Jan 7, 2010
My Digital Life Editorial Team

List of Common and Easily Hacked Passwords That Should Not Be Used

Password has been one of the single entity that is most important in protecting an account, especially a web app or online service user account which can be accessed by anybody with Internet connection. As such, most online accounts are easily hacked by hackers or people with malicious intents, especially when an easy-to-guess, dictionary-based or common password.

Thanks to Twitter, which embeds a list of banned password on its sign up page at https://twitter.com/signup, buried inside the HTML source code. The list reveals passwords which are weak, and probably been on the top of hacker list of passwords to try when attempting to hack or break into someone else accounts. How Twitter prepares the list of bad passwords is unknown, but as one of the most popular website in the world, it can easily detect attacks or hacking attempts on the accounts, and gather the statistics on passwords commonly used to hack.

The bad passwords are mainly repetitive, common words, name or dictionary words. These banned passwords are not accepted by Twitter when signing up for Twitter account, and should also not be used with any other accounts in order to properly protect the account. Rather, a random password should be used.

  • 111111
  • 11111111
  • 112233
  • 121212
  • 123123
  • 123456
  • 1234567
  • 12345678
  • 131313
  • 232323
  • 654321
  • 666666
  • 696969
  • 777777
  • 7777777
  • 8675309
  • 987654
  • aaaaaa
  • abc123
  • abc123
  • abcdef
  • abgrtyu
  • access
  • access14
  • action
  • albert
  • alexis
  • amanda
  • amateur
  • andrea
  • andrew
  • angela
  • angels
  • animal
  • anthony
  • apollo
  • apples
  • arsenal
  • arthur
  • asdfgh
  • asdfgh
  • ashley
  • asshole
  • august
  • austin
  • badboy
  • bailey
  • banana
  • barney
  • baseball
  • batman
  • beaver
  • beavis
  • bigcock
  • bigdaddy
  • bigdick
  • bigdog
  • bigtits
  • birdie
  • bitches
  • biteme
  • blazer
  • blonde
  • blondes
  • blowjob
  • blowme
  • bond007
  • bonnie
  • booboo
  • booger
  • boomer
  • boston
  • brandon
  • brandy
  • braves
  • brazil
  • bronco
  • broncos
  • bulldog
  • buster
  • butter
  • butthead
  • calvin
  • camaro
  • cameron
  • canada
  • captain
  • carlos
  • carter
  • casper
  • charles
  • charlie
  • cheese
  • chelsea
  • chester
  • chicago
  • chicken
  • cocacola
  • coffee
  • college
  • compaq
  • computer
  • cookie
  • cooper
  • corvette
  • cowboy
  • cowboys
  • crystal
  • cumming
  • cumshot
  • dakota
  • dallas
  • daniel
  • danielle
  • debbie
  • dennis
  • diablo
  • diamond
  • doctor
  • doggie
  • dolphin
  • dolphins
  • donald
  • dragon
  • dreams
  • driver
  • eagle1
  • eagles
  • edward
  • einstein
  • erotic
  • extreme
  • falcon
  • fender
  • ferrari
  • firebird
  • fishing
  • florida
  • flower
  • flyers
  • football
  • forever
  • freddy
  • freedom
  • fucked
  • fucker
  • fucking
  • fuckme
  • fuckyou
  • gandalf
  • gateway
  • gators
  • gemini
  • george
  • giants
  • ginger
  • golden
  • golfer
  • gordon
  • gregory
  • guitar
  • gunner
  • hammer
  • hannah
  • hardcore
  • harley
  • heather
  • helpme
  • hentai
  • hockey
  • hooters
  • horney
  • hotdog
  • hunter
  • hunting
  • iceman
  • iloveyou
  • internet
  • iwantu
  • jackie
  • jackson
  • jaguar
  • jasmine
  • jasper
  • jennifer
  • jeremy
  • jessica
  • johnny
  • johnson
  • jordan
  • joseph
  • joshua
  • junior
  • justin
  • killer
  • knight
  • ladies
  • lakers
  • lauren
  • leather
  • legend
  • letmein
  • letmein
  • little
  • london
  • lovers
  • maddog
  • madison
  • maggie
  • magnum
  • marine
  • marlboro
  • martin
  • marvin
  • master
  • matrix
  • matthew
  • maverick
  • maxwell
  • melissa
  • member
  • mercedes
  • merlin
  • michael
  • michelle
  • mickey
  • midnight
  • miller
  • mistress
  • monica
  • monkey
  • monkey
  • monster
  • morgan
  • mother
  • mountain
  • muffin
  • murphy
  • mustang
  • naked
  • nascar
  • nathan
  • naughty
  • ncc1701
  • newyork
  • nicholas
  • nicole
  • nipple
  • nipples
  • oliver
  • orange
  • packers
  • panther
  • panties
  • parker
  • password
  • password
  • password1
  • password12
  • password123
  • patrick
  • peaches
  • peanut
  • pepper
  • phantom
  • phoenix
  • player
  • please
  • pookie
  • porsche
  • prince
  • princess
  • private
  • purple
  • pussies
  • qazwsx
  • qwerty
  • qwertyui
  • rabbit
  • rachel
  • racing
  • raiders
  • rainbow
  • ranger
  • rangers
  • rebecca
  • redskins
  • redsox
  • redwings
  • richard
  • robert
  • rocket
  • rosebud
  • runner
  • rush2112
  • russia
  • samantha
  • sammy
  • samson
  • sandra
  • saturn
  • scooby
  • scooter
  • scorpio
  • scorpion
  • secret
  • sexsex
  • shadow
  • shannon
  • shaved
  • sierra
  • silver
  • skippy
  • slayer
  • smokey
  • snoopy
  • soccer
  • sophie
  • spanky
  • sparky
  • spider
  • squirt
  • srinivas
  • startrek
  • starwars
  • steelers
  • steven
  • sticky
  • stupid
  • success
  • suckit
  • summer
  • sunshine
  • superman
  • surfer
  • swimming
  • sydney
  • taylor
  • tennis
  • teresa
  • tester
  • testing
  • theman
  • thomas
  • thunder
  • thx1138
  • tiffany
  • tigers
  • tigger
  • tomcat
  • topgun
  • toyota
  • travis
  • trouble
  • trustno1
  • tucker
  • turtle
  • twitter
  • united
  • vagina
  • victor
  • victoria
  • viking
  • voodoo
  • voyager
  • walter
  • warrior
  • welcome
  • whatever
  • william
  • willie
  • wilson
  • winner
  • winston
  • winter
  • wizard
  • xavier
  • xxxxxx
  • xxxxxxxx
  • yamaha
  • yankee
  • yankees
  • yellow
  • zxcvbn
  • zxcvbnm
  • zzzzzz

Related Posts

  • Greatness

    @Gliktch interesting shit highly knowledgable

  • w0lfiee

    I usually use something like kxesy2ih or something πŸ˜€ that's just an old password I used to use, switched to longer passwords now πŸ˜€ because I didn't see the 8 digit passwords long enough πŸ™‚

    And rembember to not use same password on different sites if you use same account name or e-mail adress.

  • @Xed

    The thx1138, ncc1701 and rush2112 entries may be due to someone using those passwords to activate many twitter accounts (say, with the use of some kind of auto-account-generator program), which would explain why they would appear in a list of common passes.

    I have a different password for every service or website I use (over 200 and counting), they are all very complex like "264wfcR&@%@!rcc", yet I never forget any of them. And no, I'm not Rainman πŸ™‚

    For example, for this site – http://www.mydigitallife.info – my password may be something like "D3134efa#!#$Gx4". Looks ridiculously complicated, but that's just:

    – Capital of the third letter of the domain = "D"

    – Number of letters in each part of the main site address = "3,13,4"

    – Up to 3 letters or numbers which appear, from the end going backwards, in the middle part of the domain name (mydigitallife), which are valid hex (0-9,a-f) = "efa"

    – Holding Shift and pressing the numbers from step 2 (Shift+3134) = "#!#$"

    – A short couple of letters or numbers that you add to all your passwords = "Gx4"

    So then later if you were registering for a site called "forum.theinterwebs.com", the password would come out as:

    E + 5123 + bee + %!@# + Gx4 = "E5123bee%!@#Gx4"

    So as you can see:

    D3134efa#!#$Gx4

    E5123bee%!@#Gx4

    They're definitely different enough that even if someone managed to compromise one of your passwords, it would remain highly unlikely that they would be able to guess any others. You also only have to remember one formula and you will never have to worry about forgetting a password again. If you happen to use one of those stupid sites which don't allow symbols in passwords (yes they exist; some admins are just retarded and have no clue what they're doing), you could instead subtract one from each number in step 2 and use the result in place of the symbols (so 5123 would become 4012, making the second password E5123bee4012Gx4 in a no-symbols situation – still extremely secure).

    I have used a system like this for at least 50 sites now, and rarely have to type the password more than twice (once usually, twice if it's a no-symbols site and I forgot to adjust accordingly).

    Hope that helps someone πŸ™‚

    – Gliktch

    • kh

      @Gliktch: thx1138 = title of an early George Lucas movie, ncc1701 = the Enterprise on Star Trek, Rush 2112 = title of a Rush album. Maybe you knew that already, but your comment sounds like you believe they are randomly chosen.

  • Daniel

    Lol, Thanks for posting πŸ™‚

    Daniel

  • Xed

    thx1138 is a common password? :O

  • Artem S. Tashkinov

    > Rather, a random password should be used.

    BS, truly random passwords like Egho8Kae are impossible to remember, thus people will write 'em down or save them in the computer in files like "My Passwords.txt".

    Good passwords are those that you can remember but of course not simple English words or simple digit sequences.

  • Pingback: How to Generate and Set Random Password Automatically for Windows User Accounts » My Digital Life()