For this tutorial, we are going to use the big rockyou wordlist (with the size of about 133MB), if you're on Kali Linux, you can find it under the /usr/share/wordlists/ path. We will be using Python's built-in zipfile module, and the third-party tqdm library for quickly printing progress bars: pip3 install tqdmĪs mentioned earlier, we gonna use dictionary attack, which means we are going to need a wordlist to brute force this password-protected zip file. In this tutorial, you will write a simple Python script that tries to crack a zip file's password using dictionary attack. Say you're tasked to investigate a suspect's computer and you find a zip file that seems very useful but protected by a password.
