NetBIOS enumeration
> Enum
>> enum <-UMNSPGLdc> <-u username> <-p password> <-f dictfile> <hostname|ip>
> Null Session
>> net use \\192.168.1.1\ipc$ "" /u:""
>>> net view \\ip_address
>>> Dumpsec ( http://www.systemtools.com/download/dumpacl.zip )
> Smbclient
>> smbclient -L //server/share password options
> Superscan ( http://www.foundstone.com/index.htm?subnav=resources/navigation.htm&subcontent=/resources/proddesc/superscan.htm )
>> Enumeration tab.
> user2sid/sid2user ( http://packetstormsecurity.org/NT/hack/sid.zip )
> Winfo ( http://ntsecurity.nu/toolbox/winfo/ )

NetBIOS brute force
> Hydra ( http://freeworld.thc.org/ )
> Brutus ( http://www.hoobie.net/brutus/ )
> Cain & Abel ( http://www.oxid.it/cain.html )
> getacct ( http://www.securityfriday.com/tools/GetAcct.html )
> NAT (NetBIOS Auditing Tool) ( http://www.cotse.com/tools/netbios.htm )

Examine Configuration Files
> Smb.conf
> lmhosts