NOTE: WATCH IN HD. I will use Metasploit on BackTrack5r2 to brute-force weak SSH credentials on a Metasploitable (Ubuntu 8.04 version) target.

There are quite a few huge word lists available for testing.

Outpost9: [ Ссылка ]
Openwall (which, ironically enough, is pay-walled): [ Ссылка ]

There also used to be a really nice many-language word list from Oxford, but it seems to be gone now. ftp://ftp.ox.ac.uk/pub/wordlists/ (broken)

This is for educational purposes only. You can't learn to be a white hat without knowing the skills of a black hat. I don't take any responsibility for anything. Don't be stupid.

свернуть