How do I use large password lists?

**Mike9876** · 2019-09-14

Hi, I have Kali Linux 64-bit on VMware and Windows 10 host. I'm using Metaplsoitable 2. I am trying to bruteforce SSH with Hydra and Ncrack. My question is, how do i use large wordlists? Hydra says a maximum of 50 million passwords. That's fine for rockyou.txt but I'd like to try a bigger wordlists. I read online to get crackstation (15GB) and crackstation-human-only. I also have weakpass 2p (28GB). So how do I use them on Hydra and Ncrack? I read Ncrack is faster. I can use crackstation with Ncrack but it lists "root" and then "random symbols" for the password. Rockyou.txt on Ncrack shows each password clearly (not symbols). So I'm not sure if Ncrack is correctly using the 15GB Crackstation list. Can anyone explain how to use my large wordlists? It seems strange I can't use any size. Please reply. Thanks

**Mike9876** · 2019-09-16

I read to enter this...What file do I edit it to? It should increase Hydra's wordlist limit. Please reply. Thanks

split -l MAX_LENGTH --additional-suffix=".lst" words.lst words_

for user in words_*.lst
do
for pass in words_*.lst
do
hydra [[options] ...] -L "${user}" -P "${pass}" [[args] ...]
done
done
rm -v words_*.lst

**Mike9876** · 2019-09-19

Anyone? How do I use big password lists? On hydra and ncrack? Or what file do i edit to enter the code above? Please reply. Thanks

**cvt4** · 2019-10-02

maybe you should make a bash script and divide your list so you can repeat the process and many times and you wish
dont know any other option

**Mike9876** · 2019-10-05

I'm back. Thanks for your reply. How do I divide my lists? With Bash? That sounds good. Please reply. Thanks

**bigbiz** · 2019-10-06

If u use crunch itll let you do all this.

**Mike9876** · 2019-10-06

Hi, thanks for your reply. I'll try crunch. Will my 1TB PC have enough space? I'd have to start the password at 8-12 characters. Will I have enough space to do all letters and numbers? Is there an easy way of doing this? What settings (letters and numbers) should I try with crunch? I'm using it on ssh, smtp and telnet. Metasploitable 2. Thanks again

**bigbiz** · 2019-10-07

Make password lists small enough. man crunch should tell you.

**Mike9876** · 2019-10-08

I'll try that. Thanks

**jacksons** · 2019-11-14

The large your password is, the longer it crack
And the result will not be successful for Brut Force
It is best to select smaller passwords and make the password intelligently based on the information you have.
I've read a Persian article on the site below and it has helped me a lot
https://pentestcore.com/hydra/

Thread: How do I use large password lists?

Thread Tools

Search Thread

Display

How do I use large password lists?

Similar Threads

Grub lists Win8.1 but OS fails to boot

Crunch ? creating specific word lists

Posting Permissions