← 返回命令列表

Linux command

rdp_check.py 命令

网络

复制后可按需替换文件名、目录或参数。

常用示例

Test RDP credentials

rdp_check.py [domain]/[username]:[password]@[target_ip]

Test credentials using NTLM hashes

rdp_check.py [domain]/[username]@[target_ip] -hashes [LMHASH]:[NTHASH]

Test with debug output

rdp_check.py [domain]/[username]:[password]@[target_ip] -debug

Test over IPv6

rdp_check.py [domain]/[username]:[password]@[target_ip] -6

说明

rdp_check.py is an Impacket tool that tests whether credentials are valid against a Windows host via RDP (Remote Desktop Protocol). It implements portions of MS-RDPBCGR and MS-CREDSSP to perform CredSSP authentication. The tool is useful for validating credentials during authorized security assessments, verifying RDP access, and testing pass-the-hash attacks against RDP-enabled systems. It performs authentication only and does not establish a full RDP session. Successful authentication indicates the credentials are valid, but does not guarantee interactive desktop access (which may be restricted by group policy or user rights).

参数

-hashes _LMHASH:NTHASH_
Authenticate using NTLM hashes instead of password
-6, --ipv6
Connect using IPv6
-debug
Enable debug output
-ts
Add timestamps to log output
-h, --help
Show help message

FAQ

What is the rdp_check.py command used for?

rdp_check.py is an Impacket tool that tests whether credentials are valid against a Windows host via RDP (Remote Desktop Protocol). It implements portions of MS-RDPBCGR and MS-CREDSSP to perform CredSSP authentication. The tool is useful for validating credentials during authorized security assessments, verifying RDP access, and testing pass-the-hash attacks against RDP-enabled systems. It performs authentication only and does not establish a full RDP session. Successful authentication indicates the credentials are valid, but does not guarantee interactive desktop access (which may be restricted by group policy or user rights).

How do I run a basic rdp_check.py example?

Run `rdp_check.py [domain]/[username]:[password]@[target_ip]` in a terminal, then adjust file names, paths, flags, or remote targets for your system.

What does -hashes _LMHASH:NTHASH_ do in rdp_check.py?

Authenticate using NTLM hashes instead of password