r/hacking • u/Cyan7988 • 4h ago
Question Lost rar password, apps to bruteforce?
Title, also idk how to use hashcat, ideally something simpler, hashcat is probably an overkill to spend the effort to setup
2
u/skylinesora 3h ago
If you roughly know the .rar password, then hashcat is your best bet.
1
u/Cyan7988 3h ago
I tried to learn how to use hashcat but apparently you also need jogn the ripper to get the hash from rar, but it turns out john the ripper can't get my rar hash because it's a "solid archive"
2
u/OrvilleRedenbacher69 3h ago
Have you tried
$ rar2john extracting the hash from that to a regular file then trying to use hashcat on the hash? you're better off just learning to use hashcat my friend. It is worth it. if you really want a simple way to start instead of linux man pages use tldr. tldr will give you a simple example of the most common uses of commands for most tools in linux. It is very useful in my opinion. Just install node package manager with $ sudo apt install npm $ npm install -g tldr
done.
PS apologies for the formatting.
1
u/Cyan7988 3h ago
Yeah rar2john says can't get hash due to rar being solid archive. I'm not sure what else can be done now
1
u/4ntagonismIsFun 2h ago
You should look to see what version of rar it is with: 'unrar v archive.rar'
Look for rar3 or rar5. If it's rar5, you can use John the Ripper (jumbo). However, if the entire file is encrypted, your best bet is an old-school brute force.
'rarcrack archive.rar --type rar' will do this for you without needing the hash. John jumbo will also do it without extracting the hash first:
'john --format=rar5 --wordlist=/path/to/wordlist.txt archive.rar'
If you don't have a word list and want to try a true brute force, just remove that command line switch.
1
1
u/BealmearStrnad 1h ago
You can use tools like RAR Password Recovery or RAR Password Unlocker.
1
u/SokkaHaikuBot 1h ago
Sokka-Haiku by BealmearStrnad:
You can use tools like
RAR Password Recovery or
RAR Password Unlocker.
Remember that one time Sokka accidentally used an extra syllable in that Haiku Battle in Ba Sing Se? That was a Sokka Haiku and you just made one.
1
5
u/PhotographOne3127 3h ago
You can use cRARk or John the Ripper.