I track some Microsoft lists, and this message I found scary. You have to trust Microsoft to not only not-be-evil, but also to have perfect security - at the personnel level as well as the network and server.

Here's the quote:

Be sure to check out Sysinternals Live, a service that enables you to execute Sysinternals tools directly from the Web without hunting for and manually downloading them. Simply enter a tool’s Sysinternals Live path into Windows Explorer or a command prompt as http://live.sysinternals.com/(toolname) or  \\live.sysinternals.com\tools\(toolname).

Here's hoping no hackers ever insert or subvert a Microsoft employee managing that web site. Oh, and that super duper DNS exploit that points the address of real sites at the hijacker's servers would work here, too. So you also have to trust that your local phone company has implemented the workaround for that, properly, as well as any updates.

What might happen? Here's all your part-time sysadmins, with little to no security knowledge or even admin knowledge, working as the admin user on your Active Directory server, and running commands off Microsoft's site. They could be downloading code that unpacks rootkits, sets up Run-Me-Once-At-2am commands in their registry where many part-time sysadmins don't even know to look, and injects them into all the desktops in the company. If they throttle them to use only, say, 10% of CPU and 10% of outgoing bandwidth, they might work away for years with no one the wiser, until someone backtracks the source of all the new SPAM and DDOS.

Maybe I'm being paranoid here. Probably no one's out to get me personally, but they are out to own all of your machines.

And by the way, I enjoyed using Sysinternals tools when I was maintaining Windows networks. If you are using Microsoft OS's, they are highly recommended.