Remote Desktop Protocol

Footprinting The Service

Nmap

nmap -sV -sC 10.129.201.248 -p3389 --script rdp*

nmap -sV -sC 10.129.201.248 -p3389 --packet-trace --disable-arp-ping -n

RDP Security Check - Installation

sudo cpan

RDP Security Check

git clone https://github.com/CiscoCXSecurity/rdp-sec-check.git && cd rdp-sec-check

./rdp-sec-check.pl 10.129.201.248

A Perl script named rdp-sec-check.pl has also been developed by Cisco CX Security Labs that can unauthentically identify the security settings of RDP servers based on the handshakes.

Initiate an RDP Session

xfreerdp /u:cry0l1t3 /p:"P455w0rd!" /v:10.129.201.248