Lateral movement

Group Policy Preferences with cpassword

Platform(s)

  • N/A

Description

We have found Group Policy Preferences file '{CpasswordFile}' with cpassword for {CpasswordFile.Cpasswords}. A cpassword is used for setting passwords from the Group Policy Preferences. Cpasswords are encrypted using a weak encryption algorithm, which can be easily decrypted and used for lateral movement
Need help?

Get a free Security Risk Assessment. Start today

Orca Security Demo Demo the Orca Platform-> In just 10 minutes, you’ll see how Orca Security can revolutionize your cloud security strategy. Watch a recorded demo from a cloud security expert now.