Windows Basics II Flashcards
How do you determine how many users are on a system?
net users
How do you determine how many users have administrative privileges?
net localgroup Administrators
What command can be used to display and set the user policy settings on a local computer?
net accounts
True or False: The default Administrator account cannot be deleted or locked out, but it can be renamed or disabled?
True
What local group gives its members on a local server “Full Control” permissions on that computer?
Administrators
What other local account has the same functional rights and permissions as the Administrator account?
System
How do you find out the minimum password length for users on a system?
net accounts
How do you find out which local users are disabled?
wmic useraccount get Name,Disabled
What Windows command allows you to run a command as another user?
runas
What option of cmd.exe carries out the command and then terminates?
/c
What’s the syntax for rdesktop?
rdesktop -u USERNAME -p PASSWORD IP
What’s the syntax for runas?
runas /user:HOSTNAME\Administrator cmd.exe
What value is used to uniquely identify a security principal that can be authenticated by the system?
SID (Security Identifier)
What is the name of a protected object that contains information about the identity and user rights associated with a user account?
access token
What local system is responsible for creating an access token for a user after successful authentication?
Local Security Authority (LSA)
What is the base command used to manage local users and groups?
net
What’s an example of a well-known SID that belongs to the Everyone group?
S-1-1-0
What command can be used to display and set the user policy settings on a local computer?
net accounts
True or false: The default Administrator account cannot be deleted or locked out, but it can be renamed or disabled?
True
What local group gives its members on a local server “Full Control” permissions on that computer?
Administrators
What other local account has the same functional rights and permissions as the Administrator account?
System
What Windows command allows you to run a command as another user?
runas
What option of cmd.exe carries out the command and then terminates?
/c
What file permission permits reading and writing of the file and also allows for deletion of the file?
modify
What folder permission permits reading, writing, changing, and deleting of files in a folder as well as its subfolders?
full control
What is the icacls abbreviation that means that files created inside this folder will inherit this ACE?
OI (Object Inherit)
True or False: You only need read permissions on a script to execute it.
True
How do you give another user full control using Windows command line?
icacls PATH/FILE /grant USER:(F)
What process is responsible for handling windows logon?
winlogon.exe
What process runs the user’s Windows GUI shell?
explorer.exe
What process always has a PID of 4?
System
What is the common extension for libraries in Windows?
dll
In what full path can we find 32-bit libraries on a 64-bit system?
C:\Windows\SysWOW64
Which hive is used to access information about the current user?
HKCU
Under what key would you find information about the security account manager (SAM)?
HKLM
What is the name of the extra backup file belonging to HKEY_LOCAL_MACHINE\System?
System.alt
