Comments on: Howto Crack Zip Files Password

By: mendo

mendo — Sat, 24 Dec 2011 23:16:18 +0000

Yeah, I tried to use wordlist, but just this result:

$ fcrackzip -v -D -p /home/mendo/cain.txt -u sensitive.zip
found file ‘sensitive/’, (size cp/uc 12/ 0, flags 9, chk 6884)
found file ‘sensitive/file’, (size cp/uc 3736/ 26396, flags 9, chk 65a0)
found file ‘sensitive/dir/’, (size cp/uc 12/ 0, flags 9, chk 79c4)
found file ‘sensitive/dir/file’, (size cp/uc 12/ 0, flags 9, chk 5f3c)
found file ‘sensitive/dir/file1′, (size cp/uc 796/ 1608, flags 9, chk 5571)
found file ‘sensitive/dir/file2′, (size cp/uc 202/ 514, flags 9, chk 79c4)
found file ‘sensitive/dir/file3′, (size cp/uc 1164/ 8468, flags 9, chk 7703)
found file ‘sensitive/dir/file4′, (size cp/uc 102/ 103, flags 9, chk 7347)
8 file maximum reached, skipping further files

Only what I can assume is that the program don’t know work with zip archive, which is containing more then 8 files?:/

By: Alex

Alex — Fri, 16 Dec 2011 18:07:07 +0000

If you use the -u option it will try to unzip the file using all tested the passwords so as to give you the only one that works.

frackzip -v -b -c Aa1! -l4 -u file.zip

Also is the = sine part of the password if it is then the password is more than 4 long so you may need to set a max limit of 5. “-l4-5″

Also to make it run faster you can specify the character type you want to use such as;

Aa1:=%

Hope this helps.

By: Frink

Frink — Tue, 25 Oct 2011 21:40:01 +0000

It doesn’t work; i created a protected zip, wrote a few wrong and the right password into a file and executed:
fcrackzip -D -p passwords.txt file.zip

But it didn’t find anything!

By: test

test — Mon, 22 Aug 2011 04:46:52 +0000

realmoonstruck says:
April 27, 2011 at 9:57 pm

i am using version 1.0
the password of the zip file is: aa
but i can not crack it with fcrackzip

i am using: fcrackzip -u -b -l 2-2 z.zip
without the -u flag the output is:
possible pw found: et ()
possible pw found: hl ()
possible pw found: iG ()
possible pw found: i9 ()
possible pw found: qK ()
possible pw found: wo ()
possible pw found: w5 ()
possible pw found: Go ()
possible pw found: Hn ()
possible pw found: Vj ()
possible pw found: V& ()
possible pw found: Yt ()
possible pw found: ZO ()
possible pw found: 2R ()
possible pw found: 3] ()
possible pw found: 65 ()
possible pw found: 6} ()
possible pw found: !E ()
possible pw found: !L ()
possible pw found: $F ()
possible pw found: ?v ()
possible pw found: {C ()
possible pw found: [i ()

am i missing something?
what am i doing wrong?

By: realmoonstruck

realmoonstruck — Wed, 27 Apr 2011 20:57:38 +0000

i am using version 1.0
the password of the zip file is: aa
but i can not crack it with fcrackzip

am i missing something?
what am i doing wrong?

By: PAPilot

PAPilot — Sun, 10 Oct 2010 10:54:07 +0000

How about an option to include all 255 8-bit combinations? Users can easily defeat this program by using ALT-codes to insert binary coded characters in a password.

By: PAPilot

PAPilot — Sun, 10 Oct 2010 10:51:04 +0000

Missing hyphen, underscore, carat, pipe, and many other symbols from the symbol character set. It’s not possible to specify most of these on the CLI because they mean something to many shells. These should be in the code.

By: pradeesh

pradeesh — Wed, 11 Aug 2010 18:38:26 +0000

It is great.

By: jc

jc — Sat, 24 Jul 2010 10:35:01 +0000

@Steve, can cracking speed be increased using several CPUs or several CPU cores? I tried it out and did not manage to have all CPU cores do the work….

By: Steve

Steve — Thu, 13 May 2010 10:22:09 +0000

Proof of the pudding Our department’s latest malware analysis needed the following file to be unzipped from a squid cache (for security the squid proxy is configured to cache all executables certain non-executable files eg: zips/rars/7zips) for later anaysis and audit trail)
$ fcrackzip -u -b -l 1-10 -c aA1! ufs_target.zip

PASSWORD FOUND!!!!: pw == 87ue9o

took about 8 hours runtime for that one, on a already heavily loaded machine.

It’s all over virustotal with 39 detections, but because it was passworded, no A/V could open it. We’re having words with the user as we speak

By: Steve

Steve — Wed, 12 May 2010 20:56:58 +0000

@all, make sure you use the -u option, or IIRC just outputs a wordlist for later use. Does that help? Sudden hindsight

By: Steve

Steve — Wed, 12 May 2010 16:40:02 +0000

@Saverio, we us it several times a week for malware analysis of social engineering files that users know the password (that’s how the malware was was introduced) but have either forgotten or won’t tell us. “waste of time” depends if time is money, it’s only processor time, after all. We have a few older P4s in an outer store-room we use for cracking, it’s cooler than the main block in summer

By: Saverio

Saverio — Sat, 27 Mar 2010 06:03:41 +0000

It’s an interesting program, but I must say it’s a huge waste of time. Makes you wonder if anyone ever succeeded at cracking an archive with this method.

By: alex

alex — Tue, 26 Jan 2010 12:44:08 +0000

after running all possible combinations, how do i know which one is the real password? i guess i missed something…

You should use option -u
it will try to unzip each guess and leave only the right one

By: sidnei

sidnei — Wed, 07 Oct 2009 17:53:23 +0000

after running all possible combinations, how do i know which one is the real password? i guess i missed something…

used:
frackzip -v -b -c Aa1! - l 4 file.zip
created this file.zip with a password = aB4%

shows tons of guesses on the screen, but in the end, i didnt get the real password.

thanks for any help.
sidnei

By: onny

onny — Tue, 14 Apr 2009 14:32:27 +0000

@Rink
lol

By: Rink

Rink — Sat, 28 Feb 2009 20:14:30 +0000

How to use fcrackzip on windows Vista/xp?

By: Ricardo Medina

Ricardo Medina — Thu, 05 Feb 2009 22:59:47 +0000

Front-end? GUI?

By: madelus

madelus — Sat, 13 Dec 2008 17:21:30 +0000

For rar cracking try run midnight commander, enter the rar archive lika a folder, and and then copy files from rar anywhere you like.
I did it only once and that worked, but still I can’t give you guarantee.

By: Mark

Mark — Mon, 30 Jun 2008 16:05:23 +0000

@Martin:
If you run fcrackzip 4 times simultaneously (each on a different core) with the starting passwords spaced out about equally and stop the other 3 when one finds the right pass, then that should work about the same as you describe.

Ex (modified from the one in the article):
fcrackzip --method cpmask --charset A1 --init 0000 test.ppm
on the first core…
fcrackzip --method cpmask --charset A1 --init 9000 test.ppm
on the second core…
fcrackzip --method cpmask --charset A1 --init I000 test.ppm
on the third core, and…
fcrackzip --method cpmask --charset A1 --init R000 test.ppm
on the fourth CPU

I don’t know how to control which CPU handles which copy of fcrackzip because I’ve never had a computer new enough to have multiple cores (I’m posting from a used Compaq Armada M700 circa 2001 with a 1GHz PIII), but I don’t see why this wouldn’t work.