Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Nessus-Users
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: Windows Service Pack scanning

from [AnalyzerN] Network Security [Permanent Link]
Subject: Re: Windows Service Pack scanning
Date: Mon, 30 May 2005 23:17:28 +0600 

Well nessus can login to WinXP successfully if u just disable simple file
sharing!
Isn't it easier than using gpedit ??

AN

----------------------------------------------------------------------------
------------


After extensive testing, I've managed to get a consistent success at reading
windows workstation
machines by doing the following things.

1. Creating a local group nessus_group
2. Creating a local user nessus_user
3. Adding nessus_user to nessus_group, and removing it from Users group
4. Ensuring that the Remote Registry service was running, and set to
automatically start at boot
5. Adding read permissions for nessus_group to the following registry key

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurePipeServers\winreg

6. Open gpedit.msc and goto the following:

Windows Settings -> Security Settings -> Local policies -> Security Options

Change value of "Network access: Sharing and security model for local
accounts" to "Classic - local
users authenticate as themselves"

And finally, on a Windows XP box with a firewall, you need to open port 445
to the machine that your
  scanning from. This can be done by going to Control Panel -> Windows
Firewall -> Exceptions. From
there, edit the File and Printer Sharing, and open port 445. You can change
the scope on that port
to include just your nessus scanner, the entire subnet, or totally open,
whichever you prefer.

All of this can be set up in a simple .cmd script. These are the tools I use

net localgroup <- Adds local group
net user <- Adds local user
sc <- Allows you to change settings on windows services
regperm.exe <- Third Party Registry Permission tool
(http://homepages.cae.wisc.edu/~micro/regperm/)
netsh firewall <- Allows you to change firewall settings
secedit <- Adds a security template, which is the same as gpedit.msc from
the command line

See if that fixes your problem.

-Branden McKagen

_______________________________________________
Nessus mailing list
Nessus@list.nessus.org
http://mail.nessus.org/mailman/listinfo/nessus

_______________________________________________
Nessus mailing list
Nessus@list.nessus.org
http://mail.nessus.org/mailman/listinfo/nessus
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Suggestion for hostname guessing, Jason Haar
Next by Date:  The Perfect Scan, Steve Smith [Temp Email]
Previous by Thread:  Re: Windows Service Pack scanning, Branden McKagen
Next by Thread:  Re: Windows Service Pack scanning, AnalyzerN
Indexes:  [Date] [Thread] [Top] [All Lists]