If you have managed to delete your C:\inetpub folder following the recent #Windows security #patch for #cve202521204 then you can re-create it using the following PowerShell script:
github.com/mmotti/Reset-inetpu…
This script recreates this empty folder with the correct TrustedInstaller and SYSTEM privilages.
It does nothing to prevent the creation of HardLinks to this folder of course.
You could remove the SeCreateSymbolicLinkPrivilege (via secpol.msc for example) from a user account to prohibit creation of SymLinks but you would need to check in a test envoiroment to see what effects might have that have and what might break 🤔🤷♂️
GitHub - mmotti/Reset-inetpub: Restore the integrity of the parent 'inetpub' folder following security implications highlighted by CVE-2025-2120.
Restore the integrity of the parent 'inetpub' folder following security implications highlighted by CVE-2025-2120. - mmotti/Reset-inetpubGitHub