Skip to main content

💥 Password Spraying

🧠 What’s this Attack?​

Password spraying is trying to a few common or identified user and passwords across all the available domain computers/machines to get a hit. There is a very high probablity that the same Credential is being used on other service/machines. This is a hit and try method.

How to perform this attack.​

Using Crackmapexec​

crackmapexec smb 192.168.20.1-23 -u users.txt -p pass.txt -d domain.com --continue-on-success

We can pass list IP range where we want to spray the pass, we can specifiy the specific user and pass or pass the list of users and passwords on the domain.

Using Kerbrute​

If using a windows machine we can also use kerbrute to perform password spray..

.\kerbrute.exe passwordspray -d domain.com .\usernames.txt "Password1"