Postexploitation
◾
249
RDP (Remote Desktop) is one of the services that we would encounter most of the times; let’s
discuss some of the scenarios you might encounter:
1. It requires a password.
2. Remote desktop access is disabled and you need to re-enable it.
3. Our current user is not allowed to access the remote desktop.
So the first step requires us to obtain hashes. Before getting into how to obtain hashes, let’s see
what they are.
What Is a Hash?
Passwords are stored as either a plain text or their hash values inside a filesystem or a database.
A hash is basically a one-way cryptographic algorithm; the thing about a hash is that it’s irre-
versible, which means that once a plain text password is sent across a hashing algorithm it’s
not possible for it to return to its original state since the process is irreversible. The only way of
doing it is by guessing the word and running it through the hashing algorithm and then manu-
ally comparing it with our original hash. This is the process that is used to crack a password
hash.
Dostları ilə paylaş: