Hello, I'm working on the jr. Pentester path and am looking for people who would like to study it and work on it together.

Hello Everyone ! Is there anyone in Webster University who is new to this platform . If yes, then let's get connected and learn together

I really need some advice I’ve been doing the SOC level 1 cert, and in each room there’s like an average amount of time needed to complete the room (Usually ranging from 30 minutes-120 minutes). However, I struggle in quite a few of the rooms which leads to me taking ~2 hours with smaller rooms, and the bigger rooms might even take a whole day or more to understand. I’ve been doing the zeek part for like the past 2 days trying to wrap my head around all the content.

How am I so slow? I have no one to compare my progress with, but I feel anxious that I might be taking too long/might not be good enough to be honest.

Any advice would be greatly appreciated

My question may be a little strange. But how correct is it to share the THM certificates on the linkedin? Is this seen as an amateur? I am referring to courses such as Pre Security, Cyber Security 101 (in the system you characterize as easy)

If you wanted to exploit a 2020 buffer overflow in the sudo program, which CVE would you use?
how do i find answer to this question i put buffer overflow in tag section of exploitdb but none of the 2020 exploits have a cve number and what anout the sudo thing

I have been using tryhackme openvpn for months without a problem, today all of a sudden the openvpn stopped working. what i mean by stopped working is it stopped opening a tun0 connection and giving me an IP address also the openvpn output stops at the following:

2024-10-31 02:00:12 Note: --cipher is not set. OpenVPN versions before 2.5 defaulted to BF-CBC as fallback when cipher negotiation failed in this case. If you need this fallback please add '--data-ciphers-fallback BF-CBC' to your configuration and/or add BF-CBC to --data-ciphers.

2024-10-31 02:00:12 Note: cipher 'AES-256-CBC' in --data-ciphers is not supported by ovpn-dco, disabling data channel offload.

2024-10-31 02:00:12 OpenVPN 2.6.7 x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] [DCO]

2024-10-31 02:00:12 library versions: OpenSSL 3.3.2 3 Sep 2024, LZO 2.10

2024-10-31 02:00:12 DCO version: N/A

2024-10-31 02:00:12 TCP/UDP: Preserving recently used remote address: [AF_INET]52.16.156.56:1194

2024-10-31 02:00:12 Socket Buffers: R=[212992->212992] S=[212992->212992]

2024-10-31 02:00:12 UDPv4 link local: (not bound)

2024-10-31 02:00:12 UDPv4 link remote: [AF_INET]52.16.156.56:1194

2024-10-31 02:00:12 TLS: Initial packet from [AF_INET]52.16.156.56:1194, sid=acfa52c3 5aed9aef

i have tried changing the server and regenerating the openvpn file several times.

moreover the openvpn is working perfectly with other websites such as hackthebox

does anyone have any solutions or has encountered any similar problems??

I am not affiliated with Try Hack Me or anyone but I tell you all to do this.

Email support immediately and lock your cards, it may have been an unauthorized access to the data base.

Think of your logins as compromised.

any attempt to login to another platform with the same email/password as the one for you try hack me may have been compromised as well.

Lock your Stuff down and keep an eye out for unauthorized charges, if you connected your wallet try to activate 2fa and disconnect unknown devices and logins.

https://preview.redd.it/5500xqoajyxd1.png?width=2480&format=png&auto=webp&s=719d64d211f51786a53760d39d35ab76c1af1a0b

When i click in the webpage (Anywhere) it pops this alert, but i havent an extension or anything, even i tried in other browser and still have the same "error"
Edit: Just in tryhackme pages and subpages

https://preview.redd.it/iv4j3wp0jyxd1.jpg?width=1907&format=pjpg&auto=webp&s=0a79c2b565ea1e71de1a83995e9863840fe0b1d2

I bought the premium yesterday and I'm doing Cyber Security 101 rooms. And out of nowhere I'm getting pop-ups to connect wallet, I'm unable to anything and its so annoying. Does anyone know about this?

I joined today as everyday to continue learning.

But today, every time I select text or click on input field, I get this annoying popup to connect a wallet. I don't know why this is necessary but just to get rid of it, I installed a random wallet, connected to it via the popup. Then on the next task, it requires again to connect to a wallet.

WTF is happening?

https://preview.redd.it/lwuh37ksiyxd1.png?width=404&format=png&auto=webp&s=ac16651411551e6c0e4056a4109626e39254d744

I came to THM because a friend reccomended it to me. I got a base of IT knowledge and rn im doing Cyber Security 101 path. I noticed a lot of rooms require premium subscription, but im learning a lot from the free rooms and im hardening concepts i already have.

The question is: is it worth it to pay for a premium subscription? Is THM the best product in which i can invest at my level?

(rn i'm following a comptia A+ course on yt but i find THM to be a lot better because even if it prolly gives me less info [only a bit less], I get also some practical knowledge.)

Hello,

in the chapter Http in detail
Page 7

I can't figure out how to catch the flag, it say's :
Make a GET request to /blog and using the gear icon set the id parameter to 1 in the URL field

GET http://tryhackme.com/blog?id=1
404 Not found

nothing set on the set & post parameter beside the go ....

What did I miss?
Thanks you

Hey everyone, if I have a TryHackMe voucher, can I use it across multiple purchases, or does it only work for a single transaction? Just trying to understand how it works for smaller purchases over time. i mean the swag voucher

Hey guys, just a quick question, will we have the advent of cyber during this year as well. If so, when would it be.

Hi everyone, I'm trying to add my Medium write-up link to the write-up section on my TryHackMe room. The link works fine when I open it in a new tab, but TryHackMe keeps giving me an "invalid URL" error when I try to save it.

I started two days ago and I am 50% completed with the learning path, all I've gotten are the title and some streak freezes. Is it even still possible to get like a t-shirt? Wish I started sooner :(

The questions under OSI model ask for layers, the problem is enter any layer number (even though wrong) it will accept it as a correct answer.

when their is port 80 is open by the ip given in the challenge and then i put that ip in the search bar the website didnot open when i use jio 5g but when i use jio 4g the website open immediately what is the problem happen similarly when my friend use my 5g on their own laptop same situation occour tell me what can i do to fix it

https://preview.redd.it/je0p6jvtwnxd1.png?width=1215&format=png&auto=webp&s=7f012ec5029128d8dd93a30d855322f3a05f9c08

I have downloaded this vmware but its not showing up in my downloads folder , but when i clcik on this it does open , but i m unable to open it throguh workstation . pls help (i m beginner in this field )

I'm new to security field and don't really have any helping hands around me. So I joined some discord channels hoping they'll be a bit helpful. I found tryhackme discord is the most active usually so whenever I get stuck, I go there to seek help.

But I never realised this will be such a bad idea. Most of the times just nobody helps, they make fun of my questions ( which maybe a little bit noob like i know, but I'm just learning things on my own and I already do mention in my messages that I'm new), act extremely rude and deny to help.

I've seen them helping most of the others and I appreciate that but I don't know why it happens when I ask something. I used to love this discord so much but now I think 100 times before asking anything there and try to avoid it as much as possible. Is it just me ?

I mean no disrespect to anybody

Hello THM Community.

I've been trying to connect to adenumeration network through OpenVPN but it keeps failing due to "fatal error".

The server status shows its Online, but everytime I regenerate the configuration file it doesnt work.

I have also tried connecting to breaching ad network and it works fine, I made sure that adenumeration network is "Running" and not resetting or stopped.

sudo openvpn "profile.ovpn"

Output:

...
...
2024-10-28 12:31:41 [server] Peer Connection Initiated with [AF_INET]52.51.105.71:1194
2024-10-28 12:31:41 TLS: move_session: dest=TM_ACTIVE src=TM_INITIAL reinit_src=1
2024-10-28 12:31:41 TLS: tls_multi_process: initial untrusted session promoted to trusted
2024-10-28 12:31:42 SENT CONTROL [server]: 'PUSH_REQUEST' (status=1)
2024-10-28 12:31:42 PUSH: Received control message: 'PUSH_REPLY,route 10.200.98.0 255.255.255.0,route-metric 1000,route-gateway 10.50.95.1,topology subnet,ping 5,ping-restart 120,ifconfig 10.50.95.20 255.255.255.0,peer-id 0'
2024-10-28 12:31:42 OPTIONS IMPORT: --ifconfig/up options modified
2024-10-28 12:31:42 OPTIONS IMPORT: route options modified
2024-10-28 12:31:42 OPTIONS IMPORT: route-related options modified
2024-10-28 12:31:42 Using peer cipher 'AES-256-CBC'
2024-10-28 12:31:42 Error: problem with tun vs. tap setting
2024-10-28 12:31:42 Exiting due to fatal error
Hello THM Community.
I've been trying to connect to adenumeration network through OpenVPN but it keeps failing due to "fatal error".The server status shows its Online, but everytime I regenerate the configuration file it doesnt work.
I have also tried connecting to breaching ad network and it works fine, I made sure that adenumeration network is "Running" and not resetting or stopped.
sudo openvpn "profile.ovpn"Output:...
...
2024-10-28 12:31:41 [server] Peer Connection Initiated with [AF_INET]52.51.105.71:1194
2024-10-28 12:31:41 TLS: move_session: dest=TM_ACTIVE src=TM_INITIAL reinit_src=1
2024-10-28 12:31:41 TLS: tls_multi_process: initial untrusted session promoted to trusted
2024-10-28 12:31:42 SENT CONTROL [server]: 'PUSH_REQUEST' (status=1)
2024-10-28 12:31:42 PUSH: Received control message: 'PUSH_REPLY,route 10.200.98.0 255.255.255.0,route-metric 1000,route-gateway 10.50.95.1,topology subnet,ping 5,ping-restart 120,ifconfig 10.50.95.20 255.255.255.0,peer-id 0'
2024-10-28 12:31:42 OPTIONS IMPORT: --ifconfig/up options modified
2024-10-28 12:31:42 OPTIONS IMPORT: route options modified
2024-10-28 12:31:42 OPTIONS IMPORT: route-related options modified
2024-10-28 12:31:42 Using peer cipher 'AES-256-CBC'
2024-10-28 12:31:42 Error: problem with tun vs. tap setting
2024-10-28 12:31:42 Exiting due to fatal error

Currently tackling the so-called easy Cheese CTF. Let’s just say PHP filter chaining has me questioning all my life choices 😅. I’ve gone through the write-ups and guides, and I think I’m finally getting it? After a lot of trial, error, and maybe a minor existential crisis, I managed to get SSH access as ‘comte’! Feels like a small victory… anyone else find this ‘easy’ tag a bit misleading?"

Did everything same even its showing conplete still didnt work

I am getting a new voucher from a competition i won , but i don't want to redeem it right now and i am afraid it'll expire.

https://preview.redd.it/ek1bg885n9xd1.png?width=1020&format=png&auto=webp&s=40f3cead50c5bc464f799166e8fdd3edb9532f04

https://preview.redd.it/a57kb885n9xd1.png?width=1920&format=png&auto=webp&s=df1880977dff601ae0848bd75c33808ff36bfbd1

https://reddit.com/link/1gd711f/video/iwt10n85n9xd1/player

I don't know what to say tbh. I mailed them no response as well. That's just not what I expected from a company like TryHackMe

I get the below error no matter what I try. Any suggestions?

https://preview.redd.it/v2b7tvczf9xd1.png?width=1267&format=png&auto=webp&s=94bcdf2d968b90c454ea67c3b1bac43830b1c61e