Last updated 11 months ago
Was this helpful?
Burpsuite can be used to password spray other websites that aren't Microsoft's. You can set failure flags in Intruder -> Options or you can use the status code as an indicator of success or failure.
Be cautious about account lockouts still
