HomeCalendarCertificationsColumnsFeaturesForumResourcesVitals
 
Image
 
linkedin_logo.png rss_logo.jpg
twitter_logo.png youtube_logo.jpg
Latest Additions
 
EH-Net Login
Welcome Guest.
Lost Password?
No account yet? Register
Who's Online
We have 47 guests and 1 member online
 
Advertisement

You are here: Home arrow Ethical Hacking Discussions and Related Certificationsarrow Forensicsarrow Cracking Word 2007 passwords
EH-Net
May 25, 2013, 07:57:14 AM *
Welcome, Guest. Please login or register.
Did you miss your activation email?

Login with username, password and session length
News: Go back to The Ethical Hacker Network Online Magazine Home Page
 
   Home   Help Calendar Login Register  
Pages: [1]   Go Down
« previous next »
  Print  
Author Topic: Cracking Word 2007 passwords  (Read 7538 times)
0 Members and 1 Guest are viewing this topic.
sommersb
Newbie
*
Offline Offline

Posts: 6


View Profile
« on: July 01, 2009, 04:34:35 PM »
Looking for any tools/insights into getting past a Word 2007 doc with password protection (128 AES).  Seems like a pretty tough nut to crack.  I see Elcomsoft has a commercial tool - are there any open source alternatives?
Logged
Ketchup
Hero Member
*****
Offline Offline

Posts: 1021



View Profile
« Reply #1 on: July 01, 2009, 06:08:27 PM »
Microsoft's encryption in Office docs has gotten a lot better.   We typically use FTK's or Paraben's decryption suite for cracking these passwords.   If it's a long password, the distributed architecture of these tools helps.  They are obviously commercial tools though.   I haven't seen any open source tools for this.
Logged
~~~~~~~~~~~~~~
Ketchup
UNIX
Hero Member
*****
Offline Offline

Posts: 1235


View Profile
« Reply #2 on: July 02, 2009, 12:29:41 AM »
Only possibilities I know are either a bruteforce-attack or a dictionary-attack. Do you know how the password looks like?
Didn't came across any open-source tools for this yet.

If it is not something very confidential or similar maybe someone can help you who has such software available..
Logged
sommersb
Newbie
*
Offline Offline

Posts: 6


View Profile
« Reply #3 on: July 02, 2009, 07:50:58 AM »
Thanks for the tips - I've used the FTK Imager program but didn't know about their password product.  I just looked through the user guide and didn't see that their tool does Office 2007 docs though.

I'd not heard of Paraben before but just looked at their products.  If I need to go commercial I'll probably lean towards the Elcomsoft tools since they seem to be cheaper, unless someone has a reason to avoid them.  I'm currently trying their Office recovery tool in demo mode, using a series of dictionary files.  Their brute force portion is pretty limited in demo mode, but the dictionary mode is available.
Logged
Ketchup
Hero Member
*****
Offline Offline

Posts: 1021



View Profile
« Reply #4 on: July 02, 2009, 09:54:14 AM »
It's a pretty straight forward process, brute-forcing a password.  My only suggestion is to use a tool that supports a distributed attack.   20 machines cracking a password is much faster than 1. 
Logged
~~~~~~~~~~~~~~
Ketchup
UNIX
Hero Member
*****
Offline Offline

Posts: 1235


View Profile
« Reply #5 on: July 03, 2009, 12:08:57 AM »
Although it may not be usual to have 20 PCs at home. Wink
Logged
Ketchup
Hero Member
*****
Offline Offline

Posts: 1021



View Profile
« Reply #6 on: July 03, 2009, 05:30:26 AM »
I have about 20 probably, although not many of them actually work Smiley   
Logged
~~~~~~~~~~~~~~
Ketchup
linky1124
Newbie
*
Offline Offline

Posts: 1


View Profile WWW
« Reply #7 on: August 31, 2009, 09:09:35 PM »
it is too hard to crack office 2007!
Logged
welcome to my blog--reset windows password
Pages: [1]   Go Up
  Print  
« previous next »
 
Jump to:  

Powered by MySQL Powered by PHP Powered by SMF 1.1.18 | SMF © 2013, Simple Machines
Joomla Bridge by JoomlaHacks.com 		Valid XHTML 1.0! Valid CSS!
Page created in 0.062 seconds with 22 queries.
 
Exclusive Deal

sansfire13_245x90_cw90.jpg
SANSFIRE 2013
June 15 - 22

5% Off w/ Code: EHN_5

SANS Deals 4 EH-Netters
5% OFF Any SANS Course in Any Format!
Coupon Code: EHN_5 Including SANS Rocky Mountain 2013 & SANS Boston 2013
Polls
Compared to this year, 2013 will be:
 
Recent Forum Topics
EH-Net News Feeds
Latest Additions
 
         
Advertisement

© 2013 The Ethical Hacker Network
Joomla! is Free Software released under the GNU/GPL License.