Breaking out of restricted RDP
I did a talk at BSides London on April 20 2011. This is my first real talk and an expansion on my lighting talk at BruCON. I show how after you can pretty much anything you can escalate your privileges with us of Metasploit.
You can download my slides here: rdp issue.pdf
The videos can be viewed here:
Policy
Attack
Fix
If you would like to see a full demo attack then you need to find my secret section!!
You will see me scan a target, compromise the RDP server, escalate my privileges, then route Metasploit attack through my compromised box to attack another box on the network!! :)