HomeCalendarCertificationsColumnsFeaturesForumResourcesVitals
 
Image
 
Latest Additions
 
EH-Net Login
Welcome Guest.
Lost Password?
No account yet? Register
Who's Online
We have 27 guests and 2 members online
EH-Net Donations

Enter Amount:
$
Google Ads
EH-Net News Feeds
Latest Additions
Book Recommendations



 
Advertisement

You are here: Home arrow Forum arrow Ethical Hacking Discussions and Related Certificationsarrow Network Pen Testingarrow Breaking Win NT
Ethical Hacker Community Forums
January 08, 2009, 12:25:37 AM *
Welcome, Guest. Please login or register.
Did you miss your activation email?

Login with username, password and session length
News: ChicagoCon 2-Day Ethical Hacking Conference with MS Blue Hats Oct 31 - Nov 1. Tickets Only $100! www.chicagocon.com/content/view/103/51/
 
   Home   Help Calendar Login Register  
Pages: [1]   Go Down
« previous next »
  Print  
Author Topic: Breaking Win NT  (Read 1723 times)
0 Members and 1 Guest are viewing this topic.
sgt_mjc
Full Member
***
Offline Offline

Posts: 166


View Profile
« on: September 19, 2008, 03:36:41 PM »
I'm looking for some help. We have an NT VM with no service packs and only four ports open. This has resisted all attempts by several of us to get into it. I can NULL session in but am unable to actually do anything. Any ideas? Thanks.
Logged
Mike Conway
CompTia Security +
C|EH
BillV
Hero Member
*****
Offline Offline

Posts: 883


View Profile
« Reply #1 on: September 20, 2008, 08:23:34 AM »
What ports?
Logged
don
Editor-In-Chief
Administrator
Hero Member
*****
Offline Offline

Posts: 2435


Editor-In-Chief


View Profile WWW
« Reply #2 on: September 21, 2008, 11:10:48 AM »
If you can "NULL session in" then you're in. Connect to some shares, copy files over (like maybe vnc), off you go.

Unless I'm misunderstanding what you mean.

Don
Logged
CISSP, MCSE, CEH, Security+ SME
jimbob
Sr. Member
****
Offline Offline

Posts: 332



View Profile WWW
« Reply #3 on: September 22, 2008, 03:22:14 AM »
If it's NT 4.0 with no service packs just stare at it for about 30 seconds and it should drop it's panties Wink

Seriously though, check the 'net for docs on null sessions. Or look for a good doc on securing NT and work back from there. NT has more holes than a swiss cheese.

Jimbob
Logged
sgt_mjc
Full Member
***
Offline Offline

Posts: 166


View Profile
« Reply #4 on: September 22, 2008, 11:02:27 AM »
We all thought that it shouldn't be a problem, but darn if it isn't the hardened version of NT from h3ll. Anyways, ports 80, 139, and 70 that I remember off the top of my head. Nmap shows the ports by when we try to get in 80, it does not respond. Its quite frustrating. Thanks for the help.
Logged
Mike Conway
CompTia Security +
C|EH
Pages: [1]   Go Up
  Print  
« previous next »
 
Jump to:  

Powered by MySQL Powered by PHP Powered by SMF 1.1.7 | SMF © 2006-2008, Simple Machines LLC
Joomla Bridge by JoomlaHacks.com 		Valid XHTML 1.0! Valid CSS!
Page created in 0.043 seconds with 23 queries.
 
Sponsors

cwnp_moto__120x90.gif

Polls
How many security events including conferences and training do you attend a year:
 
Support EH-Net

Support EH-Net by
Buying all of your
Amazon items using
the search bar above.
cbtnuggets_logo_125.jpg
Try CBT Nuggets Free!
Recent Forum Topics
Vote For EH-Net

progenic.com
Click here to Vote!

binarica.com
Binarica Logo

Add to Technorati Favorites
technorati fave

 
         
Advertisement

© 2009 The Ethical Hacker Network
Joomla! is Free Software released under the GNU/GPL License.