Restore keys from TWRP backup

[chertov]

Today a column in /data/data/com.google.android.apps.authenticator2/databases/databases is encrypted. Is it possible to get private key from backup and decrypt keys?

[scito]

I have no idea.

The extract_otp_secret_keys script works only with QR exports from the app. The secrets are already decrypted.

[brand1970]

I tried importing the decrypted keys into a new database (not the encrypted keys ) with a command line via sqlite3 and it works. The headers of the file "/data/data/com.google.android.apps.authenticator2/databases/databases" (type .db) is : 0|_id|INTEGER|0||1 1|email|TEXT|1||0 2|secret|TEXT|1||0 3|counter|INTEGER|0|0|0 4|type|INTEGER|0||0 5|provider|INTEGER|0|0|0 6|issuer|TEXT|0|NULL|0 7|original_name|TEXT|0|NULL|0

[scito]

I tried importing the decrypted keys into a new database (not the encrypted keys ) with a command line via sqlite3 and it works.

I do not understand what you want to achieve. How did you decrypt the keys?

[brand1970]

I did a simulated restore, nothing more... When restoring I didn't use the secret keys but the decrypted ones which anyone can find either with https://play.google.com/store/apps/details?id=com.beemdevelopment.aegis&hl=en ( https://github.com/beemdevelopment/Aegis )

[shokolatha]

Aegis only decrypts databases of Google Authenticator prior to version 5.10, not the updated versions. Without the decrypted keys you can't recreate a new database file. So that's not a correct answer to chertov's question.

I did a simulated restore, nothing more... When restoring I didn't use the secret keys but the decrypted ones which anyone can find either with https://play.google.com/store/apps/details?id=com.beemdevelopment.aegis&hl=en ( https://github.com/beemdevelopment/Aegis )

[scito]

I think nothing can be done within the extract_otp_secrects script. Thus, I close this issue.