How do I recover the password of a RAR file on Mac OS X?

You can bypass the hash extraction altogether and use cRARk instead. cRARk is a freeware command-line RAR password cracking utility available for Windows, Mac and Linux. It is also designed to work with CUDA so you may want to take advantage of that if you have a powerful GPU.

One caveat is that it will take very long to crack an archive if you know nothing about the password, and it is > 6 characters in length. If you do know a small detail about the password, such as the approximate number of characters, it allows you to input that as a switch to dramatically shorten cracking time. Even though cRARk is one of the fastest RAR crackers out there using extremely optimized MMX & SSE code, this holds true for any brute force application. When cracking longer passwords, it will take a substantially longer amount of time due to the myriad of possibilities to try.

Here's a sample run of cracking the password 'john':

C:\>crark.exe -c -l4 -g4 Chap7.rar
     cRARk 3.2d (CUDA enabled) Freeware
    Copyright 1995-2001, 2006-09 by P. Semjanov,
         http://www.crark.net
     portions (c) 1993-2005 Eugene Roshal
 (c) PSW-soft Password Cracking Library PCL v. 2.0d by P. Semjanov


Testing archive Chap7.rar : version 2.9
Testing     Chap7.rtf
Choosing best crypto functions.................................................
Chosen: ASM  (Prescott/AMD), SSE2 (P4/Core 2) (-f1114)
Ticks per password expected = 40438280, theoretical = 27000000, CPU rate = 0.67

Processing line 56 of password definition file...
Testing 4-chars passwords ...
ckdk
Passwords tested = 42000 (time = 3:45.00, rate = 186 p/s)
elka
Passwords tested = 78000 (time = 6:58.99, rate = 186 p/s)
john - CRC OK
In hex (PCL style): \6A \6F \68 \6E
Passwords tested = 167844 (time = 15:02.38, rate = 186 p/s)
Total     tested = 167844, slow tests = 20914

Not too shabby ;)

John T

Posted 2010-02-10T05:27:02.443

Reputation: 149 037

+1 better than my answer and missed the osx tag – William Hilsum – 2010-02-19T19:58:39.280

I'll give it a try. Was kinda hoping I'd get an answer before putting the bounty on. :) – Josh K – 2010-02-20T05:40:50.843

@Josh sorry about that! This was my first time seeing the question, adding the bounty bumped it to the top of the page. – John T – 2010-02-20T05:56:37.187

@John: Hey, no problems. I get an answer, though it doesn't look like the added rep will leave a mark on you. – Josh K – 2010-02-20T07:38:56.387

1@Josh when using cRARk it comes with a 'crackme' file. You can extract everything else in the file just fine. The crackme is for you to test the program. – John T – 2010-02-20T14:36:10.293

1For Mac is something like "./crark-hp -c -l4 -g4 ../YOURFILE.rar" – rafa.ferreira – 2019-12-12T10:54:02.827

2Does anyone know the syntax for doing it on the Mac? I can't work it out... Thanks! – Joe – 2011-03-05T10:23:00.293

oddly enough, unrar & 7z on linux extract a bunch of files from the crark RAR, then prompt for a password. the included README file indicates the password is on purpose, to allow testing the utility: "You also may test the cracker on this archive. Run: crark -pcrackme.def crark31.rar" – quack quixote – 2010-02-22T05:54:37.637

... so it sounds like you need a better RAR extraction utility, that will extract the unprotected files before prompting for the password. :) – quack quixote – 2010-02-22T05:56:17.413

tried unrarx? http://www.unrarx.com/

– o0'. – 2010-02-24T10:28:40.127

2I just d/l'd crark33 for OSX, and the rar password is crark33. Guess i'm a good guesser :-) – Carl Witthoft – 2012-10-09T21:44:29.347

How do I recover the password of a RAR file on Mac OS X?

Edit

Answers