What tools and commands are available to a malicious insider to access resources (data/software) on a windows server, be it win2k, 2003, 2008 etc. Say for example a naughty employee (domain user) finds that the server (domain member server) that houses
the payroll database has a weak local adminisrator password, what tool / command could they use to then get access to the server itself. Be it software with a GUI or command line prompts. Is there any best practice to limit what tools users have available
to them so even if a weak password exists they have a limited arsenal of default windows tools to get access onto the server. A full list of tools/software/commands that could be used would be great so I can quantify the risk.
↧