mirror of
https://github.com/0x5t4l1n/hunting.git
synced 2026-05-26 19:36:33 +00:00
copilot-swe-agent[bot]
ba72efbc5e
Co-authored-by: Stalin-143 <161853795+Stalin-143@users.noreply.github.com>
18 lines
728 B
Markdown
18 lines
728 B
Markdown
# Weak Passwords
|
|
|
|
## Description
|
|
Weak password vulnerabilities occur when systems allow or use passwords that are easily guessable or commonly used. This includes default passwords, dictionary words, and simple patterns that can be easily compromised through brute force or dictionary attacks.
|
|
|
|
## Common Attack Vectors
|
|
- Login forms
|
|
- Account creation
|
|
- Password reset
|
|
- Administrative interfaces
|
|
- Default credentials on devices/services
|
|
|
|
## Testing Approach
|
|
Test systems with common weak passwords, default credentials, and dictionary words to identify weak password policies or default configurations.
|
|
|
|
## Payloads
|
|
See `weak-passwords-payloads.txt` for a comprehensive list of common weak passwords and default credentials.
|