UGN Security Forums
My ProfileMember DirectoryLogin
Search our ForumsView our FAQView our Site Rules
View our CalendarView our Active TopicsGo to our Main Page

UGN Security Store
 

Network Sites UGN Security, The GoNix Initiative, Elite Web Gamers, Back of the Web, EveryDay Helper, VNC Web Design & Development
August
Su M Tu W Th F Sa
1 2
3 4 5 6 7 8 9
10 11 12 13 14 15 16
17 18 19 20 21 22 23
24 25 26 27 28 29 30
31
Sponsored Links
Latest Postings
Amazon Gift Card Generator/KeyGen?te
by Gecko666
08/22/14 09:21 AM
Latest Reviews
Topic Options
Rate This Topic
#10138 - 10/31/02 10:43 AM Access Computers Trough Port 20
ThisIsWar Offline
Junior Member

Registered: 10/30/02
Posts: 7
Loc: Somewhere on Earth I belive
I have managed to learn how to make port 20 available on win 9.x machines. Now I have this other problem. I cannot connect to a computer that has this vulnerability. I cannot explore the files there.
I have used LEGION but it does not detect that the port is open. It may be my computers fault i don't know why??? I have no firewall and there is no proxy on.
What is Lmhosts.sam got to do with this thing? I heard it makes the other machine available after entering the share's name and the IP. The thing i do not understand is how to "FIND THE COMPUTER" over TCP/IP. Do I need some software or is it already included in the windows 9.x version ???
_________________________
If you are 555 - Then I am 666

Top
Sponsored Links
      
#10139 - 10/31/02 03:03 PM Re: Access Computers Trough Port 20
Infinite Offline



Registered: 03/09/02
Posts: 1041
Loc: Canada eh
Port 20 is ftp-data, it shouldn't just be "open", and even if it was i'm not sure how exploitable it would really be. It would totally depend on what ftpd is sitting on that port. How are you "opening:" this port?

sum

Top
#10140 - 11/01/02 09:44 AM Re: Access Computers Trough Port 20
ThisIsWar Offline
Junior Member

Registered: 10/30/02
Posts: 7
Loc: Somewhere on Earth I belive
Start>Settings>Control Pannel>Network>File and Print Sharring
Check the two boxes there and voila! port 20 gets opened. The best way to open them on a victim computer is to make the user there open them, trough IRC or an e-mail(social engineering if I am not wrong).
People seem to get paranoied when they are told a virus is on their comp. <img src=" title="" src="graemlins/laugh.gif" />
_________________________
If you are 555 - Then I am 666

Top
#10141 - 11/01/02 01:02 PM Re: Access Computers Trough Port 20
Infinite Offline



Registered: 03/09/02
Posts: 1041
Loc: Canada eh
That has absolutely nothing to do with port 20. Netbios (file and print sharing) would open port 139. That is prolly why your scans show it as closed, because it is. Turn on file sharing, and scan for port 139, I'll bet ya you'll find that one open. What made you think you were opening port 20?

sum

Top
#10142 - 11/05/02 11:59 AM Re: Access Computers Trough Port 20
ThisIsWar Offline
Junior Member

Registered: 10/30/02
Posts: 7
Loc: Somewhere on Earth I belive
I have this stupid "Hacking Bible" that said this was the method to acces files trough netbios and probably ftp. As I can see it is something wrongh with it or there is something wrong with me!!! Ok then ...
Let's say port 139 is open. How do I acces files trough it? Do I need some sharing utils??? As Microsucks (sorry Microsoft) Sharing?
_________________________
If you are 555 - Then I am 666

Top
#10143 - 11/05/02 01:01 PM Re: Access Computers Trough Port 20
Infinite Offline



Registered: 03/09/02
Posts: 1041
Loc: Canada eh
Here, this should answer any questions you have about this. It explains how to go about exploiting file sharing, and explains things like lmhosts that you already asked about.

http://blacksun.box.sk/tutorials.php?id=22

Keep in mind here that what you're trying to do is a few years old and doesn't work anywhere near as often as it did 4 years ago. As well it's pretty lame way to go about this; it requires no skill at all.

sum

Top
#10144 - 11/05/02 02:07 PM Re: Access Computers Trough Port 20
DaMaRiS Offline
Junior Member

Registered: 09/26/02
Posts: 55
Loc: New York City
I'm a whore!

(proudly edited by RAGE)

Top
#10145 - 11/05/02 02:09 PM Re: Access Computers Trough Port 20
black^Pimp Offline
UGN GFX Whore

Registered: 09/26/02
Posts: 624
Loc: Underground
DaMaRiS please keep your comments for yourself, this is an interesting topic so let them do they're work precise if you have something smart to add or something that could help fixing the problem/finding the best solution even though i think sum did it all. This is not a General Chat. Thanks

bp
_________________________
+^Born Intelligence

Top
#10146 - 11/05/02 02:51 PM Re: Access Computers Trough Port 20
Curse Offline

Enforcement Admin

Registered: 03/04/02
Posts: 533
Loc: San Andreas
Yes, Damaris, please stop going from topic to topic trying to start shit...

Top
#10147 - 11/05/02 06:45 PM Re: Access Computers Trough Port 20
Mornse Offline
Member

Registered: 03/03/02
Posts: 185
Loc: Vancouver
Another thing that I didn't see in that tutorial (maybe I missed it?) is Null Sessions that can be established with MS File Sharing on NT boxes. Basically Null Sessions are used to gain information about systems. If file sharing is enabled on an NT box, chances are you can use null sessions, this is the general format for using shares:

net use \\\[share] * /u:[username]

this is the general format for using Null Sessions on boxes:

net use \\[target IP]\IPC$ "" /u:""

Then you have to use a program called DumpSec to gain information once you have established the Null Session, search for this program on google, it's really easy to find.

To disable Null Sessions on your box you have to change registry settings, on win2k go to the directory

HKLM\SYSTEM\CurrentControlSet\Control\LSA

in your registy and chang the "restrictanonymous" key to 2. On NT 4 you have to create the "restrictanonymous" key in that directory and set it to 1. If I have screwed up any of the information here please let me know (unreal?), but i'm pretty sure this is correct.
_________________________
Cha want some w***up?

http://www.dopeskill.com

Top
#10148 - 11/10/02 09:35 AM Re: Access Computers Trough Port 20
ThisIsWar Offline
Junior Member

Registered: 10/30/02
Posts: 7
Loc: Somewhere on Earth I belive
Thanks for the link sum. It completed my knoledge about the topic.
I know this is lame and I intend to stop doing it as soon as I find some other stuff to exploit. I already got myself a shell and started to learn the basic Linux commands (actually restarted as I had this really fucked-up version of linux on my comp 1 year ago and I have learned nothing from it)
_________________________
If you are 555 - Then I am 666

Top

Moderator:  Infinite 
Featured Member
Registered: 08/22/14
Posts: 1
Forum Stats
2148 Members
46 Forums
34027 Topics
69194 Posts

Max Online: 1567 @ 04/25/10 02:20 AM
Top Posters
UGN Security 27189
Gremelin 7192
§intå× 3255
SilentRage 1273
Ice 1146
pergesu 1136
Infinite 1041
jonconley 955
Girlie 908
unreal 860
Newest Members
Gecko666, defghi795767, Devo60, ali, lavos
2147 Registered Users
Who's Online
0 registered (), 301 Guests and 310 Spiders online.
Key: Admin, Global Mod, Mod
Latest News


Donate
  Get Firefox!
Get FireFox!