mirror of
https://github.com/0x5t4l1n/hunting.git
synced 2026-05-26 11:35:51 +00:00
copilot-swe-agent[bot]
ba72efbc5e
Co-authored-by: Stalin-143 <161853795+Stalin-143@users.noreply.github.com>
728 B
728 B
Weak Passwords
Description
Weak password vulnerabilities occur when systems allow or use passwords that are easily guessable or commonly used. This includes default passwords, dictionary words, and simple patterns that can be easily compromised through brute force or dictionary attacks.
Common Attack Vectors
- Login forms
- Account creation
- Password reset
- Administrative interfaces
- Default credentials on devices/services
Testing Approach
Test systems with common weak passwords, default credentials, and dictionary words to identify weak password policies or default configurations.
Payloads
See weak-passwords-payloads.txt for a comprehensive list of common weak passwords and default credentials.