[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Bug#314645: second installment

Announcing the second installment of "SSH Username / Password Mapping
Used By Scanners".

This list includes the previous list (which ends at "resin").

For my own reference, the script I am using to generate it:

grep -i 'ailed pass' auth.log |tail +4 |awk '{ if ($9 ~ /invalid/) { print $11 } else { print $9 } }' |paste - /tmp/ssh-log

Where tail +4 gets rid of stuff in auth.log but not in ssh-log, and
ssh-log must not contain blank lines (which for some reason appear
every time I log in with RSA).

root	administrator
root	root
root	rootroot
root	root1
root	123456
root	1234567890
root	qwerty
root	administrator1
root	admin
root	backup
root	admin1
root	secure
root	secret
root	passwd
root	password
root	password123
admin	admin
administrator	administrator
root	root
admin	admin
test	test
postgres	postgres
info	info123
alex	alex
alex	alex123
samba	samba
guest	guest
webmaster	webmaster
mysql	mysql
oracle	oracle
library	library
info	info
shell	shell
linux	linux
unix	unix
webadmin	webadmin
ftp	ftp
test	test123
root	root123
admin	admin123
guest	guest123
master	master
apache	apache
root	webadmin
root	admin
root	shell
root	linux
root	test
root	webmaster
root	mysql
admin	root
admin	administrator
admin	12345
admin	123456
root	123456
root	12345678
test	test12345
test	123456
webmaster	123456
user	user
username	username
username	password
user	password
root	password
admin	password
test	password
root	master
root	apache
root	unix
root	redhat
danny	danny
sharon	sharon
aron	aron
alex	alex
brett	brett
mike	mike
alan	alan
data	data
www-data	www-data
http	http
httpd	httpd
nobody	nobody
root	login
backup	backup
info	123456
shop	shop
sales	sales
web	web
www	www
wwwrun	wwwrun
adam	adam
stephen	stephen
richard	richard
george	george
michael	michael
john	john
david	david
paul	paul
news	news
angel	angel
games	games
pgsql	pgsql
pgsql	pgsql123
mail	mail
adm	adm
ident	ident
resin	resin
root	root
jack	jack
marvin	marvin
andres	andres
barbara	barbara
adine	adine
root	root
jack	jack
su	su
zeppelin	zeppelin
danny	danny
sharon	sharon
aron	aron
alex	alex
brett	brett
mike	mike
alan	alan
data	data
www-data	www-data
http	http
httpd	httpd
nobody	nobody
root	login
backup	backup
root	root
root	rootroot
root	rootrootroot
root	123root
root	123root123
root	password
root	passwd
root	pass
root	toor
root	newpass
root	server
root	123
root	1234
root	12345
root	123456
root	1234567
root	12345678
root	123456789
root	root123
root	000000
root	1234qwer
root	q1w2e3r4
root	qwertyuiop
root	123abc
root	1a2b3c
root	1p2o3i
root	1q2w3e
root	1qw23e
root	!@#$%
root	!@#$%^
root	!@#$%^&
root	!@#$%^&*
root	@#$%^&
root	abc123
root	asdfghjk
root	asdfghjkl
root	webmaster
root	webster
root	master
root	valhalla
root	q1w2e3
root	qwaszx
root	qwert
root	qwerty
root	qwerty12
root	qwerty123
root	library
root	hacker
root	administrator
root	admin
root	r00t
root	zxcvbn
root	zxcvbnm
root	linux
root	debian
root	redhat
root	mandrake
root	darwin
root	slackware
root	apache
root	unix
root	myserver
root	shell
root	mysql
test	test
test	test1
test	test2
test	testtest
test	testtesttest
test	123
test	123test
test	test123test
test	123test123
test	1234
test	12345
test	123456
test	1234567
test	12345678
test	test123
test	test12345
test	123456789
test	testing
test	tester
test	password
test	q1w2e3
test	abc123
test	asdfghjkl
test	qwertyuiop
test	zxvbnm
admin	root
admin	admin
admin	123
admin	1234
admin	12345
admin	123456
admin	1234567
admin	12345678
admin	123456789
admin	adminadmin
admin	123admin
admin	adminadminadmin
admin	123admin123
admin	administrator
admin	admin123
admin	admin12345
admin	adminroot
admin	admin1
admin	admin2
admin	admin01
admin	admin02
admin	password
admin	adm1n
admin	q1w2e3
admin	abc123
admin	qwertyuiop
admin	asdfghjkl
admin	zxcvbnm
guest	guest
guest	guest1
guest	guest2
guest	guess
guest	guestguest
guest	123guest
guest	123
guest	1234
guest	123456
guest	12345
guest	1234567
guest	12345678
guest	123456789
guest	guest12345
guest	guest123
guest	123guest123
guest	gu3st
guest	pass
guest	passwd
guest	password
guest	qwertyuiop
guest	asdfghjkl
guest	zxcvbnm
guest	abc123
user	user
user	user1
user	user2
user	useruser
user	123456
user	123
user	1234
user	12345
user	1234567
user	12345678
user	123456789
user	us3r
user	123user
user	user123
user	user12345
user	123user123
user	password
user	passwd
user	pass
user	qwertyuiop
user	asdfghjkl
user	zxcvbnm
sales	sales
sales	sales1
tomcat	tomcat
tomcat	tomcat1
webadmin	webadmin
webadmin	webadmin1
spam	spam1
spam	spam
spam	123
spam	1234
virus	virus
virus	virus1
cyrus	cyrus
oracle	oracle
oracle	oracle1
oracle	123456
oracle	123oracle
oracle	oracle123
operator	operator
operator	operator1
ftp	ftp
ftp	ftp1
ftp	123
ftp	1234
ftp	12345
ftp	123456
ftp	123456789
ftp	ftpftp
ftp	pass
ftp	password
ftp	passwd
ftp	qwertyuiop
ftp	asdfghjkl
ftp	zxcvbnm
webmaster	123webmaster
webmaster	webmaster
webmaster	123456
webmaster	webmaster1
postmaster	postmaster
postmaster	postmaster1
postmaster	123456
postmaster	123
postmaster	1234
postfix	postfix
postfix	postfix1
postfix	postfix123
postfix	123
postfix	1234
postgres	postgres
postgres	123456
postgres	postgres1
postgres	123
postgres	postgres123
postgres	1234
postgres	12345
postgres	1234567
postgres	12345678
postgres	123456789
postgres	qwertyuiop
postgres	asdfghjkl
postgres	zxcvbnm
postgres	postgres12345
linux	linux
linux	linux1
web	web
webmail	webmail1234
webmail	webmail
webmail	webmail1
apache	apache
apache	apache1
pgsql	pgsql
pqsql	pgsql1
pgsql	pgsql123
mysql	mysql
mysql	123456
mysql	mysql123
mysql	mysql1
info	info
info	info1
info	123
info	1234
info	12345
info	123456
info	123456789
info	info123
info	info12345
info	qwertyuiop
library	library
library	123456
library	library1
backup	backup
backup	backup1
backup	123456
nobody	nobody
nobody	nobody1
nobody	123
nobody	123456
clamav	clamav
gnats	gnats
mailman	mailman
mailman	mailman1
mailman	123
mailman	1234
notes	notes
samba	samba
dan	dan
dan	dan1
office	office
office	office1
director	director
director	director1
Reply to: