Zeek RDP
  • 20 Oct 2024
  • 1 Minute to read
  • Contributors
  • Dark
    Light

Zeek RDP

  • Dark
    Light

Article summary

Zeek RDP captures essential information about Remote Desktop Protocol (RDP) traffic, which is used for remote access to Windows systems. This log provides details about RDP sessions, such as the source and destination IP addresses, port numbers, session duration, and protocol details like the negotiated encryption level and client versions. It also logs information on security settings, such as authentication methods (NLA, CredSSP) and any anomalies or errors during the RDP handshake.


Was this article helpful?

Changing your password will log you out immediately. Use the new password to log back in.
First name must have atleast 2 characters. Numbers and special characters are not allowed.
Last name must have atleast 1 characters. Numbers and special characters are not allowed.
Enter a valid email
Enter a valid password
Your profile has been successfully updated.
ESC

Eddy AI, facilitating knowledge discovery through conversational intelligence