From SkullSecurity
Revision as of 00:09, 26 August 2008 by Ron (talk | contribs)
Jump to navigation Jump to search


Experimentation with NetBios.

Currently implements:

  • NetBIOS lookups
  • NetBIOS registrations
  • NetBIOS poisoning

The poisoning is the most interesting part. It will respond to any NetBIOS lookup with a given address, effectively poisoning everything that wasn't found, and even some stuff that was (if it wins the race). Additionally, it will send a NetBIOS conflict to anything new that tries to register, effectively stealing their names.

The "Implementing CIFS" book has been a huge help:

svn co http://svn.skullsecurity.org:81/ron/security/nbtool


Current version is tested on:

  • Linux (Slackware 12.1)
  • Mac OS X (PPC and Intel)
  • iPhone (make iphone)
  • iPod Touch (make ipod)
  • Windows XP (cygwin), although it can't do interesting stuff by listening on 137

(Let me know if it works on other operating systems)