Black Hat Ransom | Lesson 3 | Searching For RDP Servers | Offensive Security
This video demonstrates network reconnaissance using Shodan. Real RDP (Remote Desktop Protocol) servers are shown in the video but there is no active scanning or interaction. Shodan is perfectly legal to use as it is a security tool. But you must have authorisation to visit or send traffic to an IP address on a network. Unfortunately, threat actors are using services like Shodan as well to search for vulnerabilities on networks.
This lesson is an extension of lesson two, and I conduct further reconnaissance. A common attack vector for a ransomware attack is RDP server exploits. Exploitation usually occurs when there is an exposed RDP server and it is successfully brute-forced by the threat actor.
Security personnel working at organisations should be monitoring applications and services like RDP. They must reduce the attack surface and prevent RDP from being exposed to the public. RDP exploitation is becoming a problem for organisations that have decentralised and employ remote workers.
To watch my videos on an alternative platform you can visit the Odysee
channel: https://odysee.com/@AvoidingBigBrother:8
This channel will include videos too risky for YouTube because of
content moderation.
I have dropped the pitch of my voice for the videos and use the
alias of Brian Bladen for privacy reasons. I am also paranoid
of being hacked!
FREE TRAINING on our website at https://avoidbigbro.com/lp-courses/
and for blog posts https://avoidbigbro.com/news/
Join the Discord: https://avoidbigbro.com/the-discord-server/
My recommended products (so far) that I use as a lone wolf operator:
Malwarebytes Premium - Antimalware software suitable for personal use
and not an option for business users. Affiliate link included - feel free
to go to Malwarebytes in your browser if you don't want to include my link
https://prf.hn/l/5NL4PJj
CyberGhost - I had no problems with this VPN and highly recommend. They
are based in Romania where the laws on privacy are not so strict.
Not truly anonymous but good for privacy.
https://www.cyberghostvpn.com/en_US/
KeePass - Excellent offline password manager that I recommend rather
than using a cloud service. https://keepass.info/
You can check out my ebooks at
https://avoidbigbro.com/resources/
Available titles
'Covert Techniques' a guide about privacy and how to avoid surveillance.
'The Bear Roars' my research on Russian state-sponsored APT groups.
Author Brian Bladen
-
19:07
CarlCrusher
1 day agoSECRET Weather Manipulation Systems and Mind Control Technology
5.74K1 -
5:10
LFA TV
1 day agoHOW HURRICANE/FLOOD VICTIMS CAN STILL VOTE!
5.5K1 -
2:33:25
Price of Reason
16 hours agoJoker 2 is a Box Office DISASTER! Can Syndey Sweeney SAVE Paul Feig? NEW DEI Strategy for Gaming?
33K8 -
1:36:57
Kim Iversen
14 hours ago“Gone In 60 Seconds” Kamala BOMBS 60 Min Interview | Hillary Clinton Worries Of Losing Control W/O Censorship
119K237 -
2:53:41
Laura Loomer
11 hours agoEP81: Kamala Courts Illegal Alien Voters
87.9K46 -
1:13:51
Glenn Greenwald
14 hours agoFlashback: Glenn Retraces the 30-Year Domestic War on Civil Liberties that Launched Gore Vidal’s Political Transformation | SYSTEM UPDATE SPECIAL RERUN
108K135 -
1:17:04
Man in America
15 hours ago🚨 RED ALERT: Milton, Helene & The Plan to DECIMATE the US to Build 15-Minute Cities
86.5K137 -
2:32:11
WeAreChange
15 hours agoBiden EXPOSES Kamala’s Hurricane Fabrication! Musk To Jail??
128K107 -
1:18:35
Redacted News
17 hours agoHIGH ALERT "GET OUT NOW OR DIE" FLORIDA OFFICIALS WARN STATE IS ABOUT TO BE DESTROYED | REDACTED
210K912 -
1:10:14
Josh Pate's College Football Show
18 hours ago $4.69 earnedWeek 7 Predictions: OhioSt vs Oregon | OU vs Texas | PennSt vs USC | OleMiss vs LSU | NEW JP Poll
83.1K7