The Top 500 Worst Passwords of All Time
From the moment people started using passwords, it didn’t take long to realize how many people picked the very same passwords over and over. Even the way people misspell words is consistent. In fact, people are so predictable that most hackers make use of lists of common passwords just like these. To give you some insight into how predictable humans are, the following is a list of the 500 most common passwords. If you see your password on this list, please change it immediately. Keep in mind that every password listed here has been used by at least hundreds if not thousands of other people.
There are some interesting passwords on this list that show how people try to be clever, but even human cleverness is predictable. For example, look at these passwords that I found interesting:
ncc1701 The ship number for the Starship Enterprise
thx1138 The name of George Lucas’s first movie, a 1971 remake of an earlier student project
qazwsx Follows a simple pattern when typed on a typical keyboard
666666 Six sixes
7777777 Seven sevens
ou812 The title of a 1988 Van Halen album
8675309 The number mentioned in the 1982 Tommy Tutone song. The song supposedly caused an epidemic of people dialing 867- 5309 and asking for “Jenny”
“…Approximately one out of every nine people uses at least one password on the list shown in Table 9.1! And one out of every 50 people uses one of the top 20 worst passwords..”
Lists the top 500 worst passwords of all time, not considering character case. Don’t blame me for the offensive words; you were the ones who picked these, not me.
| NO | Top 1-100 | Top 101–200 | Top 201–300 | Top 301–400 | Top 401–500 |
| 1 | 123456 | porsche | firebird | prince | rosebud |
| 2 | password | guitar | butter | beach | jaguar |
| 3 | 12345678 | chelsea | united | amateur | great |
| 4 | 1234 | black | turtle | 7777777 | cool |
| 5 | pussy | diamond | steelers | muffin | cooper |
| 6 | 12345 | nascar | tiffany | redsox | 1313 |
| 7 | dragon | jackson | zxcvbn | star | scorpio |
| 8 | qwerty | cameron | tomcat | testing | mountain |
| 9 | 696969 | 654321 | golf | shannon | madison |
| 10 | mustang | computer | bond007 | murphy | 987654 |
| 11 | letmein | amanda | bear | frank | brazil |
| 12 | baseball | wizard | tiger | hannah | lauren |
| 13 | master | xxxxxxxx | doctor | dave | japan |
| 14 | michael | money | gateway | eagle1 | naked |
| 15 | football | phoenix | gators | 11111 | squirt |
| 16 | shadow | mickey | angel | mother | stars |
| 17 | monkey | bailey | junior | nathan | apple |
| 18 | abc123 | knight | thx1138 | raiders | alexis |
| 19 | pass | iceman | porno | steve | aaaa |
| 20 | fuckme | tigers | badboy | forever | bonnie |
| 21 | 6969 | purple | debbie | angela | peaches |
| 22 | jordan | andrea | spider | viper | jasmine |
| 23 | harley | horny | melissa | ou812 | kevin |
| 24 | ranger | dakota | booger | jake | matt |
| 25 | iwantu | aaaaaa | 1212 | lovers | qwertyui |
| 26 | jennifer | player | flyers | suckit | danielle |
| 27 | hunter | sunshine | fish | gregory | beaver |
| 28 | fuck | morgan | porn | buddy | 4321 |
| 29 | 2000 | starwars | matrix | whatever | 4128 |
| 30 | test | boomer | teens | young | runner |
| 31 | batman | cowboys | scooby | nicholas | swimming |
| 32 | trustno1 | edward | jason | lucky | dolphin |
| 33 | thomas | charles | walter | helpme | gordon |
| 34 | tigger | girls | cumshot | jackie | casper |
| 35 | robert | booboo | boston | monica | stupid |
| 36 | access | coffee | braves | midnight | shit |
| 37 | love | xxxxxx | yankee | college | saturn |
| 38 | buster | bulldog | lover | baby | gemini |
| 39 | 1234567 | ncc1701 | barney | cunt | apples |
| 40 | soccer | rabbit | victor | brian | august |
| 41 | hockey | peanut | tucker | mark | 3333 |
| 42 | killer | john | princess | startrek | canada |
| 43 | george | johnny | mercedes | sierra | blazer |
| 44 | sexy | gandalf | 5150 | leather | cumming |
| 45 | andrew | spanky | doggie | 232323 | hunting |
| 46 | charlie | winter | zzzzzz | 4444 | kitty |
| 47 | superman | brandy | gunner | beavis | rainbow |
| 48 | asshole | compaq | horney | bigcock | 112233 |
| 49 | fuckyou | carlos | bubba | happy | arthur |
| 50 | dallas | tennis | 2112 | sophie | cream |
| 51 | jessica | james | fred | ladies | calvin |
| 52 | panties | mike | johnson | naughty | shaved |
| 53 | pepper | brandon | xxxxx | giants | surfer |
| 54 | 1111 | fender | tits | booty | samson |
| 55 | austin | anthony | member | blonde | kelly |
| 56 | william | blowme | boobs | fucked | paul |
| 57 | daniel | ferrari | donald | golden | mine |
| 58 | golfer | cookie | bigdaddy | 0 | king |
| 59 | summer | chicken | bronco | fire | racing |
| 60 | heather | maverick | penis | sandra | 5555 |
| 61 | hammer | chicago | voyager | pookie | eagle |
| 62 | yankees | joseph | rangers | packers | hentai |
| 63 | joshua | diablo | birdie | einstein | newyork |
| 64 | maggie | sexsex | trouble | dolphins | little |
| 65 | biteme | hardcore | white | 0 | redwings |
| 66 | enter | 666666 | topgun | chevy | smith |
| 67 | ashley | willie | bigtits | winston | sticky |
| 68 | thunder | welcome | bitches | warrior | cocacola |
| 69 | cowboy | chris | green | sammy | animal |
| 70 | silver | panther | super | slut | broncos |
| 71 | richard | yamaha | qazwsx | 8675309 | private |
| 72 | fucker | justin | magic | zxcvbnm | skippy |
| 73 | orange | banana | lakers | nipples | marvin |
| 74 | merlin | driver | rachel | power | blondes |
| 75 | michelle | marine | slayer | victoria | enjoy |
| 76 | corvette | angels | scott | asdfgh | girl |
| 77 | bigdog | fishing | 2222 | vagina | apollo |
| 78 | cheese | david | asdf | toyota | parker |
| 79 | matthew | maddog | video | travis | qwert |
| 80 | 121212 | hooters | london | hotdog | time |
| 81 | patrick | wilson | 7777 | paris | sydney |
| 82 | martin | butthead | marlboro | rock | women |
| 83 | freedom | dennis | srinivas | xxxx | voodoo |
| 84 | ginger | fucking | internet | extreme | magnum |
| 85 | blowjob | captain | action | redskins | juice |
| 86 | nicole | bigdick | carter | erotic | abgrtyu |
| 87 | sparky | chester | jasper | dirty | 777777 |
| 88 | yellow | smokey | monster | ford | dreams |
| 89 | camaro | xavier | teresa | freddy | maxwell |
| 90 | secret | steven | jeremy | arsenal | music |
| 91 | dick | viking | 11111111 | access14 | rush2112 |
| 92 | falcon | snoopy | bill | wolf | russia |
| 93 | taylor | blue | crystal | nipple | scorpion |
| 94 | 111111 | eagles | peter | iloveyou | rebecca |
| 95 | 131313 | winner | pussies | alex | tester |
| 96 | 123123 | samantha | cock | florida | mistress |
| 97 | bitch | house | beer | eric | phantom |
| 98 | hello | miller | rocket | legend | billy |
| 99 | scooter | flower | theman | movie | 6666 |
| 100 | please | jack | oliver | success | albert |
Source: Perfect Passwords, Mark Burnett 2005
on December 28th, 2008 at 8:53 am
The number zero appears twice. Other than that, a darned interesting list.
on December 28th, 2008 at 3:42 pm
On the comment that the number zero shows up twice, I would have to bet that is a formatting issue. With most spreadsheets, “000″ or “0000000″ would be converted to “0″ by default. So if this had been stuck into a spreadsheet that was not formatted as “text,” this conversion would have taken place automatically.
on December 28th, 2008 at 5:41 pm
[...] What’s My Pass: The Top 500 Worst Passwords of All Time - “To give you some insight into how predictable humans are, the following is a list of the 500 most common passwords. If you see your password on this list, please change it immediately. Keep in mind that every password listed here has been used by at least hundreds if not thousands of other people.“ [...]
on December 29th, 2008 at 2:51 am
How did you manage to retrieve these passwords?
I mean, suppose my password is on the list, and I choose another, it wouldn’t really matter to you, because you could instantly see that mine is now, say, the 20365th most common password, and you’d hack into my account with the same ease.
on December 29th, 2008 at 2:58 am
[...] Top 500 Worst Passwords of All Time. Name says it all really. Some real corkers on the list, be warned, avoid, stay [...]
on December 29th, 2008 at 8:39 am
I’m surprised “aeiou” isnt on the list, I always assumed it was one of the big “weak” passwords out there, and I’ve encountered it more than once among clients.
on December 29th, 2008 at 11:23 am
[...] Perfect Passwords, Mark Burnett 2005 and reprinted from: WhatsMyPass From the moment people started using passwords, it didn’t take long to realize how many people [...]
on December 29th, 2008 at 1:21 pm
What happened to the password “Susan”. Once upon a time, it was the most popular. I don’t see “pwd” either.
I was one of first people to be hit by the password police back in about 1980. I was writing documentation for DEC and discovered that a was a legal password on our operating system, 0 to 6 characters, so I went to it for about a week until the system people caught up with me.
on December 30th, 2008 at 12:16 pm
[...] Check out the Top 100 passwords. “Fuckyou” slides in at #49, but what’s really surprising (and effed up) is #5. [...]
on December 30th, 2008 at 5:26 pm
[...] which Lex, uncharacteristically, tries to be helpful — Lex @ 8:27 pm Via Maru, here are the 500 worst passwords of all time. (NSFW: [...]
on December 30th, 2008 at 11:22 pm
HA! My company uses #11 as the password to get into the master console on all the servers in their stores. I told them they were idiots but they thought it was a good password.
on December 31st, 2008 at 6:47 am
[...] http://www.whatsmypass.com/?p=415 : une liste des mots de passe les plus utilisés (il est recommandé de ne pas utiliser ces mots de passe). [...]
on December 31st, 2008 at 7:57 am
What’s the deal with “abgrtyu”? What’s the significance of it? It doesn’t seem like it should be a popular password.
on December 31st, 2008 at 10:53 am
[...] 看表吧,密码不区分大小写via: [...]
on December 31st, 2008 at 12:28 pm
Yesterday A few of my friends and I had a party at someone’s home (without the homeowner there) and we instantly guessed his password for the computer because it refers to something we always remind him of
it’s not a top 500 type, not even a top 1000000 type pass, but it was still easy
on December 31st, 2008 at 2:37 pm
“How did you manage to retrieve these passwords?
I mean, suppose my password is on the list, and I choose another, it wouldn’t really matter to you, because you could instantly see that mine is now, say, the 20365th most common password, and you’d hack into my account with the same ease.”
Huh? You see, a hacker will likely try these 500 passwords, and then move on to their next potential victim. Maybe they will try more like 5000, but the less common your password is, the safer it is. Ideally, your password will be unique, and not on any list at all.
“what’s really surprising (and effed up) is #5.”
Fucked up? Maybe. Surprising? I don’t think so.
on January 1st, 2009 at 12:10 am
[...] 看表吧,密码不区分大小写via: [...]
on January 1st, 2009 at 9:14 am
Interesting. How does “abgrtyu” come about ?
on January 1st, 2009 at 12:43 pm
My biggest pet peeve is the really large websites that try to overcompensate on the password perimiters by making you have 1)at least 8 characters 2)one capital letter 3)one number. To me that just seems like most people will try to copy the example one given.
on January 1st, 2009 at 9:05 pm
[...] January 1, 2009 · No Comments WhatsMyPass has the grim details [...]
on January 2nd, 2009 at 2:04 am
luckily, I don’t have my password there. I’m wondering now how you came up with this list.
on January 2nd, 2009 at 10:07 am
There was no P/W on your list that even remotely was close to any of mine. One popular one you did not mention is asdf1.
on January 2nd, 2009 at 3:29 pm
What about ‘default’?
on January 2nd, 2009 at 3:55 pm
I can’t believe ’swordfish’ isn’t on the list. It must be an “old guy” idiot password. Oh, and my first name appears in #79 so I’ll have to change my name ;(
on January 2nd, 2009 at 7:20 pm
Ah. I was just scrolling down to comment on the fuckedupedness of number five. I see someone beat me to it. Guess I shouldn’t be surprised, though. No one ever lost the farm betting on the objectifying repugnance of the male sex drive.
on January 2nd, 2009 at 9:09 pm
Admin or administrator didnt make the list? its default for a lot of things like switches, hubs, etc.
on January 3rd, 2009 at 5:37 am
[...] The Top 500 Worst Passwords of All Time From the moment people started using passwords, it didn’t take long to realize how many people picked the very same passwords over and over. Even the way people misspell words is consistent. In fact, people are so predictable that most hackers make use of lists of common passwords just like these. To give you some insight into how predictable humans are, the following is a list of the 500 most common passwords. If you see your password on this list, please change it immediately. Keep in mind that every password listed here has been used by at least hundreds if not thousands of other people. [...]
on January 3rd, 2009 at 6:26 am
[...] is a list of the 500 worst (most frequently chosen) passwords: From the moment people started using passwords, it didn’t take long to realize how many people [...]
on January 3rd, 2009 at 10:23 am
[...] What’s My Pass פירסמו עבורכם את רשימת 500 הסיסמאות הגרועות ביותר, או במילים אחרות - הנפוצות ביותר. לפי הנתונים שלהם - אדם [...]
on January 3rd, 2009 at 10:42 am
Kinda crazy, I had a few of those at one point!
on January 3rd, 2009 at 3:35 pm
mine was #15 and # 80. I was suprised.
on January 3rd, 2009 at 6:25 pm
what about “bosco”
anyone getting that reference… anyone!
on January 3rd, 2009 at 6:32 pm
ha ha ha!! all three of mine are not on the list!! but it has taught me to change it once a month!
on January 4th, 2009 at 10:52 am
Seems like the passwords were restricted to 4 characters or more. I would have expected “god” and “sex” to be in the top 5 or even 3.
on January 4th, 2009 at 11:06 am
#250, “2112″, is also a Rush album, for what it’s worth.
on January 4th, 2009 at 12:28 pm
Why do passwords like 12345 remind me of spaceballs?
on January 4th, 2009 at 12:29 pm
I’d say that at least 1/3 of these have to do with porn… Damn.
I find it strangely funny that “maverick” pulled 120.
on January 4th, 2009 at 2:36 pm
[...] ein Glück: Mein Passwort ist nicht unter den Top 500. Dennoch zeigt die Liste eine gravierende Einfachheit in der Auswahl der [...]
on January 4th, 2009 at 3:46 pm
Bosco ?? hahaha. Good episode. Not a bad password either
on January 4th, 2009 at 4:11 pm
None of mine are listed. Though the list looks awfully familiar. Just like the passwords that they try to break into my mail server with……
on January 4th, 2009 at 4:22 pm
Our company makes us change ours each month. People have a hard time remembering what they used so they write it down. You can go to about any desk and see the password on a piece of paper.
on January 4th, 2009 at 6:30 pm
it is interesting how “pussy” is #5, while “pussies” is #294 and “cock” is #295 (also that “cunt” is #339)
comparing that with “boobs” & “tits” #254 & #256 respectively
also i agree with the comment about “god” and “sex” would have been within top 3 if shorter passwords were considered.
on January 4th, 2009 at 7:38 pm
When I managed IT support for about 2500 users in a division, I asked my security staff to create a list of all passwords that existed for more than 10 users. I remember the top 5 very well. I slightly modified them, but they were basically these:
1. Jesus#1 (literally 100+ users used this password)
2. NYGiants#1
3. NYYankees#1
4. NYMets#1
5. IloveJesus! (or the variation IlOveJesus! with a zero)
I can’t trust any list of passwords that doesn’t include Jesus or sports-related passwords)
on January 4th, 2009 at 10:31 pm
[...] 2005 book Perfect Passwords: Selection, Protection, Authentication has a table of the “Top 500 Worst Passwords Of All Time.” You better check this list to make sure that none of your passwords are on this list. [...]
on January 5th, 2009 at 1:39 am
[...] didn’t see the number for Banacek’s car phone on the “Top 500″ list; maybe I missed it due to the lateness of the [...]
on January 5th, 2009 at 3:46 am
[...] man använt någon av dessa lösenord ska man nog fundera på att byta. Påminner mig om en kille som hade en portfölj med sifferkod [...]
on January 5th, 2009 at 8:05 am
I’ve used about 5 of them….all temporary passwords though for setting up internal systems or software. It’d be interesting to see patterns too, like *sucks, *blows, *rocks
on January 5th, 2009 at 8:31 am
“trustno1″ is Mulder’s password in The X-files. It was shown ONCE and still clocks in at #32!
on January 5th, 2009 at 10:23 am
I worked IT at a company back in ‘98 and 90% of the employees still had the original password of “password”. The moral of this is Strong passwords.
on January 5th, 2009 at 10:59 am
omg where’s “admin” ???
on January 5th, 2009 at 2:37 pm
[...] that we can no longer exist without ‘em. However, when you need to make 1, don’t try these @home! What’s My Pass? The Top 500 Worst Passwords of All Time [...]
on January 5th, 2009 at 6:20 pm
This list is a hoot! I can’t believe how many of these passwords are so lame. Also I’m surprised how many of them are so plain and that people would be so stupid to use them. It was really funny looking through that list - thanks for sharing it.
on January 6th, 2009 at 1:17 am
[...] よく使われるパスワードTop500 [...]
on January 6th, 2009 at 3:40 am
I’m SHOCKED “password” runs only second
on January 6th, 2009 at 3:45 am
I thought “Secret” would be a lot higher up on the list. From my unix door knocking days on campus the default accounts (cough) sometimes were STILL THERE. Thankfully most students were Windows or Apple and had no clue that those accounts even existed. I sure had fun getting in that way.
I learned many moons ago to use a minimal 6 characters and mix it numbers, letters and symbols if you can. It’s nice NOT to see any of my passwords current or past on the list. Why people use words I cannot understand. dictionary is the first source for brute force hacking.
on January 6th, 2009 at 10:35 am
Just had to mention hearing about the man who wanted to use “Penis” as his password, but the computer threw it out because it wasn’t long enough…..
on January 6th, 2009 at 12:51 pm
[...] to self: don’t use my own name as my password here are the 500 most commonly used passwords. apparently the yankees, nicknames for male genetalia, and other sexual references are the most [...]