LAB 617 – ATT&CK: Testing for Plaintext Secrets in Files

Course Overview

Adversaries may search local file systems and remote file shares for files containing insecurely stored credentials such as passwords, API keys, cryptographic keys, and other confidential data that an application needs to function but should not be exposed to unauthorized users. The Testing for Plaintext Secrets in Files lab assesses learners’ ability to discover plaintext secrets in files. After completing this lab, the learner will understand how to search for improperly stored secrets in files.