This is a collection of dictionaries to be used by security minded people for testing passwords. Some of them come from various sources like skullsecurity.org or other places I cannot remember. Please contribute. If you need a REALLY large list I’d recommend crackstation
Following dictionaries in this repository:
- DirBuster-lists
- hosts.txt - List for enumerating DNS records
- AshleyMadisonCracked.txt - Cracked passwords from the Ashley Madison leak
- common_users.txt - list of common default usernames
- conficker.txt - dictionary that the malware variant Conficker used.
- Top 100, 500, 1000 worst password dictionaries
- langages - German, Sindarin (Language created by JRR Tolkien / Lord of the Rings), Spanish, French, Turkish
- King James Bible
- file-locations.txt - dictionary of default file locations
- web-extensions.txt - list of common server-side web extensions
- zipcodes.txt - list of Postal codes in the United States
- fuzzing-strings.txt - strings used for fuzzing
- us_cities.txt - list of cities in the United States
- web-fuzz-dict.txt - modern file list for enumerating files on a webserver. Makes a great dirsearch list