Remote Desktop allows you to save connection parameters in files with .RDP extensions. When you check "Save my password" in the connection dialog, the supplied credentials are encrypted using the CryptProtectData API and saved as well. An example of encrypted password from a test Remote Desktop Profile follows:

 

password 51:b:01000000D08C9DDF0115D1118C7A00C04FC297EB01000000F471161752360D4496EDA14F658FDF8E000000

0008000000700073007700000003660000A800000010000000188EFBFDCB0C5EC2CE831603376EAC390000000004800000A

0000000100000000C568F97E208D0F4431972967599F8CB08020000EA394AFF35DB15237E0565D4D152553FB1B56B166C4F

D4D4139D41E06864924F8CF6D62A8D5A022BD57FA6CC9FE596D7FF44C182A7BE289FA8F7104F974919F4AD821C717571A6

AC962B020460A02BE6B18912B24FC356C0B3E7B966D50DE6D80D28C80B1E7EE449758D592C9B90D1A9E4389625F6D0BD0

C77CF0E78BF25C6B9B8664C2CF71BFF597A5CC4F695FD2D969C241E18976F3BC0857728A9CAEAE5DD0D5046F7173274E0

CD071945A0428BA5EA36908B0928EED7B496DD6517A70531C1638A376C36E31DF682601BC4601E4D823F6E544933E3AD4B

7663CBC81443C214A16330FEE87BAB49902776AC2A2D9B7C222EE614C7D147AC8932EDABEB85341EFCE4579AE3D077F84

17E265C4CB3B26928ED6583EC76E456CDB16D768A22629DA4147769658698285C251F222F2AB180C376B2837CA83FBC825

6B5DB03A41CBC2599C0769578F9C02550743E9F3962E696FFBFD9BB22EDAFA4CAB3D072955EEB5589C2AA992D8C8FCFB2

C3665A8B30CF9CD0109FF232882B9493054565C4E26EB4566EAA7183E4CBBAB7C2A30575C3CC84946B121F0D044F6CAD20

DDFBF6647135D08CAA2D0A25281E16EE3BE19A017BEB64A6F79296CF7CEFB140C6E4BE71E66691FECBD9CBCD83EC3A748

791DE3D3E4433034F8968C71A793670E8F4CB0AC479AB5F045F514BB109ED5FCB2B1CFA8BCEB05D7E0186CD871DDB2C13

41E3E9688358D2932835B514000000E16BE7FD121813D382B2A02360FF427D0F8B23D20

 

Because of the usage of CryptProtectData API the above encrypted password can be decrypted only by the user that created that .RDP file and on the same machine too.

 

 

This feature decodes the password used in Remote Desktop Profiles (.RDP) generated by the Windows tool "Remote Desktop".

 

 

How it works

It uses the "CryptUnprotectData" API from CRYPT32.DLL to decode the password. The function is called without entropy.

Usage

Everything is automatic, you have only to select the Remote Desktop Profile (.RDP).

Requirements

This tool requires to be executed on the same machine where the profile was created and with the same user account too.