Study Publisher: NetSPI
Study Date: March 2 2015
Study URL: https://blog.netspi.com/netspis-top-cracked-passwords-for-2014/

Study Overview:
"During many of our penetration tests, we gather domain password hashes (with permission of the client) for offline cracking and analysis. This blog is a summary of the hashes that we attempted to crack in 2014. This year, we collected 90,977 domain hashes. Of the total 90,977 hashes, we were able to crack 77,802 (85.52%)."

Statistics From This Study:

• Corporate users may choose season+year or other easy guesses for their password
• Lengths of cracked corporate passwords