#pre-security-legacy-path

@vapid peak for me it was the fact the other ones I have seen before and profiles was new. Also profiles, holding user information sounds like a juicy target for possible usernames/passwords etc

yeah, i thought about it more and it makes more sense, you're right it has more potential than netlogon

thanks @shadow parcel

Gave +1 Rep to @shadow parcel

Non default

hmm? wdym?

The other shares are default shares

oh okay, gotcha. thanks @warm epoch

https://tryhackme.com/room/networkservices, task 4....did I miss something? how would I know who this profile belongs to? Right now I'm going through the help command on this remote server to try to find a useful command bc I don't know who the profile belongs to.

Look through the files

I don't understand how do I do that? what kind of os is this? nano doesn't work here. cat doesn't work here

You don't have a system shell

You have an smbclient shell

what commands do i use in an smbclient shell to look through files?

Enter help to see available commands, for example you can try to download a specific file and then read it's contents.

What's the room in the Pre-Security Path where they teach you how to set up a file server on a compromised PC and you move files from it? Having trouble finding it again

@soft snow thanks

Gave +1 Rep to @soft snow

Maybe linux fund 3 task 4 ? Not sure though if that's what you mean.

this is the one. thanks @soft snow

What is generally the next path to follow after completing the pre sec pathway?

Whatever you think might be best for you. But generally I would say people follow up with the complete beginner path.

Perfect I was thinking of that one. Then I assume onto Web fundamentals?

Well, at least that's the order I was going through the paths. But overall there is no right way. Whatever you prefer or feel you can do.

Hi, pre security completed :-). I cam to ask the same questions. I think I will do Complete beginner, then web fundamentals. After they are complete I will finish it with COMPTIA Pentest+ and maybe get the certificate before I do the intermediate rooms.

Do we get anything if we beat the staff high score in the OSI Model section? haha

Pre-security completed too ! I will do the same as you, Complete Beginner and then Web Fundamentals, and some one-shot challenges along the way too

The Eternal Glory 🎉

Yes you have to beat me thereafter :p

Haha I'll take it!

😄

Free multicast packets

Well, I'm living here now until I'm done with this learning path. I'm currently at the beginning of networking fundamentals.

Why is it important to learn system configuration and its tools?

Most of CTFs and rooms in THM are based on linux machines

in order to hack those machines or protect them, knowing how the system is configured allows you understand the attack vectors you or attackers can use to enter your system

If you know how a system is configured by default, you will be more likely to detect if someone has hacked you because there will be things you will detect as strange

Good Morning All. I'm curious, will this pathway prepare me for Sec+?

Good morning, no the information is good to know before Sec+ but it will not prepare you for Sec+.

To the degree that its content overlaps with the Security+ exam objectives, but that's not much. However, it does serve as a great foundation to begin studying for your Security+.

https://comptiacdn.azureedge.net/webcontent/docs/default-source/exam-objectives/comptia-security-sy0-601-exam-objectives-(2-0).pdf

Thank you both

Thats what I thought and I meant the system configuration in windows

Windows is more used in corporative networks in employees machines and also for the main public of personal computers

Windows is much more used for Malware analysis and cyber defense

It's the same as in Linux, it is very useful to know system configuration in windows for dealing with this cases and also for protecting yourself as you will probably use windows if you like to play videogames or if you don't like or can't have Linux on your computer

Gotcha thank you!

Gave +1 Rep to @shrewd pollen

Dang, I must be slow as heck if the staff got 19 secs.

There must be a keyboard trick.

Or they know the game per heart

In this part, I dont understand the gateway becoz from other videos I saw on yt, they say the gateway address (broadcast address) ends with .1 or .255 but it says it here the gateway address ends with either .1 or .254

Another point I saw there is that the network address and default gateway arent assigned to any host... Is this statement true?

The gateway is typically assigned an address at the beginning or ending of a subnet, but it can be arbitrarily set to whatever you'd like.

Hmm I see thankx then Is it true they arent assigned to a host ?

Also, typically x.x.x.0 and x.x.x.255 are reserved addresses. So it's uncommon that .255 would be used for a gateway; the exception to this would be if the subnet were larger than 256 addresses such that 255 were in the middle of the subnet's IP range: For example, 172.16.0.0/23 — which spans from 172.16.0.1 to 172.16.1.254 — could have 172.16.0.255 assigned to a host.

Correct. The network address (for example 172.16.0.0) identifies the network and the gateway address (172.16.0.1/172.16.0.254/etc.) identifies the address that is used when traffic needs to leave the network: neither of these can be used for a host's address.

I see thankx for explaining Sir

No problem 👍

Only on a /24. CIDR notation good.

The Practical Firewall Task 3 was very interesting. Would be great to get more of these types of "Blue Team" defense stimulation.

Question... in Task 7 - Making Request on HTTP in Detail .. when we View Site, with the task to answer the questions.. GET, DELETE, PUT, & POST.. is this being done on burp suit or .. ? Maybe via Developer?

Sounded like a dumb question, but thought I'd ask.

Like this.. what is the tool is being used? Developer or.. ? I was able to answer all the questions but am a bit confused to where and how these are done, e.g. Burp Suit or the browser, etc.. ?

Beat 19 seconds in the dungeon on the 4th try.

I think Benjamin explained this fairly well, but it should be clear that .1 and .255 don't have significance on their own. On a network neatly limited to 256 addresses (0-255), .1 is typically the gateway and .255 is the broadcast. .1 doesn't have to be the gateway, but .255 has to be the broadcast address in this case because it's the last address.

.0 and .1 can be assigned to hosts. It's not common, but it happens. But it's important to understand that there is no technical restriction to any address being used except the last one, which is always the broadcast address.

One scenario where you might see something other than .1 as the default gateway is if the original default gateway is replaced and a new address is assigned. There are other reasons, but that one is more common.

Hmm I see

Got this on my first try

Is there a keyboard trick? I know OSI Model by heart... It isn't hard.

FYI, that was my first try...

LOL

yeah keyboard trick

Press the right and left arrows constantly after pressing the spacebar

Fortunately it didnt say to Hack NASA

LOL

All jokes aside but it's still funny...

i dont know how to solve this

can you help me please ?

Meanwhile NASA

Oh shit!

Did you read the HINT?

Yep its say to add 2 more parameters, username and password

But i dont know how

This was rather a bit weird for me at first but I kept typing everything in until I get it.

nope im idiot

It says add 2 more, that is, you need the username which is thm and password which is letmein

i solved

Good!

I put my username instead of "thm"

Don't call yourself an idiot. I fumble every now and than.

Good job!

Ok thx 👍 😄

Hi guys
I have problem with the next question in "Windows Fundamentals 1" >> "Task 3":
Besides Clock, Volume, and Network, what other icon is visible in the Notification Area?
You can help me?... I don´t know what is the answer, and i've tried the best
᲼᲼᲼᲼
Could be the hidden icons with an arrow icon, keyboard icon, lenguage icon... :'c

In that task is a linked documentation about the notification area where you can find the answer

Thanks

Gave +1 Rep to @soft snow

Anyone know how long the python3 -m http.server command takes to run with the kali browser subscription? It's been running over 20 mins and hasn't given me any indication it's progressing or frozen.

I am in Linux fundamentals3.

it should look like that straight away

It does, but I can't run any other command.

open another terminal

yeah you wont, because the python http.server is awaiting further instructions

or use & at the of command

but it's could be messy

though if you do that, make sure you remember to kill it later 😛

Ooooh it doesn't say to start another terminal and ssh into it again. Thanks I'll try that!

no problem. good work!

Didnt see this coming

ah, the classic rick-roll

Hello folks. 👋
While learning the network fundamentals I currently have two questions. Maybe someone can clarify this for me.

1. What is the difference between a VLAN and subnetting?
2. Regarding VPN, you can securely connect two devices from different networks. Is it possible to open a VPN between e.g. Server A and Router B and all the devices connected to the Router B can use the VPN between Server A and Router B? Or does every single devices have to establish its own VPN with Server A?

Thanks in advance 🥳

In subnetting, the devices can only communicate with each other but they will need a router to communicate with other devices on the internet. They are logically separated. Its more on Layer 3. Router level.

While In VLAN, even if the devices are connected to the same device, they wont be able to connect/ communicate with each other because they are logically and physically separated using VLAN. Its works more on Layer 2. Switch Level.

Why do they need to be logically segmented though?

so that they can be identified separately when they are communicating with each other.

Am I right ? @warm epoch

Ok, but you can do that without putting them on subnets?

Using VLAN?

You could just say "Let's use 10.0.0.0/8 and frontend gets 10.10.10.0/24 as their addresses" and because it's a whole flat network it just works

But I doubt we need so many hosts on this... like if the team consists of 10-20 host pcs. I dont think they need an ip of 254 addresses

Using subnetting and routing would make it a lot more complicated

Umm Now I am confused... lol 🤦

Your subnetting example doesn't make much sense

Because you just put em all on the same network and they can communicate just fine

Then whats the difference between vlan and subnetting then?

VLANs are a layer 2 thing

https://www.fiber-optic-transceiver-module.com/vlan-vs-subnet.html

Google has a million answers, that's where people NEED to start.

I see

I found that one but I still didnt understand that. Sigh...

Then ya keep reading

hi

1. SYN - Client: Here's my Initial Number Sequence (ISN) to SYNchronise with (0)
2. SYN/ACK - Server: Here's my Initial Number Sequence (ISN) to SYNchronise with (5,000), and I ACKnowledge your initial number sequence (0)
3. ACK - Client: I ACKnowledge your Initial Number Sequence (ISN) of (5,000), here is some data that is my ISN+1 (5,000 + 1)

can someone explain why in #3 the client says that his ISN+1 is 5000 + 1 ?

his ISN was 0 in #1

https://www.cbtnuggets.com/blog/cbt-nuggets/subnet-vs-vlan-whats-the-difference

Hope this helps

fun fact: multiple vlans can have the same addresses.

Sorry, you are right 😅 Next time I google it first. Thanks a lot though @fading girder & @warm epoch

Gave +1 Rep to @warm epoch

Because they are just virtual? I'll google it ;D

vlans create 2 different level 2 domains - VIRTUALLY different ethernet networks.- just using the same switch/hub equipment

so they don't share packets UNLESS the routers / gateways allow it. you could, for example, have two floors in an office with 10.1.2.0/16 for laptops, and NAT them... just like you do at hime

anyone has a clue?

hime? NAT? 10.1.2.0/16 (is that port 16 or IP 10.1.2.0 - 10.1.2.16) Sorry, I just started learning all this network. I guess I have a LOT more to understand 😅

well, thank of it like your home cable modem or what not- you have a network, something like 192.168.100.0/24 for your house, then the gateway - your cable modem - makes it all look like it's public IP-

Gave +1 Rep to @wanton plinth

you chould do the same thing with VLANs,

so the 10.1.2.0/16 notation... was wrong. sorry

10.1.0.0/16 would be ok, or 10.1.2.0/24 would be ok

do you want me to talk more about just normal subnetting?

NAT is what commonly used when u open virtual machines inside ur pc

dont worry it took me time to understand this.... just take one step at a time

yea, you don't need to understand everything I've just said- Yet 🙂

Glad to hear that xD
I'll look everything up you just said when I get home and write again if there's still something I don't understand. Thanks a lot though. Glad there are so many nice ppl here who take the time to explain all this. Have a great day! 🙂

Gave +1 Rep to @radiant sierra

Well Take baby steps... thats all I can say at this point.

that's the hardest thing someone who's been seeped in tech- figuring out where to stop explaining!

https://www.geeksforgeeks.org/network-address-translation-nat/

Good explanation for NAT

And sometimes too much explanation can do more harm than good

Has anyone noticed that there is an issue with the "What layers of the OSI model do firewalls operate at" question in the "Extending your network" room? The answer in my opinion is ||layer 3, layer 4||. This answer is accepted as correct. The walkthrough video shows|| Layer 3, Layer 2||. So either my answer is wrong or the walkthrough is wrong. I'm pretty sure I'm right. Also, the hint says to enter them "in descending order." I entered ||"Layer 4, Layer 3"|| and it was rejected.

I think both the walkthrough and hint are wrong. Hopefully that can be fixed.

I noticed that as well. I was having issues with that question and never realized that walkthrough as I never played it till you mentioned it.

In room: Windows Fundamentals 1 - looks like the questions "Besides Clock, Volume, and Network, what other icon is visible in the Notification Area?" doesn't appear to answer the question. s that icon doesn't appear. I looked in both the Split screen and RDP.. same issue...

I know the answer now, just had to guess...

I noticed that as well. The hint is wrong when giving an example of ascending order but in the walkthrough the typed letters and the answer the instructor got are different. The instructor typed in ascending order but he got the corrected answer in descending order.

The answer is ||root||, but accepts a different answer
Room : Linux Fundamentals Part 1

You are not on the right machine. You are actually on the attackbox rather then on the target machine for that task.

ohh got it

thank you sir

me dumb dumb

Linux Fundamentals Pt. 3

Locate the process that is running on the deployed instance. What flag is given?

There doesn't seem to be any process out of the ordinary.... Anything specific I should have to look out for?

EDIT: The flag process seems to be missing

@light junco I was told to report it in Rooms Bugs, which I did.

Do NOT rely on the videos. Answers are updated and corrected, copying from the videos will not only teach you nothing, but you'll get answers wrong

I didnt do that, I was just crosschecking his query to see if the guy was right. I already completed that room days ago.

What should be happening is:

Client: [SYN] (I'll start my sequence at 0, this is my message #0)
Seq = 0

Server: [SYN,ACK] (I'll start my sequence at 5000, this is my message #5000;
I received 1 byte and I expect your next sequence to be 0+1)
Seq = 5000; Ack = 1

Client: [ACK] (This is my message #1;
I received 1 byte and I expect your next sequence to be 5000+1)
Seq = 1 ; Ack = 5001

Now it gets confusing because the sequence numbers aren't actually "message numbers" once they start exchanging data
The sequence numbers will increment by the number of bytes received, so an Ack=x will mean "I have received all bytes before x"
So far the sequence numbers are incrementing by one because there is no payload yet.

After Client sends the [ACK],Seq=1,Ack=5001, then for example, Client may follow up with more segments/packets containing the application layer request to the web server or whatever

Client: [PSH,ACK] (Here's 93 bytes of data for ur httpd)
Seq = 1 ; Ack = 5001 ; Len = 93

Server: [ACK] (Okay, I got 93 bytes and your next sequence should be 1+93)
Seq = 5001 ; Ack = 94

Server: [PSH,ACK] (Here's 300 bytes of the data you requested from the web server, I haven't sent or received any more payload yet so I'm still on 5001 and I still expect you to start at 94)
Seq = 5001 ; Ack = 94 ; Len = 300

Client: [ACK] (Ok, I got 300 bytes and now your next Seq should be 5301)
Seq = 94 ; Ack = 5301

Server: [PSH,ACK] (Here's 300 more bytes)
Seq = 5301 ; Ack = 94 ; Len = 300

Client: [ACK] (Ok, I got 300 more bytes and now your next Seq should be 5601)
Seq = 94 ; Ack = 5601

And it can carry on like this for some time until Client actually sends a payload again instead of simply acknowledging Server's

I finally completed this path 🥳 thank you THM!

Me on my last 3 rooms

Just finished the Pre Security Path. Thanks THM! On my way to the next one 👋

Good explanation @gaunt crescent

thanks @naive aspen @wanton plinth now I get it

Gave +1 Rep to @naive aspen

what I don't get is that Client says "here is some data that is my ISN+1 (5,000 + 1)" but 5000 is Server's ISN

he should've said "here is some data that is my ISN+1 (0 + 1)"

even tho I understand that Client keeps also track of Server's ISN

What's giving you the idea that Client is saying that? Is this something you're reading directly or your interpretation of a diagram or something?

it's what it says

3. ACK - Client: I ACKnowledge your Initial Number Sequence (ISN) of (5,000), here is some data that is my ISN+1 (5,000 + 1)

Client is talking

I have to look in a bit, I haven't done any paid content yet. It's in this path I assume?

cool second brain!

If it's the windows fundamentals, then it's pretty straighforward and fairly easy to understand 🙂

Does anybody have premium account?

??

50% of content not available for free account

80% of content on tryhackme is free

And I cant find out more becouse of this

You can. Use research. You don't have to learn from only tryhackme.

Sharing accounts is not allowed

I know

So why are you asking if someone has a premium account?

For example?

For example google?

Ohh thanks a lot

Find videos on topics, find articles, find other sites.

Ok

Ok, I came to the section you were looking at, the numbers are mixed up in one part so I sent a feedback form and included your handle as it says useful feedback may result in awards, sounds ominously vague to me but whatever works I guess.
It won't really matter once you learn a little more detail about TCP, but it seems to be at a perfectly inconvenient point in the learning path to cause a lot of confusion and doubt that you're properly understanding things.
That same paragraph would ideally say:

SYN - Client: Here's my Initial Sequence Number (ISN) to SYNchronise with (0)
SYN/ACK - Server: Here's my ISN to SYNchronise with (5,000), and I ACKnowledge your ISN (0)
ACK - Client: I ACKnowledge your ISN of (5,000), here is some data that is my ISN+1 (0 + 1)

There's lots of videos and almost every room has a writeup

as I thought haha

but regarding the potential award how would they know who I am?

I could've just send the feedback myself I came here to be sure that it's indeed a mistake on THM's behalf

"it seems to be at a perfectly inconvenient point in the learning path to cause a lot of confusion and doubt that you're properly understanding things." exactly, since it's the beginner course and I'm a beginner I assumed that it's me that didn't understand

Mainly taking the chance to offer a rewrite as I'd really like to be able to work over the whole thing, but if there were any kind of award I'd try to redirect it

Just got here myself so no idea really, but I imagined that sounded like it was for real saving someone's ass type of stuff lol

sorry I don't understand what you're saying @naive aspen

I got a little confused at that part also but reading along it started to make sense, it could use maybe a more newby phrasing🙂

I think the phrasing is already newby but they just mixed up the numbers

Yeah you are right, revisited the task now and understood what you guys are saying...

I mean I reported the issue because I wanted to also suggest a drop-in replacement and probe into the possibility of cleaning up more writing. If they offer me something for it, I'll tell them to give it to you instead, but I think that's probably for fixing much larger problems, if I had to guess

I gave your discord so if you sync with the token in your THM settings they'll know, or they could just get in touch here

ok I see thanks

there are other things in the course that I find confusing even tho it's not proper mistakes

https://assets.tryhackme.com/additional/linux-fundamentals/part3/bg1.png

for instance here they're showing how background and foreground processes act but at first I didn't know what they were doing on the last line

why did they just write "Hi THM" and press enter

But you get it now? Or still think that's what happened?

is there a way to link to the certificate of completion for this path similar to how you can link to the badges you earn? Is there a URL which shows all of the certificates for your profile?

You could take a picture, upload it on Google drive then give the Google drive link

I still don't get it

They did not write it. Try it out yourself :) (You might need to switch to sh to get the same result)
sh echo "I am not getting this!" &

ok it does the same thing with sh

are they using sh in the screenshot?

Looks like an older version of bash.

alright thank you

I have a question related to How the Web Works/How websites work.
At Task 4 Sensitive Data exposure it says that you need to view the source code of that Vuln fake page from the split screen but i think Edge is opening the Source code of the other half of the page, am i doing something wrong maybe?

Did you right click into the right page of the split view and press inspect? Or whatever it's called in edge ?

I can click on Inspect yes and i also have View Page Source.
If i click on View Page Source it opens a new tab with a very long code that i think it belongs to the whole How the Web Works Page...

Well it wouldn't matter if you press to see the source code or press inspect on the right side of the split view, as regardless you should be able to find the credentials in the source code. Even if you press inspect somewhere at the left side of the page, the source code which is getting displayed to you includes both sides, left and right.

Can anybody donut 10$?

*donate

It would be just easier to press inspect at the right side as the dev tool should scroll to the code right away and it's easier to locate

Donate for what ?

For premium account in thm

So you asking if someone is buying you a sub ?

Yeah

I want to learn about osi model

But can't

Well, not very appropriate to ask for something like that tbh, but that's up for a mod to decide.

Yeah well if i hit View Page Source it's opening a new tab with a very long code, i search for password in it and it does find 3 entries that have nothing to do with the task.
Now if i click Inspect on the right side of the split screen it opens up the elements page which with probably the same code but wrapped up somehow. The thing is that if i search for password here i found the password needed in the task.

I need to learn more about using the inspect and source code function because i'm not very familiar with it unfortunately. Thanks @soft snow for your help

Gave +1 Rep to @soft snow

Ohh and now i see that if i hoover over the part of the code that belongs to that page it highlights every part of the webpage that belong to that code, nice

Ok ye you right, my bad probably. This right page only gets openend after you press the green view page button. So therefore you probably not be able to see it in the page source code, as the page source code is not showing you the actual state of the website rather then purely the page source, inspector on the other hand does show you the actual state of the site. So lets say while being on that webpage, javascript is doing some changes on the page, you will not be able to see these changes in the page source code, as it's purely showing you how that sites is being programmed. On the other hand, if for example javascript is making some changes to the page, you can see these changes with the inspector as it's showing you the live state of the site.

Find all files that were not accessed in the last 10 days with extension ".png"

the right answer is ||find / -type f -atime +10 -name "*.png"||

to me, this command gives us the files that WERE accessed before the last 10 days

it has nothing to do with the files that were not accessed in the last 10 days

am I wrong?

So you are saying this command is giving you the files that were accessed for example 9 days ago ?

no, the files that were accessed before 10 days ago so for instance 11 days ago

more than 10 days ago I should say

Makes sense, it's good i know why it is happening also, thank you very much for your help and detailed explanation.

Gave +1 Rep to @soft snow

Right, and that's what the question is asking about, it want's you to show you all the files that have been accessed more then 10 days ago ?

"Find all files that were not accessed in the last 10 days [...]" to me this means -atime -10, the last 10 days

but the right answer is -atime +10 which is more than 10 fays

But it's saying "were not accessed". So that means if there would be a file, that got last accessed 9 days ago, it would not meet the criteria of that question, as it got accessed within the last 10 days ?

yes you're right on that, but how can "-atime +10" give me the files that were not accessed in the last 10 days ?

I mean, not sure how to explain it better, but +10 simply means more then 10 days ?

yes

the task is to find the files that were not accessed in the last 10 days

+10 is about the files that were accessed more than 10 days ago

so it gives us no info about the files accessed in the last 10 days

I can't deduct what files were not accessed is the last 10 days if my command prompts the files that were accessed more than 10 days ago

at least with -atime -10 I have the files that were accessed in the last 10 days so I can deduct what files were NOT accessed

but I don't see how can -atime +10 be the right answer

Mh, I don't know how else I can explain it ^^ So, -atime (last access time) + (more then) 10 (days) so it's only finding files that got last accessed for example 15,20,25 etc days ago. -atime (last access time) - (less then) 10 (days) so it's only finding files that got last accessed for example 7,4,1 days ago.

yes I understand that

So if you would use -atime -10 as the answer, it can not be right, as it would find/display you all files that were accessed in the last 10 days.

yes

But the question is were not accessed

yes

how do you know what files were not accessed in the last 10 days?

Well if you do ls -al the time next to the file would be the last modified time. Tbh I don't know out of the head how to display the last access time, you would have to look that up. But that time most likely is stored somewhere, otherwise that find command would be senseless ^^

alright

I'm sure you're right

the thing is that the answer to the task "Find all files that were not accessed in the last 10 days with extension ".png"" is "find / -type f -atime +10 -name "*.png""

and that doesn't give us the last modified time for the files like you suggested

so I still don't get how this command would show us the files that were not accessed in the last 10 days

Ye, it's maybe not giving you the time, but it's giving you all the files that where access 10+ days ago.

yo my people

Heya, passing along that it appears that, unlike various other pathways on THM, the presecurity path appears to have some serious accessibility issues for peeps who don't use a mouse or can't see ... anyone I can talk to about making that better?

@lost matrix is this a you thing?

Yes, I can take a look at specific instances where accessibility can be improved. Feel free to send me a direct message concerning the rooms and tasks that you have identified. 🙂

Are you also interested in any content updates addressing things like the confusion someone had here earlier about the TCP handshake?

#pre-security-legacy-path message

I saw some opportunities to make phrasing more clear, etc.

but what does that have to do with the files in the last 10 days ? you're still talking about 10+ days but it's not in the task

the task is about files not accessed in the last 10 days so why do we care about the files accessed more than 10 days ago

If a file was last accessed more than ten days ago, then it wasn't accessed in the last ten days
The files that have been accessed in the last ten days will have an access time of less than ten days ago

Maybe the wording of the question is confusing about how to visualize/conceptualize it, but you can turn it different ways if one makes more sense like "Find all files that were not accessed in the last ten days", or "Find all files that were accessed in the last ten days (and then the answer is the rest of the files)", or "Find all files that were accessed more than ten days ago"

A file that did not get accessed in the last 10 days, when did it get accessed?

maybe never

maybe it was accessed more than 10 days ago and also in the last 10 days

You can find an answer to all your questions in this screenshot. :)

ohh so it shows the last time it was accessed

that changes everything

is it possible that a file was never accessed ?

Do you know what touch <filename> does?

Please look into the 1st line of that screenshot.

Similar, if one would redirect stdout to a file. (like echo 'This is a test' > test_file2.txt) and then run stat on that file it would show an access date. @gaunt crescent

This is, I think, an even more, accurate observation, as touch function is to change the access date.

Long story short, I haven't found a way how to create a file without it having an access-time-stamp.

CC @soft snow

ok I see so a file is accessed at its creation

now I get it

it makes sense

thank you @marsh veldt and @soft snow

Gave +1 Rep to @sterile walrus

Folks, I have a question on the below cname. Isn't shops.myshopify.com pointing to store.tryhackme.com?
But when I access the url it is taking me to the shopify helps section instead of tryhackme store.
I see both the domains are pointing to same ip, then why this behavior?

CNAME    store.tryhackme.com    shops.myshopify.com

and @naive aspen also

Just curious what you thought, did it sound like "files that were not being accessed at any point in the last ten days" ?

Perhaps VHOSTing?

yes

it's what the task is asking right?

what I didn't get is that the find command checks for the last accessed time

not all the times the file was accessed

Yeah, they have everyone pointing to that IPv4 (in their KB near where shops.myshopify.com puts you) -- most customers are using their root domain as their storefront, so they point root at the IP since you can't CNAME the root, and then they CNAME the www
I think there are also some uses regarding SSL cert generation by the provider but THM brought their own LetEncrypt in this case

Well let me ask this, how would you describe "a file that was not accessed in the last ten days" in other words?
I can imagine "a file that was never accessed at any point in time during the last ten days" and "a file that, for any period of time in the last ten days, was not being accessed by anything"

In the latter (theoretical) case, it could be a file that was accessed many times in the last ten days, but there were times when it was not accessed as well, thought it could sound like this or something (I can't think of what else)

No big deal if it makes sense already anyway, don't want to confuse it more, I just want to probe into it in case I run into someone else it doesn't click for,

ohhh I see what you mean

damn you think like a genius

I actually thought it was asking for the files that were never accessed in the last 10 days

so if it was just accessed one time 9 days ago then that counts

my problem was that I thought that the find command would give us all the times that the files were accessed so even if it was accessed in the last 10 days it could've been accessed before the last 10 days too

but since it's checking for the last accessed time then it can't be accessed in the last 10 days AND before the last 10 days

so it makes sense that by looking at what files were accessed more than 10 days ago you know that they were not accessed in the last 10 days

lol I wish, I'm just a professional smartass
Yeah it's asking for the files that have never been accessed even once in the last ten days

or the way that would align more with the find command would be "files that were last accessed more than ten days ago"

Oh I see, you thought you might get results for previous access of the same file and have trouble sorting them out?

exactly

if it would give results for previous access then you can't know if it wasn't accessed in the last 10 days

because it could

'man stat' clarifies some things about this btw 😄

thank you

Gave +1 Rep to @naive aspen

Hello 🙂 is someone willing to DM me the flag for the OSI room's task 9 exercise? I am working through the pre-security path and noting down what rooms have blocking accessibility issues at present, and collating the flags for people who are blocked by said blocking issues, but given I am blocked by said blocking issues, I am now blocked from finding more blocking issues until I get unblocked 🙂 There's a lot I can hack my way around, but I haven't learned how to get a shell on another hooman o make it look at things for me 😛

someone did, thanks 🙂

pls i start deploy machine in linux fundamentals 3 bu it doesn't appears
what can I do?

In Linux Fundamentals Part 3, Task 5 - Processes 101 one of the questions is:
"What command would we use to stop the service "myservice"?
Now if you look at the Managing Processes info from what i understood is that i could use SIGSTOP to Stop/suspend a process.
But the right answer is systemctl stop myservice and i have learned about this command in the Getting Processes/Services to Start on Boot.
The question is, could you just use SIGSTOP to stop the process?

Ohh i think i could use SIGSTOP just with the PID, not with the process name, am i correct?

Process
Service
They're not the same

Yeah have read it one more time, i understand, thank you

Gave +1 Rep to @warm epoch

Hi everyone, I’m new to the field and just started classes, I was recommended to the website and discord. Any tips for what to expect in cybersecurity? I have a background in auto mechanics.

keep learning more and more and as long as you keep learning you are doing good...
take lots of notes on what you are doing and how you are doing it... to serve as reminders and a look back for other on what you know
also this path is obviously a good one to start with as it will help with basic computer concepts...
another thing you will realise kinda quickly is a lot of things are not updated a lot and are therefor risking being broken... this has always been the case and will most likely stay the same for a very long time

Thank you 💯 I’m looking forward to it all

Gave +1 Rep to @potent wedge

no problem

and note taking is a super valuable skill when it comes to most things so learning how to do that is a great start too

Has anyone else had issue retrieving there certificate after completing pre-security path?

not that shadow has heard... but shadow could try again to see if it wonky after having generated it

works fine for shadow..... but you could contact support maybe to get help with getting it to generate and you being able to download it

ok ty

Amazing website. I’m learning so much , it literally filled in the gaps I had in class. Really amazing

The linux fundamentals part 2 task 5, when I ls -l , I can't find important. And when I check the video, what is there is different from what's on my virtual machine... anyone who can help ?

Hello everyone, the ‘Cyber Security Introduction’ module of the path suggests that after you complete it you should proceed with either ‘Offensive Pentesting’ or ‘Cyber Defense’. However what I had in mind was going to ‘Jr Penetration Tester’. Any recommendations? Thanks 😊

What does the machine you are on start with in the terminal? With root@IP ?

Thanks I got it fixed… I ssh-ed to tryhackme but it failed…. It worked when I was able to login successfully

Gave +1 Rep to @soft snow

Hello Everyone! I just started Pre-Security Pathway. I am an intermediate-level security student but still start from it to grasp the content better. Anyone who would like to join me as a group for better productivity

I started yesterday, I'm down to join a group

Nvm figured it out 😄 sorry

Hi I am at the room "Nmap Post Port Scans". I need to run a OS detection w/ nmap against the host, but I get the following response from nmap...
No exact OS matches for host (If you know what OS is running on it, see https://nmap.org/submit/ ).

Can you post a link to that room?

https://tryhackme.com/room/nmap04

Same here. I don't know why they suggest -O. You can get to the answer with -sV

Thanks a lot.

Gave +1 Rep to @sterile walrus

Is it just me or from the Linux Fundamentals and until the end of the Pre-Security Path you get few points compared to what you were getting before? I mean the level req increased from level 6 to 7 but i seem to got few point, didn't note the points down but it seems i got few points from the linux fundamentals and until i finished the pre security path..

Some might have points disabled

Any reasons why? 🙂

Dissuade farming? Avoiding one room being a billion points?

Hmm, i thought that if you finish a room or a path, if you do it again it won't give you points anymore? Or am i missing something? I'm just asking out of curiosity i'm sure there's a legit reason behind it...

Resetting rooms won't affect your points.

I guess you are saying that if you reset a room your level points won't be affected and you would still be able to get points from doing the room again, am i right?

No.

You can't cheat points by resetting rooms

Hmm, i thought that if you finish a room or a path, if you do it again it won't give you points anymore? Which is what I thought you meant here.

"Dissuade farming? Avoiding one room being a billion points?"
It seems i didn't understood this

Points are per question.

Walkthroughs are 8 pts per question.
Challenges are 30pts/q
Rooms set to award no points will, as the setting implies, award no points.

Understood, thank you for the clarification. I was mostly curious, i think that the knowledge is the most important thing i am getting out of this not the points, i guess that my brain was just thinking if there is a possibility of the system not rewarding you the correct amount of points you should get, because of a bug or whatever. But without the possibility to see which room is giving how many points, i guess you just have to trust it 🙂
I understand though the reasons for the info not being available, points farming etc

Gave +1 Rep to @warm epoch

Thank you @warm epoch again

I understand though the reasons for the info not being available, points farming etc What?

All the info is available.

It's just many rooms aren't set to award points and you don't get told

So you can see how many points do you get on a room before completing it or just at the end of it?

You can indirectly see it from your totals, or when there's a leaderboard

The site is not points focussed especially on walkthrough rooms

Ok got it understood now, thanks.

are we supposed to do junior pentest or web fund after completing this path?

I did jr pentest after

Depends on what are you interested next, i think that the best answer is right at the start of the Pre Security Path

shadow would recommend either web fundamentals or junior pentester as the next path after this

shadow went with web fundamentals

awesome ty

hi i am not able to purchase premium

What's the VPN used for? I'm on Linux Fundamentals 3. I thought the idea was to get on the network with the VMs so I don't have to use web console, but the attack box and the machine for task 2 are on 10.10.x.x and the VPN only gave me a route to 10.6.0.0/17

Yes, the vpn is for getting on the THM network, personal ips are like that mine is 10.17.x.x, if you're having some errors try browsing to 10.10.10.10, this should show a thm flag to prove you're connected

Yeah, can't reach it

("Local Area Connection" is the VPN interface lol)

Oh, it pushed the route but I didn't get all of them. Thought I had it running as admin, will exit and redo

Sun Jan 09 22:58:46 2022 PUSH: Received control message: 'PUSH_REPLY,route 10.10.0.0 255.255.0.0,route-metric 1000,route-gateway 10.6.0.1,topology subnet,ping 5,ping-restart 120,ifconfig 10.6.0.6 255.255.128.0,peer-id 98'
...
Sun Jan 09 22:58:51 2022 C:\WINDOWS\system32\route.exe ADD 10.10.0.0 MASK 255.255.0.0 10.6.0.1 METRIC 1000
Sun Jan 09 22:58:51 2022 ROUTE: route addition failed using CreateIpForwardEntry: Access is denied. [status=5 if_index=19]

Yeah it's good now

Locate the process that is running on the deployed instance (10.10.139.143). What flag is given?

Is there supposed to be a process with the flag in the command line? I don't see any

Just saw the room question

Yeh just list all the processes

Look it up if you don't know the command

tryhackme@linux3:~$ ip addr | grep inet
    inet 127.0.0.1/8 scope host lo
    inet6 ::1/128 scope host
    inet 10.10.139.143/16 brd 10.10.255.255 scope global dynamic eth0
    inet6 fe80::a3:e6ff:fe65:d15/64 scope link
tryhackme@linux3:~$ ps aux | grep "{"
tryhack+    1855  0.0  0.0   8160   736 pts/1    S+   07:19   0:00 grep --color=auto {
tryhackme@linux3:~$

You have to list all of them

Then comb through sus names

Yes, I've read through 'ps aux | less' manually
This is just a short way to show that there's no "THM{...}"

You have to email support about that...

nvm I guessed it lol

Linux 1 done. The room is really well done.

The OSI model room is not free right?

Yep. Only fort subcribers.

but you can see on youtube for free

About to kick off Linux Part 1... should be fun

@quasi temple Do you by chance have a course on Comp Tia Security +

Jason Dion is always good. If you want free, Professor Messer is the way to go.

Check Udemy for Dion. Messer has his own site.

Yes i am looking for a free one

Sounds good

How about CCNA any good site where I can get free course

@quasi temple

Not so much, no. Quizlet for practice questions. Check the Cisco Study Group Discord server. Ummm... Can try to find some David Bombal or Wes Anderson material, they're good and you'll occasionally find a deal on Udemy and get a course or two for free. I used Chris Bryant, but I don't think his course is ever free.

Awesome thank you !!!

No problem

Hey everyone, on the Pre Security, How Websites Work, Task 1, I'm having trouble inputting the answer. I keep getting "incorrect answer" but Idk what's going on. I've typed the answer different ways but I'm still getting incorrect answer. Can someone help me with this please lol? it's frustrating

Hey im brand new to all of this so im sorry if this is a broad question but where can i start learning the absolute basics of this all

This pathway, Pre-Security, is the best place to start within the THM platform.

Ok

How can i start going through this pathway? What can i research? Or am i just thinking of this all wrong

Just follow the URL at the top of the page (https://tryhackme.com/path-action/presecurity/join) and get started.

Ok

Oh this is nice thank you

Yeah man. Hit us up if you have questions, though it's always better to try to figure things out yourself first. You learn better that way. But that's what we're here for.

Yea i know i usually try to figure things out first

hello all 😃 I have a question about the practical in DNS in Detail. If i try to perform a command in my own prompt window it keeps giving an error and not returning the same answer as in the practical.

"can't find shop.website.thm: Non-existent domain"

Hello World! I'm an absolute nOOb. Looks like 'pre-security' is my path.

Yep. That's because .thm isn't a valid top level domain.

This is working correctly

When I tried https://store.tryhackme.com I got the correct response

Yes, but that's a real domain

Alright then it makes sense 😄

Thank you!

hello, somebody here who could tell me the difference between "scp" and "wget"? I used wget to download data to my system, is the only difference that with scp you can directly put a file in a specific directory?

scp can be used between 2 hosts/machines and uses ssh to tranfer files. wget lets you download files from websites or IP but for that to work they have to be accessible.

thank you very much @rapid nexus

Gave +1 Rep to @rapid nexus

Np 🙂

Hello, I am 50% through the pre security pathway and Im wondering if anybody has additional learning resources in case I want to go deeper into a specific room's topic

I would recommend searching things up on google, you can also search for other rooms with the same topic. If you want I have a google drive folder with different books etc I could share in dm's.

Thanks for the tips, and yes I would love to view that google drive!

Gave +1 Rep to @rapid nexus

Question about the FG command. I tried to run it and looked at a couple ways to run it, but they all seemed non-obvious. Does anyone use this command? Do you have examples of how you would use it?

Run a command that you know will take time and put it in the background, then use fg to bring it back to the foreground and check the progress.

Or, when stabilizing a reverse shell, you need to send it to the background to run a couple commands then bring it back.

Hello everyone. I was recommended by Tryhackme to take the pre-security pathway course first, so that is what I have been doing. Is the complete beginner course a better first start vs pre-security for a noobie like me?

Complete beginner is being removed

to answer your question no pre-security is the better first path as it teaches you more of the things about how computers work before throwing the security and hacking things on top... also as complete beginner is getting removed the path to take after this one is the junior-pentester one

Thanks. Interesting, why is complete beginner path being removed?

Gave +1 Rep to @potent wedge

old rooms with better replacements made... also junior pentester covers the same topics and even more topics for a broader better scope

Ok, makes sense.

That makes sense. That might be why I wasn't able to test it. Thanks

Gave +1 Rep to @quasi temple

how about teams on THM? is there a room for that?

Any hints help would be great...

With what?

I deleted the question.. I forgot to delete that one too, my bad.

Is it possible to connect to the hack machine using putth ssh client without actually using the open vpn configuration file.

I am using a different ssh account different from the one that we have to download from tryhackme and the machine would not connect

you could if you are a subscriber connect into the attackbox without the vpn yes..... but doing that is kinda not really useful a lot of the time as it is kinda tedious to do and it is easier to just connect to the vpn if you are going to use your own instance of a ssh client on windows

Okay

Thank you

Gave +1 Rep to @potent wedge

also please don't dm without asking here first @marsh veldt.... anyways to answer those questions you can do a lot of rooms with the vpn connection if you learn how to use that and get connected which you can do here: https://tryhackme.com/room/openvpn
after learning that you can also move onto reading this blog post about free rooms: https://blog.tryhackme.com/free_path

Okay, i will take note of that

Hello! Just started linux fundamentals and the $ sign tends to disappear when using Grep, anyone know how to fix this?

This is what I mean

At what task are you, Linux Fundamentals Part 1 / Task 6 Searching for Files by any chance?

Yep, I was just doing a bit more research into the grep command and found out that -i makes it case insensitive, though the command is completely wrong

This seems to happen everytime my command syntax is wrong though

Always end up terminating my machine and booting another

From what i remember that room opens up an ubuntu attackbox in the right side of the page and you can access only the command line for those tasks, maybe that's why idk... I suggest using it to do those tasks and move on, it will dive you into more stuff later and you will have to use the default attackbox or your own vm

Ahh okay that makes a lot of sense, thanks!

Gave +1 Rep to @last schooner

You're not specifying a file to search through so it's expecting input from standard input

Control C will terminate grep

Ahh thanks for the explanation, I'll keep that in mind

Gave +1 Rep to @warm epoch

Yep I gave it a go and it worked perfectly 👍

Pre-security is done. I have some experience, so it was mostly pretty easy. Moving to Complete Beginner for as long as the system will let me. 🥳

hey guys, i'm trying to transition from sales to the IT/cybersecurity field. any tips on where to start? I've heard getting your sec+ cert is a good start

well going through a few of the tryhackme paths first might be worth it before jumping to try and get certs

I’m in sales also, and I’m at my very first course in tryhackme. Starting with Pre-Security. Good luck!

@spice vapor thank you!

Gave +1 Rep to @spice vapor

r

has anyone had any issues with none of the commands executing on Linux Fundies Part 3? On the Attackbox and scp, wget all just freeze when I run them. Restarted the machine and am not on a vpn.

Same problem on the Kali Linux machine :/ Lame, guess this platform was good until it wasn't. Guess I'll have to setup my own VM and cancel the sub lewl

huh weird

Before acting all angry you might want to make sure it's not an issue on your side. So maybe include some screenshots on what you are doing exactly, what task you are doing etc. Therefore you would have to verify first in order to be able to send screenshots.

!docs verify

you're right, I apologize. I'll work on troubleshooting it

In case you need help, just send a screenshot in here and I'm more then happy to help you out.

Looks like after I SSH into the tryhackme, I can't get inbound data. Maybe 443 is closed? I tried to Nmap but says I'm not in Sudoers file

The machine you are on is the target machine. Target machines don't have internet access.

ah so I should be on root when I'm doing that step? Didn't connect that as I saw network activity in Ubuntu console

Well what task of linux fundamentals are you doing btw ?

Pt 3, task 4

Okay so the part where you have to download a file from the target machine to the attackbox?

So for that case you only have to spin up the python webserver on the target machine. Then open a new terminal on your attackbox and use wget there to download that specific file to the attackbox with wget targetmachineip:port/filename

understood, must not have read closely enough. Thank you, will try it out

That part is a bit confusing, many people struggle a bit with that one, but you get used to it pretty easily. Ye give it a try otherwise come back here 🙂

Guys i am new and i wanna learn hacking what should i do

I suggest you #start-here and here #rules

i was just wondering why can’t you use the start flag to start a service with the systemctl command instead of the enable flag?

i tried answering one of the questions which asked what command would you use to start a service on bootup with the start command and it was incorrect

despite the text stating you could

start starts it now, doesn't set it to start on bootup

Finally Completed the Pre-Security pathway! Damn, it was a roller-coaster ride with so many new things to explore. It really gave an understanding of the basics of overall domains like network, web, linux and windows.

Thankx Tryhackme for creating such precise and easy-to-understand modules!!

Hi - I have a question: I am confused because I cannot go further with my linux learning path because I do not know on which linux machine I have execute the commands

is it the Attack box ? but when I start this box I am root and this seems to be the wrong answer for the question

Click the "Start Machine" button, rather than the start attackbox button up the top.

You want the one that's part of a task

If you've got both deployed, you can swap between them with the tabs at the bottom

oh perfect I see that there is in the second part at task 1 a deployable machine - I will use this - thanks for your help

Going through this for additional review

Hello, do you need to have a subscription to be able to complete the paid rooms in order to get a certificate? Or is there another way to claim the certificate once you're done with the free rooms only?

You need a subscription to be able to access subscribers only rooms.
If they are part of a path you need to be subscribed to be able to access/finish them and get the certificate...

Thanks for the reply

Woot woot, finished this today, took me 2 weeks of daily activity, 30 min to 1 hour. Was mostly review for me but was sorely needed. I suppose complete beginner path is next 😮

Hello all. I'm new here. I'm in Linux 1 for pre-security, and I booted the Linux machine. I am at the part that requires I use "whoami" and asks what I get in return. When I do, I get "root". That answer does not suffice to move on. Anybody know what I must do? I'll upload a pic...

answer is - tryhackme

Thank you!

Gave +1 Rep to @slow bluff

i am wondering abot that u have root answer 🙂

i started now a machine and when i type "whoami" its tryhackme

To simply give out the answer instead of finding the cause of that issue doesn't seem to be the best solution. Especially giving out answers at all 😉

You are most likely not on the correct machine. You have to be on the target machine which gets started in your browser by pressing the green "Start machine" button. You are most likely on the attackbox because you pressed the blue "Start attackbox" button.

Ok, I will make sure I choose the correct box....sounds right. Thank you! I'm coming across another issue (probably related) in that I'm asked to give the name of the directory with a file in it, but most of the listed directories have a file! Let me see if your suggestion clears up that confusion as well. Thanks again!

Gave +1 Rep to @soft snow

Don't do this.

ok, sorry for that 😉 i just wanted to help

yep, of course . sorry for that

Hello all, I'm currently in the Linux Fundamentals 3. Whenever I run python3 - m http.server

it says serving http 0.0.0.0 and then won't let me enter anything after

Yep, that's how it's meant to work

You'll need to open a second terminal to make the HTTP request

oh I appreciate that, it was a silly question. I'm just new to this and trying to figure it out.

I went back and figured it out as well. Thank you for helping

Gave +1 Rep to @slow bluff

Hello. I am currently doing the Linux fundamentals module. Currently on module 1. Keep getting a reconnecting to tryhackme server with the in browser terminal. Have terminated and restarted the box and also closed down my browser. Still happening. Anyone else having this issue?

Hi i am on Metasploit and in Task 5 - Move that shell! in db_nmap -sV search i didint recive port 135 info. How can i find it ?

are you talking about the ATTACK BOX?

Yes

There is no internet in attack box.
You can only work with machines that you have started whole doing task

While*

There is internet access if you are a subscriber.
That's also not related to the in-browser access showing "reconnecting" which is a technical issue.

@wild ledge

Apologies. Probably should have brought this issue to the tech support channel. And yes I am a subscriber.

I've pinged CMN for now. That other message was addressed at the other person who misunderstood your issue

Guys I'm stuck on a task and need help

anybody knockout Network Services Task 4?

yep, i finished all Network

Thanks man. it took me hours but I finally figured out how to navigate with the smbclient. Appreciate the response

Gave +1 Rep to @slow bluff

Hello! Just finished linux fundamentals and was trying to install sublime text to my kali machine when it tells me that apt is deprecated? Anyone know whats the issue here?

This channel is for the Pre Security pathway, please ask in #infosec-general and screenshot the message.

Oh my bad, I said it here as linux fundamentals is part of pre-sec

Thanks for the heads up

Gave +1 Rep to @warm epoch

Hello, There are videos of locked rooms on your Youtube channel. As such, non-members can watch it here.

Feel free to use them to learn more about hacking

And the reason I'm asking is because I'm sensitive about it. If someone's in charge, can he explain it?

Windows rooms fundamental are really annoying
I was enjoying learning about Linux and other rooms
But "Windows fundamental" rooms has a lot of indirect or not related question to the task/section

I found some questions a little bit confusing when i went through that module also but you can manage your way around them with a little bit of "research". It's windows fundamentals it's showing and teaching the basics and in my opinion it's good for what it's supposed to do, maybe some of the questions could benefit from some sort of rework.

Ok, i have a big question. I am doin Rick and Morty. when i want to go - gobuster - u (ip) -w (path) i have error: unknow shjorthand flag : "u" in -u" and i dont know why its not working , can someone help ?

can you post full command?

gobuster -u http://10.10.35.228 -w /usr/share/dirbuster/directory-list.2.3-medium.txt

and you mean pickle rick right?

yea

dirb is working but gobuster -u its not

okay, im starting the machine now to test 🙂

yea thanks

You have to specify what mode you want to use first. So either directory, dns, vhost etc. mode

so, i need to scan site to look for some directorys like /admin /assets /indeks etc. so how should i write this command?

so your same command

as you did before but add dir

gobuster dir -u <url> -w <wordlist>

https://www.kali.org/tools/gobuster/

i checked here

and its different

try using gobuster --help too

i tried

and notghint really helped

adding the dir to your command should help.

yea it helped

❤️ thanks !

nice 🙂

https://www.kali.org/tools/gobuster/ <- why they did not put it here 😦

i lost my 1h to trying 😄

they have -e showing as directory mode on there, not sure if that also works...

nope

i tried like this and its not

anyway thank you!

ahh nevermind 🙂 have fun

hey guys, I'm just asking if i should begin with this path or chose the the complete beginner path?

if you have some cyber security knowledge go with the pre security path to start. If you're completely new go to complete beginner. My advice is if you are new, do both rooms anyways as you'll get a strong background in cyber security before moving on to Pen testing/Cyber Defense paths.

I did complete beginner, pre then jr pentest and those paths have given me a nice foundation

Ok, thank you 😊

Hey everyone. Pls, i am new with my Kali Linux in which i have installed on my laptop but the help is how do i start using my kali linux to start my Tryhackme path in which i am already a member. How do i start?

https://tryhackme.com/room/openvpn should help you on how to connect to the tryhackme network and use your own kali machine to do the tasks

Thanks

Gave +1 Rep to @potent wedge

no problem

some of the tasks and rooms in the start of tryhackme in the pre-security pathway is not meant to be solved with your own machine and instead use the attackbox but this should still help

Ok. Thanks

Out of curiosity, which room and /or tasks are not meant to be done with your own machine but with the attackbox ?

linux fundamentals 1-3 work weirdly with the vpn

Mh, I never had any issues with these rooms on my own machine

fair enoughs

dont know if this is the right channel but i'll try:
Can someone tell me why i dont get any output of my bash script?

and why i cant post foto atm? 😄

#!/bin/bash

transport=('car' 'train' 'bike' 'bus')
echo "${transport[1]}"

That works for me. Have you made sure it's executable (chmod +x script.sh)

yeah i did that, even tried to call it with : sh ./arrays.sh

@marsh veldt thanks a lot

Gave +1 Rep to @slim laurel

Try bash

yeah just found out that sh writes en error because of the "("

😄

ohh... my bad im dum^^

dumb

missed an s

but another question, can you tell me why i cant use the ` sign in the killbox?

or how i can use it

the killbox meaning?

exactly this sign^^ if i use the key it doesnt write it

` is for evaluating expressions in bash

yeah but i cant even write it

so if i get to use it somewhere i got to connect via vpn to finish the room

if i would like to write an "`" in the vi or general into the linux it doesnt do anything

there's no need for the "" in the echo line

also, if ` is not recognized in the attackbox, you could simply copy paste it by searching the symbol on web

thanks, good to know just followed the guidance in the room

Gave +1 Rep to @small spire

copy pasting would be a workaround, just wondering why its not recognized

your keyboard might have a different layout than what the attackbox default is

tried to change the layout, no effect

i had another vm like attack box once to work on and it didnt recognize there too, so i just tried out here, just to see if it works

Can anyone explain OSI layers in a easy and simple way?

https://tryhackme.com/room/osimodelzi Room explains it well. Coming up with your own way/ in your own words/ how to explain each layer, if you just memorize someone's else's explanation, it won't help you in understanding it.

Ñ

Hi, I made a mistake when I wanted to do a scan, who can help me with an explanation in private

Just ask your question in here ?

does anyone know What device is used to centrally connect multiple devices on the local network and transmit data to the correct location i cant figure it out

LAN models i think

Reread the task. The information is there

Ok thanks

Gave +1 Rep to @empty spire

hi

@tulip lava Hey there!

i want to learn how it works, im from mexico, also im 21, english b1, studying medicine

where i can start?

medicin*

Go to https://tryhackme.com/hacktivities and choose the path that best suites you. I'd recommend starting at Complete Beginner and working your way upwards.

When you create an account, it should ask you what type of experience you have and recommend you a path.

its free?

Some parts of the website of free, other parts require a subscription. You can still learn a lot without getting a subscription

tnx bro

if you just want a list of free rooms here is one

!docs free-path

@tulip lava ⬆️

bit outdated but it is the best we got

tnx @potent wedge i will read and if i have a question ill ask

just finished the pre security room. Was a great review of everything and I really liked the linux portion.

@gray jasper Congrats. I can say, the Linux portion was very informative!

Thanks. I’m going to check out the other beginner courses just to know I have them done.

Even someone who has experience in security, I did the courses as a refresher

Exactly! I’m about to graduate college next month and it was good seeing a different way that this was taught. Also I like the different paths they offer

In this linux fundamentals part 1, i cant connect with the machine via openVPN, the only way to connect is via browser, am i doing something wrong?

You don't need to, it's an introductory part, when you click the Green Start Machine button it also opens in split screen that browser ubuntu so you can practice there the steps described in the tasks.

Later on you will be able to use either the AttackBox, Browser Kali or your own VM to connect to the machines you are attacking, that is not one of them.

ah, i see, thanks a lot

I finished pre-security-pathway and I'm continuing with complete-beginner path,and I'm loving it.I just want to know what else should I do along with tryhackme, Should I start hackthebox also along with it?And can I get a job in cybersecurity just by doing ctfs ,or should I need to get network+ and security+ ?

Probably best to ask the question about job and so on in #infosec-general or #cyber-and-careers. Regarding doing something else along with THM, of course you could always do anything along with it, but in my opinion on THM are so many rooms to learn of, that I guess you have quite much to solve here 🙂

I will do so and Thank you for the advice.

Gave +1 Rep to @soft snow

In Windows fundamentals part 1 how to connect to the virtual machine via RDP in kali machine?

thanks, i used remmina for rdp

Linux Fundamentals Pt 3 - trying to SSH into 10.10.223.107 and password being denied. I've tried it 50 times. I know for a fact I'm typing it correctly according to task 2. Any insight as to what I'm doing wrong? I'm getting to root@10.10.223.107 but can't get passed the password. Thank you!

when I launch attackbox, it logs me in as root

but i'm sure that is the problem now that you mention it

i try to run recon-ng but it cannot bybass google caption

does it is outdated??

syntax error on my part. lesson learned :)\

Hi all. I am in room "Network Services", doing the "exploiting telnet" task. I would like some guidance on proceeding, in a DM session (so as to avoid spoilers?)

If you think something is a spoiler, you can put it in spoilertags like that: ||spoilercontents||

Okay, well I am at the step where I should get the flag, but I am not getting a shell prompt on any of the terminal windows I have open. My listener heard when I ran the payload on the target, I am just waiting patiently

So you saw receiving a connecting when running the payload ?

I did

So then just try type a command

Like whoami

oh, yep.

I was trying to do that from the telnet session terminal.

thanks man 🍺

onward and upward!

hi guys, im new to THM

hi

guys

im new

👋

has anyone found a fix for the presecurity path bug where one is 50 percent and task are doubled

I was about to ask the same thing, I'm having the same bug lol

I'm doing the linux fundamentals part 1. does anyone else have the problem that the files in the attack box seem to be the wrong ones?

according to the walkthrough there should be a folder4?

looks like you are trying to look from the attack box when you should be working on the target machine instead

there is a start machine button in task 3 that opens you another machine in the browser

That was it. Thanks!

This has been fixed. 🙂

Need some assistance on the tryhackme website. I have completed the presecurity path, yet one of the courses shows incomplete. When I enter that room to see what I missed, it shows 100% completion. I've reset answers and did it all over again, but it does complete the path. Help please!

I was having similar issues as JuWinn but after I open the "Start Machine" option, I do not see the system properly load, it directs me to OpenVPN or AttackBox. I then made sure to download the configuration file, upload it to OpenVPN and still have no system opening up on the side running a Windows host. Any recommendations?

There's a button to "show split view" when the target machines support in-browser access. This is not common though. Most machines will not support in browser access

I do not see such an option, only the Active Machine Information. Where would I go to find it?

Along the top, near the room title and next to the deploy/start attackbox button. What room are you working on?

!docs verify

If you verify with the bot by following these steps, you will be able to post images.

I am working on Linux Fundamentals Part 1 (Does this answer your question)?

I got it! Thanks NinjaJc01!

ls

Yeah, for some odd reason, when I am working on the split screen, I see only access.log and folders1-4 after running the ls, does anyone else have this issue?

It feels better when you figure it out, I was having issues because I was expecting the activity to be the same as the script. Turns out that it is not, who knew lol.

Please verify and send screenshots

Hey I’m new just made a tryhackme account today! I’m ready to start this journey!

Question is a MacBook good for this or do I need something else?

A macbook should work just fine! I would recommend a virtual machine to be on it, check to see if you prefer VirtualBox or VMware!

Okay cool I’m definitely going to look into that later I’m at work atm

you can do everything in the browser if you use the attackbox for later rooms

in the pre-security path a very few things require you use anything else then the spun up specialised webbrowser vm:s

Hello, i'm on Linux Fundamentals Part 3 and I can't get into the machine using SSH. Says "Permission is Denied". I'm for sure using the pass "tryhackme", I tried openvpn within the attackbox and out and it still won't work. kinda stumped, was really enjoying these Linux rooms. I tried Kali at one point too

Not sure if this is the correct channel, excuse my ignorance

And if it matters, I am subscribed to the service

What's the full command you used ?

Ah I see, I needed the tryhackme@ before the ip. why is that needed there? just so I know why it doesn't work without it

Because that's how you specify the user you want to ssh into the machine as

Ah alrighty, I appreciate the answers! 👍

Any advice for a beginner?

I only know 'netsh wlan show profile "--" key=clear' that's it

#start-here

it's basically the username of the account it might be different for other users. Since you are signing in with "tryhackme" account, you need to use that as username. Also each user has main directory in home directory. If you have your own kali machine your directory is at /home/kali as i know. If you need a help about something first just check the man page of it. Like "man ssh", it shows all the parameters. You can use "ssh -help" too but man is more advanced and organized.

okay ques noob (Terminate the static site lab deployed in tasks) they are in slit window and are static pages

do i just close the spilt window*

yeah close it

okay thanks

i just did want miss something up later

if you forget to terminate a machine, it will be terminated when it expires. But, yeah terminate it when you're done xD

better safe then sorry

Thanks for the in-depth information!

I guess them using "tryhackme" confused me at first me

hi guys, i have completed the pre security pathway. Which path do you recommend me to continue with?

when i completed the presecurity path i dived right back into complete beginner lol. my philosophy is always drill the basics or you can't reliably do the advanced stuff

I see🤔🤔

Thabks a lot

I have a question about the Extending Your Network room, it asks which layer are routers on and the answer is 3 and 4. but I didn't understand. I know that routers route based off of IP so the physical and data link are out. But I thought it should be 5, 4, and 3 because the idea of a TCP/IP handshake sounds like starting a session to me. It isn't? Wouldn't a stateless firewall instantly deny a session?

I'd also add that focusing on modules alone is also a good use of your time. I know that when I'm grinding away at a path, my goal is to complete the path, so I'm not really paying attention to what I'm doing in a particular room. So if you set your goal to complete the room or module or some smaller unit, I think you really will learn more even though it seems like you're going slower.

Wow thanks so much for your advice!

Gave +1 Rep to @vapid peak

Solid Advice!

I am going to finish the Pre-Security soon.

https://i.imgur.com/5StZNHU.png for some reason task 7 q3 accepted the wrong answer with a single '>' when it should have been '>>'

This is on Linux Fundamentals P1

might be because of the fail safes which accepts typoed answers to some degree

but yeah it should not have accepted that answer

I think stateless firewalls deny based on IP addresses (Layer 3) and TCP/UDP port numbers (Layer 4). Instead of Layer 5 (maybe stateful firewalls can do so as they check the entire connection). In addition to 3 and 4 though modern firewalls operate in Layer 7 (on the application layer).

hmm...yeah. i know that at a certain point these model will break down but...i was hoping it would last longer than that! lol

thanks though

Who is hacking tonight?

https://tenor.com/view/hacker-typing-hacking-computer-codes-gif-17417874

Working on Windows #2. Whatcha got?

im having the same issue with linux fundementals 3. the command ive enterd: ssh tryhackme@10.10.61.141 and the password "tryhackme" but i keep getting Permission is Denied (publickey,password)

Are you sure about the ip ?

can you terminate and recreate the machine please

Im having the same issue, ive terminated and recreated the machine. Tried logging in with that new ip, but it still gives me the Permission Denied 'error'

Solved it meanwhile ?

*I cliked on a IP grablink 1 days ago and now my connexion is slow and crash sometimes also discord *tell me your WIFI not securised

A link from tryhackme or just a random link ?

wiat i'll show u screen

You have to verify in order to be able to send screenshots in here

!docs verify

hm

how

I just sent you the link on how to do that, but here you have the link again: https://help.tryhackme.com/community/discord

what i need to do

in the search

@soft snowI can just dm u

idk to do token

Well I mean the link I sent you is telling you how to verify, but yes, go ahead and send me via DM

ok$

Weren't you just advised to contact your ISP?

No, unfortunately the problem persists

Are you on the attackbox or your own machine ?

Attackbox

Could you verify and then send a screenshot in here so that your command and the error can be seen?

!docs verify

Yes i verified, will try to recreate the issue

Will take a minute