Skip to content
/ RDP-screenshotter Public

Create a screenshot of a remote desktop because NLA is disabled.

License

GPL-3.0 license
37 stars 13 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

zer0-t/RDP-screenshotter

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

10 Commits
LICENSE
LICENSE
 
 
RDP-screenshotter.sh
RDP-screenshotter.sh
 
 
README.md
README.md
 
 

Repository files navigation

RDP-screenshotter

This bash script takes a screenshot of the RDP desktop and converts the image to text.

The script will connect to an RDP server, makes a screenshot and converts the image to text with OCR to obtain the username(s) of logged in users. The screenshot can be made because NLA(Network Level Authentication) is not configured properly on the host.

More info about NLA: https://technet.microsoft.com/en-us/magazine/hh750380.aspx

How does it work?

  1. Connects to RDP using rdesktop
  2. Verifies if screenshot can be made
  3. Takes screenshot
  4. Kills RDP connection

Prerequisites

  1. Linux host running an X server
  2. The following packages: xdotool imagemagick rdesktop bc
  3. Debian/Ubuntu/Kali install: apt-get install xdotool imagemagick rdesktop bc tesseract-ocr

Usage

Scan a single host: ./RDP-screenshotter.sh 192.168.1.10

Scan Multiple hosts: for i in $(cat list.txt); do ./RDP-screenshotter.sh "${i}"; done

Credits

Used large chunks of code from the stickyKeysHunter.sh script from ztgrace

About

Create a screenshot of a remote desktop because NLA is disabled.

Resources

Readme

License

GPL-3.0 license
Activity

Stars

37 stars

Watchers

2 watching

Forks

13 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages