Waqar Posted January 16, 2017 Share Posted January 16, 2017 Hi, Can someone tell me the best place to download the most tested word list ? Thanks- Quote Link to comment Share on other sites More sharing options...
ElektricUnic0rn Posted January 16, 2017 Share Posted January 16, 2017 If by wordlist you mean dictionary just go for the classic rockyou.txt Quote Link to comment Share on other sites More sharing options...
Teabot 5000 Posted January 16, 2017 Share Posted January 16, 2017 +1 for the rockyou.txt wordlist. Kali ships with a few others too if I remember correctly :) Quote Link to comment Share on other sites More sharing options...
anode Posted January 16, 2017 Share Posted January 16, 2017 +1 rockyou.txt Hashcat with rules, and a script that stuffs found PW's back into rockyou.txt If you are doing hashcat, learn rules, combiner, and hybrid attacks. Know your target. Straight up dictionary is almost pointless (though local area code phone numbers and rockyou.txt get a *lot* of WiFi PWs in these parts) Crackstaion.txt is all but useless (for a multi GB file), but have gotten a few positives from it. If you look at it, it has a TON of crap. Like full windows path/filenames. Its a bloody mess of junk. Quote Link to comment Share on other sites More sharing options...
digip Posted January 17, 2017 Share Posted January 17, 2017 Some of these are pre-installed in kali, others not for size but have at it: https://github.com/danielmiessler/SecLists/tree/master/Passwords There are quire a few places like this for wordlists, just have to google for them. I've been using the above link for working on Vulnhub CTF's and have had decent success with them. You can also try tools like digininjas cewl and rsmangler combined with john the ripper to make wordlists for you. crunch is also a nice tool for making number and letter sets based on rules, but warning, files can get large quick if you don't pay attention to the rules and length, you will fill a HDD very quickly if not careful. Quote Link to comment Share on other sites More sharing options...
anode Posted January 17, 2017 Share Posted January 17, 2017 Another source: https://wiki.skullsecurity.org/index.php?title=Passwords and KoreLogic's site I think has some along with rules. They have run the Crack Me If You Can comps. This looks god too: http://www.netmux.com/blog/cracking-12-character-above-passwords Quote Link to comment Share on other sites More sharing options...
Waqar Posted January 20, 2017 Author Share Posted January 20, 2017 Thank you all for the comments!! Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.