Secondary Categories: 02-Credential Access, 02-Initial Access, 02-Privilege Escalation, 02-Lateral Movement
Usually before spraying I will utilize data breaches (IntelX, DeHashed ) to find passwords and manually attempt those first if I only find a few. If I dont find anything from data breaches usually I will create my own custom wordlist and will generally follow the scheme below:
January2023
January23
January22
CompanyName123
CompanyName1
CompanyName22
CompanyName23
CompanyName1!
Winter2022
Winter@2022
Today12345
Today123
Password1
P@ssword1!
P@ssw0rd1!
Termination1
Notice there is a trend:
- (Recent Month)(Year either β2022β or β22β)
- (Season)(usually β@β)(Year either β2022β or β22β)
- (Season)(Year)
- (Company Name)(Year either β2022β or β22β)
- (Company Name)(β1β or β123β)
- (Begins with a variation of βPasswordβ)
Also Check Out:
- PLACEHOLDER