all passwords are valid in RDP module when system is win2003

[chinasun021]

version is v9.1-dev 2019.7.15
all passwords are valid in RDP module when system is win2003
when system is win7 or win2008 function is ok

[dmaciejak]

I can confirm the misbehavior which is directly linked to the freerdp lib we are using for the RDP module. That issue is explained at FreeRDP/FreeRDP#2893
Seems our previous implementation of the module in hydra v8.4 is working well for old MS Windows versions.

[jason123m]

H

[vanhauser-thc]

@dmaciejak - so what do we do? maybe adding an rdp-old service with the original hydra-rdp?
it seems that the issue is unfixable in librdp

[chinasun021]

I use hydra8.4 and freerdp to support all version windows system

[dmaciejak]

@dmaciejak - so what do we do? maybe adding an rdp-old service with the original hydra-rdp?
it seems that the issue is unfixable in librdp

Ideally, if there is a way to detect remotely the RDP server version, we could merge the old module and the new one, would be cleaner

[dmaciejak]

Seems to affect not only Windows Server 2003 targets but also those still running Windows XP, both are end of life already.

[ghost]

Hi, solution for your use case is here or here
these python scripts can show information about RDP encryption methods,
for example:

here is NL authentication
or here:

is GUI authentication this result need to be used to determine RDP protocol and use old branch to brute force with success passwords only.

[ghost]

hydra 8.7 seems to work correctly with old version of RDP GUI authentication.

[leezp]

Freerdp module is removed in the newer hydra version , please try older version of hydra like 8.1.2

wget https://www6.atomicorp.com/channels/atomic/centos/7/x86_64/RPMS/hydra-8.1-3.el7.art.x86_64.rpm

It works well !