This repository contains a file listing the most commonly used or default passwords, designed for security auditing purposes. This list can assist in identifying weak or default passwords in various system configurations and help in penetration testing by providing a baseline for common passwords.
This password list can be used for:
- Identifying default or weak passwords in system configurations.
- Security assessments: Assisting penetration testers in testing for common passwords across different environments.
This list is useful in a variety of security testing scenarios, including:
- SSH (Secure Shell): Testing access to remote systems over SSH.
- FTP (File Transfer Protocol): Checking for weak or default FTP credentials.
- Kerbrute: Brute-forcing Kerberos service accounts.
- Admin Panels: Testing access to web-based administrative interfaces.
- Windows Enumeration: Identifying weak passwords on Windows systems.
Use this list responsibly and ensure you have explicit authorization for security testing activities. Unauthorized use of this list may violate legal and ethical guidelines.
Top-common-passwords.txt: The password list, with each password on a new line for easy parsing.
Contributions to improve this list are welcome. If you have additional commonly-used passwords or improvements, feel free to submit a pull request.