AutoRDPwn is a program built in Powershell and designed to automate this attack "Shadow" on computers with functional system Windows.
This vulnerability allows a remote intruder to see the victim's desktop without his or her consent and even control it on request.
For its proper operation, it is necessary to comply with the requirements described in the user guide.
Use of the program
This application can be used locally, remotely or to switch between computers. Thanks to additional modules, it is possible to discard hashes and passwords or even retrieve the history of RDP connections.
Run a program with one click:
powershell -ep bypass “cd $ env: temp; iwr https://darkbyte.net/autordpwn.php -outfile AutoRDPwn.ps1; . \ AutoRDPwn.ps1 ”
Conditions
Powershell 5.0 or higher
Download program
git clone https://github.com/JoelGMSec/AutoRDPwn.git