This repository has been archived by the owner on Nov 29, 2023. It is now read-only.
-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathREADME
executable file
·153 lines (116 loc) · 5.24 KB
/
README
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
NetBIOS Security Kit
The intention of this package is to perform various security checks on
remote servers running NetBIOS file sharing services. This particular
package is for pre-release distribution only and is by no means suitable for
public use. We assume that our users at this point are other 'security
proffesionals'. As such there is precious little documentation with this
release.
Some things you will need to know.
- Netbios_check is fairly verbose. You may be well served to pipe the stdout
to both your screen and a file. The final release will have a shellscript
front end will allow you to do just this (perhaps with tee(1) ?>.
- Password grinding can take a while. Be patient, or launch multiple passes
at the same host. The final release will have this capability via a shell
script.
- If you feel the need to add more passwords to the grinding list, you have
to add them manually to client.c. The final revision will allow the end
user to supply their own list.
- Netbios_check when run will look something like the following. Please note
that explanations of the steps are denoted by [*] .
#./netbios_check 199.185.231.31
[*]--- Obtaining list of remote NetBIOS names
[*]--- Remote systems name tables:
INFIDEL
INFIDEL
SECNETNT
SECNETNT
SECNETNT
INFIDEL
BLAS
SECNETNT
SECNETNT
__MSBROWSE__
INFIDEL
[*]--- Attempting to connect with name: *
[*]--- Unable to connect
[*]--- Attempting to connect with name: INFIDEL
[*]--- CONNECTED with name: INFIDEL
[*]--- Attempting to connect with protocol: MICROSOFT NETWORKS 1.03
[*]--- Server time is Mon Feb 10 15:05:48 1997
[*]--- Timezone is UTC-7.0
[*]--- Remote server wants us to encrypt, telling it not to
[*]--- Attempting to connect with name: INFIDEL
[*]--- CONNECTED with name: INFIDEL
[*]--- Attempting to establish session
[*]--- Was not able to establish session with no password
[*]--- Attempting to connect with Username: `' Password: `ADMINISTRATOR'
[*]--- CONNECTED: Username: `' Password: `ADMINISTRATOR'
[*]--- Obtained server information:
Server=[INFIDEL] User=[] Workgroup=[SECNETNT] Domain=[]
[*]--- Obtained listing of shares:
Sharename Type Comment
--------- ---- -------
ADMIN$ Disk: Remote Admin
C$ Disk: Default share
CD Disk: CD-ROM
D$ Disk: Default share
IPC$ IPC: Remote IPC
NETLOGON Disk: Logon server share
OfficeJet Printer: HP OfficeJet
print$ Disk: Printer Drivers
temp Disk:
[*]--- This machine has a browse list:
Server Comment
--------- -------
INFIDEL
PHAZER Samba 1.9.15p8
TITUS p100 desktop
[*]--- Attempting to access share: \\INFIDEL\
[*]--- Unable to access
[*]--- Attempting to access share: \\INFIDEL\ADMIN$
[*]--- Unable to access
[*]--- Attempting to access share: \\INFIDEL\C$
[*]--- Unable to access
[*]--- Attempting to access share: \\INFIDEL\CD
[*]--- WARNING: Able to access share: \\INFIDEL\CD
[*]--- Checking write access in: \\INFIDEL\CD
[*]--- Attempting to exercise .. bug on: \\INFIDEL\CD
[*]--- Attempting to access share: \\INFIDEL\D$
[*]--- Unable to access
[*]--- Attempting to access share: \\INFIDEL\NETLOGON
[*]--- WARNING: Able to access share: \\INFIDEL\NETLOGON
[*]--- Checking write access in: \\INFIDEL\NETLOGON
[*]--- Attempting to exercise .. bug on: \\INFIDEL\NETLOGON
[*]--- Attempting to access share: \\INFIDEL\print$
[*]--- WARNING: Able to access share: \\INFIDEL\print$
[*]--- Checking write access in: \\INFIDEL\print$
[*]--- Attempting to exercise .. bug on: \\INFIDEL\print$
[*]--- Attempting to access share: \\INFIDEL\temp
[*]--- WARNING: Able to access share: \\INFIDEL\temp
[*]--- Checking write access in: \\INFIDEL\temp
[*]--- WARNING: Directory is writeable: \\INFIDEL\temp
[*]--- Attempting to exercise .. bug on: \\INFIDEL\temp
[*]--- Attempting to access share: \\INFIDEL\ROOT
[*]--- Unable to access
[*]--- Attempting to access share: \\INFIDEL\WINNT$
[*]--- Unable to access
--------------------------------------------------------------------------
This package is built on top of code written by Andrew Tridgell and contains
the following license agreement:
/*
Unix SMB/Netbios implementation.
Version 1.9.
Samba utility functions
Copyright (C) Andrew Tridgell 1992-1995
This program is free software; you can redistribute it and/or modify
it under the terms of the GNU General Public License as published by
the Free Software Foundation; either version 2 of the License, or
(at your option) any later version.
This program is distributed in the hope that it will be useful,
but WITHOUT ANY WARRANTY; without even the implied warranty of
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
GNU General Public License for more details.
You should have received a copy of the GNU General Public License
along with this program; if not, write to the Free Software
Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
*/