Pentesting

NetBIOS Enumeration

  • Provides three services on a network segment

    • Name servicing

    • Connectionless communication

    • Session layer stuff

  • Designed to host information about all the machines within the domain or TCP/IP network segment

  • A "master browser" coordinates list information and allows systems and users to easily find each other.

  • NetBIOS name

    • 16 character ASCII string used to identify network devices

    • 16th character is reserved for the service of name record type

To see it in Windows use the built-in utility nbstat

# For your local table 
nbtstat -n 

# For a remote system's table 
nbtstat -A IPADDRESS 

# For the cache 
nbtstat -c

  • Other NetBIOS enumeration tools

    • SuperScan

    • Hyena

    • Winfingerprint

    • NetBIOS Enumerator

    • NSAuditor

PreviousEnumerating SSHNextSNMP Enumeration

Last updated