Intercept zip decryption key or files from an application
#1
If an application is reading from a password protected zip file, is there a way to intercept the key being sent to decrypt the zip file. Or, is there a way to dump the files being read themselves? 
Reply
#2
Yes but it heavily depends on the application and how you have access to it. You can decompile the application and look for the password, debug the running application, run a trace on calls that are being made, etc. It depends on what you can do.
Reply
#3
(03-12-2020, 05:33 PM)DanielG Wrote: Yes but it heavily depends on the application and how you have access to it. You can decompile the application and look for the password, debug the running application, run a trace on calls that are being made, etc. It depends on what you can do.
Whether it is decompilable or not depends on the language it was written. C#, Java, Python are easily decompilable back to readable code.
Reply