added brute force script

Angular Orbit · Angular Orbit · commit 3fa9ebb58eff · 2019-12-06T05:38:33.000+11:00
diff --git a/README.md b/README.md
@@ -1,2 +1,18 @@
 # python-zip-bruteforce-gci
 Python script to brute force a zip file's password from a word list.
+
+```
+./brute_force_zip.py --help
+
+usage: brute_force_zip.py [-h] zipfile wordlist
+
+Bruteforce the password of a zip file.
+
+positional arguments:
+  zipfile
+  wordlist
+
+optional arguments:
+  -h, --help  show this help message and exit
+
+```
diff --git a/brute_force_zip.py b/brute_force_zip.py
@@ -0,0 +1,30 @@
+#!/usr/bin/env python3
+import zipfile
+import argparse
+import os
+
+parser = argparse.ArgumentParser(description='Bruteforce the password of a zip file.')
+parser.add_argument('zipfile',type=str)
+parser.add_argument('wordlist',type=str)
+
+args = parser.parse_args()
+zip_file_name = os.path.abspath(os.path.realpath(args.zipfile))
+wordlist_name = os.path.abspath(os.path.realpath(args.wordlist))
+
+with zipfile.ZipFile(zip_file_name,'r') as zip_file:
+    with open(wordlist_name,'r') as wordlist:
+        for line in wordlist:
+            try :
+                password_bytes = line.rstrip('\n').encode('utf-8')
+                zip_file.extractall(pwd=password_bytes)
+                print('success')
+                try :
+                    zip_file.extractall()
+                    print('zip is unencrypted');
+                except:
+                    print( 'password is {}'.format(line.rstrip('\n')) )
+                break
+            except:
+                pass
+        else:
+            print('fail, no password matched')
