Closed IAMinZoho closed 2 years ago
You did use the username==password check. Th this case it’s not asking for the password as that’s == the username.
The main menu also has a domain password spray option. And this asks for a password.
I think this should be straight forward to find but if you still have problems just ask
I got confused with the 3 different password spray options in the tool. Thanks to you I was able to solve the mystery and simulate it in all the 3 cases: with the user with a password blank; the same username & password; and with a custom password. Works perfectly!
Please check:
I did see that WinPwn will ask the password to be sprayed in the code but I didn't get that option while executing the script. Please advise.