Remesh R

How to Become an Ethical Hacker

An essential guide to becoming an ethical hacker

I receive lots of mails asking for guidance on how to become an ethical hacker. Most requests are on how to become a black hat hacker which are usually ignored. Let’s take a look at the definition of an ethical hacker. Read More :

Remesh Ramachandran

Top Usernames And Passwords Used By Hackers To Attack Your Servers

During the past one year, the cyber security firm Rapid7 has been collecting data from Heisenberg — its public-facing network of low-interaction honeypots. The honeypots were made to look like the real-life office, PoS, and kiosk payment systems with their RDP port open.

Under this project, Rapid7’s servers collected 221,203 login attempts that were spread across 119 countries and came from 5,076 IP addresses. During these attempts, hackers tried to break the system using 1,809 different usernames and 3,969 passwords.

The test also measured the complexity of the passwords. The findings showed that the majority of passwords attempted were very simple, indicating the widespread use of convenient passwords and ignorance of security risks.

Easy-to-use passwords are easy-to-hack!

Surprisingly, the most tried password was “x” (11,865 times), followed closely by “Zz” (10,591 times) and “[email protected]” (8,014 times). Here’s the top to most attempted passwords by hackers:

  1. x
  2. Zz
  3. [email protected]
  4. 1
  5. [email protected]
  6. bl4ck4ndwhite
  7. admin
  8. alex
  9. …….
  10. administrator

At the end of 2015, password management company SpashData released its annual report of the Worst Passwords of 2015 and “12345” and “password” remained at the top. The report stated that regular humans are terrible at selecting passwords. Keeping such trends in mind, hackers are inclined towards making simple guesses.

If we look at the username attempts that were made, a similar trend was observed. The top most tried out usernames were “administrator” (77, 125 times), “Administrator” (53,427 times), and “user1” (8,575 times). Here’s the complete top 10 list of most attempted usernames by hackers:

  1. administrator
  2. Administrator
  3. user1
  4. admin
  5. alex
  6. pos
  7. demo
  8. db2admin
  9. Admin
  10. sql

Most password login attacks came from China!

It should be noted that most of the login attempts came from China (88,227 attempts), followed by the US, (54,977) and South Korea (13,182). The other countries in the top 10 are Netherlands, Vietnam, the UK, Taiwan, France, Germany, and Canada.

Front-End Challenge Accepted: CSS 3D Cube

Sed bibendum turpis magna, a interdum tellus lobortis scelerisque. Curabitur eget sapien semper, consectetur ipsum et, tempor dui. In egestas tortor eu egestas vestibulum. Curabitur aliquam mattis quam, vel lacinia augue ullamcorper et. Nam auctor laoreet porttitor. Mauris tincidunt iaculis euismod. Curabitur convallis eget quam ac bibendum. Nam maximus varius nisi elementum volutpat. Maecenas aliquet dignissim porta. Curabitur rutrum tortor vitae odio malesuada consequat. Nulla non condimentum lectus. Fusce arcu felis, volutpat vel ligula vitae, malesuada ornare eros. Curabitur mollis velit ut mauris facilisis ultrices. Nulla facilisi.

Class aptent taciti sociosqu ad litora torquent per conubia nostra, per inceptos himenaeos. Quisque id dui a mauris lacinia tempus.

Pellentesque lectus diam, pulvinar nec ultricies sed, commodo sit amet risus. Donec a libero volutpat, finibus magna at, vulputate justo. Suspendisse nec rhoncus dui. Integer eros nisi, elementum vitae eros a, blandit ultricies ex. Sed ligula dui, auctor facilisis justo eu, hendrerit semper turpis. Proin sit amet posuere tortor, non feugiat arcu. Mauris scelerisque id risus eget euismod. Fusce tincidunt iaculis nunc, sed luctus ipsum auctor eu. Aliquam maximus ornare vestibulum. Donec vel est nec massa finibus vulputate vitae sed libero.

Proin semper euismod ante, sed blandit nisl malesuada efficitur. In placerat congue eros vel feugiat. Aenean gravida neque quam, a dignissim quam pulvinar eu. Nunc quis efficitur mi, euismod porttitor leo. Maecenas ultrices varius dolor ornare posuere. Cras quis nulla vel est malesuada dictum a posuere odio. Curabitur at nibh blandit, efficitur est pellentesque, convallis ipsum. Fusce faucibus id metus ut bibendum. Praesent pellentesque ante ac mollis porta. Morbi dignissim augue orci, ac euismod felis dictum sit amet. Class aptent taciti sociosqu ad litora torquent per conubia nostra, per inceptos himenaeos. Sed elit turpis, congue sit amet nisi non, sagittis aliquet est.

Ut efficitur nec lectus quis faucibus. Proin malesuada ex et ante tincidunt molestie. Vestibulum mattis molestie ante, at porttitor magna euismod non. Nulla pulvinar nibh vel diam luctus accumsan. Donec tempus blandit diam et molestie. Sed pharetra nisl nec aliquam pretium. Donec aliquet tellus et leo tincidunt, quis rutrum lorem volutpat. Duis congue mi et velit pharetra, quis lacinia justo elementum. Curabitur vitae ante pellentesque, porta dolor non, euismod nisl. Duis rutrum ipsum sit amet velit faucibus vulputate eget non ante. Mauris blandit ligula risus, sit amet tincidunt felis vestibulum ac. Aliquam a orci magna. Etiam a nulla elit. Aenean elit erat, faucibus a venenatis molestie, placerat ut elit. Duis vitae dictum lacus.