1. Introduction
cupp.py: Powerful dictionary generation script. It is an interactive dictionary generation script written in the Python language. Especially for social engineering, when you collect specific information about your goals, you can intelligently generate a dictionary of goals from this script.
The most common format for authentication is a combination of user names and passwords. If both items match the Stored user and password, the connection is allowed. Password strength is used to measure how easy it is to guess or crack passwords by using cryptography and Dictionary detection.
Weak passwords can be shorter or contain only a few letters, making it easier to crack. Weak passwords often have another feature that can be based on a person's information, such as birthdays, nicknames, addresses, name and pet names, or some popular words such as God,love,money,password and so on.
Cupp source code can be downloaded from Https://github.com/jeanphorn/common-password, if you have pre-installed git in your system (general OS X and Common Linux are preinstalled in the system, directly under the terminal to use), You can use this command to clone the project to a directory that you have locally.
$ git clone git clone https://github.com/jeanphorn/common-password.git
2. Options
Usage: cupp.py [options]
-h this menu -i interactive questions for user password profil ing -w use this option to profile existing dictionary , or wyd.pl output to make some pwnsauce:)-l do Wnload huge wordlists from repository -a parse Default usernames and passwords directly from alecto
db . Project Alecto uses purified databases of phenoelit and CIRT which where merged and enhanced. -v version of the program
3.
Configuration
Configuring in the Cupp.cfg file
4. Use
Test it with the -i
options below. Add some basic information for the target to generate the password dictionary.
In addition, cupp.py supports custom add nodes. Here I add the Li and the Zhang Fields, which can be inserted into the random or final position of the string. Cupp also supports leet mode. To learn more about Leet, you can refer to Http://en.wikipedia.org/wiki/Leet.
Finally in this directory to generate a "san.txt" file, we open it to see what is inside, the following is part of the content:
Weak password, universal password generator--cupp