Security Basics mailing list archives

RE: Password audit dictionary

From: "Louie" <tech.louie () verizon net>
Date: Fri, 5 Sep 2003 23:17:52 -0700

Well that's cool, how could I look at
the words you have in there? Plus would
I be able to open the file in windows?

If you have any type of tutorial on how
to use the file let me know.

-----Original Message-----
From: Patrick Boucher
[mailto:pboucher () gardienvirtuel com]
Sent: Thursday, September 04, 2003 6:55
AM
To: Louie;
security-basics () securityfocus com
Subject: Re: Password audit dictionary

Greetings,

 Normaly you would use that big file
with any bruteforce cracking software.
Because using file for cracking is
faster than trying all the
possibilities..
As you know, nobody is using hard to
crack password.

For the program i use, it depend on the
type of application i'm trying to
crack. You can always use John the
ripper.

Patrick


On Thursday 04 September 2003 02:05,
Louie wrote:

Good looking out with the url. I have

to

check out all these words.

Question how would you use something

so

big like this? What program would you
use it with or how?

Newbie asking



-----Original Message-----
From: Patrick Boucher
[mailto:pboucher () gardienvirtuel com]
Sent: Tuesday, September 02, 2003

10:48

AM
To: security-basics () securityfocus com
Subject: Re: Password audit dictionary

Greetings,

 Wow.. Thank you.
the Location o fthe file is:

http://concept.temple.edu/sysadmin/227mi

llion--mega_dic.zip

Patrick



On Sunday 31 August 2003 19:03, Birl

wrote:

For those interested in the


22,000,000+ dictionary list, I finally
found

it on my hard drives.

http://concept.temple.edu/sysadmin/22mil

lion-words.lst.zip


--------------------------------------

---------------------------------

# This is mega_dic.zip from


http://www.hackemate.com.ar/wordlists/

# 24,083,464 bytes compressed.


245,474,830 bytes un-compressed.

# MD5 of the ZIP file:


014b50d1fcca6503b49f134f62290f8a

# wc output - 22349626 23966196


245474830 22million-words.lst


--------------------------------------

---------------------------------

(now if someone can explain why I


PGP'd the uncompressed file it was

 about 1,000,000 bytes smaller than


the ZIP?)

As it was written on Aug 11, thus

Birl


spake unto Technoguru:

sbirl:  Date: Mon, 11 Aug 2003


09:56:22 -0400 (EDT)

sbirl:  From: Birl

<sbirl () temple edu>

sbirl:  To: Technoguru


<technoguru () totalise co uk>

sbirl:  Subject: RE: Password audit


dictionary

sbirl:
sbirl:  May take me some time to

find


it as I cannot remember where I last

left sbirl:  it.  The question is

how


to send it?

sbirl:
sbirl:  No mail server will accept a


85 Mb file and I really dont want to

spend sbirl:  the time breaking it


down into smaller pieces.  I guess

we'll

have to wait sbirl:  and see.
sbirl:
sbirl:
sbirl:
sbirl:
sbirl:  As it was written on Aug 11,


thus Technoguru spake unto

sbirl () temple edu: sbirl:
sbirl:  technoguru:  Date: Mon, 11

Aug


2003 02:59:28 -0700

sbirl:  technoguru:  From:

Technoguru


<technoguru () totalise co uk>

sbirl:  technoguru:  To:


sbirl () temple edu

sbirl:  technoguru:  Subject: RE:


Password audit dictionary

sbirl:  technoguru:
sbirl:  technoguru:  I know that


deathzeuz () hotmail com wrote the email

about the location of the sbirl:


technoguru:  mega dictionary.  But the

site seems to be down and you


mentioned in your sbirl:  technoguru:
email

that you have used (have)the


dictionary.  Which is about 85 megs in

sbirl:

technoguru:  size compressed 2.2

Gigs


uncompressed.  Is there some way that

I can get it sbirl:  technoguru:

from


you?

sbirl:  technoguru:
sbirl:  technoguru:
sbirl:  technoguru:  Thanks.
sbirl:  technoguru:
sbirl:  technoguru:  -----Original


Message-----

sbirl:  technoguru:  From: Birl


[mailto:sbirl () temple edu]

sbirl:  technoguru:  Sent:

Wednesday,


August 06, 2003 10:50 AM

sbirl:  technoguru:  To:


security-basics () securityfocus com

sbirl:  technoguru:  Subject: RE:


Password audit dictionary

sbirl:  technoguru:
sbirl:  technoguru:
sbirl:  technoguru:  As it was

written


on Aug 5, thus death . spake unto

sbirl:  technoguru:


security-basics@securit...:

sbirl:  technoguru:
sbirl:  technoguru:  death:  Date:


Tue, 05 Aug 2003 14:00:38 -0300

sbirl:  technoguru:  death:  From:


death . <deathzeuz () hotmail com>

sbirl:  technoguru:  death:  To:


security-basics () securityfocus com

sbirl:  technoguru:  death:

Subject:


RE: Password audit dictionary

sbirl:  technoguru:  death:
sbirl:  technoguru:  death:
sbirl:  technoguru:  death:

http://www.hackemate.com.ar/wordlists/me


ga_dic.zip sbirl:  technoguru:

death:
sbirl:  technoguru:
sbirl:  technoguru:
sbirl:  technoguru:  Isnt

Mega_dic.zip


the file with the 22,000,000+ words?

 Great file, but I sbirl:

technoguru:


tried using it with GFI LanGuard;

the file crashed the application.

;p


sbirl:  technoguru:

sbirl:  technoguru:
sbirl:  technoguru:

eath:  --------------------------------

--------------

sbirl:  technoguru:  death:  death


comes to us all...

sbirl:  technoguru:
sbirl:  technoguru:
sbirl:  technoguru:  Aye it does.


--------------------------------------

-------------------------------------

Attend Black Hat Briefings &

Training


Federal, September 29-30 (Training),

October 1-2 (Briefings) in Tysons


Corner, VA; the world's premier

technical IT security event.

Modeled


after the famous Black Hat event in

Las Vegas! 6 tracks, 12 training


sessions, top speakers and sponsors.

Symantec is the Diamond sponsor.


Early-bird registration ends September

6.Visit us: www.blackhat.com


--------------------------------------

-------------------------------------


--------------------------------------

--

-----------------------------------
Attend Black Hat Briefings & Training
Federal, September 29-30 (Training),
October 1-2 (Briefings) in Tysons
Corner, VA; the world's premier
technical IT security event.  Modeled
after the famous Black Hat event in
Las Vegas! 6 tracks, 12 training
sessions, top speakers and sponsors.
Symantec is the Diamond sponsor.
Early-bird registration ends September
6.Visit us: www.blackhat.com
--------------------------------------

--

------------------------------------


----------------------------------------
-----------------------------------
Attend Black Hat Briefings & Training
Federal, September 29-30 (Training),
October 1-2 (Briefings) in Tysons
Corner, VA; the world's premier
technical IT security event.  Modeled
after the famous Black Hat event in
Las Vegas! 6 tracks, 12 training
sessions, top speakers and sponsors.
Symantec is the Diamond sponsor.
Early-bird registration ends September
6.Visit us: www.blackhat.com
----------------------------------------
------------------------------------


---------------------------------------------------------------------------
Captus Networks 
Are you prepared for the next Sobig & Blaster? 
 - Instantly Stop DoS/DDoS Attacks, Worms & Port Scans 
 - Precisely Define and Implement Network Security 
 - Automatically Control P2P, IM and Spam Traffic 
FIND OUT NOW -  FREE Vulnerability Assessment Toolkit 
http://www.captusnetworks.com/ads/42.htm
----------------------------------------------------------------------------

Current thread:

RE: Password audit dictionary Birl (Sep 02)
- Re: Password audit dictionary Patrick Boucher (Sep 02)
  - RE: Password audit dictionary Louie (Sep 04)
    - Re: Password audit dictionary Patrick Boucher (Sep 04)
    - RE: Password audit dictionary Louie (Sep 08)
    - RE: Password audit dictionary Birl (Sep 08)
- RE: Password audit dictionary Birl (Sep 02)