Sunday, February 8, 2009

OPEN PORT 139 , 138 , 137 , 136 ,135 AND HACKING

Warning never try any method of hacking from this blog to any other ip address such as government web site or server etc. for education porpose you can choice your friends ip address
After find ip address of your victime the big question is what to do to access victime computer answer of this question is Find volurable open port and try to get access. remeber it is totally unsafe and elligal however i am going to describe briefly
for get access in any computer who have volunarable open port you first have to find your friend or victime ip address to find ip address of your friend or victime you can choice one of the following method.
1.find ip address in yahoo messenger.
2.find ip address in gtalk.
3.find ip address in MSN messenger.
4.find ip address in orkut or any other blog and web site.

i alredy describe you How can you get access in computer if they have port number 23 open
now i am going to tell method to access computer by open port number 139
for that you need two small tool
1.USER2SID & SID2USER
2.NetBios Auditing Tool

search it in google and download or you can download it fromHere

hacking computer inside the LAN network.

This technique will be taking advantage of Port 139.

Most of the time,Port 139 will be opened.

First of all,I will do a port scanning at the target computer which is 192.168.40.128.

This computer is inside my LAN network.

scan it using Nmap.



I get the result and it shows Port 139 is opened up for me.

Now you will need both of these tools:
** USER2SID & SID2USER
** NetBios Auditing Tool

You can get both of them on the Internet.

After you get both of them,put them in the C:\ directory.




You now need to create a null session to the target computer.



Now open the Command Prompt and browse to the USER2SID & SID2USER folder.There will be 2 tools inside it,one will be USER2SID and another one will be SID2USER.

We will first using USER2SID to get the ID.


We will test against the Guest account because Guest account is a built in account.

After we get the ID,we need to do some modification on the ID.

We take the ID we get from the guest account and modified it become
"5 21 861567501 1383384898 839522115 500".

Please leave out the S-1-,leave out all the - too.

Now you will see that you get the username of the Administrator account.


In this case,the Administrator account is Administrator.

Create a text file called user.txt and the content will be the username of the Admin account.


Prepare yourself a good wordlist.

Now put both of them in the same directory with the NetBios Auditing Tool.

Now we are going to crack the Admin account for the password in order to access to the target computer.

Browse to the NetBios Auditing Tool directory.

Press on enter and the tool will run through the passlist.

In this case,I have get the password.

In order to proof that I can get access to the target computer using this password.

After you press enter,it will prompt you for the username and password.

Therefore,just input them inside the prompt and continue.

Target C drive will be on your screen.

In order to prevent from this attack,close down port that you do not want to use such as Port 135,Port 136,Port 137,Port 138 and Port 139.

18 comments:

  1. awsome tutorial man
    but when i use USER2SID, with the ip and the user 'guest', he says LookupAccountName failer - no such account
    same goes when i change it from 501 to 500...
    anything to do?

    ReplyDelete
  2. namelookup failure No such account

    ReplyDelete
  3. Good assuming guest / admin accounts are enabled.

    ReplyDelete
  4. guest account might be disabled... using a password list is the only way?

    ReplyDelete
  5. gettting an error.. No such account.. can you help me??

    ReplyDelete
  6. i am also getting the same error that there is no such account..... so what should i do?

    ReplyDelete
  7. The only way to go is the word list, Usually guest account is disabled on Windows 7 so if you want to use this tutorial you'll need to try it on windows XP OS.

    ReplyDelete
  8. Try the nmap script called smb-enum-users more info:http://nmap.org/nsedoc/scripts/smb-enum-users.html

    ReplyDelete
  9. should we use only lan or wlan too can be used?

    ReplyDelete
  10. hey hii i have a problem using nmap whenever i try 2 scan an ip adress that Only ethernet devices can be used for raw scans on Windows, and

    "ppp0" is not an ethernet device. Use the --unprivileged option

    for this scan.

    QUITTING!

    ReplyDelete
  11. But what happen if we can not connect to guest account. If the guest account is disable, so we can not connect to it right ? coz i get this error: LookupAccountfailed

    ReplyDelete
  12. DOWNLOAD THE BEST GUIDE FOR HACKING adf.ly/NFK2G

    ReplyDelete
  13. i get the same error LookupAccountName failed - no such account
    please anyone helper!!!!

    ReplyDelete
  14. don't try to hack... they wold see you have been there, and then they can arrest you. hacking are illegal (almost). and remember NSA watching you, day and night ;).

    ReplyDelete