Network Level Authentication (NLA) Disabled
Terminal Services Encryption Level is Medium or Low, or
Terminal Services Encryption Level is not FIPS-140 Compliant
https://github.com/portcullislabs/rdp-sec-check
videos:https://www.youtube.com/watch?v=nyBOJwvUaKQ
Link:https://www.phr33fall.co.uk/windows-rdp-hardening/
nmap -sV -T5 -Pn -p 445 --script smb-protocols IPs