Howto Crack Rar, 7z, and zip files in Linux
Posted by Admin on April 24th, 2008
If you're new here, you may want to subscribe to my RSS feed. Thanks for visiting!
Warning: Please don’t use this program for any illegal things!
Preparing your system
First you need to install the following package
#apt-get install libxml2-dev build-essential
Now you need to download the latest version of rarcrack from here
#wget http://surfnet.dl.sourceforge.net/sourceforge/rarcrack/rarcrack-0.2.tar.bz2
Now you have rarcrack-0.2.tar.bz2 file and you need to extract this file
#tar -xjf rarcrack-0.2.tar.bz2
#cd rarcrack-0.2
#make
You must be root to run the following command
#make install
Using Rarcrack
rarcrack your_encrypted_archive.ext [--threads thread_num] [--type rar|zip|7z]
Example
rarcrack something.rar
After the cracking started RarCrack will print the current status of cracking and save it’s to a status file. If you want more specific password character set, you need to run RarCrack to create the XML status file (3 sec).
August 12th, 2008 at 1:27 am
how if the file is a exe that was a rar ? exe with password.
please help
September 27th, 2008 at 3:47 am
I tested rarcrack but failed.
A file (a.txt) was crypted by WinRAR 3.5 with password ‘aa’. The encrypted file is a.rar.
./rarcrack a.rar
RarCrack! 0.2 by David Zoltan Kedves (kedazo@gmail.com)
INFO: detected file type: rar
INFO: cracking a.rar, status file: a.rar.xml
Probing: ‘p8′ [539 pwds/sec]
it didn’t found ‘aa’.
George
October 17th, 2008 at 1:31 pm
i forget it my zip folder file help me when i get my password or breaker it and the folder has four file
October 22nd, 2008 at 10:55 am
Of course, brute force can sometimes useful but in most cases it’s not (the same for this program approach).
On my 1.6Mhz/512MB it’s an average of 50pass/sec which means 180.000 password/h. Pretty impressive but…
Let’s consider we have 62 digits to try (A-Za-z = 52, 0-9 = 10). This means
2 digits pass = 62 * 62 = 3844 possible combinations
3 digits pass = 62^3 = 246.016 possible combinations
…
and for a simple 5 digits pass means 62^5 = 916.132.832 combinations.
How take this number, divide it by 180k pass/h and we’ll have more than 5000h ~ 212 days of non stop trying. Put a 8 character password and you’ll end up with a lifetime.
A more friendly approach (I saw it long time ago) was to remove the password from the file and modify the file flag to nonpass situation, but I’m not quite sure if it’s still working.
November 25th, 2008 at 10:01 am
looking at the source code, it’s incredible that people are using this. it just calls the unrar binary repeatedly. i wrote a perl script in 5 minutes that performs faster and uses a dictionary.
November 27th, 2008 at 11:13 pm
@Dirk:Share it then. (I also invented an airplane=)
December 1st, 2008 at 1:14 pm
i hav install rarcrack-0.2-1.1.i586.rpm and not able to crack locked rar files…….
when i execute the command
#rarcrack sample.rar
it is showing output and creating the xml file
but i m not ablr to open file
its displaying
RarCrack! 0.2 by David Zoltan Kedves (kedazo@gmail.com)
INFO: detected file type: rar
INFO: cracking sample.rar, status file: sample.rar.xml
GOOD: password cracked: ‘1?
GOOD: password cracked: ‘0?
and xml file contents is
0123456789abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ
2
0
December 26th, 2008 at 12:53 pm
same problems as above
replaced unrar-nonfree with unrar free, works now perfectly on ubuntu 8.04.1
January 13th, 2009 at 8:39 pm
@Szemy- Thanks! purged unrar, installed unrar-free & working perfectly!
January 31st, 2009 at 4:51 pm
how can I do this under OS X?
April 10th, 2009 at 4:27 am
You may have to compile it manually, and perhaps edit it slightly… Do you want instructions on how to do so?
May 27th, 2009 at 2:48 am
It seems to work, but is extremely slow, about 200 passwords/sec on a 3GHz CPU. It means that it will need a whole life to unscramble a simple eleven characters password.
May 27th, 2009 at 8:02 pm
Don’t know why you are getting such slow performance, I am consistently getting over 1200 passwords per second on a 2.16GHz Core 2 Duo.
My one question is, how does the program verify whether it has found a good password or not?
May 27th, 2009 at 10:19 pm
Anyone ever wonder if someone, maybe even Microsoft deep within DirectX and Windows is using background CPU and/or GPU cycles of every single PC in the world (that runs Windows) to solve some unknown problem?
July 12th, 2009 at 3:04 pm
It works rather pretty! But! Under 1 (absolute as life&dead) condition: installation succesfull always - but program uses its hide potential (divide processing onto 12 ways - what gives an awesome result=2000passwords/second!!!) only with x86 linux kernel. Otherwise (in a case of try to use it on x86_64) you”ll have coala speed=20pass/sec. Get rid of 64-systems. I like rarcrack for getting possibility of crackig 7z. NO ONE APSS ever & ever can”t guessing 128AES - but rarcrack! And! If you woner crack rar - use cRark3.2 with CUDA support and awesome turbospeed 1500password/second with sure final opening rar!!!
December 6th, 2009 at 10:56 am
I tried it but it comes up with “Segmentation Fault”, it’s probably a n00b error but I have no idea what to do. Can anyone help?
December 24th, 2009 at 10:08 am
Had the same problem, the filename was separated with whitespace, replaced the whitespace with underscores, problem solved.
December 24th, 2009 at 2:04 pm
I suck at programming, but this guy is even worse than me, and he managed to put that code on SF. It requires xml lib and by reviewing code I didn’t succeed to prove it doesn’t do anything evil.
So, on first run I got 180 pass/sec, my box is amd athlon 1.5ghz
ups, the problem is I hadn’t unrar and the code doesn’t check for it..
so i modified source to call /usr/bin/local/rar t -pPASSWORD file.rar
performance dropped to 12 pass/sec
what else? my rar has header in it encrypted, meaning you can’t list contents of archive.
The cracker only checks first 200 chars of response from unrar for “OK” string(case insensitive). my rar outputs garbage and says - crc is wrong, but program thinks it has recovered password, as that garbage includes OK….
plus add 12 process starts per second…….
need other open source solution that would compile on linux and windows
February 12th, 2010 at 3:10 pm
@From East - same experience here… 12 pass/sec, having trouble with “false positives” due to the ‘check password’ just being ‘unrar t -y -p%s %s 2>&1′ and this “passing” when the garbled rar file header contains the lowercase string ‘ok’ … the rarcrack program isn’t useless, but it takes some tweaking to get it to work right - and even then as noted it gives false positives and needs to be restarted each time… and as other posters have noted it can take a long long time to crack any lengthy password.
for those getting super-high rates - check that the commands such as “unrar t -y -p%s %s 2>&1″, “7z t -y -p%s %s 2>&1″, “unzip -P%s -t %s 2>&1″ where %s is a filename and a password respectively, actually work on a known file… if not - then your version of unrar, 7z, or unzip is not functioning the way rarcrack requires - meaning it is probably skipping the actual testing of the password and is only “reporting” that it tested it… thus the high speed.
February 12th, 2010 at 3:12 pm
Oh yeah - for those getting the seg faults (segmentation fault) try including the options in the command line
such as #rarcrack --threads 4 --type rar RARFILE.RAR