Microsoft disponibiliza nova versão da Suite Sysinternals para Windows, Nano Server e ARM64
Microsoft disponibiliza nova versão da Suite Sysinternals para Windows, Nano Server e ARM64
A Microsoft disponibilizou hoje uma nova atualização (build 2021.07.27) da Suite Sysinternals para Windows, Nano Server e ARM64. Esta Suite gratuita é destinada a IT Pros e Power Users e inclui ferramentas para monotorização de processos (Process Explorer e Process Monitor), monotorização e conversão de Discos Rigidos (DiskMon e Disk2vhd), analise de Dumps (ProcDump), entre outros.Continue reading
Wahrscheinlich ist es für viele von euch ein alter Hut, aber ich neulich mal wieder auf die Microsoft App “Remote Desktop Connection Manager” (RDCMan) aufmerksam geworden und hab mir diese auf meinem Windows-PC auch gleich mal runter geladen und “eingerichtet”.
Mir gefällt an dieser App, dass man dort sehr übersichtliche eine Vielzahl von RD-Verbindungen anlegen kann. Diese kann man dann in…
Recovering Passwords from Remote Desktop Connection Manager
Microsoft's Remote Desktop Connection Manager stores connection parameters - including credentials - in the .rdg file. The file itself is just an XML file but the passwords it contains are (rightfully) encrypted. With Powershell, we can pull those stored passwords out and decrypt them.
If you open an RDG file in a text editor, inside you'll find entries that look like this:
The passwords are not stored in cleartext (which was actually an option in earlier versions of RDC Manager). They're encrypted using CryptProtectData using the credentials of the user who created the RDG file. This is a good approach for protecting against offline attacks, but it means the following decryption method will only work when done under the user account that originally created it.
Using PowerShell, we can extract the encryption parameters from RDCMan by copying the executable and changing the extension to DLL:
On my Macs, I have been using CoRD for a long, long time. It allows me to predefine any number of remote desktop servers, credentials included, so that I can connect to any one of them at will. That’s all well and good, but I don’t use a Mac at work, I’m on a Windows machine, and so, I started looking.
As it turns out, Microsoft has created the very tool I was looking for. Remote Desktop…
