hi all, I was wondering if anyone knows how can I tell how long the password is in a file such as word, excel, pdf, rar, zip. so instead of having to run all the possibilities I could just tell it to focus on the password lenght.
example if the password is 7 characters longs then I would tell it to run from 7 characters to 7 characters instead of from 1-7 which takes much longer.
thanks in advance.
I've never heard of any way to do this and I suspect it's not possible otherwise virtually all passwords would be ultra vulnerable to cracking programs.
It isn't possible, except by asking the person who set the password what the password is.
Passwords are turned into encryption keys. So passwords of arbitrary length are converted into a key of a fixed length. e.g. Office 2000 always had a 40bit key, even if a 1 character password was used. New PDF files are 256bit. The passwords themselves are not stored in the document.
thanks for all the replies.
although this isnt possible i recommend you give Passware kit a shot. I've used it in the past and had pretty good results with it - http//
Though not possible, if you have an image you can export the word list and use it in something like PRTK to find the password, rather than trying to take a stab in the dark. Much easier, quicker and efficient.
Though not possible, if you have an image you can export the word list and use it in something like PRTK to find the password, rather than trying to take a stab in the dark. Much easier, quicker and efficient.
This is an approach I've used quite a few times and never had success with. The premise is that in some cases the password may appear in plain text somewhere on the computer (hidden as a phone number or phrase in an email), obviously this has not been the case for the times I've tried, but it's still worth a go.
This is an approach I've used quite a few times and never had success with. The premise is that in some cases the password may appear in plain text somewhere on the computer (hidden as a phone number or phrase in an email), obviously this has not been the case for the times I've tried, but it's still worth a go.
Really? That is interesting because I've had many cases in which building a dictionary from an image worked marvelously. In fact, the last time it was the ONLY way I would have gotten the password, as it was a fairly complex and long password. Not only did the suspect slip up and use the same password for his cable bill, he also texted it on his iPhone, which then was backed up to the computer itself. That was a happy, happy day.
Terry
haha I love it when crims do silly things P
No sadly I've never had that work, but I fully acknowledge it's a great place to start, obviously my bad guys had simple passwords they didn't need to write down somewhere.
I did have success bypassing encryption software in one case where the suspect had retained an email from the company which gave a backdoor password he could use in case he ever forgot his own password….very insecure way of doing business but helped my out immensely )
I had a recent success with taking a text file of keywords from FTK and importing it into Passware. Passware cracked it in about 4 minutes (Lucky I guess). I also once scraped a suspect's Twitter and Facebook account posts and created a text file of all words and saved that in Passware's dictionaries. Turned out the password was a pet's name.