While checking some really old CDs I found a password protected zip file with my mIRC logs from the year 2000. Since then my passwords changed a few times so I have no idea how many characters or which characters I used to protect the zip file. I already tried to brute force using 4-7 characters but no success. Any ideas to crack this are welcome.
If it's from 2000 and they were created using WinZip up to v8.0, you can use the Passware Kit and the SureZip recovery as per <a href="http://www.lostpassword.com/attacks.htm#surezip" rel="nofollow">http://www.lostpassword.com/attacks.htm#surezip</a><p>> SureZip attack decrypts Zip archives created with WinZip version 8.0 and earlier in less than an hour regardless of password used to protect it. At least 5 simultaneously encrypted files are required in order to process the archive. Archives created with WinZip are supported.<p>I used this when it first came out and even with a 60-char password, if there were more than 5 files it could extract them within an hour (sometimes less than 5 minutes).
You have either brute force with more characters or if you have a file in there with a known content there is a known-plaintext attack on zip encryption. I've used it once and it worked nicely but it's rather tricky to find another file with the exact same content for this.
I would research as to what cipher was used in zip files back then and see if it is currently defeatable, like RC4 or AES with bad padding, and then work through the cryptopals.com problems and see if any of this applies to the zip file.
There was some post about using a CUDA program with your GPU to brute force zip passwords, but can't find anything with a quick google search.<p>Try this though<p><a href="http://www.crark.net/" rel="nofollow">http://www.crark.net/</a>