If the password is too long, you cant crack the password cz it will take forever to guess all the cpmbination

What if I have *.rar files?

Many people are connected to my wifi but i can't see their mobile name only mac address and ip address i can see ...can u tell me solution how can i see their mobile name

Hentau yeahhhhh

fr

yes…me too

😂😂

Purposes bro 😂

on the “homework” folder huh

Well, i can't go through 9 minutes of video. Why not just a simple document explaining the same thing?

Can also be impossible entirely 😅

Nonsense, any ZIP 8 alphanum chars + u won’t bruteforce

@@KimYoungUn69 Back in my days zip files even with 20 chars were doable in 30 minutes

Help me please

@@InnerEagle I'm completely serious. I want to understand what you were doing. Have you done a video about cracking zip or rar files?

Not a cracking technique, a guessing technique. If you encrypt using the word 'rainbow' and I guess some words from a list I have not cracked anything. I simply guessed the correct password. Also: this becomes much harder if the filenames are also encrypted because if you do not know what the contents should look like you do not know if the 'password' (encryption key would be a better name) was correct.

Just remember, you are only as safe as your password manager, LastPass kinda gave the whole world a freeby to hackers. Lol..

what app did u use?

@@syariefrahman7411 I use KeePassXC on my computer, KeePasium on my ipad, and KeePassDX on my android phone. I also use google drive to sync the password database between all my devices.

@@ego-lay_atman-bay wow cool, i just intalled on my laptop.. can u explain how you sync that from laptop to android?

@@syariefrahman7411 I don't know what he used but I highly recommend dashlane.

have you done it?

@@Rackzzy reverse engineering is my job

can you help, idk how to get hashcat working

@@iota077 you should be a part of the avengers

@@Rackzzy Tony is dead , my work there is done.

Only if they are in zip file

@@InnerEagle 99% of passworded compressed files happen to work similar the same bruteforce with a wordlist vulnerability

@@spykillergames8402 Yes, in the case you use a wordlist, but if you bruteforce 100% A zip file it's like couple minutes if the password it's extremely long, while if you do the same with rar or 7zip it would take days if not weeks

thats what i wanted 😂 turns out they r viruses

@@AlexYazanGames the method of brute force with UTF-8 code x + 1 will work for most password in the UTF-8 character set. Most passwords do not go outside of UTF-8 and really most can be found in the ASCII character set which takes a lot less time to go through as even the "strong" password he showed is in the 128 codes of ASCII. Really you only need them from 32 to 127 to type everything on a modern keyboard. As most passwords either do not use or the system does not allow you to use letters with accident marks ASCII is enough. Going through 95 characters then repeating adding a string place then repeating is a lot quicker than using UTF-8 which supports a lot more characters but also what is supported is normally lower and upper case English alphabet letters than numbers 0 through 9. UTF-8 supports it all and more the more part is why it isn't a straight +1 to each code in the process of brute forcing it. So if you are copying his code i would say to go with ASCII not UTF-8. The reason to start on 32 is 0 through 21 are function keys some that no longer are used for example the carriage return key as now we just use the new line key which one most keyboards is labeled Enter. To not break backwards compatibility it is kept the same as it was when made in 1963. Pretty old but still useful as it covers everything most people would use on a keyboard ... until you get to the function keys, insert, home, end, print screen, scroll lock, windows key, and app key anyways but all those keys cannot be used in a password.

Depends on the password length and entropy. Sometimes you have to wait forever and it may be not worth it.

@@phoenix5171well it’s effective, not efficient. You get to crack the password, congrats, who cares how efficient it is

How i crack winrar password​@@phoenix5171

Basically a hash is a one-way encryption method. You can create a hash, but not convert it back. Converting a ZIP into a hash means taking the contents of the file and run it through the hashing algorithm that spits out the hash.

its not converting a zip file to a hash, it's TAKING the hash of the zip file (actually you can do this to any file if you know how to do it). So basically passwords are not stored in plain text, they go through a hashing algorithm like NTLM for windows, etc. but those algorithms are secure. So, you cant just reverse a hashing algorithm, but you can try every password and check if it gets the same result as in the hash that was stored. If it is, then password cracked.

Still feel like neither of the explanation is exactly right. Basically hashing in computer security is used to verify information without having to have a copy of it. In our case it's checking a password without storing it in the file (because it could just get stolen or decrypted directly same way the authentication software would do it). In practice it means that when you create an archive, it gets encrypted using the password you put in. Then the password gets converted into a hash (using a standard, irreversible algorithm) and stored in the file. When you try to open the archive, the hash of the password you type in gets compared to the hash of the password initially put in and if they match, it means the password is correct. Then the actual password (which was never stored anywhere) is used to decrypt the archive. Now how the cracking software works. Basically it pulls the hash from the archive and then tries to run the same hashing algorithm using various passwords. If the hash that comes out from one of them is correct, that's what the correct password is.

@@Tomas9970_1 wow great explanation 😃

@@Tomas9970_1 Thank you very much.

That's because the encryption cipher has changed over the years. The default is AES now which hasn't been cracked except through bruteforce as far as i'm aware. If you use any of the old encryptions there's possibly vulnerabilities but i haven't looked that up so i can't tell if there are

If using the old pkzip encryption instead of AES, you can use a "known plain text attack". Say if a zip file has 20 files inside it and the file has a password. However, you have one of those files separate from the zip file i.e. unencrypted. That file you have can be used to calculate the encryption key which matches the encrypted version in the zip file, then that key can be used to extract all the other files, as well as any other zip file which uses the same password. I did this for some zip files around 15 years ago and even back then this process would take less than 10 seconds using only the one unencrypted file I had and no knowledge of the zip password. In addition, I remember reading at the time that the implementation of the random number generator in the pkzip encryption has a bug so isn't as random as it should be, which reduces the number of possibilities for the encryption key as well. If the zip file is using AES, then the above doesn't apply, since it would mean that AES itself (used in just about everything) is vulnerable to that attack. Vulnerabilities have been found in AES but they don't reduce the cracking time by enough to matter.

So what do you advise to avoid being cracked?

​@@dreadowen616use 16 characters

@@dreadowen616 longer passwords with special symbols, lowercase uppercase characters, number and such, a 16 long one is already pretty hard to crack (around 50-100 years), but 32 or above is basically impossible unless you have a lot of time (centuries or even millennias)

@@mackofi 16 character is enough. But i use 20 digit Random generated password and also use a password manager (nord) so i dont have have to write anything. I just have to remember 2 password 1st nord account and a master password for daily use.

@@rustinreactsTrusting Nord so much, when Nord collapses, all your password gone forever

my password 50 char

How do you know that? 16 char with random Aa0! type characters with no words in a few seconds? hard to believe.

the difficulty grows exponentially, at one point you will need more GPUs on earth to deal with just another char

You are so wrong

What if i use different languages? Like arabian, chinese etc

not nessacarily

@@ZephyrysBaum If the password is lengthy with alphabets, numbers and symbols, then you have to wait forever, which is not worth it.

@@phoenix5171 well lots of people don’t have good passwords. I wasn’t disagreeing with jw, but I think it is not inherently nessasary to use a supercomputer to perform these brute forcings.

I never got my steam acc hacked

@@enigmapanzers Good. You must have that Steam app with that Authenticator, right?

"Don't Open it, i repeat DON'T OPEN IT!"

Yeah, that's strange, I wonder what it could be. Open it up and let us know! 😁

My friend has a folder on his pc called phone pronhbu and it has a pass I'll crack it and tell what there is

Bitcoin is secure because it uses Blockchain, making it impossible to manipulate. And isn't it obvious that the password could be anything?

@@itsjustsomeguy. Not quite. Blockchain only means you cannot edit past transactions because it would invalidate everything after that. What I am referring to is the "seed words" which are dictionary words. Think of it like your 8 character password is 255^8 combinations where-as bitcoin's BIP protocol uses 2046^12 or 2046^24 power. Essentially there are more combinations then stars in the universe for bitcoin, where-as I can probably crack your password of 8 characters even if you use all kinds of crazy numbers and symbol combinations. P.S. I actually build a password cracking website some 15+ years ago and it was able to crack 50,000 passwords per SECOND... Still to date no one has cracked bitcoin wallets. And no one will.. as I said, entropy is a cool topic ;)

Who's than important

That's stereotypicall my fella.

i want that file xD

XD I actually managed to crack it in the meantime but there wasn't anything really interesting on it 😂😂

Depending on the version they were created with BUT there is POC's for cracking XLSX, DOCX, etc. format files :)

😳😂

donations and you your pc is the one cracking not the website

​@@Filipex13 How delusional.

Cool, but long strings are still able to be cracked with the new weighted streaming tech that's coming. You can have a simple 8 character password that remains safe. Just alter a byte of your choosing in the Binary code of the zip file. It would be extremely unlikely for anyone to guess which byte you altered. Open your locked zip in Notepad++ and play around in the Binary code. It looks confusing a first, but hex manipulation... so give it try.

This is done through social engineering and impersonation. Your digital footprint is the hacker's toolkit. The more information you post about yourself online, the easiest it gets. You will be monitored and then targeted directly or indirectly. Example: fool you into accessing a fake login page. They don't hack your account like you think! You are the fool that gives us entry. There's no demo for this. It's an old trick that's been used for as long as I can remember. Remember that to attack the system, the human gets attacked first. There's no fancy tool like you think

ummmmm

What you want to understand specially.. is programming or cybersecurity ?

@@ztexgaming2750 are they not interrelated Then programming

Dude I recommend you to just learn the computer basics first then move on to networking, programming basics. You will understand it on the way.

@@krishnanoutiyal3118 but from where to study Any guidance

Here's a real basic description. Good password tech depends on one-way operations, basically math that's easy to do in one direction, but much harder to do in the other direction. Like "pick any two large prime numbers and multiply them" (easy) versus "given only the product, find the primes" (hard) versus "given the product and one number that might be one of the primes, either confirm that it is and get the other, or confirm that it isn't" (easy). I'm oversimplifying some, but you get the idea. So you run the user's password through a one-way function that gives a different result for each one, store the result and forget the password, and no one can (easily) get the password back from just that result. But if they provide the password again, and you run it through the function and get the same thing, then you know it's good. A dictionary or brute-force attack goes "screw easy, I have time to test 2 million things or whatever and no one will stop me". This is why good network security will block (at least for a little bit) after just a few tries.

My algorithm started with length of 1 password. Try every possible letter/digit. If not match, increase length by one and continue

He mentions that in 6:31.

he literally said "john the ripper is designed for linux" just google "how to use john the ripper linux" (i use arch btw)

yes but u need like 20k$ in gpus

This one is pretty easy but hard to explain

@@Roxve can you do a tutorial? I can follow instructions & a little tech savvy.

@@carlos_mann it seems like the method i knew is patched but still try it you might have an old version of windows

@@Roxve I think I originally purchased it back in 2019.

Can remove but file get corrupted i guess

@@bharath7861to remove, first you should know where it is exactly in the zip file. I am sure there should be a way to do that.

Bro, I think the file itself is encrypted using the password

@@TechnicalHeavenSM if zip file works like that, then we may not have any chance but it has to be examined carefully.

that's not how encryption works at all... please start with the basics

use a non-english wordlist

yes!

15 seconds

​@@Fifasher2K To copy and paste or typed?

@@capulini To copy and paste