You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
I managed to reproduce the issue on my side, and created a PR that seem to fix it.
I am not familiar with the different steps for issues here, looking at this basecode for the first time, so not sure what the next steps are.
(maybe this bug needed more triaging? 😓 )
Steps to reproduce
Expected behavior
If
username.txt
contains:And
passwords.txt
contains:I expect the module to attempt the following credentials:
admin:admin
root:root
admin:password
root:password
Current behavior
Instead, makes the following attempts:
password:password
admin:password
root:password
Metasploit version
6.4.20-dev
Additional Information
I believe the bug is related to the relatively recently implemented "PASSWORD_SPRAY" option.
The text was updated successfully, but these errors were encountered: