Open kerbroasted opened 6 years ago
randomwalksp
commented
6 years ago Hi,
For the NBS script you need to provide the NetBIOS domain name, i.e. GOAT, and not the FQDN i.e. goat.local. Else, send me a pcap and I'll have a look.
Regards Reino Mostert
amlamarra
commented
5 years ago I'm having the same issue. Trying to use this against a machine on hackthebox.eu. It's the "Active" machine (https://www.hackthebox.eu/home/machines/profile/148). I'm not even sure if it's vulnerable to this type of username enumeration. But here are the results along with a pcap (UserEnum_NBS.zip)
# ./UserEnum_NBS.py 10.10.13.25 10.10.10.100 ACTIVE userslist.txt
UserEnum NetBIOS MailSlot Ping POC - Reino Mostert/SensePost 2018
[*] Starting ...
[-] Error sending/receiving packets: timed out
[-] Error sending/receiving packets: timed out
[-] Error sending/receiving packets: timed out
[-] Error sending/receiving packets: timed outnmap results on the required port:
# nmap -sU -p137-139 10.10.10.100
Starting Nmap 7.70 ( https://nmap.org ) at 2018-09-26 18:34 EDT
Nmap scan report for 10.10.10.100
Host is up (0.10s latency).
PORT STATE SERVICE
137/udp open|filtered netbios-ns
138/udp open|filtered netbios-dgm
139/udp closed netbios-ssn
Running ./UserEnum_NBS.py with the following command. ./UserEnum_NBS.py 192.168.1.94 192.168.1.97 goat.local userslist.txt
Get the following error: UserEnum NetBIOS MailSlot Ping POC - Reino Mostert/SensePost 2018 [*] Starting ... [-] Error sending/receiving packets: timed out [-] Error sending/receiving packets: timed out [-] Error sending/receiving packets: timed out [-] Error sending/receiving packets: timed out [-] Error sending/receiving packets: timed out [-] Error sending/receiving packets: timed out [-] Error sending/receiving packets: timed out [-] Error sending/receiving packets: timed out
Any ideas?