A user export from CrackingForum, a now-defunct community forum that hosted credential-cracking tutorials and tooling, has been redistributed on BreachForums. The file covers about 659,000 accounts in hash:salt format with usernames, emails, and IP addresses attached.
The forum ran on vBulletin and stored passwords in vBulletin's standard salted-MD5 scheme. Passwords on a forum like this one tend to follow one of two patterns. The serious users had unique, long, randomly generated passwords, which are slow to recover. The casual users used the same password they used at every other forum, which falls instantly in any rainbow-table pass.
An interesting userbase
CrackingForum's audience was international, with strong showings from Vietnam, Germany, Poland, France, Romania, and Turkey. The community was a mix of researchers, hobbyists working through entry-level cracking exercises, and people running active credential-stuffing operations who had set up forum accounts to barter wordlists. The dataset is a useful crossreference for anyone trying to attribute follow-on activity that started from a CrackingForum-tagged identity.
The forum itself is no longer reachable and there is no place to rotate the original credential. The risk for affected users is everywhere else they used the same password and the same email.