Hacking NetBios

Hacking NetBios is easy. You need Dos Prompt (or Command Prompt for NT and up) and that's about it.

First Step:Scanning the computer for NetBios:
Open Dos Prompt or Command Prompt and type 'nbtstat -a ' without the quotes. You should see something like this:
C:\>nbtstat -a XXX.XXX.XXX.XXX
Network Bridge (Network Bridge):
Node IpAddress: [XXX.XXX.XXX.XXX] Scope Id: []

Name Type Status
----------------------------------------------
computer_name <20> Unique Registered
computer_name <XX> Unique Registered
computer_name <XX> Unique Registered

If you see a line with
<20>
in it then your victim has NetBios enabled on their computer. Remember the computer's ip you scanned or copy it.

Second Step: Getting into the computer:
Next step requires you to use Run( Start > Run... OR WinKey + R). So open that up right now.
Now, remember that ip you were told to remember or copy? Well you need it now. You're going to have to type this in the Run box:
\\<ip address>

That will make it think that the computer you put in is part of your network. It should open up a explorer window. If it didn't ask for a password, congratulations, you got in. If it did ask you for a password, you'll have to use a password cracker (try searching Google. Google = Hackers best friend).

Well that's the end of this tutorial. Look for more tutorials coming from me.

Like always, if you EVER have any questions or comments, you can contact me below:

Removed Contact Details Wkd..

Copyright © 2003 Heath Ohmer

shouldn't the title be "Exploiting netbios" ??

too many people around here calling themself hackerZ...
sure that 80% off'em are NewbZ exploiter, oh well maybe am tired

this is not hacking/exploiting netbios , all that is legal and doesnt give any access except to the shared files , and the administrative shares canat be accessed even if u know the administrator password ! , so that does nothing , except if the stupid guy is sharing the boot dirve , maybe u can add some startup methods , and put ur own bkdr .

try this, it's pretty informative (with lots of outside comments...) worth the read i suppose...

NetBios Hacking

Great Post Wicked

But BoshCase

Is Totally Right the <20> Only Represents That The Protocol File Shareing Is Installed And Is Enabled and Not Disbaled

But Great Post Wicked

Wicked

WKD BUSINESS )

Best Regards

Adam

Vast Gsm Team

Da Sick Crew

lmao... MAybe you(s) can share your own little Ideas about it instead of this ain't Hacking Netbios , Az you can see it aint my name at the bottom of the tut either.. I Jst pasted it here for newbiez... not know it alls..

Thanx for the Feed Back....

Btw: Where'd Dj Go anywayz....

you may Add your own Netbios Hax to this if you like... Open Invitation...

Wkd..

Hello Wicked..

According to the "DJ" question, you might want to check this:


http://www.governmentsecurity.org/forum/in...?showtopic=4486



Regards,
LiquidSilver

thanks mate .... btw do they use Machine Guns to Fight for peace these dayz ?

Wkd.

Back to the netbios access..try a hidden share or two....Since Microsoft 2000 and XP, Workstation and Server have these shares on by default...

At the run line:
\\machinename or IP\c$ (Root directory)
\\machinename or IP\admin$ (System32 Directory)

-Hardcore

I was just saying that using netbios to get into a computer / server
it ain't be hacking but exploiting sysop's / user's lameness, just
wanted to call a dog a dog and a cat a cat, this ain't hacking.

Nuthing personal Wicked it was just to let know to newbies that it's
not because they get into a computer using netbios shit that they are
can call themself "l33t h4X0r" u now what am saying...

Anyway that tut is interesting to start to get into netbios shit,
it's true, just the title that doesn't sounds "right" to me...

hey can i ask u some question about netbios attack.well ..we can only map the C drive or admin if we have the admin password. Well the only way we can get the password is thru brute forcing or sniffing in LAN,correct me if i'm wrong.brute force seems working well till NT5.0(win2k) and it didn't work at all in NT 5.1, NT5.2 (winXP,win2003) for me. did you get brute forcing working on 5.1 or later? do you have any other way to get a user account on a windows OS?any good brute forcing tools except(enum,NAT)? thank you

what is runing program on remot serv ?

No worries maybe if I has some xtra powers I'd change the Topic to Netbios Sharing and Hacking

Some good info comming in guys/Gals Keep it up

Possitive Feedback is what we Need to see and Other peeps Experience is alwayz Good

Greetz All

Wkd..

ok understanding netbios and it's shares is easy.
are there bruteforcers for netbios shares passwords?
i think they will be way to slow

I remember when penetrating a system via netbios was hardly known.. way before all the hacking exposed stuff and fast cable connections. There was nothing wrong with it back then and there's nothing wrong with using it to gain access now. the only difference is that more people are aware of it.

Why go through all the trouble of picking the lock when the door aint locked?

On another note, How many of you are even aware that Win9x/me needs a security patch otherwise any passworded shares are accessible remotely regardless of the password?

How about war dialing? That was used alot in the older days, same problem, drop into systems because there was no password or weak passwords.

Why get involved in semantecs, you want in, you get in any way you can, who cares what it's called.

That's true Krackatoa I've bin through a lotta systems in my time I Can tell yah now....and this is only one form of Many to gain access to a Remote Host... Winblows Update or not...... Jst like right now I have someone trying to probe my Socks , And If I Were'nt so friggin Tired then I'd Prolly Return the Favour and format his Hdd.... But unfortunately Iam busy and ain't to Fussed Cause I will catch up em another day ...

Wkd.