lolcreds

Public credential defaults and exposure patterns for authorized security testing.

pfSense

Netgatenetwork4 credentials1 default credential

Credentials4 documented
01

Default Administrator Login

pfsense / default-admin

pfSense ships with an initial webConfigurator/console administrator credential that should be changed during the setup wizard.

static defaultuser definedsecretusername/password

Default credentials

admin:pfsense

Location

public interface
pfSense webConfigurator, SSH/console shell, XMLRPC, and API packages where installed
config file
/conf/config.xml

local user password hashes and system configuration

artifact

configuration backups and diagnostics bundles

02

Local User Password Hash

pfsense / local-user-password

pfSense local users and privilege assignments are stored in the XML configuration and used for webConfigurator, SSH, VPN, captive portal, and package access.

user definedsecretusername/password

Looks like

pattern
pattern

pfSense config.xml user entry containing username and password hash

<user>.*?<name>[^<]+</name>.*?<password>[^<]+</password>

Location

config file
/conf/config.xml

user manager entries, password hashes, privileges, and auth server config

public interface
webConfigurator, SSH, console, VPN, captive portal, and package UIs
secret store

password managers and firewall backup vaults

logs

system, auth, VPN, and captive portal logs

03

API Key / Web Session Cookie

pfsense / api-key-and-session

pfSense installations with REST/API packages or automation can use API keys, Basic auth, and PHP/webConfigurator session cookies as bearer credentials.

generated on installuser definedsecretAPI key

Location

http header
Authorization

Basic or bearer/API-key auth used by automation and API packages

http header
Cookie

pfSense webConfigurator PHP session cookie

config file

automation scripts, Terraform/Ansible configs, and API package settings

secret store

CI/CD variables and network automation vaults

logs

web server access logs and API debug traces

04

VPN, SNMP, LDAP, RADIUS, and Certificate Secrets

pfsense / vpn-snmp-ldap-radius-secrets

pfSense configurations hold IPsec/OpenVPN/WireGuard keys, SNMP communities, LDAP/RADIUS secrets, certificates/private keys, PPPoE credentials, and package integration secrets.

user definedgenerated on installsecretsecret value

Looks like

pattern
pattern

private key material from pfSense certificate or VPN exports

-----BEGIN (RSA |EC |OPENVPN |ENCRYPTED |)PRIVATE KEY-----

Location

config file
/conf/config.xml

VPN, SNMP, auth server, certificate, gateway, package, and PPP secrets

secret store

configuration backup vaults and certificate stores

artifact

full configuration backups, diagnostics, and OpenVPN client exports

source code

firewall-as-code repositories and deployment templates

Scope

Authorized use

LOLCreds helps map the credential surface of real products: known defaults, generated values, credential locations, and exposure patterns.