In December 2009, hackers exploited a simple SQL injection vulnerability on RockYou.com. Because the company had failed to hash or encrypt its database, attackers were able to download 32.6 million unique passwords. These were eventually compiled into the rockyou.txt file, which has since become the most popular resource for dictionary attacks due to its real-world representation of user habits. Where to Find and Use RockYou.txt
OffSec maintains a wordlist archive used in their training labs, accessible to students.
In December 2009, hackers exploited a simple SQL injection vulnerability on RockYou.com. Because the company had failed to hash or encrypt its database, attackers were able to download 32.6 million unique passwords. These were eventually compiled into the rockyou.txt file, which has since become the most popular resource for dictionary attacks due to its real-world representation of user habits. Where to Find and Use RockYou.txt
OffSec maintains a wordlist archive used in their training labs, accessible to students.