CTF-Show Cryptography: ZIP file password cracking [brute force cracking]

Language 2023-06-24 21:14:11 views: null

Cute new steganography 23

Topic content: The owner of the file likes to use his birthday as a password, and he is born in the 90s.

1. Known conditions

In this problem, we have the following known conditions:

  1. The owner of the file likes to use birthdays as passwords - this condition tells us that the password may be an eight-digit pure numeric password, because most people's birthdays can be represented by eight digits in the Gregorian calendar (for example, 19901231 means December 1990 31).

  2. The owner of the file is post-90s - this condition limits the range of the password between 19900000 and 19999999. Compared with the full digital password, this greatly narrows the search scope.

  3. Password protected files are ZIP archives - this means that we can use some specific ZIP password cracking tools to try to crack the password.

2. Problem-solving ideas

Now that we know that the password may be an eight-digit number composed of birthdays, and there are possible ranges of numbers, the idea of ​​​​solving the problem is relatively clear: we can try to use some tools or scripts to use all numbers from 19900000 to 19999999 as possible The password to try to extract the ZIP archive.

3. Practical operation

For password cracking of ZIP files, there are many tools that can be used, such as ARCHPR (Advanced Archive Password Recovery) is one of them. ARCHPR is a powerful compressed file password recovery software that supports compressed file password recovery in various formats, including ZIP, RAR, ARJ, ACE, etc.

ARCHPR crack tool

Using this tool, we can set a specified range of numbers and perform brute force cracking. In general, for numbers in this range, the cracking speed is very fast.
insert image description here
It only takes tens of milliseconds to crack successfully! ! !
insert image description here

But in fact, at the beginning, I also thought about whether this password would be a 6位number password, for example 900101991231, and then tried to crack it, but there was no result, so I chose 8位this

4. Summary and thoughts

Through this challenge, we learned how to effectively follow the prompts 缩小密码破解的范围.

At the same time, we also learned how to use it 特定的工具进行密码破解. Although this challenge is relatively simple, the way of thinking and technical methods in it can also be very helpful for other more complex challenges.

Guess you like

Origin blog.csdn.net/qq_22841387/article/details/131354410
Recommended
Apache Doris version 2.0.10 is officially released!
Open Source Daily | Big models go to war; big model unicorns are revealed to be selling themselves; Zhou Hongyi suggests that Google open source all its products; the largest open source AI community provides $10 million to share GPUs
Ranking
JS inheritance and monitoring
[ProblemSolving][Ubuntu][LyX] The selected document class ... requires external files that are not available...
Java threads sharing static variable
balancap/SSD-Tensorflow使用及训练预测自己的数据集
Detailed core ES6
JS --- reverse traversal achieved Array array, the array is connected string
How to Uninstall (or Reinstall) Windows 10’s Ubuntu Bash Shell
Linux modify the hostname method
Charging Specification BC v1.2
node的性能和java对比分析
Daily
More
2024-05-17(6)
2024-05-16(23)
2024-05-15(5)
2024-05-14(9)
2024-05-13(8)
2024-05-12(28)
2024-05-11(32)
2024-05-10(34)
2024-05-09(32)
2024-05-08(18)

Code World

© 2018 codetd.com