@@mrashco I like a good challenge but idk, this room was just way too advanced for where it was placed in the learning path. I did learn a lot from this room by following along with your vids though, so thank you so much for that!

I’m glad I’m not the only one who thought this, even a lot of the write ups about it are poorly written and don’t explain anything, this video was great.

the room itself is fine imo but it shouldn't be in an ultra-beginner bath.

This room wasnt hard at all and im pretty much a beginner. You have to understand that this field requires lots of research (enumeration). Thats one of the biggest points you should have gotten so far from all of this. Yes nmap is hard but half the tools in ethical hacking have many ways to configure them. You arent supossed to remember them all and your not supposed to fly through these lessons. If your having trouble with nmap, go back and read all the help stuff. They even give you a link to the manual. Try different scans and see the different results you get. I spent over a week on nmap just because it one of the first tools you need to use to start enumerating. Get use to using it. Look at other videos and ways others have used it, and then move on in the course. You dont have to memorize every flag and it purpose, just get a good idea of the way it functions and move on. Patience is the key. Lock down a pretty good idea of how something works and then move on. You will see this is a field that requires a lot of learning, research and patience. Hope this helps. Just take your time and the rest will come.

@@chrisheavner3527 i think the reason it's drawing some fire is because it is a pretty sudden spike in complexity for one of the learning paths it is on.

You are so welcome! Thanks for taking the time to leave such a nice comment :)

Hey! Thanks for the nice comment

U can't do tcpdump on mine

@@mrashco thanks man, yeah the room instructions definitely need to be redone for this one! Good on you for figuring it out and helping us out!

I have read that a lot of people give up on the complete beginner because of this stuff. That is why the now have the pre security path.

Glad to help! All the best with your cyber journey ♥️

Sorry for the late reply. But thanks for leaving a comment :)

Awww thanks so glad it helped and appreciate you leaving a comment! Comments like this are super motivating, so thank YOU!!

@@mrashco its really hard sometimes, im trying to learn the fundamentals so i can do easier boxes on hack the box so i can do ctfs cause employers seem to like when you have that kind of experience, even the easy boxes are really hard for me and i feel discouraged. sometimes it is grueling and seeing others go through this makes me feel like im not alone, so its nice to have people like you in the community. We all have to motivate each other. What is your current path like out of curiosity? are you studying for a cert? or just sharpening the fundamentals. Anyway, thanks for replying and wish you the best Ash.

Thanks for your honesty mate, and it is hard. I've been trying to learn the fundamentals for years and I still feel like I'm not close to where I should be... But it does get better the longer you stick at it.

As for what I'm doing right now? I'm still deciding, idk if I should go for a cert or continue with THM rooms... I'll let you know when I figure it out

@@mrashco yeah, alot of jobs pay you to train, so im wondering if its worth it just to apply and see what i can get. I have a basic undergrad in applied cybersecurity along with some letters of recommendations of local business ive conducted free pentests for. Hopefully i can land something decent with that

After further review, it appears we were supposed to scan with -p- flagged but some of us just were not doing this. Is scanning all ports like this a normal procedure? If so, I will start scanning all ports in the future.

You're 100% right

Oh don't worry, I struggle with this one and all of them haha. I'm not sure how to totally get rid of the "I'm dumb" feelings, I get them almost every room still. It's honestly annoying, even after hours and hours of CTFs, I still get so frustrated sometimes! No worries, glad you enjoyed and thanks for leaving a comment!!

Awesome. Appreciate the comment

If you haven't restarted the VM, might be worth doing that. Also worth trying Pn to skip host discovery, or p dash for all ports. I can't remember what scanned I used for this room, but those flags mostly work for me.

@@mrashco the issue was on my part i forgot to use -p-

@@bingbongballer1398 glad you got it! Happy hacking!

No worries, thanks for leaving a comment! It's good to hear you're getting into the industry mate. Have you tried the current Advent of Cyber from TryHackMe? Honestly, it's a good path to learn a lot in a little time.

same

its eth0 instead of ens5

yeah i agree

I have to agree this room is poorly written. This was the first time i had to look up how some other people did it. I was thought iam doing absolutely everything wrong. Till this point i was realy in love with TryHackMe. I have no problem with difficulty and creativity to solve problems but it should be very clear what i have to do. Are there some other rooms like this? (just to be prepared) I have already did "Introduction to Cyber Sec", "Pre Security" and 33% of "Complete Beginner". Thanks

-O is for just OS detection, -A is for "Enable OS detection, version detection, script scanning, and traceroute." So it does OS + everything else like -sC and -sV.

Hmmm, odd one. Perhaps you've entered the nmap scan "command" wrong? Maybe just triple-check that. And sometimes the boxes do get stuck on boot up, you might just need to restart the room. Let me know how you go!

@@mrashco hey! I figured it out, took me a few days but I guess that's what it takes sometimes. I used "nmap -vv -p- [IP]" and it worked. im not sure if this was the same command I was running a few days ago, but I tried this and it gave me the open port as well as the protocol used. Thanks for the awesome videos, we really appreciate them!

I got the same, couldn't find answers to the majority of the answers, the port 8012 wasn't coming up at all

I haven't used the AttackBox for a while tbh... I could be wrong, but I think they use VNC? There might be a little side panel where you paste in the contents from your host and then click paste and it then pastes in your information. Or try CTRL + SHIFT + V to paste... that might work too.

@@mrashco I will try these - thanks for responding!

@@mrashco Thank you for your help. There is a side panel on the TryHackMe Kali Linux machine which allows me to paste to the clipboard and then into the Kali Linux window. This will save me so much time. Once again, Thank you.

@@normanmehl3131Mega late addition to this but if you fullscreen it instead of running the attackbox in splitview the clipboard will work as normal and you can just copypaste straight into and out of the attackbox.

@@mrashco I was having the same problem I will try your suggested to Stalwart. the ctrl + shift with the V. I was only doing ctrl V.

Huh not sure off the top of my head... did you have any luck with figuring it out?

Hey, how did you go with this? Get it working?

@@mrashco I tried -Pn and it worked But i still struggle with scanning 🥲it still doesn’t give me all the open ports or the services running on them Thanks for asking 🥹💗

I didn't get telnet from TTL, I can totally see how it looks like that though. The tasks are about telnet so that's how I knew

@@mrashco thanks for the reply, it was the -p- flag for me the scan took quite a while but was able to to get the port no

Glad to hear it!

The task is about telnet 👍

Hmmm, I haven't used the attack box in ages. Not sure what they use for multi-terminals. It's probably Terminator or Tmux. If you google those with "bash" or "linux" you should be able to find out how to use them. OR check the THM support and it might be in there. Sorry I don't know for sure!

@Mr Ash thanks i will check it out. This video helped a lot. Thanks for your service to us.

Appreciate it

I'm in a root terminal that runs a "stealth scan" by default, so either use the command with "sudo" at the beginning or ur the -sS (I think) flag.

Did you find out what to do? I'm stuck too.

@@____-tx6nl Yes, try to use the same command in the tryhackme virtual machine

CTRL + SHIFT + C/V

Most probably you are using the previous machine for exploiting the SMB. you need to switch over to the other machine for you to be able to do this telnet exploit. if not wont work. On the other Machine and try this nmap -p- -A- --open. This should be able to work buddy. For me it works.

@@nejatmena1362 Thank you so much! :)

@@mrashco no prob 👌🏻

No you are! Thanks for the nice comment :)

Yeah I'd love to see THM update some of these older rooms

thank you for the vid btw. helped a lot

No worries ♥️ Glad it helped!

@@mrashleyball3772 you will love it. I mean you are our man in Queensland Australia 😀 I was wondering if you could make a video and explain how to use Linux on a Windows OS with Linux Subsystem or Kali Linux with Docker for THM. This would be very helpful.

Great ideas, I have some articles like Ubuntu Linux in VirtualBox mrash.co/how-to-setup-ubuntu-using-virtualbox/ and Kali Linux via WSL mrash.co/kali-linux-wsl-without-microsoft-store/ ... I'm actually learning Docker atm, so stay tuned for content on that! Plus, these articles never got videos, so maybe it's time they do!

Hm, have you used 'sudo openvpn ***.ovpn' ?

@@mrashco Wait we need to use openvpn? I tried the command and I got Options error: In [CMD-LINE]:1: Error opening configuration file: ***.ovpn Use --help for more information.

@@Blinkster93 Sorry that's not the whole command '***.ovpn' is just an example. You need to download an OpenVPN config file from tryhackme which allows you to connect to their VPN and use their VMs. There's a whole room dedicated to using OpenVPN and getting setup on TryHackMe, recommend checking it out!

I found out what I was doing wrong. I realized, I just needed to ncat before I paste the link. Then go back to local computer confirm connection, do the ls and cat commands for flag. I thought with the payload error I was doing something wrong, I just needed the bottom piece to copy and paste in the telnet session! Gezz I feel like an idiot XD

Glad you got it! Don't stress, I routinely do this sort of thing haha

You're so welcome!

I hear ya

Yeah I'd like to see a lot of THMs wording improve on some of these older rooms

nmap -vv -T3 -oN SCANPORT -p- 10.10.136.215 | tee scanport.bak .. I think you missed -p- for all port scan, So ideally in your output it should also show only first 1000 port.

No you are! Thanks for the nice comment :)