Monday, January 10, 2011

Hack Computers Inside LAN Network

Posted on  by   with 11 comments:
Today,I will write about hacking computer inside the LAN network.

This technique will be taking advantage of Port 139.

Most of the time,Port 139 will be opened.

First of all,I will do a port scanning at the target computer which is 192.168.40.128.

This computer is inside my LAN network.

I will scan it using Nmap.

[Image: 1_13.jpg]

I get the result and it shows Port 139 is opened up for me.

Now you will need both of these tools:
** USER2SID & SID2USER
** NetBios Auditing Tool

You can get both of them on the Internet.

After you get both of them,put them in the C:\ directory.

[Image: 2_1.jpg]

You now need to create a null session to the target computer.

[Image: 3_3.jpg]

Now open the Command Prompt and browse to the USER2SID & SID2USER folder.There will be 2 tools inside it,one will be USER2SID and another one will be SID2USER.

We will first using USER2SID to get the ID.

[Image: 4_10.jpg]

We will test against the Guest account because Guest account is a built in account.

After we get the ID,we need to do some modification on the ID.

We take the ID we get from the guest account and modified it become
"5 21 861567501 1383384898 839522115 500".

Please leave out the S-1-,leave out all the - too.

[Image: 5_8.jpg]

Now you will see that you get the username of the Administrator account.

In this case,the Administrator account is Administrator.

Create a text file called user.txt and the content will be the username of the Admin account.

[Image: 6.jpg]

Prepare yourself a good wordlist.

[Image: 7.jpg]

Now put both of them in the same directory with the NetBios Auditing Tool.

[Image: 8.jpg]

Now we are going to crack the Admin account for the password in order to access to the target computer.

Browse to the NetBios Auditing Tool directory.

[Image: 9_1.jpg]

Press on enter and the tool will run through the passlist.

[Image: 10.jpg]

In this case,I have get the password.

In order to proof that I can get access to the target computer using this password.

[Image: 11.jpg]

After you press enter,it will prompt you for the username and password.

[Image: 12_6.jpg]

Therefore,just input them inside the prompt and continue.

[Image: 13.jpg]

Target C drive will be on your screen.

[Image: 14.jpg]

In order to prevent from this attack,close down port that you do not want to use such as Port 135,Port 136,Port 137,Port 138 and Port 139.

The download link of the tools will be:
Download Tools.rar
...................................................................................................................................................................................................... 

11 comments:

  1. DeepakJanuary 10, 2011 at 4:30 AM

    Finaly its just a ip scanner in which we brute force somthing..
    Choice of making passwords is ours so its not like a smart-work...

    Anyhow thanks for the brute forcing technique...

    ReplyDelete
  2. Windows ScorpionJanuary 10, 2011 at 1:05 PM

    nice and clear
    but "Prepare yourself a good wordlist" isn't that the difficult part, or there is a ready made list?

    ReplyDelete
  3. Himaster LabsJanuary 11, 2011 at 12:44 AM

    wow.. nice tut..
    but i not enough understanding about it...:D
    keep share...

    ReplyDelete
  4. AayushJanuary 11, 2011 at 2:27 AM

    can we know the ip address of the person we are chatting with

    ReplyDelete
  5. bharat109January 11, 2011 at 9:22 AM

    aayush u can know each and everything with ur chatting but for dat u have to try few things of own ... and i agree with bung hackers about tute comment .

    ReplyDelete
  6. JosephJanuary 12, 2011 at 10:48 PM

    Wow!! i am so much happy after read your post and really nice technique ideas as well as i will also use in mu office.Thanks you so much for sharing this technique.

    ---------
    Computer Networking Los Angeles

    ReplyDelete
  7. SaraJanuary 21, 2011 at 4:08 AM

    Thanks a lot for enjoying this beauty article with me. IT Support in this day and age is of paramount importance for all those that are interested in taking their experience with technology to the next level.

    ReplyDelete
  8. AnonymousJanuary 22, 2011 at 4:17 AM

    the anient method is to open cmd
    type ipconfig
    type nbtstats -A ipaddr
    see if u got "20"
    if yes its ok
    type nbtstats-R
    edit lmhost
    type ipaddr #PRE
    save it
    net view
    net use \\ipadrr\IPC$

    dont crash computer use it just for knowledge

    ReplyDelete
  9. UnknownFebruary 14, 2011 at 8:14 AM

    I have some problems here I got all the required programs that you asked and Everything is gone okay until The Command completed successfully but I don't know what's went wrong after exactly when I wrote "c:\>cd userid" This is not working just please make it clear if you could because i tried a lot of things but I guess the step is a bit difficult...thx .

    ReplyDelete
  10. shaheryarApril 28, 2011 at 7:12 AM

    please share your link for tools on some other servers like rapidshare or mediafore, megaupload is block in my country

    ReplyDelete
  11. FarazJune 15, 2011 at 3:54 PM

    I m unable to do that :( i followed the described procedure correctly. but i cant create null sessions

    ReplyDelete