw translator I put exactly what I wrote there and it worked

Please Let me know if you have gotten the answer

You were correct, i just had to use that very specific word

Ahoy! I was in the "careers in cyber" section. I completed the careers quiz but still the room shows complete. I read all the career pathways thoroughly. Can anyone help me to get this room completed 😐

you sure u completed all the questions?

hey guys

I am unable to find a cron job task timing for Task 6 on Linux Fundamentals Part 3.

I have run a crontab -e on the host I am SSH'd into

Scroll down to the bottom of the file.

all it says is
@reboot /var/opt/processes.sh

but the question asks "when will the crontab run?"

The answer is there 😉

hmm

got it lol

I took it literally

expected to see a time

thanks 😄

What is pre-security-pathway I feel like I am in a maze in this server 😬

I suggest doing Pre-sec and Intro to Cyber Security. Although both have overlapping content

@reboot

what's your answer in this question: Which selection will hide/disable the search box... my answer is always wrong..

hello guys

what's your answer to this question

what's the flag obtained by following along

and which team focuses on defensive sec

both under intro to defensive sec

blue team

can you give more context?

You need to open the static site.

hello
what's your answer to this question
what's the flag obtained by following along

You need to follow allong with the static site you can launch in the task.

not sure which question you are talking about

hello, im now at Linux Fundamentals Part 3, i want to ask a question?
it is just me or attackbox does not have phyton3 to use http.server?
i tried phyton3 -m http.server and it only response with command not found

thanks

You're spelling python wrong.

ah thanks, it works now

now im at Windows Fundamentals 1 and there's a question : What groups is this user a member of?

i went into lusrmgr.msc, find that member, right click and select properties, there's tab "Member Of" that list what groups that member is from, i type the answer ||"Remote Desktop Users and Users" (there's 2 group from that member)|| but the answer is incorrect

is that place is correct to find what group is that member is from? thanks

solved, just me need to weirdly reiterate the answer somehow

how to reslove the double click issue in linux?

Double-click?

which OS? Inside Kali you can go into "Mouse and Touchpad" Settings, "Behavior" and there you can select the Double Click Time

In version 2024.1 there's is no behaviour settings , may be i think i don't know where it is

But I am sure it is not inside the settings

Which OS?

Besides Clock and Network, what other icon is visible in the Notification Area?

answer needs 6 word + 6 word

I'm stuck at this stupid question T_T

Is this windows fundamentals 1?

sounds like it

||action center|| @summer oracle

I just finished Pre Security path, what next path should I take if i'm new

If you want shadows recommendations it is in this order
#pre-security-legacy-path 
#974406074444685322 
#junior-pentester-path 
#878393611929129000 (optional)
#pentest-plus-path (optional)
#web-fundamentals-path 
#soc-level-1-path 
#soc-level-2-path
#security-engineer-path
#devsecops-path
#offensive-pentesting-path 
#red-teaming-path 
#791764435991658556

#general message

the link at the end is to where this is pinned in the general channel

Thanks.
so "Junior pen path" before "Complete beginner path" ?

Gave +1 Rep to @potent wedge (current: #4 - 1721)

yes... they have a large overlap and junior pentester is newer and have more polish then complete beginner... you can still do both

Appreciate your input, will start with pen test jr then 😉

no problem and enjoy

Hi, I have trouble at Windows Fundamentals 1 , task 8 settings and the control panel. I enter control panel but, I can't find anything about icons and their size.

top right

Thank you, I just find it

good afternoon, i have a question. In the path of extending your network, in the part of LAN devices, at the end it talks about Layer 3 Switches. Here they say that these departments can share a Switch and communicate with the Internet, but not with each other, the question would be, they do not communicate now, but they can communicate with each other, what happens is that the routing was not done so that there would be this communication, or there is no way for them to communicate? The IPs of the Sales department - 192.168.1.1, and the Finance department 192.198.2.1

while using burpsuite

what's alt for foxyproxy on chrome

I just use FoxyProxy, is there a reason you can't ?

192.168.1.0/24 and 192.168.2.0/24 can communicate each other if allowed vlan to a trunk port is configured but if not, those two networks can not communicate between them

thanks

Gave +1 Rep to @light arrow (current: #2066 - 1)

hi everyone
is there anyone who can help me in learning pentesting

yes. Visit https://tryhackme.com. Its a great resource to learn pentesting

Hi, In the windows Windows Fundamentals 1
How can i check the account status here, the answer in google says it is "disabled" but in the attackbox the account which it is referring to which is "tryhackmebilly". Can anyone help 😅

Question: What is the account status?

You are already close to the answer. hint property

Hi, ah thanks for the hint. Where can I check the status of the present. As I'm checking in properties of that account it's showing that account is enabled

Gave +1 Rep to @light arrow (current: #1376 - 2)

Hi there, I was doodling in the Windows Fundamentals 2 section.
There mentioned "Launch the attached virtual machine. If you wish to access the virtual machine via Remote Desktop, use the credentials below."
My windows 11 home edition won' support remote desktop, could anyone suggest me from where I can access remote desktop connection for free 😄

Thankyou!

Microsoft Remote Desktop client? But might be easier to just use the in-browser virtual machine.

For the pre security pathway you have to subscribe to get to intro to LAN? Or have I done something wrong

It says you dont have to be subscriber for Intro To LAN room.

"Free Room. Anyone can deploy virtual machines in the room (without being subscribed)!"

Every time I press on it I get taken to “intro to lan is a premium room. Subscribe to join it now….

With the subscription fees

huh weird

either it is AB testing

or something is wrong

Icl i just left it for now I’m doing this OhSint room

Did you download config file for VPN on access page? You can get to the page by clicking access link on your profile

You don't have Windows 2011 pro?

Intro to lan Isn't a free room anymore, they just haven't changed the description in the room yet.

https://tryhackme.com/r/resources/blog/free-offensive-security-training

Here is an up to date list of free rooms on TryHackMe.

Ah ok, Ty for the help

Gave +1 Rep to @tight ingot (current: #1 - 2214)

Hey folks, I'm really stuck with this problem in TryHackMe, can someone help me? I'm in the Windows Fundamentals 2 lesson

I answered all other questions but this one question :/ I can't find any answer

(nvm I got it finally... ah that was a tricky / confusing question!)

Somebody help me in the agentSudo ctf in tryhackme.....I need to understand some sort of basics

Were you able to sort it out?

Really stuck with this problem in TryHackMe, can someone help me? I'm in Snort Rule Structure with question number #9 , and the output 10 still incorrect

for sure no

Hey folks.....anyone with the names of the rooms related with the server side request forgery and file inclusion challenges please

That's reall great...cuz the same thing happened to me last time before I started the agent sudo room

Have you tried to use the search feature?

I will try that feature later on.....

Hello Everyone, I am Rajendra Mohan Navuluri, I am trying to complete OS security module , but when I am trying to give password as dragon to login to sammie linux box, it is throwing error, can someone please help me?

Hi, can you please not spam the same message over multiple channels.

Remember everyone here is a volunteer.

Sorry, But No one helped me , I am waiting for help

I will not do that again

hello

who want to be friends and hack together

Hack what?

please what is the answer to this because I have tried >What do you need to access a web application?> a web server, application server, database and web browser

@smoky blade hi

If you look at the * you know the answer key. Answer is 7 letters. You basically already named it just now.

but I try all of them pls tell me the one

Got it?

yes

hy

whats a good entry level job to pursure for red teaming?

Real Red Teaming? There are no entry level positions. 🙂

what about fake red teaming then?

whats a good path to get there then?

just do cyber sec stuff until im old and decrepit and then become red team latterally?

Learn attack surface foundations, security foundations, offensive methodologies, pentesting, become an expert in a security domain that lends itself to become part of Red Teaming engagements. 🥳

get good a phishing, got it, thanks!

Task 6 under linux fundamentals, I need help to understand the answer.

the first 3 letters is a common marker for flags on tryhackme and as such are THM

the {} are the same and then it just wants what is inside those curly brackets

oh yeah I'm being dumb

ty

nah just maybe some sleep could help

no problem

I'm tired and do need sleep haha just thought I'd get a little study in before bed

I enrolled in the pre-security but don't see it on my dashboard only intro to cyber, can you do two at a time?

You can work in as many paths you want simultaneously. Paths are only collections. If you for example finish one room that's part of two paths, it's gonna be completed in two paths.

But you can only see one in the dashboard?

Sorry to bother, just making sure I didn't miss something

I don't know that. Makes no difference in any case, you can always access the paths through the menu.

Okay, thanks for the info

Hello, glad to hear you like paths. Indeed, only the most recently joined path shows up on the /dashboard page. 🙂

Once we complete it does the other one show up? Bit OCD

Once you complete one, join the next one to have that one show up. 😄

Whoops, alright thanks a lot, one other question. Can I screen share and ask my Preply tutor about more indepth stuff? I haven't done it as I figured it's copy right law violation

Probably good to double check the Terms of Use page:
https://tryhackme.com/r/legal/terms-of-use

Personal Use only, got it. I'll just take notes

Have fun! 🥳

Why do the machines lag so much

Hey folks......hope you are doing fine and great....i just need some help...for anyone who has managed to solve the Burpsuite Basics room task number 11....actually whenever i try to use the site map section soon after fowarding the intercepted request in one way or another I fail to get suspicious url which contain the flag....somebody to give me a brief explanation please and some other ways to encounter this task

You mean the machine you are using to solve the challenges or the machines you are trying to exploit????????

The machine I am using to do the challenge @errant arch

Will take a look when I get the chance and let you know if I figure something out.

hello, when i try to learn in pre security pathway, some rooms cant be accessed if you are not subscribed like linux fundamnetal 2 and 3, but i want to learn that, is there an alternative room for it?

You can search for free rooms here: https://tryhackme.com/r/hacktivities/search?page=1&kind=all&searchText=Linux&contentSubType=free

But Linux fundamentals 2 and 3 are free, so you should be able to access them.

huh

this is weird

Where do you face an error?

whenever i access linux fundamental 2 and 3 it says i need to subscribe

wait

i can't send an image here right? whenever i access linux fundamentals 2 and 3 and windows fundamentals from https://tryhackme.com/paths it redirects me to https://tryhackme.com/why-subscribe
and it says Linux Fundamentals part 2 is a premium room, ....

still cant access it, i just tried using my phone without logged in but i can access it 😭, whats happening

You can verify yourself here using the token from tryhackme.com, then you're allowed to send images.

That is weird. When I go to the bottom of Linux Fundamentals 2 I see this: https://tryhackme.com/r/room/linuxfundamentalspart2

Linux fundemental 2 and 3 are premium rooms

huh so it is premium?

Yes

alr i see, but i still can access the walkthrough without logging in ig, thanks

https://tryhackme.com/r/hacktivities/search?page=1&kind=all&searchText=Linux&contentSubType=free

so this search page is misleading then?

Yes, as some rooms need to be changed to sub, and vice versa.

okay thanks!

https://tryhackme.com/r/resources/blog/free-offensive-security-training

This link has up to date list of free rooms within TryHackMe.

woah thanks! thanks a lot

need some assistance with Windows Fundamentals 1 task 6: what is the account status? I found the account, but I don't see any indication of the status. Thought maybe it was "standard user account" but that was not it...a pointer will be greatly appreciated...

From my local machine. The status is on the screenshot.

thanks

I totally looked right past it!!!!

Not gonna be the last time, no worries.

Don't disable yourself over it.

hello i have a problem, why i cant connect to tryhackme ssh?i keep getting permission denied

Which room?

activerecon

Do you need to SSH in to the machine?

oh wait what do you mean? T-T

Does the task material give you SSH creds?

nope

Then chances are you don't need to SSH in, not all machines can be SSH'd in.

wait so sometimes i need ssh creds?

Yeah, if you need them, THM supply them, or there is clues found in on the machine if it's a CTF.

but there are 2 options, to access this machine you need to either attack box or use a vpn

Yeah. but that could be so you can interact with the web server or not.

Can you link the room?

https://tryhackme.com/r/room/activerecon

here is the link to the room

Yeah, you don't need to SSH in to either machine.

when i tried to use attack box it gives me different ip address than when i start from netcat

Attackbox and Start Machine are two different machines.

huh

@little violet

The article above will explain it

i seee that makes sense now

but.... why it doesnt work before this,

i mean, i tried to nc task_machine 21
and it refuses, and now it works, T-T

Sometimes the machines need a few mins to launch services.

i see

oh wait now im confused there is a question "Start the VM and open the AttackBox. Once the AttackBox loads, use Netcat to connect to the VM port 21. What is the version of the running server?"
i did nc and the output like this, so why is the answer 0.17?
(Version 6.4/OpenBSD/Linux-ftpd-0.17)

i thought it is the 6.4 one

Which task?

netcat

Do you have an IP?

Or can you verify and show me?

huh wait why you ask about my ip? i only ask about the answer.. T-T

i edited my question @tight ingot

No.

The netcat has a separate version

hmmm,,, ok thanks

It's at the end.

i seee

iin teh windowsfundamentals2 room, task 2. For the life of me I cannot get : What is the name of the service that lists System Internals as the manufacture? I thought sysinternals, that is a no. nad Whom is the windows license registered to? A nudge in teh right direction will be greatly appreciated. I have looked all thought the System Configuration and cannot seem to locate them

So you open the System Configuration (search MSconfig) and then select the tab Services. Now theres the list of all the services and their manufacture. If you scroll down at some point you will find Systen Internals as a manufactures. The answer to the question is the name of the service next (left) to it.

You will have to use the machine attached to the room (not your own windows machine).

Thanks, found System internals...I am using the machine attached, but I do not see anything about the whom the licenese is registered to

Gave +1 Rep to @zealous dove (current: #338 - 14)

Now when you go to the tab Tools you will see tools you can launch. One of these tools can give you information about that windows. Launch that tool to see who its licensed to.

awesome, thanks, was in the right place just needed to go furhter

Hi, I'm stuck on linux fundamentals part 3 task 6. how do I view running crontabs? any help would be greatly appreciated.

Did you check out the hint?

so I thought this was incorrect when I went to it earlier as I thought it was looking for a time/day/month. also didn't realise the answer required the @. But I have solved it now thank you.

Hey does anyone know how I can find the exe file for something

for example

the command for control panel is " control.exe"

where can i go see that

RIght click => Open File Location

If it's something in the start menu

For a shortcut on the desktop it would be right click => properties

Okay thank u

pre security path completed moving onto intro to cyber

I did intro to cyber security first 😂

And nice! I’m finishing windows fundamentals right now

After this I’m going to complete beginner

Hi everyone

Is there any extra practice questions or flashcards to revise the learning path?

anyone know a john lasseter?

he messaged me but I think he may be a bot or something

i'd love that as well for like everypath, there must be some out there that someone has made

If you find any can you share

I think THM can create and implement such practice tests and sections for revision

you could get the topics and ask chat gpt to do that. i got chat gpt to write programs using python to test my knowledge. they were like multiple choice. a pop up window would ask a single question and there would be a drop down box in the window with multiple answers. "correct" in green type and "incorrect" in red. you could have the option to show the correct answer should you get it wrong. it takes a little work but that is an option. What do you want to revise

We don't promote ChatGPT in this server, thanks 🙂

Gave +1 Rep to @grim otter (current: #2083 - 1)

oh, how come

has my reputation just taken a nose diver?

Not really..

It's just confidantly wrong, and doesn;t encourage further research

oh ok

@grim otter What model do you use for python ? I had some decent success with wizardcoder but it was very limited ( troubleshooting php7 to php8 code changes)

I am sorry, model?

do you mean IDE

I am new to programming, I have visual studio (I think its called) and python IDE

You mentioned using chatgpt? Do you run the models locally or do you man like the online service?

I actually wrote something that can deploy some AI models

https://gist.github.com/VTSTech/bb858a2039fe84cd35af4064c0aa44d8

Please don't cross post in multipe channels 🙂

In Windows Fundamental 1 I am stuck with this Qs

What is the account description?

That sounds like a nice idea but it will take too much time to plan and design that

Is there any other way to do this? Practice the learning path questions and revise the topics in an efficient manner?

Btw, I have a doubt and wanted to clarify it

When using wget and scp commands for downloading files or copying them from one machine to another, how can we do it between a kali in VM and another machine outside of the host?

I used python -m http.server to host a server and allow other machine to download it
However, in wget command what should I put the address? If the address is the private address of the machine and the second machine is outside of the network (not same network) then it won't recognize the IP.

Even because my windows machine and vmware machines have the same public IP address, if use public IP address in wget command then it won't be able to recognize which location I am referring to.

What is the right way to do this between a local machine and another machine outside of our private network?

Hi everyone, I'm stuck on Windows fundamentals 1 and need help with Task 6, Task 8, and Task 9.

• Task 6: I failed all attempts. Can someone please point me in the right direction or assist?

• Task 8: In the Control Panel, change the view to small icons. What is the last setting in the Control Panel?

• Task 9: The question was, what is the keyboard shortcut to open Task Manager? My answer, Ctrl + Shift + Esc, was declined by the system.

Can someone please assist me?

Task 6: Check the local users and groups

Task 8: a hint is, what security is default for Windows?

Task 9: They're not spaced, do it as Ctrl+Shift+Esc

Thanks buddy, i attempted 8 and 9 and was succesful. Please provide hints for Qns in task 6

Gave +1 Rep to @upper bear (current: #54 - 127)

Seach computer management and take a look in the local users and groups > users > Look at the description

no it doesnt work answer

Thanks buddy finally completed the room

I’m having the same problem for 6

Can anyone help I can see the descriptions in the users and groups but still got it wrong

Are you on the THM Windows VM or on your local, personal computer?

Vm

Have you opened lusrmgr.msc and opened users?

Yes

Can you share a screenshot of that please?

Ideally after maximizing the window.

i can send screen shot

cant

doesnt let me

You need to verify before.

https://help.tryhackme.com/en/articles/6495858-discord-how-do-i-verify-my-tryhackme-account

omg i figured it out

i was looking at the wrong thing the whole time

You got it

Hi

In Windows Fundamentals 3 room under the Bitlocker section (task), where can I find the correct answer for the following question:
What must a user insert on computers that DO NOT have a TPM version 1.2 or later?

I check and read the article from Microsoft doc using this link: https://learn.microsoft.com/en-us/windows/security/operating-system-security/data-protection/bitlocker/

They mentioned three possible answers:

1. PIN
2. Startup key
3. Password

But none of them are working
Can you help me out on how to find it?

"In addition to the TPM, BitLocker can lock the normal startup process until the user supplies a personal identification number (PIN) or inserts a removable device that contains a startup key."

It's one of the 3 you mentioned but missing a small part.

Got it, thank you

Gave +1 Rep to @zealous dove (current: #292 - 17)

As a beginner should I learn front end or back end first with ethical hacking as a long term goal? Also doing Information Technology fundamentals but internet says so many things...

Neither. You should start with the basics of programming. If you plan to go into web app testing it would make sense to start with JavaScript (which is used on both "ends") but ultimately the choice of language doesn't matter.

@severe schooner Thanks CyberTerms

Gave +1 Rep to @severe schooner (current: #141 - 49)

@severe schooner What qualifies as the basics of programming? I would have guessed front end...

Things like variables, loops, conditionals, functions, possibly classes. That is not tied to either backend or front-end.

@turbid wren Thanks cyberterms, I'll write that down

hi friends what is the bigginer friendly bug bounty platform