This is a collection of username and password, collected by logging standard bruteforce attacks against decentral infrastructure (SSH, telnet, POP3, IMAP, HTTP basic auth etc.).

The goal of this list is to enable a security engineer to test with a wide varity of known combinations, and check your personally used credentials against any kind of leak.
This project is maintained by Fabian Fingerle.


username: user.txt user.txt.lzma

password: pass.txt pass.txt.lzma