Back in Episode 170 Larry talked about talked about Reconnoiter. Reconnoiter was written by Jason Wood and it builds username list based upon linkedin.com profiles. After using the script on a recent penetration test I thought it would be nice if I also had a custom dictionary like those created by CeWL for each user at the company. So I wrote a script to create them and decided to share it with our listeners.
The intended use of userpass.py is to generate a customized password dictionary for every employee at a target company. You give it the name of your target company and it will give you a separate password file for each user at the company. In the demoes I target individuals rather than companies, but you get the idea.
We cover userpass.py on episode 206. So download it and give it a go. If you want to try it out, but you down have CeWL installed yet just add ‘-p “echo” ‘ to the end of your options.
Custom Per user password dictionaries from Security Weekly on Vimeo.
Here is Jason Wood’s script
Here is CeWL by Digininja
Join me in San Antonio for SANS 504 Hacker Techniques and Incident Response November 13-20th. Register Today