Your tool to decrypt backups created by OAndbackupX/Neo Backup.
Decrypts backups created with OAndbackupX 6.0 and OAndBackupX/Neo Backup 7-8 The difference between them is, that every backup has its own IV (initialization vector) stored in the properties file (see first line of release 7.0.0)
Minimum Requirement is JRE 8. Download the latest release. Run it like this:
# type your password into a variable (it won't be echoed) and you only have to do it once per shell session
read -s NB_PASSWORD && export NB_PASSWORD
# to decrypt OABX 6 backups
java -jar OABXDecrypt-1.1.jar -file "path/to/encrypted/backup.tar.gz.enc"
# to decrypt NeoBackup 7-8 backups
java -jar OABXDecrypt-1.1.jar -file "path/to/encrypted/backup.tar.gz.env" -propfile "path/to/propfile.properties"
# Other options to provide the password
# Read the password from a file (maybe unsecure)
java -jar OABXDecrypt-1.1.jar -passfile "path/to/passfile" -file "path/to/encrypted/backup.tar.gz.env" -propfile "path/to/propfile.properties"
# or use your password as argument (unsecure)
java -jar OABXDecrypt-1.1.jar -password "YourSecretPassword" -file "path/to/encrypted/backup.tar.gz.env" -propfile "path/to/propfile.properties"The tool will decrypt the contents and write them into the same path but without the .enc suffix which is used by OAndbackupX/Neo Backup to mark a file as encrypted.
You should be able to open the file with your favourite file archiver. If it says, the file is corrupted, the password might have been wrong.
Beware of the shell's history or other users who could see the process with its parameter. While the application is running, your password is visible in your command's cmdline (e.g. /proc/$pid/cmdline). So make sure, your computer is safe and you're alone.
Note: Custom Salts are not supported!
Please note, that OAndbackupX uses a property file to save how the file has been encrypted. If you want to decrypt your backups, you also need to modify the corresponding .properties file.
People in the OandbackupX Telegram channel kept asking, how to decrypt their backups. Since I implemented OABX's encryption and the logic is still the same and the code is reusable on a computer, I just created this wrapper. It evolved a bit since it's a small tool, but generally does the same as the NeoBackup's CryptoUtils.kt - and it's still written in Java. It'll work as long as OBAX/Neo Backup does not change the encryption logic or algorithm or implements something proper like pgp. Your backups are secure. AES is strong and the weakpoint is your password.
- Checkout the project
- run
mvn package assembly:singleto get the packaged jar with its dependencies included intargetdirectory
Because someone tried to implement decrypting Neo Backup with Python and asked for help, I've implemented a reference implementation how to decrypt a backup with Python and PyCryptodome. It's a nice read how Neo Backup's encryption works. Although it's just AES in GCM mode with a key generated by PBKDF2 using a sha256 hash. If you want to implement it on your own for fun and learning: The file structure of OABX 6 and Neo Backup 7-8 is simple:
[encrypted data(total_filesize - 16 bytes))]
[authentication_tag(16 bytes)]
No headers or extra data, just plain data and the authentication tag. The output has the same size, reduced by 16 bytes. Example:
data.tar.gz.enc 752 bytes
data.tar.gz 736 bytes
You know the drill: I'm not responsible for what you do and run on your computer. The tool is very basic. If you encounter some issue and you think it's related to my tool, please open an issue and describe your problem. I'm not able to recover your password. If you forgot it, your data is lost. No backdoors :)