.

winrar password

<<

arunkmohan18

Newbie
Newbie

Posts: 4

Joined: Tue Nov 20, 2007 4:50 am

Location: kundoor

Post Wed Feb 03, 2010 4:21 am

winrar password

i want to remove rar password i tried many freeware password removing softwares but it takes long time is there any way to remove this password

please help me
<<

UNIX

User avatar

Hero Member
Hero Member

Posts: 1244

Joined: Mon Apr 28, 2008 9:20 am

Post Wed Feb 03, 2010 4:50 am

Re: winrar password

Well, depending on the strength of the password it takes more or less time. A possibility to remove the password without doing anything isn't possible.
<<

jason

User avatar

Hero Member
Hero Member

Posts: 1013

Joined: Sat Jun 21, 2008 6:23 pm

Location: USA

Post Wed Feb 03, 2010 2:22 pm

Re: winrar password

You could always build yourself a password cracking supercomputer:

http://www.newscientist.com/article/dn12825
<<

arunkmohan18

Newbie
Newbie

Posts: 4

Joined: Tue Nov 20, 2007 4:50 am

Location: kundoor

Post Thu Feb 04, 2010 7:28 am

Re: winrar password

my password is 10 length long include numbers, capital and small letters
is there no any way to find out this
<<

hayabusa

User avatar

Hero Member
Hero Member

Posts: 1662

Joined: Mon Jan 29, 2007 2:59 pm

Post Thu Feb 04, 2010 8:46 am

Re: winrar password

I'm sure if you acquired rainbow tables (or built them to accommodate the character sets and password length) you could probably either script something, or find a tool to pass the data from the tables into a brute force cracking program...  It takes time, but would likely be your best, most reliable, way to TRY to crack it...
~ hayabusa ~ 

"All men can see these tactics whereby I conquer, but what none can see is the strategy out of which victory is evolved." - Sun Tzu, 'The Art of War'


OSCE, OSCP , GPEN, C|EH
<<

bamed

Newbie
Newbie

Posts: 48

Joined: Thu Mar 19, 2009 7:05 pm

Location: Joplin, MO

Post Thu Feb 04, 2010 4:03 pm

Re: winrar password

Rainbow tables only work with password hashes.  RAR files don't have password hashes you can extract to run against a Rainbow table.

The only way is to brute-force it.  You can use rarcrack which comes built-into BackTrack, or other tools.  It will be slow going though.  If you know it is exactly 10 characters you can shorten the time by skipping passwords with fewer, or more characters.  With rarcrack, you start the process with:
  Code:
rarcrack /path_to_file/filename.rar

Then CTRL-C to stop it.  A file names filename.rar.xml will have been created.  It will look something like:

  Code:
<?xml version="1.0" encoding="UTF-8"?>
<rarcrack>
  <abc>0123456789abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ</abc>
  <current>Dk</current>
  <good_password/>
</rarcrack>


Edit the:
  Code:
<current>Dk</current>

line to start wherever you think a good starting point will be.

If you want something faster, and you've got c0ding sk1llz, I've thought a brute-forcer that used CUDA (assuming you have an NVIDIA GPU) would be a good idea.
chown -R bamed ./base
<<

hayabusa

User avatar

Hero Member
Hero Member

Posts: 1662

Joined: Mon Jan 29, 2007 2:59 pm

Post Thu Feb 04, 2010 4:56 pm

Re: winrar password

Ahh.  I agree with what you are saying, and I should've worded more clearly.  I wasn't referring to password hashes, bamed... my suggestion was to script a pull from manually created files 'LIKE' rainbow tables, not the ones already built for hashes, and push it against the password for the rar file, repeatedly, until one hit.  If you truly generate ALL possibilities in a rainbow table, then you should still hit the proper character combination, sooner or later, provided that A.) you have the proper character sets in the table, and B.) you have the proper length for the possible combinations...  Wasn't suggesting a pre-built tool to use rainbow table cracks, such as you do with hashes.  Guess I should've been more specific. 

So I misspoke...  Should've said 'huge' dictionary files, generated from all characters of a given set...  and actually, based on the character set he specified, for only 10 characters, the file wouldn't be THAT hard to build and query against, I wouldn't think...
~ hayabusa ~ 

"All men can see these tactics whereby I conquer, but what none can see is the strategy out of which victory is evolved." - Sun Tzu, 'The Art of War'


OSCE, OSCP , GPEN, C|EH
<<

hayabusa

User avatar

Hero Member
Hero Member

Posts: 1662

Joined: Mon Jan 29, 2007 2:59 pm

Post Thu Feb 04, 2010 5:01 pm

Re: winrar password

(but would still be a painfully slow process, since 26 upper, 26 lower and 10 digit = 62 characters, to the tenth power = 839299365868340224 words in the file to wait while it tries to brute force...)  :o
~ hayabusa ~ 

"All men can see these tactics whereby I conquer, but what none can see is the strategy out of which victory is evolved." - Sun Tzu, 'The Art of War'


OSCE, OSCP , GPEN, C|EH
<<

bamed

Newbie
Newbie

Posts: 48

Joined: Thu Mar 19, 2009 7:05 pm

Location: Joplin, MO

Post Fri Feb 05, 2010 2:39 am

Re: winrar password

If you happen to know certain things about the password, like there's no lowercase letters, no 3's, etc.  You can edit the charset in rarcrack for quicker results.  Rarcrack will go through every possibility ordinarily, but it will take a LONG time.

Alternately, a good dictionary file is also a good idea.    I don't know of a brute-force cracker for rar files that use dictionaries off the top of my head, though I'm sure there are plenty.

You could always write one.  If you don't need a lot of speed (you have a good dictionary file and a fast system) you could always do a bash script like:
  Code:
#!/bin/bash
## Cheap and dirty rar cracker; uses dictionary file; for educational purposes
## too slow to be really useful
## accepts two arguments, first is dictionary file, second is rar file to crack
## if successul the next try will attempt to overwrite the extracted file, when
## that happens you know it's cracked, and just press Q to quit

for pass in $(cat $1); do
        echo 'trying' $pass
        unrar e $2 -p$pass
done


The above works, but not the quickest way to do it.
chown -R bamed ./base
<<

unsupported

User avatar

Sr. Member
Sr. Member

Posts: 318

Joined: Sun Feb 08, 2009 3:38 pm

Location: 407

Post Fri Feb 05, 2010 9:41 am

Re: winrar password

And now for something completely snarky (yet helpful)...

Now we have to teach him where to download Backtrack (http://www.backtrack-linux.org/) and burn to an ISO (http://www.petri.co.il/how_to_write_iso_files_to_cd.htm)...
-Un
CISSP, GCIH, GCIA, C|EH, Sec+, Net+, MCP
<<

bamed

Newbie
Newbie

Posts: 48

Joined: Thu Mar 19, 2009 7:05 pm

Location: Joplin, MO

Post Fri Feb 05, 2010 9:52 am

Re: winrar password

So you're trying to tell me there are people who don't already have a copy of BackTrack handy?  Where does one find these kind of people? 

I have a hard time buying it.  Just proves you can't believe everything you read on teh internets.
chown -R bamed ./base
<<

hayabusa

User avatar

Hero Member
Hero Member

Posts: 1662

Joined: Mon Jan 29, 2007 2:59 pm

Post Fri Feb 05, 2010 10:02 am

Re: winrar password

Hmpf... you mean Windows doesn't have all the tools I want / need, available for free???  <obvious sarcasm>

Wow, unsupported... you're on it already this morning!
~ hayabusa ~ 

"All men can see these tactics whereby I conquer, but what none can see is the strategy out of which victory is evolved." - Sun Tzu, 'The Art of War'


OSCE, OSCP , GPEN, C|EH

Return to Other

Who is online

Users browsing this forum: No registered users and 1 guest

cron
.
Powered by phpBB® Forum Software © phpBB Group.
Designed by ST Software