CUPP – Common User Passwords Profiler

CUPP is a tool that may help to perform a legal penetration testing or forensic crime investigations. this program will combine information of a victim in text file that include word-list generated from user details such as birthday, nickname, address, name of a pet or relative, or a common word such as God, love, money or password.

CUPP - Common User Passwords Profiler
CUPP – Common User Passwords Profiler

The most common form of authentication is the combination of a username and a password or passphrase. If both match values stored within a locally stored table, the user is authenticated for a connection.

Human vulnerability remain the most effective way to bypass most protected systems and if the company is not running the proper security awareness and assessing users account and applying strong password policy such tool will easily find sensitive information.

CUPP will not just generate a generic password list for bruteforce but it will make the attack closer to the real users.

You can read more and download this tool over here: https://github.com/Mebus/cupp

Share