# Safe extraction into a read-only, no-exec mount mkdir /mnt/safe_extract mount -t tmpfs -o ro,noexec,nodev,nosuid tmpfs /mnt/safe_extract unzip suspicious.zip -d /mnt/safe_extract Alternatively, use bsdtar (libarchive) which is less prone to parser vulnerabilities:
You have an encrypted ZIP and one of its original unencrypted files (e.g., a README.txt or a default config). kali linux zip
echo "[*] Cracking with rockyou.txt..." john --wordlist=/usr/share/wordlists/rockyou.txt "$HASHFILE" # Safe extraction into a read-only, no-exec mount