Over the past few months, I’ve been collecting databases of hacked accounts. I’ve already gone into some depth as to why (password audits), so I won’t go over that here. But it’s been interesting carefully working through how to pull […]
Man, this server screams. I’ve been able to do in a week on the new server what it took two months to do on the old one. In the old server, I had about 1.7 Billion records. I’ve moved those […]
Wow, there have been a lot of breaches. I’ve been processing data from the Breach Compilation database. As I’ve been doing that, I have also been finding, researching, and downloading others. 320 Million here, 100 Million there. So far, I […]
The BreachCompilation database weighs in at 1.4 Billion records. Out of that, there are about 400 Million unique passwords. That is a lot of password reuse. The goal right now is to create NTLM hashes for those 400M passwords. This […]
Analyzing the BreachCompilation database, my first goal was to count how many times each unique password showed up in the data. As it turns out, there are approximately 400 Million unique passwords. The top 1 Million most common passwords and […]
Database dumps containing user credentials are not a new thing. One of the more recent contains 1.4 Billion email addresses and passwords. This database is referred to as “BreachCompilation.” More information about this database can be found at the end […]