This tool is written in Python and can be run right from the terminal. While the encryption standard across different Office products fluctuated throughout the years, none of them can stand up to office2john's hash-stealing abilities. Those extracted hashes can then be cracked using John the Ripper and Hashcat.Įxtracting the hash from a password-protected Microsoft Office file takes only a few seconds with the office2john tool.
But password-protected documents from earlier versions of Office are susceptible to having their hashes extracted with a simple program called office2john. Microsoft Office files can be password-protected in order to prevent tampering and ensure data integrity.