Hello Technet Guys,
I've created a PoC environment to test the RemoteApp feature of the RDS. Before trying to publish the applications and system of my company, I've decided to do some penetration testing activity. The result is not so good....
I've published the calc.exe using the RemoteApp, and by using the Help Menu, I could gain access to the machine' shell.
Have a look:
01 - https://social.technet.microsoft.com/Forums/getfile/830818
02 - https://social.technet.microsoft.com/Forums/getfile/830819
03 - https://social.technet.microsoft.com/Forums/getfile/830820
04 - https://social.technet.microsoft.com/Forums/getfile/830821
05 - https://social.technet.microsoft.com/Forums/getfile/830822
06 - https://social.technet.microsoft.com/Forums/getfile/830823
PS: I cannot upload the images on the body of this Forum. As my account is new, Microsoft is blocking me.
I dont want to implement others controls (like AppControl) to have a workaround and solve this problem. The perfect scenario would be to have access only to the Calc.exe and no other application.
Microsoft has done some kind of job to block this bypass?
Regards,
Leandro Soares