External Password Spraying

Secondary Categories: 02-Initial Access, 02-Lateral Movement

This section contains some of my emthodology and tips for performing password spraying attacks from an external attackers prespective.

There are a lot of great open source tools out there to do this. I suggest using TREVORspray.

Using this tool you can use a round-robin cycle through multiple different SSH sessions, uses multiple modules/methods to spray, spoof the User-Agent, set delay/jitter.

For a list of Common Password please refer to: Common Password List

Also Check Out:

PLACEHOLDER

The Void 🌌

Explorer

External Password Spraying

Also Check Out:

Graph View

Backlinks

Recent Blog Posts

No More Network Bottlenecks

Unmasking Secrets - Deciphering Encrypted Passwords through Reverse Engineering

Conquering Goliath as a CCDC Blue Teamer

Explorer

Recent Blog Posts

No More Network Bottlenecks

Unmasking Secrets - Deciphering Encrypted Passwords through Reverse Engineering

Conquering Goliath as a CCDC Blue Teamer