NetBIOS Hacking
by XeNobiTe
NOTICE: TO ALL CONCERNED Certain text files and messages contained on this site deal with activities and devices which would be in violation of various Federal, State, and local laws if actually carried out or constructed. The webmasters of this site do not advocate the breaking of any law. Our text files and message bases are for informational purposes only. We recommend that you contact your local law enforcement officials before undertaking any project based upon any information obtained from this or any other web site. We do not guarantee that any of the information contained on this system is correct, workable, or factual. We are not responsible for, nor do we assume any liability for, damages resulting from the use of any information on this site.
Contents:
I : About
II : Introduction
III: NetBIOS Hacking
I. About
All the information in this file is for the
purpose of education only. I am not responsable
for any actions that may be encouraged by the
information in this file and can't be blamed for
any damage(s) caused by anyone who read this file.
This tutorial will explain how to connect to a
remote computer which has file and print sharing
on. (Windows 9x/ME)
II. Introduction.
NetBIOS stands for Network Basic Input Output
System. It's an API than enables DOS BIOS to
preform special functions for LAN's. Most LAN's
for PCs are based on NetBIOS.
III. NetBIOS Hacking
This is one of the most simple methods of hacking.
It will allow you to connect to a remote PC which
has file and print sharing on. You only need that
PCs IP.
To see if a certain PC has file and print sharing
on use the nbtstat command in the DOS Prompt.
e.g nbtstat -a IP (e.g. 192.168.0.0)
If the PC doesn't have file and print sharing on
you'll get:
"Host not found"
Otherwise you'll get:
NetBIOS Remote Machine Name Table
Name Type Status
--------------------------------------------
Host <20> UNIQUE Registered
Workgroup <1E> GROUP Registered
System <03> UNIQUE Registered
The only thing you get from this is the name of
the host which has a code of 20. (the other codes
can be diffrent, but they don't matter anyway)
Now you must search for a file which is called
lmhost. With win 9x/me it should be in the
windir, so x:\windir\lmhost, (this file has no
extension, so when you search for it make shure
you have *.* set as file type.)
With Win NT/2000/XP this file is situated in the
x:\windir\system32\drivers\etc\lmhost
Once you have found the file open it in notepad.
There will be lots of text and info which isn't
important at the moment. Just scroll to the end
of the it and type in the name of the host, press
tab and type in it's IP. It should look like this:
host IP (e.g. 192.168.0.0)
Save and close the file. Now you need to seach for
the PC. Do this with Find and the Computer with
win 9x/ME or Search for computer or people with
win 2000/XP. Type it's IP (e.g. 192.168.0.0) as the
search criterium and you should get a result with
the host as the PCs name. (sometimes it's just the
IP instead the hosts name, this depends on windows)
Double click on it. You're on your targets pc now
and can brows it as your own.
© Copyright 2002 by XeNobiTe
|