Tweet
I'll admit it at the start. I'm currently a corporate goon... :P
I am looking for some other starter references on how to 'hack' winblow$ computer from sitting at the physical machine. (My preference would be to drop a *nix distro on the desktop with Xfree... But the people who write the rules say no.)
To explain my environment - I'm basic tech support for a CallCenter, and we're 'finally' moving to AD. I'm in-charge of recreating ALL user accounts for this site along with building a production Windows XP image. I have about 700 users that I need to lock down from playing with anything more than they're supposed to. (And from the short time that I've been here... Some of these people get REALLY ingenious when they're that bored waiting for calls to come in.)
As I migrate these machines to WinXP Pro, I would like to look at the image/user rights that I've created from more of a black hat point of view. (I learned that access to WordPad was removed previously as that can be used to write scripts, that the users could then run with Admin rights.)
I saw reference to 'Hacking Exposed - Windows 2000' in the forums, and plan to pick up a copy of that next week. (I'm also trying to develop my knowledge of AD to work that aspect too.)
I know that I can't completely secure these as people have access to the boxen if they REALLY want too. (Resetting Bios password jumpers, plugging back in drive media cables, etc.)
My Baseline that I'm working from is disabled media drives. (Floppy, CD)
Password for Bios. (No password for boot up as I need to let them freely boot the computers.)
All users have only 'User' access rights not higher to the WinXP Pro.
Theoretically I should be able to disable most of the software with AD.. (The big program that I know that they'll need to be able to access is IE; As about 2/3's of the utilities that they use are IE/Java based. )
I guess what I'm looking for like I kinda asked at the beginning is a few more ideas for where I can go to find out how to hack these from sitting in front of it. In Googling and reading here I just haven't seen much out there to actually 'cracking' the software/OS from within it.
I am looking for some other starter references on how to 'hack' winblow$ computer from sitting at the physical machine. (My preference would be to drop a *nix distro on the desktop with Xfree... But the people who write the rules say no.)
To explain my environment - I'm basic tech support for a CallCenter, and we're 'finally' moving to AD. I'm in-charge of recreating ALL user accounts for this site along with building a production Windows XP image. I have about 700 users that I need to lock down from playing with anything more than they're supposed to. (And from the short time that I've been here... Some of these people get REALLY ingenious when they're that bored waiting for calls to come in.)
As I migrate these machines to WinXP Pro, I would like to look at the image/user rights that I've created from more of a black hat point of view. (I learned that access to WordPad was removed previously as that can be used to write scripts, that the users could then run with Admin rights.)
I saw reference to 'Hacking Exposed - Windows 2000' in the forums, and plan to pick up a copy of that next week. (I'm also trying to develop my knowledge of AD to work that aspect too.)
I know that I can't completely secure these as people have access to the boxen if they REALLY want too. (Resetting Bios password jumpers, plugging back in drive media cables, etc.)
My Baseline that I'm working from is disabled media drives. (Floppy, CD)
Password for Bios. (No password for boot up as I need to let them freely boot the computers.)
All users have only 'User' access rights not higher to the WinXP Pro.
Theoretically I should be able to disable most of the software with AD.. (The big program that I know that they'll need to be able to access is IE; As about 2/3's of the utilities that they use are IE/Java based. )
I guess what I'm looking for like I kinda asked at the beginning is a few more ideas for where I can go to find out how to hack these from sitting in front of it. In Googling and reading here I just haven't seen much out there to actually 'cracking' the software/OS from within it.
Comment