DACLs - Security Descriptors

Tool: Nishang

ACLs can be modified to allow users to access objects.

On local machine

Set-RemoteWMI -UserName user1 -Verbose

On remote machine without explicit credentials

Set-RemoteWMI -UserName user1 -ComputerName <computer> -namespace 'root\cimv2' -Verbose

On remote machine with explicit credentials. Only root\cimv2 and nested namespaces

Set-RemoteWMI -UserName user1 -ComputerName <computer> -Credential Administrator -namespace 'root\cimv2' -Verbose

On remote machine remove permissions

Set-RemoteWMI -UserName user1 -ComputerName <computer> -namespace 'root\cimv2' -Remove -Verbose

On local machine

Set-RemotePSRemoting -UserName user1 -Verbose

On remote machine without credentials

Set-RemotePSRemoting -UserName user1 -ComputerName <computer> -Verbose

On remote machine, remove the permissions

Set-RemotePSRemoting -UserName user1 -ComputerName <computer> -Remove

With the scripts from DAMP-master. Permits to realize some actions like credentials dump via the registry.

Last updated 4 months ago