Breaking out of restricted RDP

I did a talk at BSides London on April 20 2011. This is my first real talk and an expansion on my lighting talk at BruCON. I show how after you can pretty much anything you can escalate your privileges with us of Metasploit.

You can download my slides here: rdp issue.pdf

The videos can be viewed here:
Policy
Attack
Fix

If you would like to see a full demo attack then you need to find my secret section!!

You will see me scan a target, compromise the RDP server, escalate my privileges, then route Metasploit attack through my compromised box to attack another box on the network!! :)