HomeCalendarCertificationsColumnsFeaturesForumResourcesVitals
 
Image
 
linkedin_logo.png rss_logo.jpg
twitter_logo.png youtube_logo.jpg
Latest Additions
 
EH-Net Login
Welcome Guest.
Lost Password?
No account yet? Register
Who's Online
We have 45 guests online
 
Advertisement

You are here: Home arrow Ethical Hacking Discussions and Related Certificationsarrow Programmingarrow NT 4
EH-Net
May 18, 2013, 06:26:47 AM *
Welcome, Guest. Please login or register.
Did you miss your activation email?

Login with username, password and session length
News: Go back to The Ethical Hacker Network Online Magazine Home Page
 
   Home   Help Calendar Login Register  
Pages: [1]   Go Down
« previous next »
  Print  
Author Topic: NT 4  (Read 5271 times)
0 Members and 1 Guest are viewing this topic.
KH3
Newbie
*
Offline Offline

Posts: 7


View Profile
« on: June 22, 2008, 03:51:27 AM »
Hi there, I am new to programming but are learning some perl and python.

I need to write a small script (pref. Python) that can detect old windows NT 4 boxes in a mixed large windows network. Result should just be a name or a IP if it is a NT4 box. The script should be able to run without user account.

Any ideas of what to detect verify on in relation to the possibilities in python/perl?

Thanks
Logged
shakuni
Jr. Member
**
Offline Offline

Posts: 80


View Profile
« Reply #1 on: June 22, 2008, 05:38:03 AM »
Code:
>>> import sys
 >>> sys.getwindowsversion()
(5, 1, 2600, 2, 'Service Pack 2')
 >>> import platform as  pl
 >>> pl.platform()
'Windows-XP-5.1.2600-SP2'
 >>> pl.system()
'Windows'
 >>> pl.release()
'XP'
 >>> pl.version()
'5.1.2600'

You got the concept, now convert it into script.
Logged
There is no rule, law or tradition that apply universally... including this one.
KH3
Newbie
*
Offline Offline

Posts: 7


View Profile
« Reply #2 on: June 23, 2008, 01:21:05 AM »
Thank that look easy and thumbs up for the quick reply ;O)
Logged
KH3
Newbie
*
Offline Offline

Posts: 7


View Profile
« Reply #3 on: June 23, 2008, 03:17:40 PM »
Bonus question!

Will that work from network with a socket or only on the local machine?
Logged
shakuni
Jr. Member
**
Offline Offline

Posts: 80


View Profile
« Reply #4 on: June 26, 2008, 04:21:25 AM »
Try yourself and see!
Logged
There is no rule, law or tradition that apply universally... including this one.
apollo
Full Member
***
Offline Offline

Posts: 146


View Profile WWW
« Reply #5 on: June 27, 2008, 12:14:09 PM »
If you have any host that is on the domain, and you are only looking for hosts that are in your domain that are NT based, you can do this:

 dsquery * "<YOUR BASE DN>" -scope subtree -filter "(operatingSystem=Windows NT*)"

if you are not on a machine which is part of the domain, if you have a valid user account inside the domain

ldapsearch -H ldap://<any domain controller> -b "<your base ou>" -D "<fully qualified DN of a user in AD>" -W  -x  "(OperatingSystem=Windows NT*)"

You could run this on say a linux box against your ad structure, just having a user in the domain and this should get you what you want


If you are talking about walking into a network blind and finding out if there are NT boxes on the network, nmap is your friend
Logged
CISSP, CSSLP, MCSE+Security, MCTS, CCSP, GPEN, GWAPT, GCWN, NOP, OSCP, Security+
Pages: [1]   Go Up
  Print  
« previous next »
 
Jump to:  

Powered by MySQL Powered by PHP Powered by SMF 1.1.18 | SMF © 2013, Simple Machines
Joomla Bridge by JoomlaHacks.com 		Valid XHTML 1.0! Valid CSS!
Page created in 0.079 seconds with 22 queries.
 
Exclusive Deal

sansfire13_245x90_cw90.jpg
SANSFIRE 2013
June 15 - 22

5% Off w/ Code: EHN_5

SANS Deals 4 EH-Netters
5% OFF Any SANS Course in Any Format!
Coupon Code: EHN_5 Including SANS Rocky Mountain 2013 & SANS Boston 2013
Polls
Compared to this year, 2013 will be:
 
Recent Forum Topics
EH-Net News Feeds
Latest Additions
 
         
Advertisement

© 2013 The Ethical Hacker Network
Joomla! is Free Software released under the GNU/GPL License.