Page 1 of 2 12 LastLast
Results 1 to 10 of 11

Thread: Win2k Hacking

  1. #1
    Junior Member
    Join Date
    Feb 2002

    Win2k Hacking

    These are just a few tips on hacking win 2000, i know win is lame, but lets face the facts, something like 90% of comps on the net are running some flavor or windoze

    these examples only work if the NBNS (udp 137) service is open:
    (type these are command prompt of win2k box, i dont know what other win flavs will work on)

    netview /domaintarget domain here)

    this will show a list of subdomains in a given given domain
    another way to do pretty much the same thing is

    nbtstat -a (target ip here)

    a useful to find info on a target win2k comp is

    > ls -d (target ip here)

    ok, just one more for now, to establish an anonymous connection to a target machine (if possible)

    net use \\(target ip here)\ipc$ "" /u:''

    the two "" are usually a place for a username and a password.
    hope this little tidbit helps

  2. #2
    Such things will work on any NT-based windows. These are easily found by typing "net" at a dos prompt; it will list commands and extensions. Any you don't know, ie net send, thype "net send ?" for extension information. BTW there's a space between "net view".
    WE ARE the anti cancer...
    WE ARE the only answer...

  3. #3
    turn off file and printersharing!
    got to settings->network select your adapter that connects to the net and remove all bindings. now
    http://doscerveza.ontheweb.nl [coming soon]

  4. #4
    Not all of the above are affected by file & print sharing. Many (most NET commands) refer to the Windows NT Services.
    WE ARE the anti cancer...
    WE ARE the only answer...

  5. #5
    remove all the bindings like client for MSnetworks and MS family logon.
    if you are not logged on to the network these thinks don't work.
    correct me if i am wrong.


  6. #6
    They work fine without a network... Not all WinNT services are network-oriented. It is set up so that all services can be easily configured, started & stopped. YOU CAN RUN ALMOST ANY SERVICE LOCALLY. YOU DO NOT NEED A LOGON. This is given you are running WinNT, 2000 or XP (I think).
    WE ARE the anti cancer...
    WE ARE the only answer...

  7. #7
    You are right.

    Here is a description on how to diable this

    from labmice:
    Disable the default shares
    Windows NT and Windows 2000 open hidden shares on each installation for use by the system account. (Tip: You can view all of the shared folders on your computer by typing NET SHARE from a command prompt.) You can disable the default Administrative shares two ways. One is to stop or disable the Server service, which removes the ability to share folders on your computer. (However, you can still access shared folders on other computers.) When you disable the Server service (via Control Panel > Administration Tools > Services), be sure to click Manual or Disabled or else the service will start the next time the computer is restarted. The other way is via the Registry by editing HKeyLocal Machine\SYSTEM\CurrentControlSet\Services\LanManServer\Parameters. For Servers edit AutoShareServer with a REG_DWORD Value of 0. For Workstations, the edit AutoShareWks. Keep in mind that disabling these shares provide an extra measure of security, but may cause problems with applications. Test your changes in a lab before disabling these in a production environment. The default hidden shares are:

  8. #8
    Senior Member
    Join Date
    Sep 2001
    Set AllowAnonymous=2 in the registry (don't remember the path of the key)

    In w2k this can be set in the Local Security Policies | Security options | Aditionnal restrictions for anonymous connections -> No access without explicit anonymous permissions


  9. #9
    Computer Forensics
    Join Date
    Jul 2001
    Antionline in a nutshell
    \"You\'re putting the fate of the world in the hands of a bunch of idiots I wouldn\'t trust with a potato gun\"

    Trust your Technolust

  10. #10
    Senior Member
    Join Date
    Apr 2002
    Yes, turn off file sharing! Even if you have your c drive password-protected they can still run trojans on your system.
    [gloworange]Die, or surrender, either way won\'t work.[/gloworange]

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts