Hide Navigation Hide TOC Potentially Over Permissive Permissions Granted Using Dsacls.EXE (01c42d3c-242d-4655-85b2-34f1739632f7) Detects usage of Dsacls to grant over permissive permissions Cluster A Galaxy A Cluster B Galaxy B Level Potentially Over Permissive Permissions Granted Using Dsacls.EXE (01c42d3c-242d-4655-85b2-34f1739632f7) Sigma-Rules System Binary Proxy Execution - T1218 (457c7820-d331-465a-915e-42f85500ccc4) Attack Pattern 1