🟢Remote Desktop - RDP
Abusing RDP to Move laterally inside a corporate environment. T1021.001 - Remote Desktop Protocol
Using Windows CMD Commands
Add User to Local Machine
Add New User to Domain
Using CrackMapExec
Using Metasploit
Using Empire
Socks Over RDP / Socks Over Citrix
This tool adds the capability of a SOCKS proxy to Terminal Services (or Remote Desktop Services) and Citrix (XenApp/XenDesktop). It uses Dynamic Virtual Channel that enables us to communicate over an open RDP/Citrix connection without the need to open a new socket, connection or a port on a firewall.
Last updated