Today onwards you guys out there will get some interesting post on hacking stuff this is my first post so hope to see a good response…cutting the crap lets get down to work
NetBIOS Hacking,What is it?
NetBIOS Hacking is the art of hacking into someone else’s computer through your computer. NetBIOS stands for “Network Basic Input Output System.” It is a way for a LAN or WAN to share folders, files, drives, and printers.
How can this be of use to me?
Most people don’t even know, but when they’re on a LAN or WAN they could possibly have their entire hard drive shared and not even know. So if we can find a way into the network, their computer is at our disposal.
What do I need?
Windows OS Cain and Abel (http://www.oxid.it/)
Step 1, Finding the target.
So first off all we need to find a computer or the computer to hack into. So if your plugged in to the LAN, or connected to the WAN, you can begin. Open up Cain and Abel. This program has a built in sniffer feature. A sniffer looks for all IP addresses in the local subnet. Once you have opened up the program click on the sniffer tab, click the Start/Stop sniffer, and then click the blue cross. Another window will pop up, make sure “All host in my subnet” is selected, and then click ok. It should begin to scan.
Cain and Abel
Beginning the scan
Scan in progress
Then IP’s, computer names, and mac addresses will show up.
Now remember the IP address of the computer you are going to be breaking into.
If you can’t tell whether the IP address is a computer, router, modem, etc, that’s ok.
During the next step we will begin our trial and error.
Finding the IP address of the target.
Part 2, Trial and Error
Now, we don’t know if we have our designated target, or if we have a computer or printer, or whatever else is on the LAN or WAN.
If you did get the IP of the target though, I still recommend reading through this section, for it could be helpful later on.
Click on the start menu and go to run, type in cmd, and click ok.
This should bring up the command prompt.
From here we will do most of the hacking.
Now I will be referring to certain commands that need to be inputted into the command prompt.
I will put these commands in quotes, but do not put the quotes in the code when you type it into the prompt.
I am only doing this to avoid confusion.
Let’s get back to the hacking.
Type in “ping (IP address of the target).” For example in this tutorial, “ping 192.168.1.103.”
This will tell us if the target is online.
If it worked, it will look something like this (note, I have colored out private information)
Our target is available
IF it didn’t work, meaning that the target is not online, it will look something like this:
Our target is not online.
If the target is not online, either switch to a different target, or try another time. If the target is online, then we can proceed.
Part 3, Gathering the Information.
Now, input this command “nbtstat –a (IP address of target).” An example would be “nbtstat –a 192.168.1.103.”
This will show us if there is file sharing enabled, and if there is, it will give us the: currently logged on user, workgroup, and computer name.
Checking if file sharing is enabled
Ok, you’re probably wondering, “What does all this mean to me?” Well, this is actually very important, without this, the hack would not work. So, let me break it down from the top to bottom. I will just give the first line of information, and then explain the paragraph that follows it.
The information right below the original command says: “Local Area Connection,” this information tells us about our connection through the LAN, and in my case, I am not connected through LAN, so the host is not found, and there is no IP.
The information right below the “Local Area Connection,” is “Wireless Network Connection 2:” It gives us information about the connection to the target through WAN. In my case I am connected through the WAN, so it was able to find the Node IpAddress. The Node IpAddress is the local area IP of the computer you are going to break into.
The NetBIOS Remote Machine Name Table, give us the workgroup of our computer, tells us if it is shared, and gives us the computer name. Sometimes it will even give us the currently logged on user, but in my case, it didn’t. BATGIRL is the name of the computer I am trying to connect to. If you look to the right you should see a <20>. This means that file sharing is enabled on BATGIRL. If there was not a <20> to the right of the Name, then you have reached a dead end and need to go find another IP, or quit for now. Below BATGIRL is the computers workgroup, SUPERHEROES. If you are confused about which one is the workgroup, and the computer, look under the Type category to the right of the < > for every Name. If it says UNIQUE, it is one system, such as a printer or computer. If it is GROUP, then it is the workgroup.
Step 4, Breaking In
Finally it’s time.
By now we know: that our target is online, our target has file sharing, and our target’s computer name.
So it’s time to break in.
We will now locate the shared drives, folders, files, or printers. Type in “net view \\(IP Address of Target)”
An example for this tutorial would be: “net view \\192.168.1.103”
Finding the share name
We have our just found our share name. In this case, under the share name is “C,” meaning that the only shared thing on the computer is C. Then to the right, under Type, it says “Disk.” This means that it is the actual C DISK of the computer. The C DISK can sometimes be an entire person’s hard drive.
All’s that is left to do is “map” the shared drive onto our computer. This means that we will make a drive on our computer, and all the contents of the targets computer can be accessed through our created network drive. Type in “net use K: \\(IP Address of Target)\(Shared Drive). For my example in this tutorial, “net use K: \\192.168.1.103\C.” Ok, let’s say that you plan on doing this again to a different person, do u see the “K after “net use?” This is the letter of the drive that you are making on your computer. It can be any letter you wish, as long as the same letter is not in use by your computer. So it could be “net use G…,” for a different target.
NetBIOS Hacking
As you can see, for my hack I have already used “K,” so I used “G” instead.
You may also do the same for multiple hacks.
If it worked, it will say “The command completed successfully.”
If not, you will have to go retrace you steps.
Now open up “my computer” under the start menu, and your newly created network drive should be there.
NETBIOS hacking
Now, if you disconnect from the WAN or LAN, you will not be able to access this drive, hence the name Network Drive.
The drive will not be deleted after you disconnect though, but you won’t be able to access it until you reconnect to the network.
So if you are doing this for the content of the drive, I recommend dragging the files and folders inside of the drive onto your computer,
because you never know if the target changes the sharing setting.
If you are just doing this to hack something, then go explore it and have some well deserved fun!
Congratulation you are done!
Commands used in this tutorial:
PING
NBTSTAT -a (IP Address of Target)
NET VIEW \\(IP Address of Target)
NET USE K: \\(IP Address of Target)\(SHARENAME)
Default null session attack.(same process using just cmd)
- A null session attack basicly uses what is called a samba share to get access to the victims share, {ipc$, admin$, etc.}
- This is only for windows xp/vista. Well this is a very simple but effective method of “rooting” a box.
- Open CMD > Net View
- Now go to your local network and open your victims folders
- To close the connection type: net use \\HOST /delete
[Shows all hosts on the network]
> nbtstat -a HOST
[determines if the workgroup is open, if not try another comp]
> net view HOST
[shows open shares being used; ipc$ doesn't automatically show. But if C is open simply type net use \\HOST \c$; then you have root!]
>net use \\HOST \SHARE /u:USER_NAME
[ok so you can ushly use the share IPC$, and the user of admin]
where can i download it ? pls answer me !
hey its good but still u need the target pc to have its files shared.
and by default drive sharing is always off in almost every OS.
so if u trying to hack a dumbo…
u going to be a dumbo coz he will never get on to sharing and other security related tasks..
not so useful one..
though good approach..
This isn’t really a hack. It’s a more complicated way of opening file shares. They are already shared, so why not just access them through the network shortcut in explorer and you don’t have to type anything or remember commands.
Jafge: You are right. I´v got the other pc already on my network, but it has a password protection. So, now what ?
kya wi-fi modem & wi-fi ke shath LAN hoskta hain
i have a problem when i type net view\\ip adress it says system error 5 has occurred
access is denied
so how do i proceed????
it’s because the somputeruser logged in has a password or i think it can also happen if noeone is logged in
System Error 5 is a “permission” error from what i can tell. Try changing your account to an admin account if you can.
i did all the steps but at last i got share name is NEW FOLDER.
i tried “net use K:\\10.31.11.102 NEW FOLDER ”
it said error .
what can i use instead of NEW FOLDER if it not show disk name?
The correct string is that “nbtstat -a 192.168.1.5″
Cmd cannot find this string “nbstat -a”. Anywher dz ds string exist in systm32 or wat?
haha, nice “hack” i can do it using the explorer and my mouse…..
This is NOT a hack.
This is a way of creating a network drive from a shared directory through DOS. Useless…
guys this hack is no longer important because it got public almost 4 years ago. micrsoft has pached this bug now.
can i ask… are you the real author of this or you just leeched it?
because i saw this tuts before without your stamp
C:\Documents and Settings\admin>net use K: \\192.168.1.108\C
Error de sistema 53.
No se ha encontrado la ruta de acceso de la red.
?????????????
when i tried this method i got error host not found ,could you please help me with this
hey but is it tht if the target is shared with us then only it displays the resources i mean if we type net view then it doesn show anything in my display i mean not the computer name and the drive but when i put in the command nbtstat it shows the computer name but then it doesn show the name in the command net view…. plz help!!!!
this steps of hacking is very important to me and i was searching more time but today i get my hope thanks.
IT IS NOT NEEDED TO USE THE CAIN AND ABEL
ALL YOU NEDD IS TO GO TO COMMAND PROMPT
1. type net view
it will display all the names or computer name
2. type tracert computer name
it will display the ip address of the computer
3.type nbstat -a ipaddress
4. type net view \\ipaddress
5. net use drive name \\ipaddress\driveto hack
hi, what about our safety? can that person know that someone entered or shared his hard drive? if yes then tell us the protective steps also. thanks
Why use Cain… you can use commands
“net view /domain”
then
“net view /domain:”domain name”
Then a list of all shared pc’s will appear!
Do you Call this a hack ?….LOL ! Just wasted your time and also readers time..
whats the problem?? i find this very useful, even if i already knew it
I don’t get it! Why you used ‘Cain and Abel’ when we can find the computer names of logged users from ‘My Network Places’ by clicking on ‘View Workgroup Computers’?
And BTW ‘Cain n Abel’ didn’t worked for me! It didn’t find any host. Is it bcoz we’re using IP scheme of 172.16.. or what?
Regards…
thIs Is Crap.. Only Work with Shared Computers Nt Secured DUmbass Waste Of Time
the target only share the sharedocs
can i hack the target c??
Is it really safe to use the Cain and abel software??
It will never work if you get an ERROR 5 at “net view”… which means there’s a sharing, but that the path is actually closed…
i have a problem when i type net view\\ip adress it says system error 5 has occurred
access is denied
No offense, but mounting a shared network folder as a drive is not considered “hacking”.
Also, unless the security is very, very slack file sharing will have had permissions set and user accounts etc…
This is only useful to hack into your grandmas LAN. Nothing else….!!
oh yea that was pretty cool. I tried it out on my network and it worked.but some machines have firewall and want allow u o enter. What should I do?
i tried these and i got all step final was not successful at the final end with is when i in-put the command :net use H: \\Victims IP\Sharenamce also (net use H: \\192.168.1.9\C)
it tool quite long and the responds was error 53 network path was not found
but when i ping the ip address at the beginning it was successful. i need help please
how safe is this process can the victim noe about me
I wonder where I can get this program’m from Brazil (belem-pa “to be precise) and to a bit of difficulty so peopl achala the address where I can download the program thanks for the help d (oO) b
I wonder where I can get this program’m from Brazil (Paragominas-PA “to be precise) and to a bit of difficulty so peopl achala the address where I can download the program thanks for the help d(o.O)b
Well, this is only of the computers SHARES the whole C-disk. If they only share “shared documents”, then it will be the only dir we can reach..
local are connection
Node Ipaddress: [ip address} scope id : []
below this it may be written “Host not found”
read the post properly and try again it may be that your target may be offline
Hi Satesh,
(shutdown -s -t 10): this command is only applicable for admin account.
Thanks.
Cain doesn’t work on vista. upon start up, it modifies the connection service name and therefore disconnects me from the network.
hey i type ntbstat -a(ip address) and run
a window came to the screen
written there
local are connection
Node Ipaddress: [ip address} scope id : []
after this window closed. why it doesn’t show anything
pls help me.
Bravo…..!
1. Right click the drive to open the Properties dialog.
2. In the Security tab, click “Advanced”.
3. from there play with some option and try to find permissions and get it most probably u will do it right
in this case some time there is an error “remot assistance is not allowed”
hey it works…
thanx
but how can we leave a folder on that drive if i have no permission
The best way to keep your pc safe from such attack is to use a good firewall like comodo(free) and there is a network sharing option which you should keep off and dont use pirated copies of windows bcoz its provide loopholes and easy access to brilliant hackers.
and for added security if possible encrypt your data there is a option for encryption in vista and for xp just google it.
i will keep on posting more things like this and this tutorial which i post is the work of long long time bcoz its not easy this days to find a computer which responds to such attacks so who ever wants to try, it will take long time and it will also frustrate you, and most important thing is this is just a tutorial doing such thing in reality is a crime and may be punishable so be careful.
hi in your example you mapped the c drive as K: \\192.168.1.103\C, but while try to map an share folder of another pc there is as number 67 and 62 error.
How to be safe from such network access if someone else is trying to get into our PC.
nice post >>>
Keep on
i wanna try this software