hashcat Forum

Full Version: Open Document Format
You're currently viewing a stripped down version of our content. View the full version with proper formatting.
Is it possible to crack an encrypted odt file using hashcat? Or how would one go about doing it.

I found several documents online about how open document files are encrypted, but I couldn't figure out how to use hashcat to find the password.

When I extract the odt file I found that it contained the following content in the manifest.xml file:
Code:
<manifest:manifest xmlns:manifest="urn:oasis:names:tc:opendocument:xmlns:manifest:1.0" manifest:version="1.2">
<manifest:file-entry manifest:full-path="/" manifest:version="1.2" manifest:media-type="application/vnd.oasis.opendocument.text"/>
<manifest:file-entry manifest:full-path="content.xml" manifest:media-type="text/xml" manifest:size="4680">
 <manifest:encryption-data manifest:checksum-type="urn:oasis:names:tc:opendocument:xmlns:manifest:1.0#sha256-1k" manifest:checksum="s+g9HtqoVZZymr2ImwF3aC5eOEnemsrJVR2YiMeYHt8=">
  <manifest:algorithm manifest:algorithm-name="http://www.w3.org/2001/04/xmlenc#aes256-cbc" manifest:initialisation-vector="edJhIRt0sLfBmbIMaHYjxA=="/>
  <manifest:key-derivation manifest:key-derivation-name="PBKDF2" manifest:key-size="32" manifest:iteration-count="1024" manifest:salt="DXG+zcdMzxmblxZCs2uUTQ=="/>
  <manifest:start-key-generation manifest:start-key-generation-name="http://www.w3.org/2000/09/xmldsig#sha256" manifest:key-size="32"/>
 </manifest:encryption-data>
</manifest:file-entry>
Here is the password protected odt file if someone wants to try and crack it. If you are able to figure out a way of using hashcat to crack the password please let me know how.
There's a request for adding support here: https://github.com/hashcat/hashcat/issues/101