Zip Bomb 💣
Rather than hijacking the normal operation of the program, a zip bomb allows the program to work as intended, but the archive is crafted so that unpacking it (e.g., by a virus scanner in order to scan for viruses) requires inordinate amounts of time, disk space or memory.
Github code
"The code is to share the knowledge behind the program "
This is for the people who watch Silicon Valley. In Season 3 Episode 7, Gilfoyle sends a sort of recursive program to Gavin Belson’s laptop and cellphone which forces him to shut down the power at Hooli. Watch here. Such a program is called a zip bomb.
What it is basically is a huge file with dummy data compressed to many levels to generate a very small compressed file. For example in a test run, this script of mine generates a compressed file of size 30.58 KB which when decompressed is actually 10000000000 GB. This is done to drain out a computer’s memory until it shuts down. Read More on Wikipedia.
This is a small script written in Python which generates such a zip bomb.
Usage
Download the script :- keralahacker
zipbomb.py n_levels out_zip_file
Sample Run
python zipbomb.py 10 out.zip
Output
Compressed File Size: 30.58 KB
Size After Decompression: 10000000000 GB
Generation Time: 10.40s
As per the Research
Researchers have shown how it might be possible to reinvent an attack technique of the past – the ‘ZIP bomb’ – in order to confound and crash modern websites.
A ZIP bomb is a malicious archive designed to crash any program or system reading it.
The technique has been around for years, and was historically designed to tie up antivirus software as part of attacks designed to smuggle malware past security defenses.
Over time, security scanner developers got wise to the ruse and adapted their technology to thwart the approach.
🔰 Thank you, have a nice day
Comments
Post a Comment