nsock READ timeout

by spider   Last Updated October 10, 2019 03:00 AM

I am using ncrack as:

ncrack 192.168.1.71:3389,CL=1 [email protected] -P pass.txt -vvv -d10

and am encountering the error nsock READ timeout!

The messages seen after executing the command is:

Starting Ncrack 0.6 ( http://ncrack.org ) at 2019-10-09 21:53 EDT

ms-wbt-server://192.168.1.71:3389 (EID 1) Initiating new Connection
ms-wbt-server://192.168.1.71:3389 pushed to list FULL
username: [email protected] pass: 123
 --------------------------------------- FUNCTION LOOP ---------------------------------
 ------------------ RDP LOOP -----------------
TCP length: 529
SEC LICENSE
rdp packet NULL!
LOOP NOTH NULL DATA
Stats: 0:00:02 elapsed; 0 services completed (1 total)
Rate: 0.00; Found: 0; About 0.00% done
ms-wbt-server://192.168.1.71:3389 Pool: Append '[email protected]' '123' 
ms-wbt-server://192.168.1.71:3389 (EID 1) nsock READ timeout!
ms-wbt-server://192.168.1.71:3389 popped from list FULL
ms-wbt-server://192.168.1.71:3389 (EID 1) Attempts: total 0 completed 0 supported 0 --- rate 0.00 
ms-wbt-server://192.168.1.71:3389 Pool: extract '[email protected]' '123'
ms-wbt-server://192.168.1.71:3389 (EID 2) Initiating new Connection
ms-wbt-server://192.168.1.71:3389 pushed to list FULL
username: [email protected] pass: 123
 --------------------------------------- FUNCTION LOOP ---------------------------------
 ------------------ RDP LOOP -----------------
TCP length: 529
SEC LICENSE
rdp packet NULL!
LOOP NOTH NULL DATA

and the above loop repeats


I can successfully login into windows machine using rdesktop as

rdesktop -u Administrator -d winser2012 192.168.1.71

without specifying the domain name winser2012, another domain is specified by default while connecting, which doesn't have the Administrator user.


Using command without specifying domain name gives the following messages:

ncrack -vvv -d10 -f --user Administrator -P pass.txt rdp://192.168.1.71,CL=1
Fetchfile found pass.txt

Starting Ncrack 0.6 ( http://ncrack.org ) at 2019-10-09 22:10 EDT

rdp://192.168.1.71:3389 (EID 1) Initiating new Connection
rdp://192.168.1.71:3389 pushed to list FULL
username: Administrator pass: 123
 --------------------------------------- FUNCTION LOOP ---------------------------------
 ------------------ RDP LOOP -----------------
TCP length: 529
SEC LICENSE
rdp packet NULL!
LOOP NOTH NULL DATA
Stats: 0:00:01 elapsed; 0 services completed (1 total)
Rate: 0.00; Found: 0; About 0.00% done
Stats: 0:00:03 elapsed; 0 services completed (1 total)
Rate: 0.00; Found: 0; About 0.00% done
rdp://192.168.1.71:3389 Pool: Append 'Administrator' '123' 
rdp://192.168.1.71:3389 (EID 1) nsock READ timeout!
rdp://192.168.1.71:3389 popped from list FULL
rdp://192.168.1.71:3389 (EID 1) Attempts: total 0 completed 0 supported 0 --- rate 0.00 
rdp://192.168.1.71:3389 Pool: extract 'Administrator' '123'
rdp://192.168.1.71:3389 (EID 2) Initiating new Connection
rdp://192.168.1.71:3389 pushed to list FULL
username: Administrator pass: 123
 --------------------------------------- FUNCTION LOOP ---------------------------------
 ------------------ RDP LOOP -----------------
TCP length: 529
SEC LICENSE
rdp packet NULL!
LOOP NOTH NULL DATA
caught SIGINT signal, cleaning up
Saved current session state at: /root/.ncrack/restore.2019-10-09_22-10

Am i missing something or are there any tests that needs to be carried out further ?

Tags : windows rdesktop


Related Questions


Updated April 20, 2017 05:00 AM

Updated January 23, 2018 00:00 AM

Updated November 24, 2018 15:00 PM

Updated April 03, 2015 23:00 PM

Updated November 19, 2018 20:00 PM