Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Nessus-Users
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: Windows Service Pack scanning

from [AnalyzerN] Network Security [Permanent Link]
Subject: Re: Windows Service Pack scanning
Date: Tue, 31 May 2005 19:26:10 +0600 
Hi isn't it just easier if u just disable Simple File Sharing in WinXP than
using gpedit ?

AN.


----- Original Message ----- 
From: "Branden McKagen" <mckagen05@vt.edu>
Cc: <nessus@list.nessus.org>
Sent: Thursday, May 26, 2005 1:25 AM
Subject: Re: Windows Service Pack scanning



-----Original Message-----
From: Robert Myers [mailto:ccrider@whiterose.net]
Sent: Wednesday, May 25, 2005 9:39 AM
To: nessus@list.nessus.org
Subject: Windows Service Pack scanning

I am receiving the following error while trying to scan a windows XP

machine

for it's service pack revision:

user root : Not launching smb_reg_service_pack _XP.nasl against
192.168.1.102 because the key SMB/WindowsVersion is missing (th is is not

an

error)

I've checked the remote registry service, and triple checked the logon
information in the scan, auto dependencies checking is enabled, what am I
missing?

-Bob Myers


After extensive testing, I've managed to get a consistent success at reading
windows workstation
machines by doing the following things.

1. Creating a local group nessus_group
2. Creating a local user nessus_user
3. Adding nessus_user to nessus_group, and removing it from Users group
4. Ensuring that the Remote Registry service was running, and set to
automatically start at boot
5. Adding read permissions for nessus_group to the following registry key

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurePipeServers\winreg

6. Open gpedit.msc and goto the following:

Windows Settings -> Security Settings -> Local policies -> Security Options

Change value of "Network access: Sharing and security model for local
accounts" to "Classic - local
users authenticate as themselves"

And finally, on a Windows XP box with a firewall, you need to open port 445
to the machine that your
  scanning from. This can be done by going to Control Panel -> Windows
Firewall -> Exceptions. From
there, edit the File and Printer Sharing, and open port 445. You can change
the scope on that port
to include just your nessus scanner, the entire subnet, or totally open,
whichever you prefer.

All of this can be set up in a simple .cmd script. These are the tools I use

net localgroup <- Adds local group
net user <- Adds local user
sc <- Allows you to change settings on windows services
regperm.exe <- Third Party Registry Permission tool
(http://homepages.cae.wisc.edu/~micro/regperm/)
netsh firewall <- Allows you to change firewall settings
secedit <- Adds a security template, which is the same as gpedit.msc from
the command line

See if that fixes your problem.

-Branden McKagen

_______________________________________________
Nessus mailing list
Nessus@list.nessus.org
http://mail.nessus.org/mailman/listinfo/nessus

_______________________________________________
Nessus mailing list
Nessus@list.nessus.org
http://mail.nessus.org/mailman/listinfo/nessus
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: Startup problems Solaris 10, Senthil Prabu.S
Next by Date:  Re: Virtual Domain Scanning Bug, Jay Jacobson
Previous by Thread:  Re: Windows Service Pack scanning, AnalyzerN
Next by Thread:  Bug in doc_browsable.nasl ?, Jesper S. Jensen
Indexes:  [Date] [Thread] [Top] [All Lists]