Check Multiple RDP Hosts with Hydra

in this period then coronavirus is a going wild. Schools and universities are being shut down. Although people need to do their job. Me as an administrator I have to make sure they have proper remote access to a workstation. In fact, there is a lot of work because there are multiple workers.
Today I have learned how to setup RDP for non-administrators in GPO and check multiple hots quickly with THC Hydra.

Preparation

On a domain controller use key combination of Windows+R and type

gpedit.msc

Navigate to User Right Assignment and on the right side add Allow log on through Remote Desktop Services users [1].

Then add the same users to the Remote Desktop User group on every host. I used the cmd command below:

net localgroup "Remote Desktop Users" "Domain\testuser" /add

Hydra

Download the Kali Linux machine [2] which has preinstalled hydra with RDP support.
I made a file targets.txt with the hosts and ports (separated with the column) in there. My user and password. The last argument is the RDP protocol.

hydra -l testuser -p password -M targets.txt rdp

after a few seconds I got a message:

19 of 19 targets successfully completed, 19 valid passwords found

After this, I don’t need to check every host to verify that it’s working.

Reference

#1 https://support.jumpdesktop.com/hc/en-us/articles/216424183-General-RDP-You-must-be-granted-the-Allow-log-on-through-the-Terminal-or-Remote-Desktop-Services-Right-
#2 https://www.kali.org/downloads/

Kibernetinio saugumo entuziastas; Aktyviausias Lietuvis TryHackMe platformoje; Inovacijų valdymo ir Antreprenerystės Magistrantas @ KTU