Most Attacked Credentials
Real-time analysis of the most used credentials by attackers in unauthorized access attempts. Data collected from our global honeypot network in the last 24 hours.
16,801 attempts in 24h
Top Usernames
1.root
343 IPs4,005
2.solana
14 IPs1,399
3.sol
16 IPs1,265
4.ubuntu
161 IPs1,178
5.admin
107 IPs755
6.user
114 IPs600
7.solv
9 IPs433
8.postgres
74 IPs233
9.345gs5662d34
148 IPs232
10.test
93 IPs163
11.lighthouse
10 IPs161
12.john
9 IPs152
13.steam
95 IPs136
14.validator
6 IPs123
15.ftpuser
82 IPs115
16.minoxidil4you
41 IPs109
17.deploy
66 IPs103
18.oracle
51 IPs94
19.sa
13 IPs93
20.node
9 IPs93
Top Passwords
1.123456
100 IPs753
2.password
61 IPs599
3.12345678
44 IPs500
4.solana
14 IPs486
5.sol
13 IPs433
6.123
75 IPs344
7.admin
77 IPs295
8.ubuntu
23 IPs287
9.1234
60 IPs243
10.3245gs5662d34
143 IPs233
11.345gs5662d34
148 IPs232
12.Password
4 IPs215
13.solv
9 IPs185
14.nPSpP4PBW0
137 IPs184
15.validator
10 IPs183
16.qwerty12
1 IPs179
17.node
9 IPs171
18.welcome
8 IPs168
19.abcd1234
11 IPs165
20.firedancer
6 IPs149
Combinations
1.root:(empty)
4862.solana:solana
3403.sol:sol
2694.ubuntu:ubuntu
2565.345gs5662d34:345gs5662d34
2326.admin:admin
2027.root:nPSpP4PBW0
1848.root:password
1729.solv:solv
15510.john:welcome
14811.root:3245gs5662d34
14012.solana:12345678
12813.root:Aa112211.
12314.solana:sol
11815.solv:123456
11316.sol:123
10917.sol:solana
9618.node:node
8919.solv:12345678
8720.ubuntu:123456
82About this data
This data is collected in real-time by our globally distributed T-Pot honeypot network. Attackers try these credentials to gain unauthorized access to systems. Use this information to strengthen your password policies and detect attack patterns.