Dumping Plaintext RDP credentials from svchost.exe.
https://www.n00py.io/2021/05/dumping-plaintext-rdp-credentials-from-svchost-exe/
#dumpcreds #RDP #svchost
https://www.n00py.io/2021/05/dumping-plaintext-rdp-credentials-from-svchost-exe/
#dumpcreds #RDP #svchost
www.n00py.io
Dumping Plaintext RDP credentials from svchost.exe
Recently I was browsing Twitter and came across a very interesting tweet: A simple string search within the process memory for svchost.exe revealed the plaintext password that was used to connect to the system via RDP. After some testing, I was also able…