Level: Technical

Abstract:

The only port open is the Remote Desktop Protocol (RDP) on a large number of hosts. You have a username and password for each of them, but signing in manually to each host would take days if not weeks. RDP has many bells and whistles, but what can help in this certain case? Come and let’s deliver commands or payloads over the Remote Desktop Protocol (RDP) on a massive number of hosts.

What to expect? Attack scenario on hardened hosts where RDP is only open. Some of the authored tools will be presented, such as:

• https://github.com/kost/rdpcmd
• https://github.com/kost/rdpcmd-ruby

Bio:

Vlatko Kosturjak is a security consultant at Diverto where he helps clients to reach desired security level(s). He likes to break and build, depending on the mood and time of day(night). Besides security, his passion is open and free software, so he authored many open-source offensive tools and contributed code to various free security software.

Posted on Friday, February 21st, 2020 at 8:19 pm in talks | rss feed for comments| Both comments and pings are currently closed.