Password Spraying

Internal Password Spraying

All the subtopics here are about internal password spraying

External Password Spraying

While outside the scope of this module, password spraying is also a common way that attackers use to attempt to gain a foothold on the internet. We have been very successful with this method during penetration tests to gain access to sensitive data through email inboxes or web applications such as externally facing intranet sites. Some common targets include:

• Microsoft 0365

• Outlook Web Exchange

• Exchange Web Access

• Skype for Business

• Lync Server

• Microsoft Remote Desktop Services (RDS) Portals

• Citrix portals using AD authentication

• VDI implementations using AD authentication such as VMware Horizon

• VPN portals (Citrix, SonicWall, OpenVPN, Fortinet, etc. that use AD authentication)

• Custom web applications that use AD authentication