RE: FW: Password Cracking Word List

From: Lay, Rob (Robert.Lay@Honeywell.com)
Date: Thu Apr 12 2007 - 02:39:29 EDT

• Next message: Shreyas Zare: "Re: Boot floppy"
• Previous message: Mifa: "RE: Boot floppy"
• Maybe in reply to: Lay, Rob: "FW: Password Cracking Word List"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Hi All,

Thanks for the excellent responses that I received through the list.

I did google for wordlists before posting and as several people
mentioned, got a lot of hits back. The main reason for posting was to
discover which ones people found the best and to get recommendations.

The number of responses I've received has been excellent.

I now have quite a selection of word lists which I will use to compile
into one of two customer ones of my own.

Thanks again guys.

Cheers

Rob

-----Original Message-----
From: Mister Coffee [mailto:live4java@stormcenter.net]
Sent: 11 April 2007 22:51
To: Lay, Rob
Subject: Re: FW: Password Cracking Word List

Lay, Rob wrote:

Rob,

You've already gotten some great responses on-list for your wordlist
request. As you see, there's a lot of them and some of them are pretty
freakin' huge. Case in point: the one I use for running dictionary
attacks is 67Meg.

My recommendation would be to download ALL the wordlists you can find,
then pipe them through sort and uniq to get rid of duplicates. Don't
forget to add in a few of the phrase and quite lists you'll run across.

A lot of systems enforce 8 character + password lengths, which means
you'll want to find longer words for the list. And don't forget special

characters!

Let me know if you run into any trouble compiling a list.

Cheers,
L4J

> Hi All,
>
> I'm pretty new to pen-testing and was wondering if anyone can point me
in the direction of some pre-made work lists for use with password
cracking utils??
>
> Any ideas would be appreciated.
>
> Cheers
>
> Rob
>
> Rob Lay CCSP CCNP
> Network Engineer
>
>
>
------------------------------------------------------------------------
> This List Sponsored by: Cenzic
>
> Need to secure your web apps?
> Cenzic Hailstorm finds vulnerabilities fast.
> Click the link to buy it, try it or download Hailstorm for FREE.
>
>
http://www.cenzic.com/products_services/download_hailstorm.php?camp=7016
00000008bOW
>
------------------------------------------------------------------------
>
>

------------------------------------------------------------------------
This List Sponsored by: Cenzic

Are you using SPI, Watchfire or WhiteHat?
Consider getting clear vision with Cenzic
See HOW Now with our 20/20 program!

http://www.cenzic.com/c/2020
------------------------------------------------------------------------

• Next message: Shreyas Zare: "Re: Boot floppy"
• Previous message: Mifa: "RE: Boot floppy"
• Maybe in reply to: Lay, Rob: "FW: Password Cracking Word List"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:57:43 EDT