Electronic Books

Verify
with the network administrator at the office. This lab concentrates on
countermeasures.
Procedure: Open Control Panel/Administrative Tools/Computer Management
(or right-click on My Computer and select Manage).
136
Practical Hacking Techniques and Countermeasures
Double-click the SHARES to open the shares to the computer and identify
the default shares. In this example, the ADMIN$ and C$ are the shares of
concern.
Click on START/RUN and type Regedit. Click OK.
Target Enumeration
137
Browse to the following:
HKEY_LOCAL_MACHINE/System/CurrentControlSet/Services/
lanmanserver/parameters
Right-click and select NEW, DWORD value. Enter the name of AutoShare-
Server and enter a value of 0.
138
Practical Hacking Techniques and Countermeasures
Right-click and select NEW, DWORD value. Enter the name of AutoShare-
Wks and enter a value of 0. Restart the computer.
From the Computer Manager as above check the shares to validate the
default shares are no longer there.
*Note: Chapter 4 will demonstrate how to take advantage of default shares.
Target Enumeration
139
Lab 28: Host Enumeration
Scan Open Ports of Target: WinFingerprint
Prerequisites: NULL session, access to UDP-137, IPX, or NetBEUI
Countermeasures: Host-based firewalls, Restrict Anonymous
Description: The WinFingerprint application is used to enumerate information
from a target. Information such as ports, services, shares, and
password policies can be obtained.


Pages:
54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78