Security Passwords

Provides curated top password lists for authorized security testing, including common, leaked, and worst passwords under 10MB.

MIT-0 · Free to use, modify, and redistribute. No attribution required.

⭐ 0 · 21 · 0 current installs · 0 all-time installs

by@PandaAI-1337

MIT-0

Security Scan

VirusTotal

Benign

View report →

OpenClaw

Benign

high confidence

✓

Purpose & Capability

Name/description (curated password lists for authorized testing) matches the included files and example usage. The bundled lists and README links to SecLists/MIT are appropriate for the stated purpose.

✓

Instruction Scope

SKILL.md only instructs the agent to read files packaged in references/Passwords and to use them for authorized testing; it does not request unrelated files, system paths, environment variables, or network exfiltration.

✓

Install Mechanism

No install specification or external downloads are present — this is instruction-only with static text assets included in the bundle, which minimizes install-time risk.

✓

Credentials

The skill requires no environment variables, no credentials, and no config paths. All required data is local to the skill and proportionate to the password-list purpose.

✓

Persistence & Privilege

always is false and the skill is user-invocable. It does not request persistent elevated privileges or modify other skills or system-wide agent settings.

Assessment

This skill appears coherent and low-risk in structure, but the included password lists contain leaked, offensive, and highly sensitive entries — they can be abused. Only use these lists for authorized testing (with written permission), bug bounties in-scope, CTFs, or education. Keep the files and any results on trusted systems, do not upload them to third-party services without consent, and verify you have legal authorization before performing any credential-stuffing or brute-force testing. Review the MIT license and attribution if you redistribute the lists.

Like a lobster shell, security has layers — review code before you run it.

Current versionv1.0.0

Download zip

latestvk978cn5prefax7pfvr2cakhjgd83a8ym

License

MIT-0

Free to use, modify, and redistribute. No attribution required.

Termshttps://spdx.org/licenses/MIT-0.html

SKILL.md

SecLists Passwords (Curated)

Description

Top password lists for authorized security testing: common passwords, darkweb leaks, worst passwords. Curated essentials (<10MB).

Source: SecLists/Passwords Repository: https://github.com/danielmiessler/SecLists License: MIT

When to Use This Skill

Use this skill when you need:

Password spraying (authorized)
Credential testing
Password policy validation
Brute force testing (authorized)
Authentication testing

⚠️ IMPORTANT: Only use for authorized security testing, bug bounty programs, CTF competitions, or educational purposes.

Key Files in This Skill

500-worst-passwords.txt - 500 worst passwords
10k-most-common.txt - 10K common passwords
100k-most-used-passwords-NCSC.txt - 100K passwords
darkweb2017_top-10000.txt - 10K from breaches
probable-v2_top-12000.txt - 12K probable passwords

Usage Example

# Access files from this skill
import os

# Example: Load patterns/payloads
skill_path = "references/Passwords"

# List all available files
for root, dirs, files in os.walk(skill_path):
    for file in files:
        if file.endswith('.txt'):
            filepath = os.path.join(root, file)
            print(f"Found: {filepath}")
            
            # Read file content
            with open(filepath, 'r', errors='ignore') as f:
                content = f.read().splitlines()
                print(f"  Lines: {len(content)}")

Security & Ethics

Authorized Use Cases ✅

Authorized penetration testing with written permission
Bug bounty programs (within scope)
CTF competitions
Security research in controlled environments
Testing your own systems
Educational demonstrations

Prohibited Use Cases ❌

Unauthorized access attempts
Testing without permission
Malicious activities
Privacy violations
Any illegal activities

Complete SecLists Collection

This is a curated subset of SecLists. For the complete collection:

Full repository: https://github.com/danielmiessler/SecLists
Size: 4.5 GB with 6,000+ files
All categories: Passwords, Usernames, Discovery, Fuzzing, Payloads, Web-Shells, Pattern-Matching, AI, Miscellaneous

Generated by Skill Seeker | SecLists Passwords Collection License: MIT - Use responsibly with proper authorization

Files

11 total

Select a file

Select a file to preview.

Comments

Loading comments…