RDP protocol TCP/RDP port 3389
Remote Desktop Protocol (RDP)
RDP is a proprietary protocol developed by Microsoft for their Terminal Server services.
SSL (TLS 1.0): The SSL method requires the use of TLS 1.0 to authenticate the RD Session Host server.
Wireshark decode encapsulated traffic and decode SSL
https://wiki.wireshark.org/RDP
Good information on this one:
https://www.golinuxcloud.com/decrypt-rdp-traffic-wireshark-frida/