{"id":20128621,"url":"https://github.com/chanakayaa/rdp-mitm-detection-script","last_synced_at":"2025-10-14T10:01:51.002Z","repository":{"id":257625875,"uuid":"858845258","full_name":"chanakayaa/RDP-MITM-Detection-Script","owner":"chanakayaa","description":"Nmap script designed to check if an RDP (Remote Desktop Protocol) server is vulnerable to Man-in-the-Middle (MITM) attacks. The script detects weak encryption configurations or the absence of Network Level Authentication (NLA) in RDP servers.","archived":false,"fork":false,"pushed_at":"2024-09-17T16:25:47.000Z","size":4,"stargazers_count":0,"open_issues_count":0,"forks_count":0,"subscribers_count":1,"default_branch":"main","last_synced_at":"2025-01-13T08:30:55.415Z","etag":null,"topics":["lua-script","nmap","nmap-scan-script","nmap-scripts"],"latest_commit_sha":null,"homepage":"","language":"Lua","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":null,"status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/chanakayaa.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":null,"code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2024-09-17T16:23:26.000Z","updated_at":"2024-09-17T16:28:45.000Z","dependencies_parsed_at":"2024-09-17T20:51:14.937Z","dependency_job_id":null,"html_url":"https://github.com/chanakayaa/RDP-MITM-Detection-Script","commit_stats":null,"previous_names":["chanakayaa/rdp-mitm-detection-script"],"tags_count":0,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/chanakayaa%2FRDP-MITM-Detection-Script","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/chanakayaa%2FRDP-MITM-Detection-Script/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/chanakayaa%2FRDP-MITM-Detection-Script/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/chanakayaa%2FRDP-MITM-Detection-Script/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/chanakayaa","download_url":"https://codeload.github.com/chanakayaa/RDP-MITM-Detection-Script/tar.gz/refs/heads/main","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":241572719,"owners_count":19984333,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["lua-script","nmap","nmap-scan-script","nmap-scripts"],"created_at":"2024-11-13T20:28:32.757Z","updated_at":"2025-10-14T10:01:45.965Z","avatar_url":"https://github.com/chanakayaa.png","language":"Lua","funding_links":[],"categories":[],"sub_categories":[],"readme":"Here's a complete README for your RDP MITM Detection Script repository:\n\n---\n\n# RDP MITM Detection Script\n\nThis repository contains an Nmap script designed to check if an RDP (Remote Desktop Protocol) server is vulnerable to Man-in-the-Middle (MITM) attacks. The script detects weak encryption configurations or the absence of Network Level Authentication (NLA) in RDP servers.\n\n## Description\n\nThe RDP MITM Detection Script performs the following tasks:\n- Checks if the RDP server is vulnerable to MITM attacks.\n- Detects weak encryption configurations or missing NLA by initiating an RDP connection and analyzing the server's response.\n\n## Features\n\n- **Detect Weak Encryption**: Identifies if the RDP server supports weak encryption algorithms.\n- **Check NLA Status**: Determines if Network Level Authentication is enabled or missing.\n- **Automated Detection**: Integrates with Nmap to automate the detection process.\n\n## Prerequisites\n\n- **Nmap**: The script is designed to be used with Nmap. Ensure Nmap is installed and properly configured on your system.\n\n## Installation\n\n1. **Clone the repository:**\n\n   ```bash\n   git clone https://github.com/yourusername/rdp-mitm-detection.git\n   cd rdp-mitm-detection\n   ```\n\n2. **Add the Script to Nmap's Script Directory:**\n\n   Copy the script to Nmap's script directory, typically found at `/usr/share/nmap/scripts/` on Linux systems or `C:\\Program Files (x86)\\Nmap\\scripts\\` on Windows.\n\n   ```bash\n   sudo cp rdp_mitm_detection.nse /usr/share/nmap/scripts/\n   ```\n\n3. **Update Nmap Script Database:**\n\n   Update the Nmap script database to include the new script.\n\n   ```bash\n   sudo nmap --script-updatedb\n   ```\n\n## Usage\n\nTo use the script, run Nmap with the `--script` option and specify the target. For example:\n\n```bash\nnmap -p 3389 --script rdp_mitm_detection \u003ctarget_ip\u003e\n```\n\n- Replace `\u003ctarget_ip\u003e` with the IP address of the RDP server you want to scan.\n\n## Script Details\n\n- **Script Name**: `rdp_mitm_detection.nse`\n- **Author**: Your Name\n- **License**: Same as Nmap - see [Nmap License](https://nmap.org/book/man-legal.html)\n- **Categories**: `safe`, `discovery`\n\n\n\n## Contributing\n\nContributions are welcome! If you have any improvements or bug fixes, feel free to submit a pull request or open an issue.\n\n## License\n\nThis project is licensed under the MIT License - see the [LICENSE](LICENSE) file for details.\n\n---\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fchanakayaa%2Frdp-mitm-detection-script","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fchanakayaa%2Frdp-mitm-detection-script","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fchanakayaa%2Frdp-mitm-detection-script/lists"}