Penetration Testing mailing list archives
RE: What ever happened to the Netbios share scanner utilities?
From: "Kyle Quest" <Kyle.Quest () networkengines com>
Date: Wed, 14 Sep 2005 18:13:06 -0400
You haven't mentioned Hydra. Unfortunately it's not an all-in-one tool, but it is capable of bruteforcing SMB logins. It needs a list of servers, which you can collect using nmap for example. It also needs usernames and passwords. You can use your favorite username/password dictionaries or use some other tool to pre-generate those inputs. If enough people show interest, I will release something like that. Kyle -----Original Message----- From: madmexATmoonstarDOTcom () securityfocus com [mailto:madmexATmoonstarDOTcom () securityfocus com] Sent: Tuesday, September 13, 2005 2:27 AM To: pen-test () securityfocus com Subject: What ever happened to the Netbios share scanner utilities? *Disclaimer* Having been a longtime reader of this list, I understand the general (let's call it) "disdain" for those security professionals who run nessus/iss/whathaveu scans and A)call that a pentest and B) call themselves pentesters (I call these people App-jockeys, all click and no think. So let me open with the statement that while I do run these types of scans as part of my duties as a security engineer, I am not a dedicated pen-tester nor do I claim that my kung-fu is as adept as many of the VERY educated posters here. Having said that I have a very simple question that has been eluding me as of late. What ever happened to the evolution of the Windows share scanner/brute force utility? I've done what I consider to be fairly extensive Google searching, but have not been able to find a utility that fits the following parameters: Run on windows, scans an IP range for machines with accessible netbios shares, and is capable of attempting a brute force attempt on these shares, using a wordlist it generates on the fly and is configurable to length and character content (much like Brutus). Come to think of it, only application I've found that comes close is Brutus, however this tool always sets off my AV software and I feel uneasy running any app that requires me to disable my AV software (Symantec). Even then, I can't seem to get Brutus to work and the documentation is less than extensive. The rest of the tools I've found are hoplessly outdated (PQwak or Xsharez anyone?) and attempt to exploit an ancient vulnerability in the way Win9x systems handled authentication. If only Rhino9 still coded apps, there was an elegant simplicity to those apps... My guess is the evolution of this slowed ever since more and more ISPs started to block netbios traffic from getting to their clients, however as many of the big name viruses have shown us, netbios can still be a soft-underbelly of attack. Is there something wrong with the Google incantations I'm using? I've tried many combinations of: Brute force, netbios, share, scanner, smb, and a few others. I can't seem to get it right. I'd appreciate anyones time in bringing me from darkness into light on this puzzlement of mine. Thanks, Karlo --madmexATmoonstarDOTcom ------------------------------------------------------------------------------ Audit your website security with Acunetix Web Vulnerability Scanner: Hackers are concentrating their efforts on attacking applications on your website. Up to 75% of cyber attacks are launched on shopping carts, forms, login pages, dynamic content etc. Firewalls, SSL and locked-down servers are futile against web application hacking. Check your website for vulnerabilities to SQL injection, Cross site scripting and other web attacks before hackers do! Download Trial at: http://www.securityfocus.com/sponsor/pen-test_050831 ------------------------------------------------------------------------------- ------------------------------------------------------------------------------ Audit your website security with Acunetix Web Vulnerability Scanner: Hackers are concentrating their efforts on attacking applications on your website. Up to 75% of cyber attacks are launched on shopping carts, forms, login pages, dynamic content etc. Firewalls, SSL and locked-down servers are futile against web application hacking. Check your website for vulnerabilities to SQL injection, Cross site scripting and other web attacks before hackers do! Download Trial at: http://www.securityfocus.com/sponsor/pen-test_050831 -------------------------------------------------------------------------------
Current thread:
- What ever happened to the Netbios share scanner utilities? madmexATmoonstarDOTcom (Sep 14)
- RE: [lists] What ever happened to the Netbios share scanner utilities? Curt Purdy (Sep 14)
- RE: [lists] What ever happened to the Netbios share scanner utilities? Mike Pearson (Sep 16)
- Re: What ever happened to the Netbios share scanner utilities? ctg (Sep 15)
- Re: What ever happened to the Netbios share scanner utilities? Jerome Athias (Sep 15)
- <Possible follow-ups>
- RE: What ever happened to the Netbios share scanner utilities? Kyle Quest (Sep 14)
- Re: What ever happened to the Netbios share scanner utilities? mjcarter (Sep 15)
- RE: What ever happened to the Netbios share scanner utilities? Beauford, Jason (Sep 16)
- RE: [lists] What ever happened to the Netbios share scanner utilities? Curt Purdy (Sep 14)