Metadata in PDF files can be stored in at least two places:
- the Info Dictionary, a limited set of key/value pairs
- XMP packets, which contain RDF statements expressed as XML
function Remove-ObjectPermissions | |
{ | |
<# | |
.SYNOPSIS | |
Denies all access (including read and list) from a given AD object on privileged domain accounts (Domain Admins, Administrators, Enterprise Admins). | |
This aims to make it harder for an adversary to map privileged users after he established the inital foothold over the network and got a non-privileged domain user. | |
Author: Itamar Mizrahi (@MrAnde7son) | |
License: GNU v3 | |
Required Dependencies: None | |
Optional Dependencies: None |