As we continued further with the External penetration testing of Live IPs- 52.74.81.8/52.76.233.247, we found some potential high risk network vulnerabilities, details of which can be seen below
It was found that the TCP ports 3389 is open. TCP port 3389 runs Port is IANA registered for Microsoft WBT Server, used for Windows Remote Desktop and Remote Assistance connections (RDP - Remote Desktop Protocol). Also used by Windows Terminal Server.
Due to the availability of this port we are able to get a screenshot of the logged in user which helped us in deducing the username of all the users having account on the target machine. Now we are trying to brute force the authentication mechanism configured on this port-
As we continued further with the External penetration testing of Live IPs- 52.74.81.8/52.76.233.247, we found some potential high risk network vulnerabilities, details of which can be seen below
It was found that the TCP ports 3389 is open. TCP port 3389 runs Port is IANA registered for Microsoft WBT Server, used for Windows Remote Desktop and Remote Assistance connections (RDP - Remote Desktop Protocol). Also used by Windows Terminal Server.
Due to the availability of this port we are able to get a screenshot of the logged in user which helped us in deducing the username of all the users having account on the target machine. Now we are trying to brute force the authentication mechanism configured on this port-
Screenshot for 52.74.81.8
Screenshot for 52.76.233.247