Electronic Books

134
Practical Hacking Techniques and Countermeasures
The Sprint application will compile.
To execute the Sprint application against the target to detect the operating
system, type:
./sprint ??“t (Target IP Address)
In this example, the target of 172.16.1.40 is operating on Windows 2000.
An attacker will take this information and launch Windows 2000 exploits,
which are attacks against the target.
*Note: The ??“t option tells Sprint to operate in Active mode. If you need to operate
in Passive mode use the ??“l option instead of the ??“t.
Target Enumeration
135
Lab 27: Default Shares
Disable Default Shares: Windows Operating System
Prerequisites: None
Countermeasures: Host-based firewalls, Restrict Anonymous, Registry
Edit
Description: The default shares for Windows computers can be as useful
to an attacker as the intended user. The default shares of concern are
ADMIN$ and one for each logical disk on the system (C Drive = C$,
D Drive = D$, etc.) Once an attacker has identified the default shares
a dictionary attack can be attempted against these shares. The objective
of this lab is to disable the default shares.
*Note: Disabling the default shares will render the Microsoft Systems Management
Server (SMS) and potentially other administrative networking tools inoperative
as they depend on the default shares for their connectivity. The average
home user should be able to disable these shares without incident.


Pages:
53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77