Password Spraying Attack in Active Directory. Password Spraying attack is a type of brute-force attack in Active Directory in which the attacker uses a same password to brute-force logins based on list of usernames. For example, an attacker will use one password (say, Admin@123) against many different accounts on the application to avoid account lockouts … Continue reading What is Password Spraying Attack? Complete Practical Guide 2024.