Categories: safe, discovery
Determines which Security layer and Encryption level is supported by the RDP service. It does so by cycling through all existing protocols and ciphers. When run in debug mode, the script also returns the protocols and ciphers that fail and any errors that were reported.
The script was inspired by MWR's RDP Cipher Checker http://labs.mwrinfosecurity.com/tools/2009/01/12/rdp-cipher-checker/
nmap -p 3389 --script rdp-enum-encryption <ip>
PORT STATE SERVICE 3389/tcp open ms-wbt-server | rdp-enum-encryption: | Security layer | CredSSP: SUCCESS | Native RDP: SUCCESS | SSL: SUCCESS | RDP Encryption level: High | 128-bit RC4: SUCCESS |_ FIPS 140-1: SUCCESS
Author: Patrik Karlsson
License: Same as Nmap--See https://nmap.org/book/man-legal.html