Password Attacks
16 tools found
longtongue
Generates custom password lists using target info for brute-force or dictionary attacks.
WPCracker
Enumerates users and brute forces WordPress logins with adjustable attack aggressiveness.
Kerbrute
Bruteforce and enumerate AD accounts via flaws in Kerberos Pre-Authentication.
psudohash
Customizable password list generator for brute-force attacks, mimicking human patterns.
Go365
Tool for user enumeration and password guessing attacks on Office365/Microsoft365.
CredMaster
Launches password spray/brute force attacks via AWS FireProx proxies, rotating IPs.
Cerbrutus
Modular Python brute-force tool for fast password spraying on SSH and FTP.
mimikatz
Tool to extract passwords, hashes, and Kerberos tickets from memory and perform attacks.
MimiPenguin
Tool to dump login passwords from current Linux desktop users, similar to Mimikatz.
ophcrack
Ophcrack is a free Windows password cracker based on rainbow tables. It is a very efficient implementation of rainbow tables done by the inventors of the method. It comes with a Graphical User Interface and runs on multiple platforms.
Default Credentials Cheat Sheet
One place for all the default credentials to assist pentesters/blue Teamers during engagements, featuring default login/password details for various products sourced from multiple references.
