308 Commits

Author	SHA1	Message	Date
g0tmi1k	834cee13d0	Merge pull request #979 from molangning/patch-pwdb ... Imported and cleaned ignis-sec/Pwdb-Public Source: https://github.com/ignis-sec/Pwdb-Public	2024-04-05 15:32:48 +01:00
g0tmi1k	abae3092df	Merge pull request #995 from molangning/patch-1 ... Quick typo fix	2024-04-05 15:28:49 +01:00
g0tmi1k	e9337bebcf	Merge pull request #999 from ItsIgnacioPortal/RouterCredentials ... feat(passwords): Added router default users and passwords Source: https://portforward.com/ ``` import os from bs4 import BeautifulSoup invalidValues = ["none", "N/A", "blank", "user created", "password changes when reset", "none; created during initial setup", "PrintedOnRouterLabel", "provided by ISP"] invalidKeywords = ["none", "leave blank", "n/a", "blank", "found by", "found on", "printed on", "configured during", "create", "last", "located", "on ", "sticker on", "refer to"] def extract_credentials(file_path): with open(file_path, 'r') as file: content = file.read() soup = BeautifulSoup(content, 'html.parser') table = soup.find('table') if table: model = table.find('th').text.strip().lower().replace('model', '').strip().replace(' ', '-').replace('/', '-') usernames = set() passwords = set() for row in table.find_all('tr')[1:]: cols = row.find_all('td') username = cols[1].text.strip() password = cols[2].text.strip() if username not in invalidValues: addUsername = True tempusername = username.lower() for keyword in invalidKeywords: if tempusername.startswith(keyword): addUsername=False break if addUsername: usernames.add(username) if password not in invalidValues: addPassword = True temppassword = password.lower() for keyword in invalidKeywords: if temppassword.startswith(keyword): addPassword=False break if addPassword: passwords.add(password) return model, sorted(usernames), sorted(passwords) else: return None, None, None def save_credentials(model, usernames, passwords, output_dir): if model and usernames and passwords: user_file_path = os.path.join(output_dir, f'{model}_default-users.txt') pass_file_path = os.path.join(output_dir, f'{model}_default-passwords.txt') with open(user_file_path, 'w') as user_file: user_file.write('\n'.join(usernames)) with open(pass_file_path, 'w') as pass_file: pass_file.write('\n'.join(passwords)) def process_files(input_dir, output_dir): for file_name in os.listdir(input_dir): print(f'Processing file {file_name}') file_path = os.path.join(input_dir, file_name) model, usernames, passwords = extract_credentials(file_path) save_credentials(model, usernames, passwords, output_dir) # Input directory containing the text files input_dir = "C:\\Users\\User\\Desktop\\out\\portforward.com" # Output directory where the output files will be saved output_dir = "C:\\Users\\User\\Github\\SecLists\\Passwords\\Default-Credentials\\Routers" process_files(input_dir, output_dir) ```	2024-04-05 15:26:08 +01:00
g0tmi1k	48aaf83f4a	Merge pull request #1004 from molangning/patch-normalise-folders ... Rename folders	2024-04-05 15:20:52 +01:00
Mo Langning	73f78c4133	Rename folders	2024-04-05 10:42:21 +00:00
Ignacio J. Perez Portal	c84fcf055b	chore: Wording	2024-04-05 04:03:05 -03:00
Ignacio J. Perez Portal	9c80d344e1	chore: Fixed typo in router default-passwords README.md	2024-04-05 04:02:43 -03:00
Ignacio J. Perez Portal	fff4d42b5f	feat(passwords): Added router default users and passwords ... sources: - https://portforward.com/	2024-04-05 03:40:32 -03:00
Mo Langning	cc0d910d95	Quick typo fix	2024-04-03 11:47:07 +08:00
Jorge Morán	60c34e20a5	Added a JWT key used in CVE-2023-51442	2024-03-25 13:40:09 -05:00
Mo Langning	07dddc805c	Imported and cleaned ignis-sec/Pwdb-Public	2024-02-19 07:11:14 +00:00
Michal Špaček	0de04210ab	Update README.md	2024-02-16 14:56:28 +01:00
Mo Langning	b322c01fe0	Moved pbkdf and updated updated readme.md	2024-02-16 06:27:05 +00:00
Mo Langning	a43614bf22	Imported and cleaned php magic hashes	2024-02-16 05:50:44 +00:00
g0tmi1k	928828e17a	Merge pull request #935 from barisbogdan/master ... Added Turkish router passwords... again	2024-02-13 15:55:05 +00:00
g0tmi1k	38327109b5	Merge pull request #953 from njmulsqb/patch-1 ... Update common_corporate_passwords.lst	2024-02-13 13:28:44 +00:00
Emmanuel Londono	1682cc6d86	fix(Password/Books): Modify variations to include all_lowercase with underscore and join, and all_uppercase underscore and joined.	2024-01-02 23:58:34 -07:00
Emmanuel Londono	b67b0b20c0	feat(Books): Add greatest books with no leet variations	2024-01-02 19:41:27 -07:00
Emmanuel Londono	94ee6491e3	feat(books): Add greatest books list ... -A list of titles world's most acclaimed literary works, scraped from https://www.thegreatestbooks.org/ - Each title should have two leetspeak versions and one version where whitespaces are converted to '_'	2024-01-02 19:06:52 -07:00
Najam Ul Saqib	71d079aff4	Update common_corporate_passwords.lst	2023-12-12 00:31:48 -08:00
StellarSand	56a39ab9a7	added 200 most used passwords of 2023	2023-12-07 15:49:51 +00:00
David McDuffie	77b6dc81ce	Update README.md	2023-12-01 09:56:55 -07:00
David McDuffie	17e88de509	Create README.md	2023-12-01 09:48:07 -07:00
David McDuffie	6aa5af27ac	Add files via upload	2023-11-30 22:37:39 -07:00
David McDuffie	844cb8615c	Rename Passwords/Keyboard-Combinations.txt to Passwords/Keyboard-Walks/Keyboard-Combinations.txt	2023-11-30 22:36:44 -07:00
barisbogdan	601e25b322	Update default-passwords.txt	2023-11-26 00:38:26 +03:00
g0tmi1k	4820f44a3b	Merge pull request #886 from DeveloperOl/master ... add localized wikipedia wordlists (Relates to #703) Source: https://github.com/DeveloperOl/wikipediator_v2	2023-11-23 17:41:11 +00:00
Ignacio J. Perez Portal	51929e9f00	feat(wordlist): Added clean fortinet-2021 username and passwords wordlists	2023-10-10 20:35:58 -03:00
Oliver Boehlk	f317871261	add localized wikipedia wordlists	2023-06-28 12:28:35 +02:00
Marios K. Pappas	b8a5b67a5a	Added some commonly used rotated passwords. ... This wordlist contains some commonly used passwords that can be found in O365, OWA, and Active Directory environments. They are oriented toward password spraying once the tester gets hold of a list of valid email addresses. The wordlist can be easily modified (e.g testers can change the COMPANY SPORTS_TEAM/HOBBY, LOCATION, and DEPARTMENT values to match their current target).	2023-02-22 19:42:58 +02:00
g0tmi1k	9df8137868	Merge pull request #825 from its0x08/patch-2 ... Dedupe wordlists	2022-11-22 12:23:09 +00:00
0x08	5a4acd41bd	fix: Dedupe wordlist	2022-11-07 13:01:06 +03:00
0x08	2b6d44ccc4	fix: Dedupe wordlist	2022-11-07 12:34:57 +03:00
0x08	256f4f7d35	fix: Dedupe wordlist	2022-11-07 12:32:42 +03:00
0x08	21b131cd57	fix: Dedupe wordlist	2022-11-07 12:23:37 +03:00
0x08	b9a53f09be	fix: Dedupe wordlist ... - Removed duplicated entries.	2022-11-07 12:18:49 +03:00
vah_13	23e94476a3	update default-passwords.csv ... Add SAP passwords for CA Introscope Enterprise Manager	2022-08-22 19:55:03 +04:00
g0t mi1k	324af1d66f	Merge into README.md	2022-08-02 07:11:45 +01:00
g0tmi1k	f4c697e394	Merge pull request #751 from alins1r/patch-1 ... Converting 500-worst-passwords.txt.bz2 to .txt	2022-08-02 06:49:59 +01:00
g0tmi1k	f804d3649e	Merge pull request #763 from khicks/master ... Add OPNsense to default-passwords Source: https://docs.opnsense.org/manual/gui.html	2022-08-02 06:46:37 +01:00
PinkDev1	8b3ccbedaa	Fixed #538: Added credits to the relevant README	2022-06-24 00:32:45 -03:00
PinkDev1	74dbbb7f95	Added scraped-JWT-secrets.txt	2022-06-24 00:31:22 -03:00
Kevin Hicks	c9486f6a41	add opnsense to default-passwords	2022-06-13 11:37:11 -05:00
alins.ir	9255b8090b	Converting 500-worst-passwords.txt.bz2 to .txt	2022-05-05 19:24:56 +04:30
zevlag	806526b1dd	Add Baicells default creds from CVE-2022-24693	2022-03-30 10:37:15 -04:00
g0tmi1k	52fbc4a631	Merge pull request #680 from 5tr1x/patch-3 ... Create months.txt for i in `cat $1`; do echo ${i}; echo ${i}2019; echo ${i}2020; echo ${i}2021; echo ${i}2022; echo ${i}1; echo ${i}123; done >> n for i in `cat n`; do echo ${i}; echo ${i}'!'; echo ${i}'@'; echo ${i}'#'; echo ${i}'$'; echo ${i}'%'; echo ${i}'^'; echo ${i}'&'; echo ${i}'*'; echo ${i}'?'; done >> s hashcat s -r /usr/share/hashcat/rules/leetspeak.rule --stdout > hc wordlister --input s --perm 1 --min 4 --max 48 --leet &>/dev/null mv output.txt wl cat hc wl | sort -u > vvv wordlister --input vvv --perm 1 --min 4 --max 48 --cap --up &>/dev/null cat output.txt | sort -u > $2 rm n s hc wl vvv output.txt	2022-02-02 23:36:41 +00:00
g0tmi1k	bf2d2a996d	Merge pull request #681 from 5tr1x/patch-4 ... Create days.txt for i in `cat $1`; do echo ${i}; echo ${i}2019; echo ${i}2020; echo ${i}2021; echo ${i}2022; echo ${i}1; echo ${i}123; done >> n for i in `cat n`; do echo ${i}; echo ${i}'!'; echo ${i}'@'; echo ${i}'#'; echo ${i}'$'; echo ${i}'%'; echo ${i}'^'; echo ${i}'&'; echo ${i}'*'; echo ${i}'?'; done >> s hashcat s -r /usr/share/hashcat/rules/leetspeak.rule --stdout > hc wordlister --input s --perm 1 --min 4 --max 48 --leet &>/dev/null mv output.txt wl cat hc wl | sort -u > vvv wordlister --input vvv --perm 1 --min 4 --max 48 --cap --up &>/dev/null cat output.txt | sort -u > $2 rm n s hc wl vvv output.txt	2022-02-02 23:36:21 +00:00
g0tmi1k	0d9870d28d	Merge pull request #679 from 5tr1x/patch-2 ... Create seasons.txt for i in `cat $1`; do echo ${i}; echo ${i}2019; echo ${i}2020; echo ${i}2021; echo ${i}2022; echo ${i}1; echo ${i}123; done >> n for i in `cat n`; do echo ${i}; echo ${i}'!'; echo ${i}'@'; echo ${i}'#'; echo ${i}'$'; echo ${i}'%'; echo ${i}'^'; echo ${i}'&'; echo ${i}'*'; echo ${i}'?'; done >> s hashcat s -r /usr/share/hashcat/rules/leetspeak.rule --stdout > hc wordlister --input s --perm 1 --min 4 --max 48 --leet &>/dev/null mv output.txt wl cat hc wl | sort -u > vvv wordlister --input vvv --perm 1 --min 4 --max 48 --cap --up &>/dev/null cat output.txt | sort -u > $2 rm n s hc wl vvv output.txt	2022-02-02 23:35:58 +00:00
g0tmi1k	eaf1c8263f	Merge pull request #695 from elitejake/patch-2 ... Remove duplicated entries	2022-01-31 23:23:47 +00:00
elitejake	d95f0016bb	Remove duplicated entries ... Fixes #689	2022-01-29 05:47:02 +00:00