* Extract embedded zip (binwalk) --> Extract hash (zip2john) --> Crack hash with john + rockyou wordlist
[writeup](https://github.com/Srinivas11789/SecurityNuggets/tree/master/captureTheFlag/Forensics/rit2018/burnCandleOnBothEnds)

Original writeup (https://github.com/Srinivas11789/SecurityNuggets/tree/master/captureTheFlag/Forensics/rit2018/burnCandleOnBothEnds).