Skip to content
Common Password Topologies
Python C Makefile
Branch: master
Clone or download
Latest commit 2a0b84f Sep 12, 2015
Type Name Latest commit message Commit time
Failed to load latest commit information.
Makefile initial commit Sep 12, 2015
README.rst initial commit Sep 12, 2015
patterns.c initial commit Sep 12, 2015
patterns.png initial commit Sep 12, 2015 initial commit Sep 12, 2015
report.rst initial commit Sep 12, 2015


Commonly used password topologies

Some patterns of passwords are extremely common, for example Denver14 follows the pattern Ullllldd where

  • u=uppercase
  • l=lowercase
  • d=digit
  • s=special (other character)


  • Password crackers can search the most common patterns systematically (and do already).
  • Users who use these common patterns are thus at risk.

Therefore, to increase security of your system you should not allow users to choose passwords following these patterns!

This project identifies the most common password topologies.

See the Report


  • Additional to the other OWASP recommendations (see below).
  • When users set their passwords, check if that password is in a common topology.
  • Encourage users to set pass-phrases, not passwords, and allow long passwords.


You can’t perform that action at this time.