4 thoughts on “Automatically Block RDP Brute Force Attack

  1. Marcel Feenstra

    Hi Rich,

    Thanks for the information, this looks very useful! For quite some time, I have been looking for a way to stop these RDP attempts as I find them extremely annoying –and while I think the functionality should really be added to the Windows Server core, the ts_block script looks like a great solution in the interim… Thanks again!


  2. Juha Jurvanen

    There’s also been a cool addition to Syspeace ( http://www.syspeace.com ) now called the Global Blacklist that’s designed to have al installations of Syspeace report every attack centrally and if they are deemed as menace to society the information is shared between all other Syspeace installations around the world, thus blockng the bad guys preemptively ..

    // Juha
    Senior consultant in backup, security, server operations an cloud services


Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.