Olivier Bilodeau
Olivier Bilodeau
Preconditions during the MITM session: * client connects to a low resolution * client updates to a higher resolution (tested: via client dynamic resolution update, not tested: via manual resolution...
I believe that the way we encode frames we create the possibility of a drift between the real time and the resulting video times. This is exacerbated on large captures....
Clipboard files and folders are treated differently than the filesystem behavior introduced in v1.1.0. We should try to align that. ## Hashing Clipboard file transfers should be hashed just like...
While working on #311 I realized that if the file I/O was going nowhere (output file set to an invalid path that didn't exist for example), then conversion would happen...
In addition to the "NLA to non-NLA downgrade attack" feature we implemented, we should add an "NLA to NLA we control attack" feature. This would avoid NLA downgrade attacks.
Can PyRDP work in a context with an RDP Gateway? I presume both in-front of the gateway and between the gateway and the destination server should be attempted. Some documentation:...
Windows 2016, activated Remote Desktop Services (RDS) in non-domain mode, using "Add Roles and Features" from the Local Server dashboard. After a reboot, I could no longer connect using RDP...
Outstanding work presented by Thomas Bourguenolle and Geoffrey Bertoli. ### Research * Presentation: https://www.sstic.org/2020/presentation/analyse_de_la_scurit_rdp__nla_quel_apport_pour_votre_scurit_/ * Paper: https://www.sstic.org/media/SSTIC2020/SSTIC-actes/analyse_de_la_scurit_rdp__nla_quel_apport_pour_vot/SSTIC2020-Article-analyse_de_la_scurit_rdp__nla_quel_apport_pour_votre_scurit_-bertoli_bourguenolle.pdf * PoC: https://github.com/croustibaie/CredSSPY * Previous work: https://www.sstic.org/media/SSTIC2012/SSTIC-actes/securite_rdp/SSTIC2012-Article-securite_rdp-ebalard_bordes_rigo_2.pdf ### Notes CredSSP protocol selection: *...
Admin credentials should be stored in the Vagrantfile that is packaged in the box. I don't see a security issue doing so and I see a usability issue not doing...
Was made aware of this tool that can disable defender on recent Windows versions: https://github.com/APTortellini/unDefender