How to hack rdp_tutorial 01-19-2014, 12:18 PM
#1
How to hack and how to prevent...
Okey community we are here to learn, and in this oportunity i will show how we can get remote acces pc
First all, this is a Educational purpose, and i want we get knowledge to prevent this hack in our
computer.
Most pc in the world, are with remote desktop activate, this is a really vulnerabilit,because if we got
user and password,we can get remote access.
How we can found this RDP.....?
Nmap it's a Tool to found open/ports and more information, so what we need...?
Nmap (some distribution as Backtrack or similar got it), you can found in internet for windows
xhydra (Backtrack,Kaly....etc)<<<<to make brute force
ncrack (Backtrack,kaly...etc)<<<< and other brute force
Dbrute (For windows you google to get it) As its name indicate it's a brute force for Windows
Now in my case i gonne use backtrack.
First of all open a console and type this.
nmap -sS -p 3389 -PS3389 XXX.XXX.0-255.* --open -oG scan_rdp.txt|grep -oiE '([0-9]{1,3}\.){3}[0-9]{1,3}'> clean_rdp.txt
xxx.xxx.0-255.* <<<<this is de range you want to scan.
As you can see we gonne to recive all the clean rdp with 3389 port open ip in a clean_rdp.txt
Okey now we need a world_list.txt & xhydra
The world list can be:
admin
admin123
some empty space
administrator
etc....
Now we open a linux console and type this.
hydra -s 3389 -v -V -L youruserlist.txt -P simple_worldlist.txt -e ns -t 16 -w 200 -M clean_rdp.txt rdp
With DBrutus or similar sofftware it's very eassy include the range ips cut and copy de world list and start
And now we wait for some fish
Now for exemple on result we got some like this XXX.XXX.XXX.XXX admin:admin123 <<<<this is ip and user password result Dbrutus
Okey now we open remotedesktop type ip type user&password and go to options and share C:\ <<<<sharing C:\ we can upload tools
in rdp remote
And the next step open C:\remote and as you can see it's our C:\ now upload any file from your pc to de remote pc and that's all
How prevent this vulnerability disconecting rdp in our pc propertys or making a strong user password.
You must be carreful with honeypots and i am not responsible for your acts only educational purpose
Hope you like it and you that you have learned something, to warn you of this hack
Promese me you will be godboys
![[Image: pistolakm5na7.gif]](https://imageshack.us/a/img401/7835/pistolakm5na7.gif)
Okey community we are here to learn, and in this oportunity i will show how we can get remote acces pc
First all, this is a Educational purpose, and i want we get knowledge to prevent this hack in our
computer.
Most pc in the world, are with remote desktop activate, this is a really vulnerabilit,because if we got
user and password,we can get remote access.
How we can found this RDP.....?
Nmap it's a Tool to found open/ports and more information, so what we need...?
Nmap (some distribution as Backtrack or similar got it), you can found in internet for windows
xhydra (Backtrack,Kaly....etc)<<<<to make brute force
ncrack (Backtrack,kaly...etc)<<<< and other brute force
Dbrute (For windows you google to get it) As its name indicate it's a brute force for Windows
Now in my case i gonne use backtrack.
First of all open a console and type this.
nmap -sS -p 3389 -PS3389 XXX.XXX.0-255.* --open -oG scan_rdp.txt|grep -oiE '([0-9]{1,3}\.){3}[0-9]{1,3}'> clean_rdp.txt
xxx.xxx.0-255.* <<<<this is de range you want to scan.
As you can see we gonne to recive all the clean rdp with 3389 port open ip in a clean_rdp.txt
Okey now we need a world_list.txt & xhydra
The world list can be:
admin
admin123
some empty space
administrator
etc....
Now we open a linux console and type this.
hydra -s 3389 -v -V -L youruserlist.txt -P simple_worldlist.txt -e ns -t 16 -w 200 -M clean_rdp.txt rdp
With DBrutus or similar sofftware it's very eassy include the range ips cut and copy de world list and start
And now we wait for some fish
Now for exemple on result we got some like this XXX.XXX.XXX.XXX admin:admin123 <<<<this is ip and user password result Dbrutus
Okey now we open remotedesktop type ip type user&password and go to options and share C:\ <<<<sharing C:\ we can upload tools
in rdp remote
And the next step open C:\remote and as you can see it's our C:\ now upload any file from your pc to de remote pc and that's all
How prevent this vulnerability disconecting rdp in our pc propertys or making a strong user password.
You must be carreful with honeypots and i am not responsible for your acts only educational purpose
Hope you like it and you that you have learned something, to warn you of this hack
Promese me you will be godboys
![[Image: oAnNAVY.png]](http://i.imgur.com/oAnNAVY.png)
![[+]](https://sinister.ly/images/modern/collapse_collapsed.png)
