cme_spray
Conduct password spraying attacks across multiple protocols and targets with configurable jitter and the ability to continue after successful authentication.
Instructions
Perform password spraying attacks across multiple targets. Supports jitter and continues on success options.
Input Schema
| Name | Required | Description | Default |
|---|---|---|---|
| protocol | Yes | Protocol to use: smb, winrm, ssh, mssql, ldap, rdp | |
| targets | Yes | Target IP, hostname, CIDR range, or file path | |
| usernames | Yes | Username or file path to usernames | |
| passwords | Yes | Password or file path to passwords | |
| domain | No | Domain name (for AD authentication) | |
| localAuth | No | Use local authentication | |
| threads | No | Concurrent threads | |
| jitter | No | Jitter interval (e.g., '0-5' for 0-5 seconds between connections) | |
| continueOnSuccess | No | Continue spraying after a successful login | |
| noProgress | No | Disable progress bar | |
| verbose | No | Verbose output |