| ID | Name |
|---|---|
| ATAGS-T1112.001 | TC Brute Forcing |
| ATAGS-T1112.002 | Credential Stuffing |
| ATAGS-T1112.003 | Password Cracking |
| ATAGS-T1112.004 | Password Guessing |
| ATAGS-T1112.005 | Password Spraying |
Threat Actors may use a single or small list of commonly used passwords against many different accounts to attempt to acquire valid account credentials. Password spraying uses one password (e.g. 'Password01'), or a small list of commonly used passwords, that may match the complexity policy of the domain. Logins are attempted with that password against many different accounts on a network to avoid account lockouts that would normally occur when brute forcing a single account with many passwords.
This type of attack technique cannot be easily mitigated with preventive controls since it is based on the abuse of system features.