• Main Menu
  • How to Recover a Zip Password


    PKZip utilizes a proprietary stream cipher that is vulnerable to a known plaintext attack, as Eli Biham and Paul C. Kocher describes in A Known Plaintext Attack on the PKZIP Stream Cipher.

    In ZIP Attacks with Reduced Known-Plaintext, Michael Stay describes an improved known plaintext attack that works against files that non-PKZip zip programs such as InfoZip, WinZip, and NetZip create. The Stay attack requires the Zip archive to contain a minimum of five files.

    In addition to these two attacks, it is also possible to recover a Zip password utilizing a brute force attack or a dictionary attack.

    Software to Recover a Zip Password

    Several programs with varying capabilities are available to help recover a lost Zip password.

    Zip Key by Passware is a commercial program that implements the Biham-Kocher and Stay attacks, as well as dictionary and brute force attacks.

    FCrackZip is a free program that implements dictionary and brute force attacks.

    Ultimate Zip Cracker by VDG Software is a commercial program that implements the Biham-Kocher attack, a dictionary attack, and a brute force attack.

    The Password Recovery Toolkit by AccessData is a commercial program that implements the Stay attack or a dictionary attack.

    Advanced Zip Password Recovery by Elcomsoft is a commercial program that implements the Biham-Kocher attack, a dictionary attack, and a brute force attack.

    Advanced Archive Password Recovery by Elcomsoft is a commercial program that implements the Stay attack in addition to the capabilities of their Advanced Zip Password Recovery program.

    PkCrack is a free program that implements the Biham-Kocher attack. To use PkCrack, the user needs another ZIP-archive containing at least one of the files from the encrypted archive in unencrypted form. This one has to be compressed with the same compression method used for the encrypted file.

    Security Enhancements in WinZip 9

    WinZip 9 introduced the use of 128 and 256-bit key AES encryption. Unless there is a flaw in the WinZip AES implementation, this should make WinZip 9 passwords significantly more difficult to recover.

     

    Got Something To Say:

    Your email address will not be published. Required fields are marked *

    3 comments
    1. Simon T.

      18 September, 2011 at 7:38 pm

      Do you know, or recommend a software to recover 7z archives?, I didn’t find strangely.

      thank you.

      Reply
    2. Shane Watson

      26 November, 2010 at 11:08 am

      There’s a free program called fcrackzip that allows you to run a suite of dictionary and brute force attacks on the zip file as the article mentions. It runs on most OSes.

      There’s also an article on how to use a distributed computing model (free source code) if you wanted to expand this search using multiple computers using OS X’s Xgrid (the clients can run on Windows and Linux too). http://www.macwize.com/technical/files/xgrid_in_operation.html

      Reply
    3. beta

      19 June, 2010 at 4:54 am

      Is it possible to recover the password itself if both the compressed and uncompressed files are available?

      Reply
    File Compression
    184 queries in 0.614 seconds.