Microsoft’s Remote Desktop Protocol (RDP) has introduced a lesser-known but critical security feature colloquially referred to as “incognito mode” through its /public command-line parameter.

This functionality, formally called public mode, prevents the client from storing sensitive session artifacts a development with significant implications for cybersecurity, digital forensics, and enterprise IT management.