mirror of
https://github.com/carlospolop/hacktricks.git
synced 2023-12-14 19:12:55 +01:00
hotfix
This commit is contained in:
parent
c853791712
commit
431bef483d
1 changed files with 3 additions and 3 deletions
|
@ -191,7 +191,7 @@ smbmap -u "username" -p "<NT>:<LM>" [-r/-R] [Folder] -H <IP> [-P <PORT>] #Pass-t
|
|||
|
||||
### **Manually enumerate windows shares and connect to them**
|
||||
|
||||
It may be possible that you are restricted to display any shares of the host machine and when you try to list them it appears as if there aren't any shares to connect to. Thus it might be worth a short to try to manually connect to a share. To enumerate the shares manually you might want to look for responses as NT_STATUS_ACCESS_DENIED and NT_STATUS_BAD_NETWORK_NAME, when using a valid session \(e.g. null session or valid credentials\). These may indicate whether the share exists and you do not have access to it or the share does not exist at all.
|
||||
It may be possible that you are restricted to display any shares of the host machine and when you try to list them it appears as if there aren't any shares to connect to. Thus it might be worth a short to try to manually connect to a share. To enumerate the shares manually you might want to look for responses like NT_STATUS_ACCESS_DENIED and NT_STATUS_BAD_NETWORK_NAME, when using a valid session \(e.g. null session or valid credentials\). These may indicate whether the share exists and you do not have access to it or the share does not exist at all.
|
||||
|
||||
Common share names for windows targets are
|
||||
|
||||
|
@ -204,7 +204,7 @@ Common share names for windows targets are
|
|||
* SYSVOL
|
||||
* NETLOGON
|
||||
|
||||
\(stole it from _**Network Security Assessment 3rd edition**_\)
|
||||
\(Common share names from _**Network Security Assessment 3rd edition**_\)
|
||||
|
||||
You can try to connect to them by using the following command
|
||||
|
||||
|
@ -217,7 +217,7 @@ or this script \(using a null session\)
|
|||
```bash
|
||||
#/bin/bash
|
||||
|
||||
ip='<YOUR-IP-HERE>'
|
||||
ip='<TARGET-IP-HERE>'
|
||||
shares=('C$' 'D$' 'ADMIN$' 'IPC$' 'PRINT$' 'FAX$' 'SYSVOL' 'NETLOGON')
|
||||
|
||||
for share in ${shares[*]}; do
|
||||
|
|
Loading…
Reference in a new issue