Hi there. I think it would be very cool to have an ability to change token's default DACL via Process Hacker. All functions that create securable objects use this DACL when the calling procedure doesn't specify PSECURITY_ATTRIBUTES, so changing the default DACL is very useful to control the security of processes.
Those, who want to try this feature can use a program from Jeffrey Richter's book:
