Which term describes using a word list and variations to guess passwords?

Starting with a word list to guess passwords is a dictionary attack. The attacker uses a precompiled file of common words, names, phrases, or leaked passwords and tries each one against the target until there’s a match. Variations such as capitalizing letters, adding numbers, or substituting symbols expand that list and improve chances, but the core idea remains: the guesses are drawn from a dictionary of known words rather than generated randomly. If mutating rules are emphasized, you might hear about a hybrid approach, but the foundational method still relies on a word list, which is why this is identified as a dictionary attack. Other terms listed don’t describe a method that starts from a word list.