Skip to content
Branch: master
Find file History
Fetching latest commit…
Cannot retrieve the latest commit at this time.
Permalink
Type Name Latest commit message Commit time
..
Failed to load latest commit information.
gynvael
NT.zip
NTFS.zip
PPMd.zip
README.md
aes.zip
bz2.zip
corkami.zip
deflate64s.zip
directory.zip
drive.zip
dual.zip
empty.zip
filecomment.zip
implode.zip
implodeV3.zip
lzma.zip
shrunk.zip
simple.zip
store.zip
unicode.zip
unicode2.zip
unix.zip
unixdesc.zip
volume.zip.001
volume.zip.002
volumecomment.zip
zip64.zip
zipcrypto.zip
zopfli.zip

README.md

PoCs

most made by 7zip, linux ZIP or Mac, InfoZip, WinRar

  • simple.zip standard (Deflate)
  • directory.zip directory

small:

  • empty.zip - just EoCD, no files (it's valid, just empty)
  • corkami.zip - (used for the original poster) non standard, minimized (no name in Local File Header)

misc:

  • NTFS.zip high precision time
  • NT.zip NT ACLs
  • unicode.zip unicode name as extra field
  • unicode2.zip unicode name directly as file name
  • volumecomment.zip volume comment
  • filecomment.zip file comment
  • volume.zip.001, volume.zip.002: volume spanning archive
  • unix.zip Unix version
  • unixdesc.zip with Data Descriptor
  • zip64.zip Zip64
  • drive.zip the old DOS way to store the drive where files are stored
  • dual.zip with 2 files of the same name, cf CVE-2013-4787

encryption:

  • zipcrypto.zip old zip crypto (PkZip 2.0)
  • aes.zip AES-256 crypto

compression (old):

  • store.zip storage (no compression)
  • shrunk.zip shrunk
  • implode.zip implode
  • implodeV3.zip implodeV3 compression (new):
  • deflate64.zip Deflate64
  • bz2.zip bzip2
  • lzma.zip LZMA
  • PPMd.zip PPMd
  • zopfli.zip - super compressed with Zopfli (via advzip from AdvanceComp)

links

https://landave.io/2018/05/7-zip-from-uninitialized-memory-to-remote-code-execution/

You can’t perform that action at this time.