now there are a lot of interesting files out there like

Good targets:
install, backup, .bak, .log, .bat, .cmd, .vbs, .cnf, .conf, .config, .ini, .xml, .txt, .gpg, .pgp, .p12, .der, .csr, .cer, id_rsa, id_dsa, .ovpn, .rdp, vnc, ftp, ssh, vpn, git, .kdbx, .db
unattend.xml
Unattended.xml
sysprep.inf
sysprep.xml
VARIABLES.DAT
setupinfo
setupinfo.bak
web.config
SiteList.xml
.aws\\credentials
.azure\\accessTokens.json
.azure\\azureProfile.json
gcloud\\credentials.db
gcloud\\legacy_credentials
gcloud\\access_tokens.db

now let’s try it

type cdirs.txt | findstr /i unattend.xml

and we got a hit so let’s go and reveal it’s content

type c:\\Windows\\Panther\\unattend.xml | findstr /i passw

and we got the password again

another one

type cdirs.txt | findstr /i vnc

and we got another hit let’s now open the file

type c:\\Users\\IEUser\\Downloads\\ultravnc.ini | findstr /i passw

and we got 2 encoded passwords