Scribd Logo
Upload

Welcome to Scribd!

  • Technical Navigator

    Uploaded by

    Keane Pinto
    18 views2 pages
    This document provides instructions for using RDP Forcer to scan IP ranges for open RDP ports, detect usernames on accessible systems, and crack passwords using a password list or common patterns. Key steps include scanning IP ranges from a website to find open ports, using the detector to find valid usernames, and forcing passwords with the ForcerX tab while leveraging detected usernames and basic or country-specific passwords. The goal is to efficiently find valid login credentials.

    Original Description:

    Original Title

    Technical navigator

    Copyright

    © © All Rights Reserved

    Available Formats

    PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document
    This document provides instructions for using RDP Forcer to scan IP ranges for open RDP ports, detect usernames on accessible systems, and crack passwords using a password list or common patterns. Key steps include scanning IP ranges from a website to find open ports, using the detector to find valid usernames, and forcing passwords with the ForcerX tab while leveraging detected usernames and basic or country-specific passwords. The goal is to efficiently find valid login credentials.

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    18 views2 pages

    Technical Navigator

    Uploaded by

    Keane Pinto
    This document provides instructions for using RDP Forcer to scan IP ranges for open RDP ports, detect usernames on accessible systems, and crack passwords using a password list or common patterns. Key steps include scanning IP ranges from a website to find open ports, using the detector to find valid usernames, and forcing passwords with the ForcerX tab while leveraging detected usernames and basic or country-specific passwords. The goal is to efficiently find valid login credentials.

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    of 2

    Read this shit from beginning to the end because this tool can save a lot of time for

    you
    and will use only valid logins for cracking!

    First you need to scan IP ranges for open RDP port

    RDP port is always 3389

    You can remove arguments or keep default ones - with those port scanner will stop
    when it gets 100k ips with open ports.

    For IP ranges use this website: https://countryipblocks.net/acl.php

    Choose country which you want to scan and select ip ranges format:

    We will use password list for cracking which I will tell you more about later in this tutorial
    but at this point you can choose more than one country for port scanning in the country
    selection with holding CTRL key. For example you can choose Portugal and Brasil as
    these countries use the same language so passwords will be similiar in both of them.
    Keep in mind choosing too many countries may result in very long time needed to scan
    all of ip ranges!

    When you do this put your ip ranges in rdp forcer, click start and wait till the scanning is
    done. IPs with open 3389 port will get saved in "log" folder as scan.txt file.

    After scanning is done and you have some IPs (I recommend 10k+) go to detector tab.
    This is the best thing in RDP forcer as it saves a lot of time for you. Basically detector
    connects to IPs with open ports and checks what windows usernames are on them:

    When this is done we of course go to ForcerX tab:

    You can find previously detected ips with usernames in log folder as detectorGood.txt -
    add this file as 'file recognized IPs'

    About password list:


    You can use passwd.txt which contains some basic passwords which aren’t that bad OR
    you can spend some time making your password list.

    For example you can make it bigger to check more combinations or use only few basic
    passwords such as admin, password, user, administrator etc.

    When bruteforcing also remember to put some passwords in language used in that
    country for example when I bruteforce Brazilian rdps password "senha" is a must have.

    %login% - will use detected username as password


    %Login% - the same as above but with first letter capital
    %LOGIN% - all capital letters

    %nigol% / %NIGOL% - login backwards

    you can try others like %login%123 and more complicated patterns

    You might also like