mstoeck3/forensic-pathways
2
0
Fork 0
Code Issues 17 Pull Requests Projects Releases Activity

Add tool: RDP-Replay #34

New Issue
Open
opened 2025-11-24 16:45:25 +00:00 by contribution-bot · 0 comments
contribution-bot commented 2025-11-24 16:45:25 +00:00
Collaborator
Copy Link

Add Tool: RDP-Replay

Submitted by: anon@anon.anon
Type: software
Action: add

Tool Information

  • Name: RDP-Replay
  • Description: RDP-Replay Tool 9 yrs old, check validity
  • URL: https://github.com/ctxis/RDP-Replay
  • Skill Level: advanced
  • Platforms: Windows
  • License: Apache 2.0
  • Domains: incident-response, static-investigations, fraud-investigation, network-forensics, cloud-forensics
  • Phases: examination, analysis

Reason

related
https://medium.com/@mathias.fuchs/chasing-ghosts-over-rdp-lateral-movement-in-tiny-bitmaps-328d2babd8ec

Copy-Paste YAML

  - name: RDP-Replay
    type: software
    description: RDP-Replay Tool 9 yrs old, check validity
    domains:
      - incident-response
      - static-investigations
      - fraud-investigation
      - network-forensics
      - cloud-forensics
    phases:
      - examination
      - analysis
    skillLevel: advanced
    url: https://github.com/ctxis/RDP-Replay
    platforms:
      - Windows
    license: Apache 2.0
    accessType: cli
    tags:
      - remote-session
      - rdp-analysis
      - rdp-cache
      - rdp-sessions

For Maintainers

  1. Copy the YAML above
  2. Add to src/data/tools.yaml in the tools array
  3. Maintain alphabetical order
  4. Close this issue when done

Submitted via ForensicPathways contribution form

## Add Tool: RDP-Replay **Submitted by:** anon@anon.anon **Type:** software **Action:** add ### Tool Information - **Name:** RDP-Replay - **Description:** RDP-Replay Tool 9 yrs old, check validity - **URL:** https://github.com/ctxis/RDP-Replay - **Skill Level:** advanced - **Platforms:** Windows - **License:** Apache 2.0 - **Domains:** incident-response, static-investigations, fraud-investigation, network-forensics, cloud-forensics - **Phases:** examination, analysis ### Reason related https://medium.com/@mathias.fuchs/chasing-ghosts-over-rdp-lateral-movement-in-tiny-bitmaps-328d2babd8ec ### Copy-Paste YAML ```yaml - name: RDP-Replay type: software description: RDP-Replay Tool 9 yrs old, check validity domains: - incident-response - static-investigations - fraud-investigation - network-forensics - cloud-forensics phases: - examination - analysis skillLevel: advanced url: https://github.com/ctxis/RDP-Replay platforms: - Windows license: Apache 2.0 accessType: cli tags: - remote-session - rdp-analysis - rdp-cache - rdp-sessions ``` ### For Maintainers 1. Copy the YAML above 2. Add to `src/data/tools.yaml` in the tools array 3. Maintain alphabetical order 4. Close this issue when done --- *Submitted via ForensicPathways contribution form*
Sign in to join this conversation.
No Branch/Tag Specified
Branches Tags
Labels
No items
No Label
Milestone
No items
No Milestone
Projects
Clear projects
No project
Assignees
Clear assignees
contribution-bot mstoeck3
No Assignees
1 Participants
Notifications
Due Date
No due date set.
Dependencies

No dependencies set.

Reference: mstoeck3/forensic-pathways#34
Delete Branch "%!s()"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?