Subnet shares

Meta: May 10th 2002 // Articles

Although you think that you are secure from insiders (people who want to damage or exploit a network or network users from inside) there are ways to see if someone can browse freely files from your hard drive. This way of “hacking” is been used into university networks and Corporation LANs or WANs but can be used in every single network.

DISCLAIMER : This text can be used only as an advice to users or as a reference to System Administrators.

Before we start you need two tools which are freely or as demo versions distributed via the web. The first tools is named xSharez and the second xIntruder. Download these files from www.tools-for.net which is the official website for these products.

After installing xSharez , load the software and you will see the following screen :

As you can see on the top left site is asking to give the IP range that you want to check for shared documents. In order to supply this information you need to know your IP address. In order to find your IP open MS Dos window and type: ipconfig and then look at the line which start with these words : IP Address. . . . . . . . . : .Take all the numbers except the last 3 or 2 numbers and paste them into the first box then add as last number the number 0 (zero) , do the same think into the following text field and instead of zero type 244 as the last number. Now press Scan and the port scanning to port 139 will start. You can now check the status, so you can see all the computers in this LAN or look into scanner tab to see which computers do have shared folders (or hard-drives , cdrom or even floppy discs).

That’s all , isn’t this ridiculously easy ? I think that now you should be more careful regarding your computer and insiders. If you think that a password protected directory can do the difference then you haven’t yet download xIntruder which can easily crack a password (this can be cured if you put all the latest windows patches) .

CURE

To solve these problems you have to do the following :

a) Download and install all patches

b) Put a firewall so you can block and log all dangerous attempts and ports. (I recommend Sygate Personal firewall and/or lockdown)

[Slashdot] [Digg] [Reddit] [del.icio.us] [Facebook] [Technorati] [Google] [StumbleUpon]

Postscript: Leave A Comment // Subscribe (RSS Feed)

The Next Post: JoyStickCrypt
The Previous Post: Image Crypt