Set NetBIOS Node Type (KB160177)

How to Secure Against NetBIOS Name Service (NBT-NS) Poisoning Attacks

Since it is far easier for an attacker to spoof a broadcast-based name request than it is to impersonate a WINS server, one of the easiest ways to secure against this vulnerability is to turn off NetBIOS broadcast-based name resolution. To do this, simply add a registry value in the following registry key:
HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\NetBT\Parameters
In this registry key, create a DWORD value called: NodeType
Then, set the NodeType value to 2

This secures the machine by telling Windows to treat itself as a NetBIOS P-node (point-to-point system). These systems will only resolve NBT-NS queries using WINS – no broadcasts will take place. Success!

For more information on the NodeType registry value, see: https://support.microsoft.com/kb/160177

Administrative Templates (Computers)

NetBIOS Node Type

Files

set-netbios-node-type-kb160177.admx

Microsoft

DirectAccess Connectivity Assistant Disable SMB Compression Network Drive Mappings Microsoft Edge for Business Edge Chromium Blocker Toolkit Enhanced Mitigation Experience Toolkit Forefront Endpoint Protection 2010 Forefront Identity Manager 2010 R2 Group Policy Preference Client Side Extensions Azure Hybrid Connection Manager Hide Specified Drives Internet Explorer IPv6 Group Policy Key Management Service Local Administrator Password Solution (LAPS) Microsoft Desktop Optimization Pack Group Policy Administrative Templates NetBanner Microsoft Office 2007 Microsoft Office 2010 Microsoft Office 2013 Microsoft Office 365 ProPlus, Office 2019, Office 2016 OneDrive for Business Next Generation Sync Client OneNote Class Notebook CVE-2021-34527 (PrintNightmare) Windows Small Business Server System Center Configuration Manager Secure Channel System Center Operations Manager / Microsoft Monitoring Agent System Center Operations Manager — Agentless Exception Monitoring System Center Operations Manager — Management Server Tweaker Microsoft Security Compliance Toolkit Windows Security Baseline Silverlight System Center Endpoint Protection Virtual Machine Manager Administrator Console Windows 10 Telemetry Group Policy Pack Windows 7 and Windows Server 2008 R2 Windows 8.1 and Windows Server 2012 R2 Windows 10 and Windows Server 2016 Windows 11 and Windows Server 2022 Help for Windows (WinHlp32.exe)

Citrix

Connection Quality Indicator Citrix Files Citrix Workspace Federated Authentication Service (FAS) Citrix Receiver Citrix ShareFile Citrix XenApp and XenDesktop Citrix ShareFile Drive Mapper Workspace Environment Management

Lenovo

Lenovo ThinkVantage Access Connections Lenovo Commercial Vantage Lenovo Dock Manager Lenovo AutoLock Lenovo Power Manager Lenovo Privacy Guard Lenovo Settings for Enterprise

Google

Google Chrome Google Chrome Enterprise Google Chrome OS Google Docs Google Update Chrome Reporting Extension

VMware

VMware Dynamic Environment Manager VMware ThinApp Enterprise VMware Horizon 6 View RDSH Services VMware Horizon 7 Enterprise VMware User Environment Manager (UEM) FlexEngine

Cjwdev

Active Directory Account Reset Tool Active Directory Reporting Tool Active Directory Group Manager

Foxit Software Inc.

FoxitEditor Foxit PhantomPDF Foxit Reader

Tracker Software

PDF-Tools PDF-XChange Editor Tracker Updater

Adobe

Adobe Acrobat Adobe Acrobat Reader

Login Consultants Nederland B.V

Base Image Script Framework (BIS-F) Login App-V Template

Bentley

Bentley Licensing Bentley ProjectWise BRG

Collabora

Collabora Office LibreOffice from Collabora

Binary Fortress Software

DisplayFusion FileSeek

Duo Security

Duo Authentication for Epic Duo Authentication for Windows Logon

FSLogix

FSLogix Apps Agent FSLogix Profile Container

Mozilla Firefox and Thunderbird

Mozilla Firefox Mozilla Firefox and Thunderbird

Community

Firefox ADMX Firefox CCK2

MailStore Software GmbH

MailStore Client MailStore Service Provider Edition

Quest Software

Quest One Password Manager Quest Software Defender

Symantec

Symantec PKI Client Symantec Workspace Virtualization & Workspace Streaming

Yubico

YubiKey PIV Manager YubiKey Smart Card Minidriver

Zoom Video Communications

Zoom Meetings Zoom Rooms

ALT Linux

Samba ALT Linux

CoCo

ASSP Toolbar for Outlook

Basic Bytes

Access Director Enterprise

NoLightPeople

NoLightPeople Access Director

HID Global

ActivID ActivClient

GreyCorbel Solutions

Admin Password Management Enterprise

Admin By Request

Admin By Request

AnyDesk

RSA

RSA SecurID Authentication Agent

Pharmini

Blinzle for Business Edition

Centrify

Centrify Group Policy Management

Classic Shell

ClickView Player

ClickView Player

Paper Software

ControlUp Console

ControlUp Console

Copernic

Desktop Search by Copernic

D. Brown Management

DBM Tools - D. Brown Management

Dell

Dell Power Manager

Ecosia

Kaspersky

Kaspersky Endpoint Security 8 for Smartphone

ABBYY

ABBYY FineReader 15

FrontMotion Firefox Community Edition

FrontMotion Firefox Community Edition

KnowBe4

Google Phish Alert Button (GPAB)

GoToMeeting

Goverlan

Smartbox Assistive Technology

HP (Hewlett Packard)

HP Managed Print Policies

HealthCast Inc.

Blackfish Software

Lithnet

Lithnet Idle Logoff

Ivanti

Oracle

Java Runtime Environment

LogMeIn

LyncWizard

MacroView

Mattermost Desktop Application

Mattermost Desktop Application

DameWare

DameWare Mini Remote Control

NetSupport

NetSupport School

Net at Work GmbH

Novell

Novell Client 2 SP3 for Windows

One Identity

One Identity Defender

pdfforge GmbH

SDL

SDL Passolo 2016

CP-Lab

Password Manager XP

Raxco

Raxco PerfectDisk

Sophos

Sophos SafeGuard PrivateCrypto

Liquidware

RealVNC

Devolutions

Devolutions Remote Desktop Manager

donkz.nl

Remote Desktop Plus

Royal Applications Team

SAP

SAP 3D Visual Enterprise Viewer

SafeNet

SafeNet Authentication Service Agent for Windows Logon

SEPPmail AG

Birch Grove Software

LEARNPULSE SAS

Infineon Technologies AG

Infineon Security Platform

SoftMaker

SoftMaker Office Professional

SolarWinds

SolarWinds Orion Agent

EMC

EMC SourceOne Offline Access

Specops

Specops Authentication Client

Stardock

Stardock Start8

ThinPrint

Ubuntu

Veyon Community

SparkLabs

Vivaldi Technologies

Vivaldi Browser

WPKG

Dojo North Software

Workshare

Workshare Connect for Desktop

Yandex

iTALC - Intelligent Teaching And Learning with Computers

iTALC - Intelligent Teaching And Learning with Computers

think-cell Sales GmbH

uberAgent