RDPY is a Microsoft RDP Security Tool developed inwards pure Python alongside RDP Man inwards the Middle proxy support. This allows a user to tape sessions in addition to educate honeypot functionality. It supports both Microsoft RDP (Remote Desktop Protocol) protocol customer in addition to server side. RDPY supports touchstone RDP safety layer, RDP over SSL in addition to NLA authentication (through ntlmv2 authentication protocol). This article volition briefly larn over on hacking remote desktop protocol using rdpy in addition to dissimilar usage of it.
RDPY Features
RDPY provides the next RDP in addition to VNC binaries :
- RDP Man In The Middle proxy which tape session
- RDP Honeypot
- RDP screenshoter
- RDP client
- VNC client
- VNC screenshoter
- RSS Player
Included binaries in addition to usage
Dependencies are exclusively needed for pyqt4 binaries :
- rdpy-rdpclient
- rdpy-rdpscreenshot
- rdpy-vncclient
- rdpy-vncscreenshot
- rdpy-rssplayer
dpy-rdpclient
rdpy-rdpclient is a unproblematic RDP Qt4 client.
$ rdpy-rdpclient.py [-u username] [-p password] [-d domain] [-r rss_ouput_file] [...] XXX.XXX.XXX.XXX[:3389]
You tin terminate exercise rdpy-rdpclient inwards a Recorder Session Scenario, used inwards rdpy-rdphoneypot.
rdpy-vncclient
rdpy-vncclient is a unproblematic VNC Qt4 customer .
$ rdpy-vncclient.py [-p password] XXX.XXX.XXX.XXX[:5900]
rdpy-rdpscreenshot
rdpy-rdpscreenshot saves login hide inwards file.
$ rdpy-rdpscreenshot.py [-w width] [-l height] [-o output_file_path] XXX.XXX.XXX.XXX[:3389]
rdpy-vncscreenshot
rdpy-vncscreenshot saves the kickoff hide update inwards file.
$ rdpy-vncscreenshot.py [-p password] [-o output_file_path] XXX.XXX.XXX.XXX[:5900]
rdpy-rdpmitm
rdpy-rdpmitm is a RDP proxy allows you lot to create a Man In The Middle assault on RDP protocol. Record Session Scenario into rss file which tin terminate locomote replayed yesteryear rdpy-rssplayer.
$ rdpy-rdpmitm.py -o output_dir [-l listen_port] [-k private_key_file_path] [-c certificate_file_path] [-r (for XP or server 2003 client)] target_host[:target_port]
Output directory is used to salve the rss file alongside next format (YYYYMMDDHHMMSS_ip_index.rss) The somebody commutation file in addition to the certificate file are classic cryptographic files for SSL connections. The RDP protocol tin terminate negotiate its ain safety layer If 1 of both parameters are omitted, the server exercise touchstone RDP equally safety layer.
rdpy-rdphoneypot
rdpy-rdphoneypot is an RDP dear Pot. Use Recorded Session Scenario to replay scenario through RDP Protocol.
$ rdpy-rdphoneypot.py [-l listen_port] [-k private_key_file_path] [-c certificate_file_path] rss_file_path_1 ... rss_file_path_N
The somebody commutation file in addition to the certificate file are classic cryptographic files for SSL connections. The RDP protocol tin terminate negotiate its ain safety layer. If 1 of both parameters are omitted, the server exercise touchstone RDP equally safety layer. You tin terminate specify to a greater extent than than 1 files to check to a greater extent than mutual hide size.
rdpy-rssplayer
rdpy-rssplayer is exercise to replay Record Session Scenario (rss) files generates yesteryear either rdpy-rdpmitm or rdpy-rdpclient binaries.
$ rdpy-rssplayer.py rss_file_path
