Feb. 9, 2024, 5:24 p.m. | Mari DeGrazia

Blog – ZeroFox www.zerofox.com

Many threat actors utilize Remote Desktop Protocol (RDP) to move laterally within an environment once they have compromised it. There has been quite a bit of documentation around forensic artifacts associated with the Microsoft MSTSC client which has been around since 1998. However, there is also a Microsoft Remote Desktop App that is available in […]


The post Remote Desktop Application vs MSTSC Forensics: The RDP Artifacts You Might Be Missing appeared first on ZeroFox.

application artifacts blog breaches client compromised desktop desktop application documentation environment forensic forensic artifacts forensics incident response microsoft missing protocol rdp remote desktop remote desktop protocol threat threat actors

Deputy Chief Information Security Officer

@ United States Holocaust Memorial Museum | Washington, DC

Humbly Confident Security Lead

@ YNAB | Remote

Information Technology Specialist II: Information Security Engineer

@ WBCP, Inc. | Pasadena, CA.

Director of the Air Force Cyber Technical Center of Excellence (CyTCoE)

@ Air Force Institute of Technology | Dayton, OH, USA

Senior Cyber Security Analyst

@ Valley Water | San Jose, CA

IT-Security Analyst "Managed Cloud" Fokus MS-Sentinel (m/w/d)*

@ GISA GmbH | Halle, DE