Hello and Welcome to my first and probably only (I'm not a good tutorial writer at all, sorry) tutorial here at AntiOnline. This one will be about the Common Attack of NetBIOS and will directed to mostly newbies. Well, I'm not going to bore you any longer, let's get down to buisness!

**NetBIOS Attack and History**
NetBios, for one, is short for Network Basic Input/Output System and was made and developed by IBM and Sytek as an API (Application Programming Interface used to access LAN (Local Area Network) resources. It short duke, it is used to access network services. PC's on a NetBIOS LAN communicate either by establishing a session or by using NetBIOS datagram or broadcast methods. The communication in these enviroments when two computers share a netbios session is in a format called NCB (Network Control Blocks). The "allowance" so to speak of these blocks of memory is made and depended on by the user program. Now, NetBIOS names are names used to indetify resources on a network/pc. Applications use names to start/end netbios sessions. To start or view servers registered NetBIOS names and services, go to your DOS promt or Go to Start>Run> and type cmd. At the Prompt, type this:

nbtstat -A [ipaddy]

Now, you will get a table similar to this:


Name Number Type Usage
==========================================================================
<computername> 00 U Workstation Service
<computername> 01 U Messenger Service
<\\_MSBROWSE_> 01 G Master Browser
<computername> 03 U Messenger Service
<computername> 06 U RAS Server Service
<computername> 1F U NetDDE Service
<computername> 20 U File Server Service
<computername> 21 U RAS Client Service
<computername> 22 U Exchange Interchange
<computername> 23 U Exchange Store
<computername> 24 U Exchange Directory
<computername> 30 U Modem Sharing Server


Now, generally, when you are being attacked, people will be looking for number 20, which would indicate you have file/print sharing enabled which inturn can give them access to your files within minutes. To protect from this is simple. Go to start>settings>controlpanel>network, and from their you will see File and Print Sharing. Click that and simple uncheck "I want to give other's access to my files" and Uncheck " I want to be able to let others print from my printer(s). Exit that, restart, and now you have File Sharing disabled. It's not that hard, but sometimes OS's have that ticker checked by default. A simple two minutes it takes to protect yourself from this kind of attack.**

I hope everyone liked this short (very short) tutorial on the Common Attack of NetBIOS, their will be another tutorial(s?) with similar common attacks. I'll be working on them but with school, work, football, and the weekend plans, it'll be hard. Hoped you enjoyed and learned, Common_Exploit