# Spraying

Credential spraying is a technique that attackers use to try a few passwords (or keys) against a set of usernames instead of a single one. This technique is just [credential guessing](https://red.infiltr8.io/ad/movement/credentials/bruteforcing/broken-reference) but "sprayed" (i.e. against multiple accounts) and tools that can do [credential guessing](https://red.infiltr8.io/ad/movement/credentials/bruteforcing/broken-reference) can usually do spraying.

{% content-ref url="broken-reference" %}
[Broken link](https://red.infiltr8.io/ad/movement/credentials/bruteforcing/broken-reference)
{% endcontent-ref %}