all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Help with figuring out odd RDP event

Add to bookmarks
Sept. 6, 2022, 1:55 a.m. | /u/Phorc3

Computer Forensics www.reddit.com

Hey y'all, I am struggling to come to a conclusion about an RDP event I have noted in a job.

Log was identified on a Microsoft RDS server (lets call it WIN-RDS), it was an Event ID 21.

WIN-RDS has **internal** IP of 10.1.1.10 and an **external** IP of 192.178.1.1

The associated Windos Event ID on WIN-RDS is 21 and states the source network address is 192.178.1.1.... remeber that WIN-RDS has captured this event log and 192.178.1.1 is its own …

computerforensics event rdp

Visit resource

More from www.reddit.com / Computer Forensics

Any recommendations for textbooks I can read to get an introduction to digital forensics? 2 days, 2 hours ago | www.reddit.com
books can cissp computerforensics +10
Software Recommendations 2 days, 21 hours ago | www.reddit.com
aim appointments cellebrite clients +19
Interesting argument in Qualification and Forensics tools 4 days ago | www.reddit.com
argument computerforensics forensics forensics tools +1
Online websites or resources for DFIR reports 4 days, 10 hours ago | www.reddit.com
actor attack blog computerforensics +12
Autopsy How can i fix this grey out tab? 4 days, 16 hours ago | www.reddit.com
autopsy can computerforensics fix +1
Sentinel - A digital forensics / investigations assistance tool built with Python 5 days, 10 hours ago | www.reddit.com
api assistance called computerforensics +14
2024 Internships for Undergraduates 5 days, 13 hours ago | www.reddit.com
colleges companies computerforensics conference +11
TPM - capture process 5 days, 21 hours ago | www.reddit.com
boot can capture cold +17
I made a simple extension to easily search IOCs across various OSINT sites 6 days, 21 hours ago | www.reddit.com
analysis computerforensics extension free +15

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Information Security Engineers

@ D. E. Shaw Research | New York City
View on infosec-jobs.com

Security Engineer, Incident Response

@ Databricks | Remote - Netherlands
View on infosec-jobs.com

Associate Vulnerability Engineer - Mid-Atlantic region (Part-Time)

@ GuidePoint Security LLC | Remote in VA, MD, PA, NC, DE, NJ, or DC
View on infosec-jobs.com

Data Security Architect

@ Accenture Federal Services | Washington, DC
View on infosec-jobs.com

Identity Security Administrator

@ SailPoint | Pune, India
View on infosec-jobs.com
View more jobs