Creating a Custom Wordlist

Hashcat Rules

• Start by creating a wordlist with potential passwords

January
Password
password
P@ssw0rd
Febuary
March
April
May
June
July
August
September
October
November
December
Summer
Spring
Winter
Fall

• Users love to have dates in their passwords along with !

• This will keep your original entries, but also create entries with the dates and !:

• Now use hashcat rules to create some randomness in your password list

• Now your password list should look something like this

• Note for a more compressive wordlist you can also chain rules with hashcat

• toggles1.rule will toggle upper and lower characters, however when you do this many duplicates will exist plus long passwords

• If you only wanted passwords with 8 characters or more instead of the above command you could use awk in addition

• This command will sort by unique occurrences and also only have passwords with 8 or more chars.

exrex Password Generator

• https://github.com/asciimoo/exrex

Install

• Will leave you with roughly 300 passwords

kwp Keyboard Walk Password List Generator

• Release page: https://github.com/hashcat/kwprocessor/releases/tag/v1.00