nbtscan-unixwiz 介绍

这是一个命令行工具,扫描开放NETBIOS名称服务器在本地或远程TCP/IP网络,这是第一步找到开放的股票。它是基于标准的功能nbtstat Windows工具,但它运行在一系列地址而不是一个。

工具来源 : http://unixwiz.net/tools/nbtscan.html
nbtscan-unixwiz 主页
nbtscan-unixwiz 仓库:

作者: Steve Friedl
证书: public-domain

nbtscan-unixwiz – 开放NETBIOS名称服务扫描器

root@kali:~# nbtscan-unixwiz
nbtscan 1.0.35 - 2008-04-08 - http://www.unixwiz.net/tools/

usage: nbtscan-unixwiz [options] target [targets...]

   Targets are lists of IP addresses, DNS names, or address
   ranges. Ranges can be in /nbits notation ("192.168.12.0/24")
   or with a range in the last octet ("192.168.12.64-97")

   -V        show Version information
   -f        show Full NBT resource record responses (recommended)
   -H        generate HTTP headers
   -v        turn on more Verbose debugging
   -n        No looking up inverse names of IP addresses responding
   -p <n>     bind to UDP Port <n> (default=0)
   -m        include MAC address in response (implied by '-f')
   -T <n>     Timeout the no-responses in <n> seconds (default=2 secs)
   -w <n>     Wait <n> msecs after each write (default=10 ms)
   -t <n>     Try each address <n> tries (default=1)
   -P         generate results in perl hashref format

nbtscan-unixwiz 用法示例

扫描一个范围的IP地址(192.168.0.100-110)不做逆名称查找(-n):

root@kali:~# nbtscan-unixwiz -n 192.168.0.100-110
192.168.0.105   WORKGROUP\RETROPIE             SHARING
*timeout (normal end of scan)

扫描一个IP地址(192.168.0.38)和显示记录NBT资源反应(-f):

root@kali:~# nbtscan-unixwiz -f 192.168.0.38
192.168.0.38    WORKGROUP\DOOKOSSEL             SHARING
  DOOKOSSEL      <00> UNIQUE Workstation Service
  DOOKOSSEL      <03> UNIQUE Messenger Service<3>
  DOOKOSSEL      <20> UNIQUE File Server Service
  ..__MSBROWSE__.<01> GROUP  Master Browser
  WORKGROUP      <00> GROUP  Domain Name
  WORKGROUP      <1d> UNIQUE Master Browser
  WORKGROUP      <1e> GROUP  Browser Service Elections
  00:00:00:00:00:00   ETHER