How to Recover an OpenOffice Password with Dictionary Attack

Here’s a problem: a user forgot his password for a file created in OpenOffice Writer.

How to crack lost OpenOffice password?!.

We need to recover the password and regain access to encrypted data.

OK, let’s crack it! :)

I am going to use Accent OFFICE Password Recovery from Passcovery and here’s why:

  • it is a universal password recovery solution compatible with all versions of OpenOffice/LibreOffice/Microsoft Office
  • it has the same user interface as password crackers for other file formats
  • the program accelerates on AMD/NVIDIA graphics cards

Accent OFFICE Password Recovery offers three types of attack for recovering passwords:

  • Brute-force attack — sequential testing of each password
  • Brute-force attack with extended mask — direct search based on a specific positional mask
  • Dictionary attack — sequential testing of passwords from a number of wordlists called dictionaries

I’m going to go with a dictionary attack. First a simple attack and then a more complicated one. I want to show you how to alter dictionary entries using Accent OFFICE Password Recovery and how to merge several dictionaries.

Examples below will show you how to crack a “Password to Open” for OpenOffice. Same way passwords for other formats can be cracked since all Passcovery apps have the same interface and functionalities.

Now here’s your user guide.

Simple Dictionary Attack

1. Run the program, open a password-protected file (for example this one), read the information about the file format and the protection method:

Start dialog box - Password Recovery Wizard
Fig.1: Start dialog box - Password Recovery Wizard

Click “Next”.

2. Select “Dictionary attack” and click “Next”:

You get to choose — either follow a preconfigured recovery scenario or apply one of the three attacks
Fig. 2: You get to choose — either follow a preconfigured recovery scenario or apply one of the three attacks

Besides password attacks AccentOPR offers a few recovery scenarios. The scenarios comprise various attacks consecutively performed by the program. Along with automated recovery options by default AccentOPR allows users to create their own recovery scenarios — read more about attack scenarios.

3. Choose a dictionary file (one from the list or, for example, the dictionary top1000000 most popular passwords) and start a password attack by clicking “Finish”:

Dialog box — Dictionary attack settings
Fig. 3: Dialog box — Dictionary attack settings

That’s how your launch a simple dictionary attack using a selected dictionary. The program will consistently read the passwords from the dictionary “as they are” without modifying them.

Dictionary Attack With Mutations

Dictionary attack will only work out if the password is among the words contained in the dictionary. However oftentimes we complicate our passwords by making multiple-word phrases or adding digits to them.

AccentOPR can crack such complex passwords.

1. The program lets you choose certain password mutation (changing) rules for dictionary attacks:

  • Various mutations of a single dictionary
  • Various mutations of two dictionaries simultaneously
  • Simple mutation of three dictionaries simultaneously
Preconfigured password mutation rules
Fig. 4: Preconfigured password mutation rules

2. Depending on your chosen mutation rules please select one, two or three dictionaries to be used for generation and testing of OpenOffice passwords.

Ready-made dictionaries that generate complex passwords
Fig. 5: Ready-made dictionaries that generate complex passwords

AccentOPR offers built-in dictionaries — two short ones with words (2232 and 27207 words) and three dictionaries with digits (0-99, 0-999 and 0-9999). You can either use the built-in dictionaries or link your own ones up.

Combine your own, more comprehensive dictionaries with ready-made numerical dictionaries. That’s how you can try passwords beginning or ending with digits. Here’s an example:

Gluing three dictionaries in AccentOPR
Fig. 6: Gluing three dictionaries in AccentOPR

AccentOPR generates and tests the passwords “DIGITS1DICTIONARYDIGITS2”, where DIGITS1 — digits 0-99, DICTIONARY — passwords from a linked up dictionary, DIGITS2 — digits 0-999.

3. Run the attack by clicking “Finish”.

Advanced Dictionary Attack With Customized Mutations

Combining several words into one password is of course a great idea. But there may be more complex cases. Sometimes we substitute characters, transpose them, change lowercase to uppercase etc.

Password crackers by Passcovery are ready to take on the challenge. :)

1. Start AccentOPR and go to “Rules editor” (“Tools” menu):

How to open password mutation rules editor
Fig. 7: How to open password mutation rules editor

2. Use macros to create your own mutation rules (manual). Show a chart legend for your own convenience.

Mutation rules editor with prompts on how to use macros
Fig. 8: Mutation rules editor with prompts on how to use macros

Each mutation rule is written in a separate line, there can be as many mutations (lines) as you may need. The program will consecutively execute all the configured rules, line by line.

For user convenience rules editor is equipped with a preview box where all the enabled rules are immediately applied to sample words and the results of mutations are clearly displayed. Each of the sample words symbolizes one of the four dictionaries. Yes, using macros you can define rules for simultaneous processing of several dictionaries.

A group of dictionary mutation rules
Fig. 9: A group of dictionary mutation rules

3. Once you’ve created and fine-tuned your mutation rules you might want to save them to a file for further use.

Save your mutation rules to a file
Fig. 10: Save your mutation rules to a file

4. Open your password protected OpenOffice file, select dictionary attack and enable your set of rules by specifying path to the file you saved in the previous step, then set the required number of dictionaries:

Enable your set of rules and select the dictionaries
Fig. 11: Enable your set of rules and select the dictionaries

5. Run the OpenOffice password attack

If any of the enabled dictionaries contain the original password and the mutation rules are defined correctly, then AccentOPR will generate a correct modification of the password and display it on screen:

An altered password successfully found
Fig. 12: An altered password successfully found

Additional Resources

Demo video: “Dictionary attack in Passcovery: dictionary mutation”

Demo video: “Dictionary attack in Passcovery: how to glue words from different dictionaries”

Download dictionaries: sets of dictionaries.