4 thoughts on “Automatically Block RDP Brute Force Attack

  1. Marcel Feenstra

    Hi Rich,
    Thanks for the information, this looks very useful! For quite some time, I have been looking for a way to stop these RDP attempts as I find them extremely annoying –and while I think the functionality should really be added to the Windows Server core, the ts_block script looks like a great solution in the interim… Thanks again!
    Marcel

    Reply
  2. Juha Jurvanen

    There’s also been a cool addition to Syspeace ( http://www.syspeace.com ) now called the Global Blacklist that’s designed to have al installations of Syspeace report every attack centrally and if they are deemed as menace to society the information is shared between all other Syspeace installations around the world, thus blockng the bad guys preemptively ..
    // Juha
    http://www.jufcorp.com
    Senior consultant in backup, security, server operations an cloud services

    Reply

Leave a Reply

Your email address will not be published. Required fields are marked *