What exactly does the NetBios Auditing Tool do?
Developed by Secure Networks Inc., it comes in pre-compiled Win32 binary form as well as the complete source code. It is the “SATAN” of NetBios based systems. Here is a quote from Secure Networks Inc about the product – “The NetBIOS Auditing Tool (NAT) is designed to explore the NETBIOS file-sharing services offered by the target system. It implements a stepwise approach to gather information and attempt to obtain file system-level access as though it were a legitimate local client. “The major steps are as follows: “A UDP status query is sent to the target, which usually elicits a reply containing the Netbios ‘computer name’. This is needed to establish a session. The reply also can contain other information such as the workgroup and account names of the machine’s users. This part of the program needs root privilege to listen for replies on UDP port 137, since the reply is usually sent back to UDP port 137 even if the original query came from some different port. “TCP connections are m
