May 24, 2017, 11:53:33 PM
Welcome, Guest. Please login or register.

The user's going to pick dancing pigs over security every time. -- Bruce Schneier

Author Topic: Zip file woes  (Read 2456 times)

Offline TAPE

  • Top Hat Member Moderator
  • Elite
  • ********
  • Posts: 1247
  • Internets: +192/-0
Zip file woes
« on: August 28, 2013, 02:49:33 PM »
Help a buddy out !
Quote

OMG plz halp me !

My friend sent this pic he says is of his awesome hillbilly GF..
He says the password is "dixie" but I cant open it !!
Can you help open it and tell me who it is ?

http://www.mediafire.com/download/dvr0o2jhni31ccw/dixie.zip

Answers via PM appreciated :)
Take all the advice you like and then tell everyone to **** off and do your own thing -- Gitsnik

Offline S1LV3RWR4TH

  • *CWSP Certified*
  • Enthusiast
  • *******
  • Posts: 99
  • Internets: +10/-0
Re: Zip file woes
« Reply #1 on: August 30, 2013, 02:48:42 PM »
Got it!

PM sent for confirmation.

Offline TAPE

  • Top Hat Member Moderator
  • Elite
  • ********
  • Posts: 1247
  • Internets: +192/-0
Re: Zip file woes
« Reply #2 on: August 30, 2013, 02:52:55 PM »
And confirmed !

:D
Take all the advice you like and then tell everyone to **** off and do your own thing -- Gitsnik

Offline TAPE

  • Top Hat Member Moderator
  • Elite
  • ********
  • Posts: 1247
  • Internets: +192/-0
Re: Zip file woes
« Reply #3 on: September 01, 2013, 01:39:47 AM »
Herewith some explanation on how you could have looked at the challenge ;
IF YOU ARE STILL WORKING ON THIS AND DONT WANT THE SOLUTIONS, STOP READING :)

This challenge was all about looking at the file structure.

At the first glance, it appears to be a normal zip archive with a protected file.
But the file seems corrupted and the password protected file is not able to be extracted.








Having a look at the file in Kali with 'unzip' ;




So you need to look closely at the hex of the file.

A great resource for checking valid file headers and trailers is Gary Kessler's  website on same ;
http://www.garykessler.net/library/file_sigs.html
(just hit F3 and search for the file extension you want info on, in this case 'zip')


So you can see that a normal zip file has a header of '50 4B 03 04'


Having a look at the hex of dixie.zip ;



Hmm.. hang on.. header here is '50 4B 2E 2E', that dont look right..

Edit the hex to show the correct zip header and save;



Now when opening the zip file and trying to open the protected file, you will be prompted for a password,
trying the password as provided in the txt file (dixie) an image file will be extracted of the good 'ol original
Daisy Duke (raaawrrr :D)



Challenge complete !

So all in all, the challenges I have posted so far have been showing how you ;
> Check files for superfluous information
> Encoding / Decoding of files and text
> The importance of checking headers and trailers

With the above and previous walkthroughs, Image Challenge #6 should be a piece of cake for ya'all and no explanation should need to be given.
« Last Edit: September 01, 2013, 01:41:27 AM by TAPE »
Take all the advice you like and then tell everyone to **** off and do your own thing -- Gitsnik