rdp.proxy.command: unknown or invalid

GoSecure / pyrdp

RDP monster-in-the-middle (mitm) and library for Python with the ability to watch connections live or after the fact

https://www.gosecure.net/blog/2020/10/20/announcing-pyrdp-1/

GNU General Public License v3.0

1.49k stars 241 forks source link

rdp.proxy.command: unknown or invalid #385

Open 0x2kb5 opened 2 years ago

0x2kb5 commented 2 years ago

Hi Guys,

cant get properly working, iam noob, give me some orientation, thanks!

using : go1.15.8, python3.9

error while running 'set rdp.proxy.command': unknown or invalid syntax "set rdp.proxy.command", type help for the help menu

obilodeau commented 2 years ago

You need to install our fork of bettercap with our caplet for rdp.proxy to work. More information here: https://github.com/GoSecure/pyrdp/blob/master/docs/bettercap-rdp-mitm.md

Alternatively, since PyRDP 1.0 you can use PyRDP in transparent proxy mode (--transparent) and use the generic bettercap arp spoofing module. More information here: https://github.com/GoSecure/pyrdp/blob/master/docs/transparent-proxy.md

Unfortunately, both resources are not super noob-friendly. Good luck!

0x2kb5 commented 2 years ago

Hi, Iam on arm64-linux-debian, reinstalled OS and exactly followed your guide, succefully installed (forked bettercap and caplets) min. version.

cd /pyrdp source venv/bin/activate sudo bettercap -iface eth0 -caplet rdp-proxy/rdp-sniffer.cap -eval "set rdp.proxy.command $(which pyrdp-mitm.py)"

now getting this error ""unknown or invalid syntax "rdp.proxy.on", type help for the help menu.""

obilodeau commented 2 years ago

Unfortunately, this means that the documentation on the bettercap caplet is probably outdated or the caplet no longer works with bettercap due to changes in it.

We will need to revisit that documentation. Stay tuned.