Network Security-User Management

1. Windows built-in account

Account for people

• administrator # Administrator account
• guest #Guest account

System accounts related to computer service components

• system #System account == the supremacy of authority
• local services #Local service account == permissions equal to ordinary users
• network services #Network service account==permission equal to ordinary user

Configuration file

• Each user has its own configuration file (home directory), which is generated when the user is first created, in the user directory under the c drive

Two. Windows built-in group

The permissions of the built-in groups are granted by the system by default

• administrator #Administrator group
• guests #Guest group
• userts #Ordinary user group
• network #Network configuration group
• print #printer group
• Remote Desktop #Remote Desktop Group

Group management commands

• net localgroup #View group list
• net localgroup group name/add #Create a new group
• net localgroup group name username/add # add user to group
• net localgroup group name username/del #Kick the user out of the group

User management commands

• net user #View user list
• net user username password #change password
• net user username password/add #Create a new user
• net user username/del #Delete a user
• net user username/active:yes/no #/Activate or disable this user

Ordinary user escalates to the administrator command

• net user username password/add #create user
• net localgroup group name (administrator) /add #Add the user to the administrator user group

Three. User privileges escalation

Graphical user group operation demonstration

• Follow the picture to open
• You can see that there is a user and group

• We can create a user called hacker1961 among users

• You can also add users to the group to modify their permissions. For example, if you add them to the administrator group in the figure, hacker1961 has the same permissions as the administrator, but it is lower than the built-in management.

• net locagroup administrators #View the administrators of the group
• You can see that you have entered

• You can also try other things, such as giving the user a permission to connect to me remotely

Command line operation demo

• net user hackerone hackerone /add #Add user
• net user #View user
• net localgroup administrators hackerone /add #Add users to the administrators group

• net localgroup #View the current group

• net localgroup administrators view all users in the admistrator group
• You can see that hackerone has been escalated to admistrator

Remote desktop login