Security Basics mailing list archives

Re: Password audit dictionary

From: Patrick Boucher <pboucher () gardienvirtuel com>
Date: Thu, 4 Sep 2003 09:55:15 -0400

Greetings, 

 Normaly you would use that big file with any bruteforce cracking software. 
Because using file for cracking is faster than trying all the possibilities.. 
As you know, nobody is using hard to crack password. 

For the program i use, it depend on the type of application i'm trying to 
crack. You can always use John the ripper.

Patrick


On Thursday 04 September 2003 02:05, Louie wrote:

Good looking out with the url. I have to
check out all these words.

Question how would you use something so
big like this? What program would you
use it with or how?

Newbie asking



-----Original Message-----
From: Patrick Boucher
[mailto:pboucher () gardienvirtuel com]
Sent: Tuesday, September 02, 2003 10:48
AM
To: security-basics () securityfocus com
Subject: Re: Password audit dictionary

Greetings,

 Wow.. Thank you.
the Location o fthe file is:


http://concept.temple.edu/sysadmin/227mi
llion--mega_dic.zip

Patrick



On Sunday 31 August 2003 19:03, Birl

wrote:

For those interested in the


22,000,000+ dictionary list, I finally
found

it on my hard drives.


http://concept.temple.edu/sysadmin/22mil
lion-words.lst.zip

--------------------------------------


---------------------------------

# This is mega_dic.zip from


http://www.hackemate.com.ar/wordlists/

# 24,083,464 bytes compressed.


245,474,830 bytes un-compressed.

# MD5 of the ZIP file:


014b50d1fcca6503b49f134f62290f8a

# wc output - 22349626 23966196


245474830 22million-words.lst

--------------------------------------


---------------------------------

(now if someone can explain why I


PGP'd the uncompressed file it was

 about 1,000,000 bytes smaller than


the ZIP?)

As it was written on Aug 11, thus Birl


spake unto Technoguru:

sbirl:  Date: Mon, 11 Aug 2003


09:56:22 -0400 (EDT)

sbirl:  From: Birl <sbirl () temple edu>
sbirl:  To: Technoguru


<technoguru () totalise co uk>

sbirl:  Subject: RE: Password audit


dictionary

sbirl:
sbirl:  May take me some time to find


it as I cannot remember where I last

left sbirl:  it.  The question is how


to send it?

sbirl:
sbirl:  No mail server will accept a


85 Mb file and I really dont want to

spend sbirl:  the time breaking it


down into smaller pieces.  I guess we'll

have to wait sbirl:  and see.
sbirl:
sbirl:
sbirl:
sbirl:
sbirl:  As it was written on Aug 11,


thus Technoguru spake unto

sbirl () temple edu: sbirl:
sbirl:  technoguru:  Date: Mon, 11 Aug


2003 02:59:28 -0700

sbirl:  technoguru:  From: Technoguru


<technoguru () totalise co uk>

sbirl:  technoguru:  To:


sbirl () temple edu

sbirl:  technoguru:  Subject: RE:


Password audit dictionary

sbirl:  technoguru:
sbirl:  technoguru:  I know that


deathzeuz () hotmail com wrote the email

about the location of the sbirl:


technoguru:  mega dictionary.  But the

site seems to be down and you


mentioned in your sbirl:  technoguru:
email

that you have used (have)the


dictionary.  Which is about 85 megs in

sbirl:

technoguru:  size compressed 2.2 Gigs


uncompressed.  Is there some way that

I can get it sbirl:  technoguru:  from


you?

sbirl:  technoguru:
sbirl:  technoguru:
sbirl:  technoguru:  Thanks.
sbirl:  technoguru:
sbirl:  technoguru:  -----Original


Message-----

sbirl:  technoguru:  From: Birl


[mailto:sbirl () temple edu]

sbirl:  technoguru:  Sent: Wednesday,


August 06, 2003 10:50 AM

sbirl:  technoguru:  To:


security-basics () securityfocus com

sbirl:  technoguru:  Subject: RE:


Password audit dictionary

sbirl:  technoguru:
sbirl:  technoguru:
sbirl:  technoguru:  As it was written


on Aug 5, thus death . spake unto

sbirl:  technoguru:


security-basics@securit...:

sbirl:  technoguru:
sbirl:  technoguru:  death:  Date:


Tue, 05 Aug 2003 14:00:38 -0300

sbirl:  technoguru:  death:  From:


death . <deathzeuz () hotmail com>

sbirl:  technoguru:  death:  To:


security-basics () securityfocus com

sbirl:  technoguru:  death:  Subject:


RE: Password audit dictionary

sbirl:  technoguru:  death:
sbirl:  technoguru:  death:
sbirl:  technoguru:  death:


http://www.hackemate.com.ar/wordlists/me

ga_dic.zip sbirl:  technoguru:

death:
sbirl:  technoguru:
sbirl:  technoguru:
sbirl:  technoguru:  Isnt Mega_dic.zip


the file with the 22,000,000+ words?

 Great file, but I sbirl:  technoguru:


tried using it with GFI LanGuard;

the file crashed the application.  ;p


sbirl:  technoguru:

sbirl:  technoguru:
sbirl:  technoguru:


death:  --------------------------------
--------------

sbirl:  technoguru:  death:  death


comes to us all...

sbirl:  technoguru:
sbirl:  technoguru:
sbirl:  technoguru:  Aye it does.

--------------------------------------


-------------------------------------

Attend Black Hat Briefings & Training


Federal, September 29-30 (Training),

October 1-2 (Briefings) in Tysons


Corner, VA; the world's premier

technical IT security event.  Modeled


after the famous Black Hat event in

Las Vegas! 6 tracks, 12 training


sessions, top speakers and sponsors.

Symantec is the Diamond sponsor.


Early-bird registration ends September

6.Visit us: www.blackhat.com
--------------------------------------


-------------------------------------


----------------------------------------
-----------------------------------
Attend Black Hat Briefings & Training
Federal, September 29-30 (Training),
October 1-2 (Briefings) in Tysons
Corner, VA; the world's premier
technical IT security event.  Modeled
after the famous Black Hat event in
Las Vegas! 6 tracks, 12 training
sessions, top speakers and sponsors.
Symantec is the Diamond sponsor.
Early-bird registration ends September
6.Visit us: www.blackhat.com
----------------------------------------
------------------------------------


---------------------------------------------------------------------------
Attend Black Hat Briefings & Training Federal, September 29-30 (Training), 
October 1-2 (Briefings) in Tysons Corner, VA; the world's premier 
technical IT security event.  Modeled after the famous Black Hat event in 
Las Vegas! 6 tracks, 12 training sessions, top speakers and sponsors.  
Symantec is the Diamond sponsor.  Early-bird registration ends September 6.Visit us: www.blackhat.com
----------------------------------------------------------------------------

Current thread:

RE: Password audit dictionary Birl (Sep 02)
- Re: Password audit dictionary Patrick Boucher (Sep 02)
  - RE: Password audit dictionary Louie (Sep 04)
    - Re: Password audit dictionary Patrick Boucher (Sep 04)
    - RE: Password audit dictionary Louie (Sep 08)
    - RE: Password audit dictionary Birl (Sep 08)
- RE: Password audit dictionary Birl (Sep 02)