|
|
DOWNLOAD THE CODE:
 38942.zip
GetAccess.cmd
Showacls.exe and net.exe provide a foundation for the script GetAccess.cmd. This script produces a text file that lists all the files and folders to which the specified user or group has access in the specified directory and all its subdirectories. When you launch the script, you must provide three parameters: the username or group name for which you're performing the audit (username_or_groupname), the path to the directory you want to scan (path_to_scan), and the name of the output file (outputfile). You can include the optional /d switch if you want to audit only folders and not files. You can also include the optional /verbose switch if you want the console to display what the script is doing when it runs. Thus, the command that launches the script has the syntax
GetAccess.cmd
username_or_groupname
path_to_scan outputfile
[/d] [/verbose]
The script's logic is simple. It operates as follows:
- The script deletes the output file if it already exists. To accomplish this task, the script uses the command
If Exist %outputfile% Del
%outputfile% /q
- The script prepares the switches for the Dir command. As Listing 2 shows, the dirflag variable defines the switches according to the parameters you provide when you launch the script. The /s switch tells the Dir command to show all contents, including subdirectories, and the /b switch tells the Dir command to provide the output in bare format (i.e., without header or summary information). If you specified the /d parameter when you launched the script, the script adds the /ad switch to signify that you want to display directories only.
 Prev. page
1
[2]
3
next page 
|
|
|
|
