Whales getting hunted is always bad

[Dave Aitel <dave () immunitysec com>]

As seen on: http://news.bbc.co.uk/1/hi/sci/tech/4417462.stm
Japan continues to engage in poorly disguised commercial whaling. 
Greenpeace needs a navy that can go scare them away from the whales, or 
vice versa. There's no good reason to eat whales in this day and age. 
I'm not sure what sort of mental disease the Japanese fishery department 
has that lets them think this is a reasonable action.

I dunno why, but that reminds me of SecurityFriday's little paper on 
username enumeration.
http://www.securityfriday.com/Topics/winxp2.html

Basically you can connect to the Workstation service via the \\browser 
and call the EnumUsers. But it only seems to report users that have 
logged in since the last reboot, which is not quite what I was expecting. :>

bash[somemachine]$ exploits/userenum/userenum.py -t 192.168.2.101
Connection succeeded over SMB to endpoint ncacn_np:192.168.2.101[\browser]
Marshalling struct.info_level <------look, someone wrote a DCE 
Marshaller! :>
Marshalling struct.element_91
Marshalling union.u_i_0_c
Marshalling struct.num_entries
Marshalling struct.u_i_0
[C] Returned data of length 40
RPC call on opnum 2
Setting wait to 1
DCE::call() self.object=
Call request with ntlm
Writing 64 bytes via writex
Getting packet from remote side in msrpc
get_packet() size is 136
Packetype: 2
[C] parseEnumPkt: Buf length: 112
[C] Info_level=0
[C] Usernames: 2
[C] Total Users: 2
[C] User found: JUSTINE$ <---where is admin and the rest of them?
[C] User found: JustJuice
[C] ID: 0 Setinfo: > userenum - done (success: 2 users found) <