Edit Threat

Name

Category

Tags (comma-separated)

Description Adversaries may modify Group Policy Objects (GPOs) to subvert the intended discretionary access controls for a domain, usually with the intention of escalating privileges on the domain. Group policy allows for centralized management of user and computer settings in Active Directory (AD). GPOs are containers for group policy settings made up of files stored within a predictable network path \\SYSVOL\\Policies\. Like other objects in AD, GPOs have access controls associated with them. By default a