Giters

shockz-offsec / RDPShoot

RDPShoot captures screenshots of Windows machines that have RDP enabled and NLA disabled, checks for open ports and disabled NLA, then transcribes text using OCR to generate a list of users from the captured images.

Geek Repo:Geek Repo

Github PK Tool:Github PK Tool

RDPShoot

The purpose of this tool is to capture screenshots of Windows machines with RDP (Remote Desktop Protocol) enabled and NLA (Network Level Authentication) disabled. The tool verifies the availability of the open port and the disabled NLA feature, and proceeds to capture screenshots. It further utilizes Optical Character Recognition (OCR) to transcribe the text in the captured screenshots, and generates a list of users based on the captured images.

Installation

Clone the repository and make the script executable:

git clone https://github.com/shockz-offsec/rdpshoot.git
cd rdpshoot
chmod +x rdpshoot.sh

You will also need to install the following dependencies:

apt-get install xdotool imagemagick rdesktop bc tesseract-ocr nmap python3 python3-pip -y

Usage

| Only for Linux and MacOS

The tool requires an IP address or IP with CIDR as input. For example:

./rdpshoot.sh 192.168.1.2

or

./rdpshoot.sh 192.168.1.0/24

The output will be saved in a folder named output with a timestamp.

Disclaimer

This tool is designed for legal use only, such as testing and monitoring of systems that you own or have permission to test. Any other use is illegal and at your own risk. The author is not responsible for any damage caused by misuse or illegal use of this tool.

License

This tool is licensed under the GPL-3.0 License.

About

RDPShoot captures screenshots of Windows machines that have RDP enabled and NLA disabled, checks for open ports and disabled NLA, then transcribes text using OCR to generate a list of users from the captured images.

License:GNU General Public License v3.0

Languages

Language:Shell 100.0%