NetBIOS Hacking
For this tutorial, We used Microsoft?s Windows XP Home Edition.
-What is it?-
NetBIOS Hacking is the art of hacking into someone else?s computer through your computer. NetBIOS stands for ?Network Basic Input Output System.? It is a way for a LAN or WAN to share folders, files, drives, and printers.
-How can this be of use to me?-
Most people don?t even know, but when they?re on a LAN or WAN they could possibly have their entire hard drive shared and not even know. So if we can find a way into the network, their computer is at our disposal.
-What do I need?-
Windows OS
Cain and Abel (Oxid.it)
Part 1, Finding the target.
———————————————————————————————–
So first off we need to find a computer or the computer to hack into. So if your plugged in to the LAN, or connected to the WAN, you can begin. Open up Cain and Abel. This program has a built in sniffer feature. A sniffer looks for all IP addresses in the local subnet. Once you have opened up the program click on the sniffer tab, click the Start/Stop sniffer, and then click the blue cross
Another window will pop up, make sure ?All host in my subnet? is selected, and then click ok.
It should begin to scan.
Then IP?s, computer names, and mac addresses will show up. Now remember the IP address of the computer you are going to be breaking into. If you can?t tell whether the IP address is a computer, router, modem, etc, that?s ok. During the next step we will begin our trial and error.
Part 2, Trial and Error
————————————————————————————————
Now, we don?t know if we have our designated target, or if we have a computer or printer, or whatever else is on the LAN or WAN. If you did get the IP of the target though, I still recommend reading through this section, for it could be helpful later on. Click on the start menu and go to run, type in cmd, and click ok. This should bring up the command prompt. From here we will do most of the hacking. Now I will be referring to certain commands that need to be inputted into the command prompt. I will put these commands in quotes, but do not put the quotes in the code when you type it into the prompt. I am only doing this to avoid confusion. Let?s get back to the hacking. Type in ?ping (IP address of the target).? For example in this tutorial, ?ping 192.168.1.103.? This will tell us if the target is online. If it worked, it will look something like this (note, I have colored out private information):
IF it didn?t work, meaning that the target is not online, it will look something like this:
If the target is not online, either switch to a different target, or try another time. If the target is online, then we can proceed.
Part 3, Gathering the Information.
————————————————————————————————–
Now, input this command ?nbtstat ?a (IP address of target).? An example would be ?nbtstat ?a 192.168.1.103.? This will show us if there is file sharing enabled, and if there is, it will give us the: currently logged on user, workgroup, and computer name.
Ok, you?re probably wondering, ?What does all this mean to me?? Well, this is actually very important, without this, the hack would not work. So, let me break it down from the top to bottom. I will just give the first line of information, and then explain the paragraph that follows it.
The information right below the original command says: ?Local Area Connection,? this information tells us about our connection through the LAN, and in my case, I am not connected through LAN, so the host is not found, and there is no IP.
The information right below the ?Local Area Connection,? is ?Wireless Network Connection 2:? It gives us information about the connection to the target through WAN. In my case I am connected through the WAN, so it was able to find the Node IpAddress. The Node IpAddress is the local area IP of the computer you are going to break into.
The NetBIOS Remote Machine Name Table, give us the workgroup of our computer, tells us if it is shared, and gives us the computer name. Sometimes it will even give us the currently logged on user, but in my case, it didn?t. BATGIRL is the name of the computer I am trying to connect to. If you look to the right you should see a <20>. This means that file sharing is enabled on BATGIRL. If there was not a <20> to the right of the Name, then you have reached a dead end and need to go find another IP, or quit for now. Below BATGIRL is the computers workgroup, SUPERHEROES. If you are confused about which one is the workgroup, and the computer, look under the Type category to the right of the < > for every Name. If it says UNIQUE, it is one system, such as a printer or computer. If it is GROUP, then it is the workgroup
Step 4, Breaking In
———————————————————————————————–
Finally it?s time. By now we know: that our target is online, our target has file sharing, and our target?s computer name. So it?s time to break in. We will now locate the shared drives, folders, files, or printers. Type in ?net view \\(IP Address of Target)?
An example for this tutorial would be: ?net view \\192.168.1.103?
We have our just found our share name. In this case, under the share name is ?C,? meaning that the only shared thing on the computer is C. Then to the right, under Type, it says ?Disk.? This means that it is the actual C DISK of the computer. The C DISK can sometimes be an entire person?s hard drive.
All’s that is left to do is ?map? the shared drive onto our computer. This means that we will make a drive on our computer, and all the contents of the targets computer can be accessed through our created network drive. Type in ?net use K: \\(IP Address of Target)\(Shared Drive). For my example in this tutorial, ?net use K: \\192.168.1.103\C.? Ok, let?s say that you plan on doing this again to a different person, do u see the ?K after ?net use?? This is the letter of the drive that you are making on your computer. It can be any letter you wish, as long as the same letter is not in use by your computer. So it could be ?net use G…,? for a different target.
As you can see, for my hack I have already used ?K,? so I used ?G? instead. You may also do the same for multiple hacks. If it worked, it will say ?The command completed successfully.? If not, you will have to go retrace you steps. Now open up ?my computer? under the start menu, and your newly created network drive should be there.
Now, if you disconnect from the WAN or LAN, you will not be able to access this drive, hence the name Network Drive. The drive will not be deleted after you disconnect though, but you won?t be able to access it until you reconnect to the network. So if you are doing this for the content of the drive, I recommend dragging the files and folders inside of the drive onto your computer, because you never know if the target changes the sharing setting. If you are just doing this to hack something, then go explore it and have some well deserved fun!
Congratulations! You?re DONE!
But, before you leave, please look over some of this information for further help.
-Commands used in this tutorial:
PING
NBTSTAT -a (IP Address of Target)
NET VIEW \\(IP Address of Target)
NET USE K: \\(IP Address of Target)\(SHARENAME)
By ouch August 27, 2007 - 1:48 am
“net use K: \\(IP Address of Target)\(Shared Drive)”
99.999% of the time, you will be asked for a username and/or password. Good luck, you’ll need it.
On the other hand, try using http://www.oxid.it/cain.html as it works better than your solution.
By gogi August 27, 2007 - 5:02 am
thanks, had fun reading it
By labrat August 27, 2007 - 1:45 pm
[Comment ID #7651 Will Be Quoted Here]
That is possible, but this article was targeted towards knowledge rather than action. Obviously there will be better ways out there but this might be a good place to start for beginners.
By Brendan August 28, 2007 - 2:26 am
There’s a fundamental reality that hasn’t really been covered overly well – NetBIOS isn’t (typically) routed over IP.
Thus unless one actually configures any routers used, to pass the NetBIOS datagrams (which NAT will also typically munge, just as an aside) this very much becomes an ‘inside’ job, as far as exposure goes.
I believe Cisco have some functionality to achieve the above, but the odds are that most WAN fronting targets, just aren’t going to be NetBIOS hackable by default.
By hackn00b August 30, 2007 - 3:17 pm
hey guys
When itry to connect to ip i’m asked for user and for password!
I know the user how can i find password ?
Please help me .
By deadheadfred August 31, 2007 - 10:47 pm
say a computer that i want into is connected to the same router as i am, but we do not have a workgroup set up? is there anyway to get in to that pc without being in an actual network? please help.
By Fazii September 4, 2007 - 9:33 am
it cooooooool. nice way to map a drive
By Fazil September 4, 2007 - 9:37 am
hey guys !
Let me knw hw to get a password in a workgroup pc
By Gixaw September 6, 2007 - 8:50 am
if no drive is shared but a file of drive how can we find the name of that drive(shared file’s drive name not found) then what will be the next step.
By Copyright September 27, 2007 - 11:30 am
Hey, How can people cut this down. It is Awesome! I actully printed it out and have it in my laptop case and will find it very usefull! Just wanted to say Thanks for taking the time and writing this! If anyone is looknig for one of these tutorials on Hacking WEP encrypted wireless connections check out http://www.whoneedscopyrights.com/12.html
By Roch985 October 23, 2007 - 9:57 am
it was cool and now i know a lot about haking thingz
By bartizmyidol November 30, 2007 - 7:31 am
use enum plus to brute force the passwords
By chaty November 30, 2007 - 11:33 am
huh wot a fuckin information….. its very basic …everyone knows it n wots so shocking in it ..damn u lamers
By nawkaz December 27, 2007 - 2:27 am
hey..why when i click the K drive in my computer..it says K:/ is not accessible. The device is not ready.
can somebody help me?
By IKIIL0INIIE January 15, 2008 - 1:29 pm
Fil3 Sharz Iz Hax? IM GOD!!!!
By disloc January 29, 2008 - 6:03 am
this is a basic skill but we need to learn us how to break the password and the user name
By albino negro February 8, 2008 - 2:21 am
listen to bizzle he knows
By bob February 8, 2008 - 1:37 pm
how do i get te username nd passowrd of tht person????
By Cindex February 13, 2008 - 2:17 am
Username is usually: Admin
Password is usually: 1234
or: 12345
or: 123456
That’s the typical password. Nice use of batch files, I’m thinking about creating a program that will ask you for an IP address and do all of this for you. It doesn’t look hard.. Maybe I could sell it to people too dumb to do it manually
By Grouper March 7, 2008 - 1:02 pm
call me a n00b, but isn’t that possible by just using “My Network Places”, and adding a new network place?
i mean, if those pc’s are connected to you anyways, then you can easily connect to their shared folders with my network places, no need for all that command line action, no?
By Osprey April 18, 2008 - 11:26 am
Why block the name Pam on some pics if your just gonna leave it on the others?
By salman June 27, 2008 - 7:29 am
salam aleikum every one C:\Documents and Settings\HACK3RZzz T3Rry>nbtstat -a 10.0.3.60
Local Area Connection:
Node IpAddress: [10.0.2.114] Scope Id: []
NetBIOS Remote Machine Name Table
Name Type Status
———————————————
ARSALAN UNIQUE Registered
WORKGROUP GROUP Registered
ARSALAN UNIQUE Registered
WORKGROUP GROUP Registered
MAC Address = 00-08-74-08-09-2D
after this process in this command net view \(ip address ) som think like this
C:\Documents and Settings\HACK3RZzz T3Rry>net view \\10.0.3.60
There are no entries in the list. can youy tell me wat can do now plz im very thank full to you and sorry for my bad english
By quantam July 2, 2008 - 11:19 am
well i tried the whole process as described above and found few IP with so it means they have some thing shared (as i understood from the text ) but net view\\ returns me there are no entries in the list:
what is that means
can any one help me ………………
By moudda August 15, 2008 - 9:18 pm
By cactus August 26, 2008 - 1:15 pm
drive is mapped well but it is not showing all the contents. need suggestions i m new at this.
By 30killzz September 17, 2008 - 3:02 pm
AY i need a way to hack programs without using any software can you guys please help me out????????? PLEASE??????????? :please:
By Constantine November 11, 2008 - 8:37 am
Hi all , I acctually do the hole prossece up to the point of net view \%s
after I type the net view thing , it allways sais access denied, why ? And what shal I do to get access ? , please answer me at my email adress
By Sifiso December 15, 2008 - 11:08 am
Hi There,
Thanks for an infomative article but i have a question.
I have managed to get all the stages of the hack right but,
when i open the drive, it does not open “Drive G: is unaccessible”
Please help, your co-opearation will be appreciated.
Looking forward to hearing from you.
Regards
By Darksilence February 24, 2009 - 4:10 pm
I did everything as follows, I got to step 4 and it said ERROR 5: Access is denied. I check and it does have next to the computer’s name so why is it not working?
By PRABHAT December 18, 2009 - 8:27 am
what a FUCKING old trick………….stupid
By CARINO BRUTAL January 21, 2010 - 11:51 am
this kid fuckin hacked my computer. now im goin to get my revenge. motherfuckin little shit took my GIMP piece of ass motherfuckin kid!
By hacked May 27, 2011 - 8:45 am
what the fucking trick is this. you mapped only shared folder or files or drives on a new drive. who the hell is called this hacking. fuckin people