this post was submitted on 13 Jul 2023
97 points (98.0% liked)

No Stupid Questions

35931 readers
1035 users here now

No such thing. Ask away!

!nostupidquestions is a community dedicated to being helpful and answering each others' questions on various topics.

The rules for posting and commenting, besides the rules defined here for lemmy.world, are as follows:

Rules (interactive)


Rule 1- All posts must be legitimate questions. All post titles must include a question.

All posts must be legitimate questions, and all post titles must include a question. Questions that are joke or trolling questions, memes, song lyrics as title, etc. are not allowed here. See Rule 6 for all exceptions.



Rule 2- Your question subject cannot be illegal or NSFW material.

Your question subject cannot be illegal or NSFW material. You will be warned first, banned second.



Rule 3- Do not seek mental, medical and professional help here.

Do not seek mental, medical and professional help here. Breaking this rule will not get you or your post removed, but it will put you at risk, and possibly in danger.



Rule 4- No self promotion or upvote-farming of any kind.

That's it.



Rule 5- No baiting or sealioning or promoting an agenda.

Questions which, instead of being of an innocuous nature, are specifically intended (based on reports and in the opinion of our crack moderation team) to bait users into ideological wars on charged political topics will be removed and the authors warned - or banned - depending on severity.



Rule 6- Regarding META posts and joke questions.

Provided it is about the community itself, you may post non-question posts using the [META] tag on your post title.

On fridays, you are allowed to post meme and troll questions, on the condition that it's in text format only, and conforms with our other rules. These posts MUST include the [NSQ Friday] tag in their title.

If you post a serious question on friday and are looking only for legitimate answers, then please include the [Serious] tag on your post. Irrelevant replies will then be removed by moderators.



Rule 7- You can't intentionally annoy, mock, or harass other members.

If you intentionally annoy, mock, harass, or discriminate against any individual member, you will be removed.

Likewise, if you are a member, sympathiser or a resemblant of a movement that is known to largely hate, mock, discriminate against, and/or want to take lives of a group of people, and you were provably vocal about your hate, then you will be banned on sight.



Rule 8- All comments should try to stay relevant to their parent content.



Rule 9- Reposts from other platforms are not allowed.

Let everyone have their own content.



Rule 10- Majority of bots aren't allowed to participate here.



Credits

Our breathtaking icon was bestowed upon us by @Cevilia!

The greatest banner of all time: by @TheOneWithTheHair!

founded 1 year ago
MODERATORS
 

Brute forcing would be fine, since I don't think I would've used a long password for this, but I don't know how to automate that either. Any ideas?

top 22 comments
sorted by: hot top controversial new old
[–] [email protected] 21 points 1 year ago (1 children)

if you are comfortable running python scripts: https://github.com/andreblue/doc-breaker I also have many many more word lists. I'd be happy to give it a shot if the contents are not too sensitive.

[–] [email protected] 16 points 1 year ago (2 children)

I ran that exact script and it output that it found the password and that it was 123456. It was not 123456. The "unlocked document" it generated cannot even be opened. If you have an idea how that might be fixed I'd gladly take that and the password list(s). Don't wanna share the document however, since I have entirely forgotten what's in it, so it may or may not be sensitive

[–] [email protected] 28 points 1 year ago (2 children)

That's the same number I have on my luggage!

[–] [email protected] 9 points 1 year ago (2 children)

Only an idiot would use that as a password.

[–] [email protected] 11 points 1 year ago

password.

ohhhhhh im stealing this one, thatll be my new password for everything

[–] [email protected] 4 points 1 year ago

That's why my password is "password" and not "that".

[–] [email protected] 7 points 1 year ago

Samsonite! I was way off.

[–] [email protected] 8 points 1 year ago* (last edited 1 year ago)

You can try using Office2John to create a hashfile for John the Ripper to crack, then use John the Ripper on said hashfile.

[–] [email protected] 20 points 1 year ago

You're looking a tool called John the Ripper. The jumbo version comes with a script called office2john, which extracts the password hash for it to crack.

I believe you can also use hashcat with the password hash, which will be a lot quicker if you have a GPU because John is CPU bound.

[–] [email protected] 15 points 1 year ago (1 children)

Maybe some of these older suggestions still apply: https://superuser.com/questions/486844/how-can-i-unlock-a-microsoft-docx-document#486883

You'll have to tinker a bit, probably write some script to bruteforce the password. Unless you expect your password to be a strong one. In that case I fear there is no way.

[–] [email protected] 5 points 1 year ago (1 children)

Tried to unzip it, but got an error saying that in order to unzip it I would have to add files to the archive first, so apparently the zip is empty? I... dont think its supposed to be empty

[–] PinkPanther 2 points 1 year ago

Rename the file extension from .docx to .zip, and then you'll be able to open the file as an executable.

[–] [email protected] 11 points 1 year ago (2 children)

The answer used to be John the Ripper, but I'm a decade out of date on this stuff, so it might not be any more.

[–] [email protected] 9 points 1 year ago (1 children)

Damn it's been long since I heard that name. Blast from the past.

[–] [email protected] 10 points 1 year ago (1 children)

Sometimes I just don't bother learning new stuff till the old stuff stops working for me. It's amazing how many really simple things people stroll past on their way to god knows where.

[–] [email protected] 1 points 1 year ago

Reminds me of still using spybot search & destroy :p

[–] [email protected] 2 points 1 year ago

John still works great! For modern documents you need a script to pull out the hash but other than that it'll do the job fine

[–] [email protected] 8 points 1 year ago

You can try using Office2John to create a hashfile for John the Ripper to crack, then use John the Ripper on said hashfile.

[–] [email protected] 6 points 1 year ago (1 children)

I've done this before by uploading the file to google drive which stripped the password off. I remember viewing it no problem but saving it was a few more steps. This was several years ago though so... Good luck!

[–] [email protected] 3 points 1 year ago (1 children)

didnt work sadly. thanks for the recommendation though!

[–] [email protected] 1 points 1 year ago

Too bad, they must have fixed that workaround. Good luck cracking the safe!

[–] [email protected] 2 points 1 year ago

Try hashcat.

Johntheripper works too.

load more comments
view more: next ›