Re: how can one breach a Win 2k DC using only NetBIOS?
- From: "karl levinson, mvp" <levinson_k@xxxxxxxxxxxxx>
- Date: Mon, 13 Feb 2006 07:51:09 -0500
How? Just by asking the server.
Google for the winfingerprint tool that shows you different information
about the server [instead of about the user] that can be enumerated via
Netbios. [Be careful, I can't remember if everything in Winfingerprint is
gotten only through NetBIOS.]
Also, go to www.securityfriday.com to read some information on how user
account enumeration can be done, as well as the getacct tool to test.
"kc" <kc@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:1E010BFF-75B4-47A0-B496-73E26C7847F7@xxxxxxxxxxxxxxxx
'How can an intruder using only NetBIOS engage in an enumeration
activity against a Windows 2000 Server that is functioning as a domain
controller'?
Assumptions already made- :
· IP address of the Windows 2000 Advanced Server is
192.168.204.13
·The Windows 2000 Server is not making use of IP-Sec or
Kerberos.
·No service packs have been applied to the Windows 2000
Advanced Server.
.
- Prev by Date: Re: Can a bkup Domain Controller (DC) be demoted to member server?
- Next by Date: Re: Question about Windows 2000 and IE?
- Previous by thread: Re: how can one breach a Win 2k DC using only NetBIOS?
- Next by thread: Using computer names in NTFS folder permissions
- Index(es):
Relevant Pages
|
|
