Password Attacks Lab - Medium

ray_johnson · March 16, 2023, 3:07am

logged onto the machine via smbclient.

got the doc.zip and ran zip2john against, then JTR and got a password.

when i enter the password i get an error - how are you guys opening the document?

LordOsiris · March 16, 2023, 11:38pm

hi,
actually this can be easy completed with a bit of research. google decrypt office docs using john. you will learn a lot.

if you still stuck, let me know.

Luffy_haki · March 19, 2023, 4:36pm

hey, i find in folder Dennis .ssh a id_rsa file. I use it like this:
ssh -i id_rsa root@IP

then it say “Enter passphrase for key ‘id_rsa’:” … what does this mean? i also generate a own key (see dennis bash history), but it doesn work too. If im on the right way, could you give me pls a hint?

ray_johnson · March 21, 2023, 4:21pm

after you get the id_rsa from dennis - run the john script to get the passphrase for it.

it was mentioned in the module - ssh2john

jonver · April 6, 2023, 12:58pm

install openoffice-writer and use it to be able to unlock and view the file (once you got the password for the document)!

Winston · June 8, 2023, 11:28am

Hey mate, I’m stuck in the same situation as you. I’ve been stuck on it for almost the whole day. Could you please share some tips for this? I would greatly appreciate it. Thanks in advance

softpillow · August 11, 2023, 5:21pm

Hi, how did you manage to solve the problem for this encrypted file here what I have so far
user admin with smb then Doc.zip
Documentation.docx: CDFV2 Encrypted

I have two passwords after cracking however still can’t access this document
1- password for the zip
2- password for the documentation.docx
I used john but the pwnbox gives me archive is not supported

edit here’s a screenshot

l4w4n00b · November 14, 2023, 8:02pm

when i try to get the id_rsa file from dennis i get permission denied that is because i am not dennis . how did you manage to get the id_rsa file of dennis ?

msksmail · February 27, 2024, 1:16pm

Hi! If it is still relevant for someone:

office2john Documentation.docx > documentation.hash

Then you also brute force the password.

msksmail · February 27, 2024, 2:41pm

First you need to decrypt id_rsa, everything is like in the manual
and only then use id_rsa to connect with root rights

ssh2john id_rsa > id_rsa.hash
john --wordlist=mut_password id_rsa.hash

MadeInAsgard88 · June 13, 2024, 6:33pm

where did u get that med.list?? im trying to crack the Docs.zip’ hash with john and rockyou but i dnt have anything yet…

MadeInAsgard88 · June 13, 2024, 6:46pm

im a little bit lost, can u help me?? ive got a very long hash using zip2john, but when i try to crack it, nothing returns…

PD: im using john obviously and rockyou, but im doing something wrong… =S im getting mad bout this xD