[i] This document was last updated 15/1/2019 (UK DATE FORMAT)

cbIPfRDP by Cobs.

Contents:

0- Updates
1- Introduction
2- Version Information
3- File Contents
4- How to use

0- Updates

+Added new Icon
>cbIPfRDP will now automatically wipe logs after successfull block of an IP.
>WinFblockIP is now embedded (smaller version)
>cbIPfRDP will now automatically block IP's after 3 logon failures.
>cbIPfRDP now saves a global list of IP's that have been blocked
>cbIPfRDP now has an update to looping.wfb

1- Cobs' Ban IP from RDP

[i] This tool is used to block bots from attempting RDP brute force attacks.
[i] This tool will also block the IP after 2 failed attempts. (soon to come)


2- Version Information
Release version     = 1.0.2
cbIPcL version      = 1.0.0 (release)
cbIPfRDP version    = 1.0.2 (release)
WinFblockIP version = 1.0.2 (release)


3- Contents:

cbIPfRDP.exe     - Cobs' Ban IP from RDP.
looping.wfb      - Place in same folder as cbIPfRDP if you want it to continuously check.
Read.Me.Versions - This text document.


4- How to use:

Before running, if Latest.Log is present, delete it, otherwise cbIPfRDP will refuse to start.

====>>>>> MAKE SURE TO RUN cbIPfRDP AS ADMINISTRATOR
===>>>>> PLEASE BACKUP YOUR SECURITY EVENT LOG. IT WILL GET WIPED

1.Prepare Whitelist.wfb by Adding new lines followed by the IP to not get detected.
2.Launch cbIPfRDP.exe as Administrator. Will fail without admin rights.
3.Observe the cbIPfRDP window and ensure it has launched successfully.
4.Take note of any onscreen instructions and run through them after cbIPfRDP is finished or closed.