Hello,

I am seeking a dictionary (not a bigger one, just better -- though a bigger one is also welcome) in plaintext to be used for dictionary-based attack.

I managed to get one (around 70 MB unzipped) from a so called "audit" site, but their quality is doubtful.

Is there anywhere, or any dictionary, some of you may have remembered in your dalliances with RCE, and would like to share it with me?

Have Phun

the classic one is... lets see if i get the link...

http://www.freerainbowtables.com/en/tables/

Those are in GIGS dude!

Its a dictionary attackist's wet dream come true!

Thank you.

Have Phun

Holy O Shit .

Thems some big tables.

Woodmann

It is not as brutal as rainbow tables but sometimes simply googling a hash offers interesting results..

My 2 cts

Rainbow tables aren't really dictionaries though, so you can't e.g. compare their size with dictionaries. Also, if they aren't calculated with the exact same hash algorithm as your target, they will be completely useless. If they ARE calculated with the exact same algorithm as your target though, they are much better than dictionaries, since they will crack any password withing the given character space.

For some other dictionaries, you can always check out the CISTL category for such:

http://www.woodmann.com/collaborative/sectools/Categoryictionaries

hey!!

I thought you removed the hacking library - why there's no handy quick link to it on top???

By the way - indeed, a bit after posting i thought he might have wanted real word dicts and not rainbow tables, but usually/often you see standard algo's (like hashes of pwds etc.) so they perfectly fit the job (and even for things like symmetric crypto attacks, you often end up using/having hashes of the password being used).

...once we'll have enouhg time to add tools to it, it can become a huge categorized collection, which is mostly missing over internet (if you dont know where to search, as google has everything as always)...

Under "Some Useful Places" below...

The reason for it not being in the header is that this is a reverse engineering community, and thus the CISTL isn't as much part of the community as the CRCETL and the CRCEKL, but rather more of a personal project of mine, even though still quite closely related of course.

Yep, that's the general idea for all the collaborative libraries, and also an idea that the CRCETL has succeeded in achieving pretty well.

A certain "critical mass" is needed for such a library to "take off" though, which hasn't quite been achieved yet with the CISTL and the CRCEKL. But I'm still hoping for it, and you are of course all very welcome to contribute, since this is what is needed for such a thing. They too can become extremely valuable sources of information for their respective areas of interest.

And yes, Google has everything, but only as long as you already know enough about it from the start (more often than not you need to already know the name of a smaller and less known tool, in order to be able to find it in the oceans of information that are the internet). For archiving items within a certain limited well-defined area of interest, the collaborative library design is superior to a flat search engine. And it makes it easier for people arriving to it from Google to find lots of related cool stuff to what they're searching for too.