Login
    Contents x
    Zeek RDP
    • 20 Oct 2024
    • 1 Minute to read
    • Contributors
    • Print
    • Dark
      Light
    Contents

    Zeek RDP

    • Updated on 20 Oct 2024
    • 1 Minute to read
    • Contributors
    • Print
    • Dark
      Light
    Article summary

    Zeek RDP captures essential information about Remote Desktop Protocol (RDP) traffic, which is used for remote access to Windows systems. This log provides details about RDP sessions, such as the source and destination IP addresses, port numbers, session duration, and protocol details like the negotiated encryption level and client versions. It also logs information on security settings, such as authentication methods (NLA, CredSSP) and any anomalies or errors during the RDP handshake.

    Was this article helpful?
    What's Next
    Change password!
    Changing your password will log you out immediately. Use the new password to log back in.
    Change profile
    Success!
    First name must have atleast 2 characters. Numbers and special characters are not allowed.
    Last name must have atleast 1 characters. Numbers and special characters are not allowed.
    Enter a valid email
    Enter a valid password
    Your profile has been successfully updated.
    Logout
    ESC

    Eddy AI, facilitating knowledge discovery through conversational intelligence