Lab 3
Enumerating NetBIOS Using the NetBIOS Enumerator Tool
Enumeration is the process of probing identified servicesfor known weaknesses.
Lab Scenario
Enumeration is the first attack ON a target network; enumeration is the process of gathering the information about a target machine by actively connecting to it. Discover NetBIOS name enumeration with NBTscan. Enumeration means to identify die user account, system account, and admin account. in tins lab, we
enumerate a machine’s user name, MAC address, and domain group. You must have sound knowledge of enumeration, a process that requires an active connection to the machine being attacked. A hacker enumerates applications and banners in addition to identifying user accounts and shared resources.
Lab Objectives
The objective of this lab is to help students learn and perform NetBIOS enumeration.
Tlie purpose of NetBIOS enumeration is to gather the following information:
■ Account lockout threshold
■ Local groups and user accounts
■ Global groups and user accounts
■ To restrict anonymous bypass routine and also password checking for user accounts with:
• Blank passwords
• Passwords that are same as the username in lower case
Lab Environment
To earn־ out die lab, you need:
■ NETBIOS Enumerator tool is located at D:\CEH-Tools\CEHv8 Module
04 Enumeration\NetBIOS Enumeration Tools\NetBIOS Enumerator
■ You can also download the latest version of NetBIOS Enumerator from the link http:// nbtenum.sourceforge.11et/
■ If you decide to download the latest version, then screenshots shown m the lab might differ
■ Run tins tool in Windows Server 2012
■ Administrative privileges are required to run this tool
Lab Duration
Time: 10 Minutes
Overview of Enumeration
Enumeration involves making active connections, so that they can be logged. Typical information attackers look for in enumeration includes user account names for future password guessing attacks. NetBIOS Enumerator is an enumeration tool that shows how to use remote network support and to deal with some other interesting web techniques, such as SMB.
Lab Tasks
1. To launch NetBIOS Enumerator go to D:\CEH-Tools\CEHv8 Module 04 Enumeration\NetBIOS Enumeration Tools\NetBIOS Enumerator, and double-click NetBIOS Enumerater.exe.
 |
| FIGURE 3.1: NetBIOS Enumerator main window |
2. In the IP range to scan section at the top left of the window, enter an IP range in from and to text fields.
3. Click Scan.
 |
| FIGURE 3.2: NetBIOS Enumerator with IP range to scan |
5. After the compledon of scanning, die results are displayed in die left pane of die window.
6. A Debug window section, located 111 the right pane, show’s the scanning of die inserted IP range and displays Ready! after completion of the scan.
 |
| FIGURE 3.3: NetBIOS Enumerator results |
7. To perform a new scan 01־ rescan, click Clear.
8. If you are going to perform a new scan, die previous scan results are erased.
Lab Analysis
Analyze and document die results related to die lab exercise.
Không có nhận xét nào:
Đăng nhận xét