Guest cr3ckz Posted April 12, 2005 Report Share Posted April 12, 2005 Netbios Tutorial All the information in this file is for the purpose of education only. I am not responsable for any actions that may be encouraged by the information in this file and can't be blamed for any damage(s) caused by anyone who read this file. This tutorial will explain how to connect to a remote computer which has file and print sharing on. Port 139 has to be open for this little & simple 'hack'. 1.0 Netbios Hacking - Intro 1.1 How to find a victim 1.2 How to see if anyone is sharing 1.3 How to see what he/she is sharing 1.4 How to see his/her files 1.5 Password protected 1.6 Woody's Netbios Tool 1.0 Netbios Hacking - Intro This is one of the most simple method of hacking, it will let you connect to the victims pc through port 139. You can see all his files on the shared disk and you can maybe delete or create files. The only thing you definatly can't do is execute code on his PC. 1.1 How to find a victim This is the easiest part, just get a port scanner and search a range of ip's for the open port: 139. 1.2 How to see if anyone is sharing To check if anyone is sharing something, open up your command prompt and type: C:\> nbtstat -A [ipadress] Or C:\> nbtstat -a [hostname] If you get something like "Host not found", just check another ip. If you get something like below and you see a [20], your in luck and maybe you can connect any files on his PC. It means this person is sharing. NetBIOS Remote Machine Name Table Name Type Status ----------------------------------------------- Host <20> UNIQUE Registered Workgroup <1E> GROUP Registered System <03> UNIQUE Registered Bla <01> UNIQUE Registered If you don't see any <20> , move on to the next ip. 1.3 How to see what someone is sharing Ok, you've just learned to check if someone is sharing any files, now you'll learn to see what he/she is sharing. To see what he or she is sharing, type the following: C:\> net view \\[targetip> Example: C:\> net view \\192.168.1.1 When you get something like below, your in luck: Shared resources at \\iphere ComputerNameGoesHere Share name Type Used as Comment ------------------------------------------------------------------------------------------------ C Disk If you get something else, he or she is sharing nothing (Actually he/she is but i'll explain it later) 1.4 How to see his/her files If you've found someone thats sharing a disk, read on. Now you want to see, for example, the vicimts C drive. All you have to type is: C:\> net use K: \\iphere\C You can replace the K with any drive letter that is not in use by your own computer. Example: C:\> net use J: \\192.168.1.1\SharedDocs C:\> net use X: \\192.168.1.1\D Easy huh? If you get something like "Command completed succesfully" you can go to My Computer and you'll see your victims C drive, D drive or printer whatever. 1.5 Password protected Sometimes when you try 'net view \\' , you need a password, but theres a little trick for that. To connect without knowing the real password, type: C:\> net use \\iphere\IPC$ "" /U:"" This is called: A NULL Session. It is simply a string that tells the remote operating system to give guest access that is give access without asking for password. BUT, you will not be able to map their hard drives (see their files). But with a NULL session you can get valuable information, like names , users that have never been logged on and such other info. Quote Link to post Share on other sites
xak3r Posted April 12, 2005 Report Share Posted April 12, 2005 hastat du mez brnel es talu Quote Link to post Share on other sites
jack1810 Posted March 15, 2006 Report Share Posted March 15, 2006 hey can some one help me out i m not able to Perform the Next step in Netbios thats is when ever im gng for net view \\IP it shows invalid entries what to do for this Quote Link to post Share on other sites
.:Armen:. Posted April 10, 2006 Report Share Posted April 10, 2006 Бред. Какие-то детские шалости тут расписал.. Quote Link to post Share on other sites
P@thfinder Posted April 12, 2006 Report Share Posted April 12, 2006 Если на компе не стоит нихрена (даже брандмауэр не включен) - то это далеко не шалости. ЗЫ: не помню зависит ли это от нуль-сессий netbeos. Если да, то нихрена под XP/NT SP4/2k/2003 не выдет. Они там запрещены по умолчанию. Quote Link to post Share on other sites
xak3r Posted December 9, 2006 Report Share Posted December 9, 2006 if NetBios is open everything is possible ( well possible for those who knows how to get in ) Quote Link to post Share on other sites
Zmei Posted January 8, 2007 Report Share Posted January 8, 2007 jox inchek erexaytun anum lol netbiose ira karucvacqov amena anpashpan ev amena bac protokolna teman poxeq gone tcp vra Quote Link to post Share on other sites
$FIGO$ Posted January 15, 2007 Report Share Posted January 15, 2007 lol Zmei lav asir bayc xak3r@ lavna looooooooooooooool Quote Link to post Share on other sites
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.