noob question about cmds/password types
#1
Hi, new here and very overwhelmed about all the cmd options!

Trying to crack a zip. Likely password examples: weloveyou!, cute&cloud, Iatefood, goingHOME, tobeInlove, PETPETPETPET, Thanks!itsreallytasty, like_a_circus

No spaces, only _ and other normal symbols like ! or &. Capitalizes whole word, the beginning of a word, or no capitals at all. No numbers. No random letters. Longest password is about 24 characters.

I'm using rockyou.txt as a dictionary. How do I make a hash from my zip? What would the cmd of what I want look like?

Sorry for the noob questions.
Reply
#2
To extract zip of your hash : zip2john, or 7z2hash, depending on your archive.
You will need to find the good mode : PKZIP? 7-zip? WinZip? With or without encrypted headers?
To help you: https://hashcat.net/wiki/doku.php?id=example_hashes

Then create a wordlist with the words you gave before, and run hashcat on it with the good mode.

To "Capitalizes whole word, the beginning of a word, or no capitals at all" you will need to add rules https://hashcat.net/wiki/doku.php?id=rule_based_attack and give this ruleset to hashcat.
Reply
#3
Thanks for the reply, Mem5. When I made a hash of it with zip2john, it seems to be PKZIP. But when I try to use it with hashcat64 I keep getting "token length exception" errors.

Is there a better dictionary than rockyou.txt for what I want? I glanced at it and there's a large amount of numbers.
Reply
#4
example hashes are here: https://hashcat.net/wiki/example_hashes

note: no file names and colons within the hash
Reply