Pentest Blog

13. März 2017 – Know-how

Attacking RDP: How to eavesdrop on poorly secured RDP connections

Ein Fachartikel von IT Security Consultant Dr. Adrian Vollmer

"The Remote Desktop Protocol (RDP) is used by system administrators everyday to log onto remote Windows machines. Perhaps most commonly, it is used to perform administrative tasks on critical servers such as the domain controller with highly privileged accounts, whose credentials are transmitted via RDP. It is thus vital to use a secure RDP configuration. [...] This article was written to raise awareness of how important it is to take certificate warnings seriously and to show you how to securely configure your Windows landscape."

Den vollständigen Artikel finden Sie hier.

Eine deutsche Fassung des Artikels finden Sie hier.

Den Source Code des Tools zum Artikel ("Seth") finden Sie auf unserem github-Account "SySS Research. Open source IT security software tools and information".


SySS-Schulung - Secu4: IPv6-Security
08.05.2018 - 09.05.2018
SySS-Schulung – Hack4: Angriffe gegen VoIP-Infrastrukturen
15.05.2018 - 16.05.2018
SySS-Schulung – Hack6: Mobile Device Hacking
SySS-Schulung – Secu5: IT-Recht und Datenschutz für IT-Verantwortliche