Posts Tagged remote desktop
Remote Desktop and Die – How to RDP Faster Without Getting Robbed
Posted by scriptjunkie in Defense on September 14, 2013
Unless you have not patched your domain controller in the past five years, chances are, if an intruder gets domain admin or enterprise admin level access, they probably did it through credential theft. One of the biggest recurring themes of countless intrusion and pentest reports is that to accomplish lateral movement and privilege escalation to […]
Authenticated Remote Code Execution Methods in Windows
Posted by scriptjunkie in /dev/urandom, Defense on February 3, 2013
All of the below are supported ways of remotely executing code that are built-in to Windows. If psexec isn’t working since a service is not running or ports are blocked, you can try all these other options; defenders who want to detect intruders moving through the network need to detect all of these; incident responders might want to look for evidence of these…