Here is an easy one for you guys. A few months ago I had this small utility. It was a small .exe file, and I believe the file name started with a "n" (not sure). It was able to connect to a remote IP address and list the accounts and shares on the machine if anonymous permission for account enumeration is enabled. For the life of me I cannot remember what this handy security testing tool is named. I've installed various patches and updates to my servers since I last did a security test, and would really like to find this utility again.

If anyone knows what this utility's name is, or even better know where I can download it at, please let me know. If you don't want to reply to the thread for obvious reasons, you can PM it to me. Thanks in advance!

While on this topic, I remember when I first found out that the account and shared information is available to the world by default, I was shocked. In the past I have edited my security policy to not allow account enumeration without permission. Does anyone know if there are other ways a cracker could get that account and share information so easily? I trust that editing that rule in the security policy will stop that, but are there other security policies that are enabled by default that definitely should be disabled?

Another thing is Netbios over TCP/IP. Unfortunately I need this enabled because I have computers on seperate networks that need remote access to the shares. I have a hardware firewall, but it randomly decides not to do it's job. So unfortunately it seems anyone can connect remotely. But as far as I know they need a user name and password to get in. They can't get a user name by account enumeration anymore, but are there other vulnerabilities they can use to make a brute force method easier?

Sorry for all the questions. I just want to make my windows 2000 network as secure as possible. A project in itself. haha... Thanks!