Jump to content
Jako

Galileo RCS + guide

Recommended Posts

lic/dongle patch and license

https://mega.nz/#!j4pgiTyK!VpH_UiyNlTOa831WoZEJhg4L73tWpWA4sSZuF0cb65M

 

RCS setup complete files

https://mega.nz/#!KhhDFC5L!rs77VB_Hjj9zg0i3unlAqjM5zUdD7mA1PtZb8XexIQM

 

Instructions:

1. Install VMs
-- RCS MASTER ( Windows 7 x64 | 5 GB RAM )
-- RCS Collector ( Windows 7 x64 | 2 GB RAM)
-- Anonymizer ( CentOS 7 x64 | 2 GB RAM)

2. Configuration - Port forwarding
-- RCS MASTER -- 442 / 443 / 444
-- RCS collector -- 80

3. Configuration - RCS MASTER Installation
a. Set time 01 April 2015 (Disable internet time sync + vmx)
https://kb.vmware.com/selfservice/microsites/search.do?language=en_US&cmd=displayKC&externalId=1189

b. set hostname/computername -- "rcsmaster"

c. Update hosts file -- C:\windows\system32\drivers\etc\hosts
-- xxx.xxx.xxx.xx rcscollector (IP of collector node) .., restart Windows

Run RCS setup
-- Install Master node
- CN -- rcsmaster -- THIS IS IMPORTANT STEP CERTIFICATES WILL BE UNDER THIS HOSTNAME
- LIC -- FULL_VER.lic
- Password -- GalileoRCS1

c. Wait untill all files are extracted...When it says "removing old master node files..."

d. Go to C:\RCS\DB\bin -- replace/overwrite rcs-license-check

e. Wait for "Verify license.."

f. Goto C:\RCS\DB\lib\rcs-db-release\ -- replace/overwrite dongle.rb

g. Go to C:\RCS\DB\Console -- Install Adobe AIR then install console application

h. Open console
>> Username -- admin
>> Password -- GalileoRCS1
>> server -- rcsmaster

i. Wait for certificate import dialog...follow screenshots:
1. http://prntscr.com/8xbdnn
2. http://prntscr.com/8xbdqv
3. http://prntscr.com/8xbduf
4. http://prntscr.com/8xbdy9
5. http://prntscr.com/8xbe2y

j. You will see RCS Dashboard.

k. Don't do anything, next install RCS collector


4. Configuration -- RCS collector
a. Set time 01 April 2015 (Disable internet time sync + vmx)
https://kb.vmware.com/selfservice/microsites/search.do?language=en_US&cmd=displayKC&externalId=1189

b. set hostname/computername -- "rcscollector"

c. Update hosts file -- C:\windows\system32\drivers\etc\hosts
-- xxx.xxx.xxx.xx rcsmaster (IP of master node) .. restart windows

Run RCS setup
-- Install Collector node
-- Master node CN -- "rcsmaster"
-- local hostname -- "rcscollector"
-- Password -- GalileoRCS1
-- Verify connection to Master DB >> Finish

5. Configuration -- Anonymizer
-- First goto Master node Dashboard
-- System >> check collector connection (should be green)
-- Create new anonymizer "anon1" | IP address: xxx.xxx.xxx.xx
-- Drag anon1 over Collector
-- Build Proxy installer script

6. Configuration Proxy (anon1) - CentOS
-- become root
-- Disable firewall
>> systemctl disable firewalld
>> systemctl stop firewalld

-- chmod u+x install
-- sh install
-- Wait for install complete...!

7. Goto Master node Dashboard
-- System >> Apply configuration

 

Share this post


Link to post
Share on other sites
6 hours ago, m4v3rick said:

link fail

 

If you post something useful for this community, I will upload the files.

Share this post


Link to post
Share on other sites
On 12/15/2016 at 2:34 AM, Technetium said:

 

If you post something useful for this community, I will upload the files.

shure, i have the setup running , if you can share the injector license please

Edited by m4v3rick

Share this post


Link to post
Share on other sites
On 10/23/2017 at 11:09 PM, seanwire1 said:

i got this working, who knows how to make licenses

I can make license, Please provide the fix for certificate sign error while generating scout.

Share this post


Link to post
Share on other sites
On 3/23/2018 at 1:57 PM, Hellbanianz said:

dongle license error can you please reupload

The license patch work fine just read the instructions and find the time interval to overwrite the license check filescript, but the Console Adobe has wrong CRC and don't work even you take all old version of Adobe Air and try to install.

The question is has anybody have the original air console or a method to run it?

The Galileo is full of hidden viruses and shell code. I have tried with Technetium + original console from https://ht.transparencytoolkit.org/FAE DiskStation/ .

The NSA and Wikileaks  patched very well this before they made it a public release.

Anyway the exploit's are old and detectable by common antivirus engines, at his time was a great piece of art this software.Now i work on something similar but with z-day engines...

Sorry for my english...Romanian is my primary :)

galileostep1.png

galileostep2.png

galileo3.png

Edited by zeropoint
  • Upvote 1

Share this post


Link to post
Share on other sites
19 hours ago, zeropoint said:

The license patch work fine just read the instructions and find the time interval to overwrite the license check filescript, but the Console Adobe has wrong CRC and don't work even you take all old version of Adobe Air and try to install.

The question is has anybody have the original air console or a method to run it?

The Galileo is full of hidden viruses and shell code. I have tried with Technetium + original console from https://ht.transparencytoolkit.org/FAE DiskStation/ .

The NSA and Wikileaks  patched very well this before they made it a public release.

Anyway the exploit's are old and detectable by common antivirus engines, at his time was a great piece of art this software.Now i work on something similar but with z-day engines...

Sorry for my english...Romanian is my primary :)

galileostep1.png

galileostep2.png

galileo3.png

i have done all the steps but when i login inside it shows me can't login to server

Share this post


Link to post
Share on other sites
On 3/26/2018 at 5:49 AM, rock-alber said:

i have done all the steps but when i login inside it shows me can't login to server

you need to put certificate into root folder of windows keychain

Share this post


Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now

×