Use PowerShell to fix Windows file permission vulnerabilties.
NOTE: I have an updated version of this script in another post.... Variations on a theme We use a forensics tool to internally scan our network for vulnerabilities on a regular basis. This tool spits out a list of all sorts of stuff which we then go and address. One of the largest lists it gives us is insecure file permissions on Windows systems. I wrote this script to address the issues. One problem I faced was that the files are largely owned by the "TrustedInstaller" account. You cannot easily adjust the permissions if that account has ownership so you need to change the ownership. The script uses two flat text files as input. The first is just a list of target systems, one per line. The second is a list of files to adjust. Complete local paths are assumed. The script adjusts the paths from a local path to a remote path. It generates basic log files, one per target in the C:\Scripts\Logs folder. I decided on one per target ...