ZIP/RAR/AJAP/ZIPCrypto/AES Cracking 'Tutorial' – 2 Posts

• ZIP/RAR/AJAP/ZIPCrypto/AES Cracking 'Tutorial'

  05/29/2015 14:02

  Senseless 160

  Not SpecifiedNot SpecifiedNot SpecifiedNot SpecifiedNot SpecifiedNot SpecifiedNot SpecifiedNot SpecifiedNot SpecifiedNot SpecifiedNot SpecifiedNot SpecifiedNot Specified

  Recently I revisited some of the past solutions, and made this post, but I think it would be beneficial to anyone else looking to 'crack' an archive file.<br>When people are first tasked with cracking an archive file, they are often come to an halt when they are presented with the sheer mass of software out there available for the task. <br>You may ask 'How do you choose the 'right' piece of software?'. All the software packages are claiming to offer different features, so it becomes a cumbersome task.<br>To keep things short; after evaluating many different pieces of software for the task, both open source and commercial, I've come to the conclusion that \"UZCII\" is probably the best way to go over any commercial products. Open source projects are always better, and offer a lot more flexibility than commercial products, but this tool is great for anyone inexpericed. Its simple a 'click and crack solution' and has a lot of functionality, so for the more advanced crackers, they can specify detailed hybrid-attacks. <br><br>You don't need to purchase the software to get full access to all the features, however you do need to purchase the software or that particular password if it manages to crack a password longer than 6 characters, however you can easily extract the password from memory without having to pay for it, as I explain in the following post: <br><br>Here is a copy of the post:<br>===============================================================================================================================<br>I chose Ultimate ZIP Cracker, because of the functionality that it had 'out-of-the-box', as well as being 'free'. Unlike other popular products, such as Elcomsoft's Archive Password Recovery tool, you get access to all the features. <br><div class="\&quot;tbscode_standard_quote_headline\&quot;"><img alt="\&quot;Quote\&quot;" src="%5C">Quote:</div><div class="\&quot;tbscode_standard_quote\&quot;">The Ultimate ZIP Cracker is designed for recovering lost passwords from many popular file types:<br><br> * MS-Word documents (*.DOC), Office 95-2010.<br> * MS-Excel documents (*.XLS), Office 95-2010.<br> * MD5 files: recover ASCII, Unicode or UTF8 password from MD5 hash.<br> * RAR files (*.RAR), RAR 3.x.<br> * ZIP archives created by PKZIP, WinZip or by any compatible software, large files + AES support.<br> * ARJ archives created by ARJ, WinArj or by any compatible software.<br><br>The program offers the following search methods:<br><br> * Brute Force Attack will test all possible passwords.<br> * Smart Search will test all \"pronounceable\" passwords.<br> * Dictionary Search can use a built-in or external dictionary.<br> * Date search will apply more than 5,000 date formats to a given date range.<br> * Customized search will use your own search template.<br> * Guaranteed decryption method will decrypt your .DOC or .XLS file regardless of password used. Extraordinarily fast on Pentium 4, takes about a day to decrypt!<br> * Plaintext attack will decrypt your whole encrypted .ZIP file if you have another unencrypted ZIP file (called plaintext file), which contains at least one file from the encrypted archive.<br></div><br><br>It also has a 'freetype vailidator' where you type what you think the password may be and it'll try combination of the password whilst your typing it.<br><br>Because the software gives you full functionality, you can crack the password and once it's complete you can 'recover' it from memory.<br>Once the password has been cracked, in the cracked password list section, press the 'buy' button. A menu will appear; leave it open.<br>Open your memory editor of your choice, and search for the HEXADECIMAL string: '0A 70 3D' --&gt; \" p=\"<br><br>Which will be followed by your password.<br><a href="%5C"><img alt="\&quot;link\&quot;" src="%5C">IMG1</a><br><a href="%5C"><img alt="\&quot;link\&quot;" src="%5C">IMG2</a><br><br><br><br>You can download it from <a href="%5C"><img alt="\&quot;link\&quot;" src="%5C">CNET</a>.<br>If it becomes unavailable you can get it from VDGsoftware's website.

  Edit

  Reply

  Quote

  0 Likes
• 05/29/2015 14:02

  Hessiann 2000

  Not SpecifiedNot SpecifiedNot SpecifiedNot SpecifiedNot SpecifiedNot SpecifiedNot SpecifiedNot SpecifiedNot SpecifiedNot SpecifiedNot SpecifiedNot SpecifiedNot Specified

  Hi there.<br>Thank you for sharing this information, although you can always download one of those commercial zip crackers and crack it yourself (thats right, you can crack a cracker hehe).<br>I did this in order to solve a challenge from this website. I had to use a zip cracker and i couldnt find any good one for free, so I just downloaded a random one which required a license to get full functionality. I opened it with ollydbg, went thorught it a few times untill i saw what it was doing. If you enter the license, it would store it in the Windows registry, and after opening it and trying to use some of the extra features, it would go and search for the license key in the registry. I just modified the .exe so it would jump that validation script and force it to go straight to the extra features menú.<br>It was very simple. Those tools are not heavily protected, so they are easy to crack. <br>You should give it a try and let us know if you managed to do it, since you downloaded a bunch of tools, you have many to practice <img alt="\&quot;:)\&quot;" src="%5C">

  Edit

  Reply

  Quote

  0 Likes