Creating a Custom Wordlist

Common Wordlists

Wordlist

Description

Source

rockyou.txt

Millions of leaked passwords (RockYou breach)

/usr/share/wordlists/rockyou.txt

top-usernames-shortlist.txt

Common usernames (short)

SecLists

xato-net-10-million-usernames.txt

10M usernames

SecLists

2023-200_most_used_passwords.txt

Top 200 passwords (2023)

SecLists

default-passwords.txt

Default credentials

SecLists

darkweb2017-top10000.txt

Dark web leaked passwords

SecLists

Username Anarchy (Generate Usernames from Names)

Generate potential usernames from a person's name.

Install

sudo apt install ruby -y
git clone https://github.com/urbanadventurer/username-anarchy.git
cd username-anarchy

Show Available Formats

./username-anarchy -l

Generate Usernames

# From a single name
./username-anarchy Jane Smith > jane_usernames.txt

# Output includes: janesmith, smithjane, jane.smith, j.smith, js, j.s., etc.

CUPP (Custom User Password Profiler)

Generate personalized password list based on target's personal info.

Install

sudo apt install cupp -y

Interactive Mode

cupp -i

Enter information when prompted:

First/Last Name, Nickname
Birthdate (DDMMYYYY)
Partner's name, nickname, birthdate
Pet's name
Company name
Keywords (comma-separated)
Add special chars? (Y)
Add random numbers? (Y)
Leet mode? (Y)

Output

CUPP generates passwords with:

Original and capitalized versions
Reversed strings
Birthdate variations
Concatenations
Special characters appended
Numbers appended
Leetspeak substitutions

Grep Filtering (Match Password Policy)

Filter wordlists to match specific password policies.

Example Policy

Minimum 8 characters
At least 1 uppercase
At least 1 lowercase
At least 1 number

Filter Commands

# Download wordlist
wget https://raw.githubusercontent.com/danielmiessler/SecLists/master/Passwords/Common-Credentials/darkweb2017_top-10000.txt

# Filter step by step
grep -E '^.{8,}$' darkweb2017_top-10000.txt > step1-minlength.txt
grep -E '[A-Z]' step1-minlength.txt > step2-uppercase.txt
grep -E '[a-z]' step2-uppercase.txt > step3-lowercase.txt
grep -E '[0-9]' step3-lowercase.txt > final-filtered.txt

# Or one-liner
grep -E '^.{8,}$' wordlist.txt | grep -E '[A-Z]' | grep -E '[a-z]' | grep -E '[0-9]' > filtered.txt

Add Special Characters Requirement

# At least 2 special chars from !@#$%^&*
grep -E '([!@#$%^&*].*){2,}' wordlist.txt > with-specials.txt

Full Policy Filter Example

grep -E '^.{8,}$' wordlist.txt | \
grep -E '[A-Z]' | \
grep -E '[a-z]' | \
grep -E '[0-9]' | \
grep -E '([!@#$%^&*].*){2,}' > policy-compliant.txt

Hashcat Rules

Start by creating a wordlist with potential passwords

January
Password
password
P@ssw0rd
Febuary
March
April
May
June
July
August
September
October
November
December
Summer
Spring
Winter
Fall

Users love to have dates in their passwords along with !

for i in $(cat pwlist.txt); do echo $i; echo ${i}2019; echo $i{2020}; echo ${i}\!; done > pwlist2.txt

This will keep your original entries, but also create entries with the dates and !:

December
December2019
December2020
December2019!
December2020!
December!

Now use hashcat rules to create some randomness in your password list

hashcat --force --stdout pwlist2.txt -r /usr/share/hashcat/rules/best64.rule

Now your password list should look something like this

--snip--
merSum
mmer!
mmer
ummer
SummSumm
fumm!
9102remmuS
Summer20190
SUMMER2019
--snip--

Note for a more compressive wordlist you can also chain rules with hashcat

hashcat --force --stdout pwlist2.txt -r /usr/share/hashcat/rules/best64.rule -r /usr/share/hashcat/rules/toggles1.rule

toggles1.rule will toggle upper and lower characters, however when you do this many duplicates will exist plus long passwords
If you only wanted passwords with 8 characters or more instead of the above command you could use awk in addition

hashcat --force --stdout pwlist2.txt -r /usr/share/hashcat/rules/best64.rule -r /usr/share/hashcat/rules/toggles1.rule | sort -u | awk 'length($0) > 8'

This command will sort by unique occurrences and also only have passwords with 8 or more chars.

exrex Password Generator

https://github.com/asciimoo/exrex

Install

git clone https://github.com/asciimoo/exrex.git
cd exrex
easy_install exrex
--or--
pip3 install exrex

exrex "((W|w)inter|(S|s)ummer|(F|f)all|(A|a)utumn|(S|s)pring)20(16|17|18|19|20|21|22)" > seasons_months.txt
exrex "((J|j)anuary|(F|f)ebruary|(M|m)arch|(A|a)pril|(M|m)ay|(J|j)une|(J|j)uly|(A|a)ugust|(S|s)eptember|(O|o)ctober|(N|n)ovember|(D|d)ecember)20(16|17|18|19|20|21|22)" >> seasons_months.txt

Will leave you with roughly 300 passwords

kwp Keyboard Walk Password List Generator

Release page: https://github.com/hashcat/kwprocessor/releases/tag/v1.00

kwp -z basechars/full.base keymaps/en-us.keymap routes/2-to-16-max-3-direction-changes.route > keymap.txt
#below command might explode your vm
kwp -s1 basechars/full.base keymaps/en-us.keymap routes/2-to-32-max-5-direction-changes.route -o /opt/kwprocessor/lists/lists-keepass

Previouscurl NextEncoding & Decoding

Last updated 1 month ago

hashtagCommon Wordlists

hashtagUsername Anarchy (Generate Usernames from Names)

hashtagInstall

hashtagShow Available Formats

hashtagGenerate Usernames

hashtagCUPP (Custom User Password Profiler)

hashtagInstall

hashtagInteractive Mode

hashtagOutput

hashtagGrep Filtering (Match Password Policy)

hashtagExample Policy

hashtagFilter Commands

hashtagAdd Special Characters Requirement

hashtagFull Policy Filter Example

hashtagHashcat Rules

hashtagexrex Password Generator

hashtagInstall

hashtagkwp Keyboard Walk Password List Generator

Common Wordlists

Username Anarchy (Generate Usernames from Names)

Install

Show Available Formats

Generate Usernames

CUPP (Custom User Password Profiler)

Install

Interactive Mode

Output

Grep Filtering (Match Password Policy)

Example Policy

Filter Commands

Add Special Characters Requirement

Full Policy Filter Example

Hashcat Rules

exrex Password Generator

Install

kwp Keyboard Walk Password List Generator