null session

Home / Tag: null session

05 Dec

Plundering Windows Account Info via Authenticated SMB Sessions

Pentester
Null Session
Tags: null session, rpcclient, smb
no comments

Rpcclient is Your Friend! By Ed Skoudis I absolutely adore the Server Message Block (SMB) protocol. Sure, it’s ugly and bewilderingly complex. But, what I love is the raw power SMB provides for manipulating Windows environments during a penetration test. Via SMB, you can remotely access file shares, the registry, services, domain authentication, and much […]

04 Dec

ENUMERATING USER ACCOUNTS ON LINUX AND OS X WITH RPCCLIENT

Pentester
Null Session
Tags: 135, 139, 445, null session, rpcclient
no comments

Yeah so i was bored on the hotel wireless…errr lab…and started seeing who had ports 135, 139, 445 open. I found one guy running OS X 10.4 with Samba running and one guy running Ubuntu with Samba running, oh and also one guy running XP SP0/1 vulnerable to DCOM (wont even go down that road). […]