Skip to main content

Recovering Data From An Old Encrypted Time Machine Backup

By admin
Recovering data from a backup should be an easy thing to do. At least this is what you expect. Yesterday I had a problem which should have been easy to solve, but it was not. I hope this blog post can help others who face the same problem.


The problem

1. I had an encrypted Time Machine backup which was not used for months
2. This backup was not on an official Apple Time Capsule or on a USB HDD, but on a WD MyCloud NAS
3. I needed files from this backup
4. After running out of time I only had SSH access to the macOS, no GUI

The struggle

By default, Time Machine is one of the best and easiest backup solution I have seen. As long as you stick to the default use case, where you have one active backup disk, life is pink and happy. But this was not my case.

As always, I started to Google what shall I do. One of the first options recommended that I add the backup disk to Time Machine, and it will automagically show the backup snapshots from the old backup. Instead of this, it did not show the old snapshots but started to create a new backup. Panic button has been pressed, backup canceled, back to Google.


Other tutorials recommend to click on the Time Machine icon and pressing alt (Option) key, where I can choose "Browse other backup disks". But this did not list the old Time Machine backup. It did list the backup when selecting disks in Time Machine preferences, but I already tried and failed that way.


YAT (yet another tutorial) recommended to SSH into the NAS, and browse the backup disk, as it is just a simple directory where I can see all the files. But all the files inside where just a bunch of nonsense, no real directory structure.

YAT (yet another tutorial) recommended that I can just easily browse the content of the backup from the Finder by double-clicking on the sparse bundle file. After clicking on it, I can see the disk image on the left part of the Finder, attached as a new disk.
Well, this is true, but because of some bug, when you connect to the Time Capsule, you don't see the sparse bundle file. And I got inconsistent results, for the WD NAS, double-clicking on the sparse bundle did nothing. For the Time Capsule, it did work.
At this point, I had to leave the location where the backup was present, and I only had remote SSH access. You know, if you can't solve a problem, let's complicate things by restrict yourself in solutions.

 Finally, I tried to check out some data forensics blogs, and besides some expensive tools, I could find the solution.

The solution

Finally, a blog post provided the real solution - hdiutil.
The best part of hdiutil is that you can provide the read-only flag to it. This can be very awesome when it comes to forensics acquisition.


To mount any NAS via SMB:
mount_smbfs afp://<username>@<NAS_IP>/<Share_for_backup> /<mountpoint>

To mount a Time Capsule share via AFP:
mount_afp afp://any_username:password@<Time_Capsule_IP>/<Share_for_backup> /<mountpoint>

And finally this command should do the job:
hdiutil attach test.sparsebundle -readonly

It is nice that you can provide read-only parameter.

If the backup was encrypted and you don't want to provide the password in a password prompt, use the following:
printf '%s' 'CorrectHorseBatteryStaple' | hdiutil attach test.sparsebundle -stdinpass -readonly

Note: if you receive the error "resource temporarily unavailable", probably another machine is backing up to the device

And now, you can find your backup disk under /Volumes. Happy restoring!

Probably it would have been quicker to either enable the remote GUI, or to physically travel to the system and login locally, but that would spoil the fun.Related news
  1. Hacker Techniques Tools And Incident Handling
  2. Pentest Tools For Mac
  3. Growth Hacker Tools
  4. Hacking Tools Mac
  5. How To Make Hacking Tools
  6. Hacker Tool Kit
  7. Hacking Apps
  8. Pentest Tools List
  9. Hack Tools Download
  10. Hacking Tools Mac
  11. Pentest Tools Framework
  12. Pentest Tools Framework
  13. Pentest Tools Open Source
  14. Hacking Tools Github
  15. Hacking Tools Pc
  16. Best Pentesting Tools 2018
  17. Install Pentest Tools Ubuntu
  18. Hack Tools For Games
  19. Hacking Tools For Pc
  20. Hack Rom Tools
  21. World No 1 Hacker Software
  22. Hack Tool Apk No Root
  23. Bluetooth Hacking Tools Kali
  24. Hack Rom Tools
  25. Pentest Tools For Windows
  26. Hacking Tools For Pc
  27. Best Hacking Tools 2019
  28. Free Pentest Tools For Windows
  29. Hacking Tools For Pc
  30. Pentest Tools For Mac
  31. Hacking Tools Usb
  32. Hacking App
  33. Termux Hacking Tools 2019
  34. Hacking Tools For Windows 7
  35. Bluetooth Hacking Tools Kali
  36. Free Pentest Tools For Windows
  37. Termux Hacking Tools 2019
  38. Hacking App
  39. Hacking Tools For Windows 7
  40. Usb Pentest Tools
  41. Hack Tool Apk
  42. Hacker Tools Free
  43. Hacker Tools Windows
  44. Pentest Tools Website Vulnerability
  45. Pentest Tools Windows
  46. Hacker Tools Windows
  47. Hack Rom Tools
  48. Best Hacking Tools 2019
  49. Hacker Hardware Tools
  50. Hack Tool Apk No Root
  51. Hacking Tools Kit
  52. Hacking Tools For Games
  53. Termux Hacking Tools 2019
  54. Hacker Tools Software
  55. Hacker Tools For Windows
  56. Pentest Automation Tools
  57. Hack Website Online Tool
  58. Hacking Tools For Windows 7
  59. Hack Tools For Games
  60. Hacking Tools And Software
  61. Computer Hacker
  62. Top Pentest Tools
  63. Easy Hack Tools
  64. Pentest Tools Github
  65. Hacking Apps
  66. Hacker Tools Github
  67. Hacker Techniques Tools And Incident Handling
  68. Hacker Techniques Tools And Incident Handling
  69. Hacker Tools Hardware
  70. Kik Hack Tools
  71. Physical Pentest Tools
  72. Pentest Tools Find Subdomains
  73. Hacker Tools Free
  74. Pentest Tools Android
  75. Hack Tools Online
  76. Hackrf Tools
  77. Pentest Tools Nmap
  78. Easy Hack Tools
  79. Pentest Tools For Mac
  80. Pentest Tools Review
  81. What Are Hacking Tools
  82. Blackhat Hacker Tools
  83. Nsa Hack Tools
  84. Pentest Tools Framework
  85. Hacker Tools 2019
  86. Hacking Tools Name
  87. Pentest Tools Review
  88. Termux Hacking Tools 2019
  89. Computer Hacker
  90. Pentest Tools For Windows
  91. Hack Apps
  92. Hacking Tools Software
  93. Hack Tools For Games
  94. Hack Website Online Tool
  95. Pentest Tools Android
  96. Hacking Tools Usb
  97. Usb Pentest Tools
  98. Pentest Tools Port Scanner
  99. Hacking Tools 2020
  100. Hack Tools For Windows
  101. Hacking Tools Windows 10
  102. How To Hack
  103. Hacker Tools Apk Download
  104. Hack App
  105. Hacker Tools For Windows
  106. Tools Used For Hacking
  107. Pentest Tools Website Vulnerability
  108. Hacker Techniques Tools And Incident Handling
  109. Nsa Hack Tools
  110. Game Hacking
  111. Hack Tools For Games
  112. Hacking Tools
  113. Pentest Tools Port Scanner

Comments

Post a Comment

Popular posts from this blog

דף הבית | הטכניון - מכון טכנולוגי לישראל

By admin
https://technion.ac.il http://library.technion.ac.il/he https://www.technion.ac.il/%D7%A8%D7%A9%D7%99%D7%9E%D7%AA-%D7%94%D7%A4%D7%A7%D7%95%D7%9C%D7%98%D7%95%D7%AA-2/ http://www.admin.technion.ac.il/dpcalendar/ https://www.technion.ac.il/%D7%94%D7%A0%D7%94%D7%9C%D7%94-%D7%91%D7%9B%D7%99%D7%A8%D7%94/ https://www.technion.ac.il/%D7%A1%D7%9E%D7%99%D7%A0%D7%A8%D7%99%D7%9D/ https://dean.web.technion.ac.il/%D7%A7%D7%9E%D7%A4%D7%95%D7%A1-%D7%AA%D7%95%D7%A1%D7%A1/ http://www.dmag.co.il/pub/technion/tmag.html http://moodle.technion.ac.il/ https://tender-logistics.web3.technion.ac.il http://cis.technion.ac.il/ http://video.technion.ac.il/ https://portal.technion.ac.il/irj/portal https://www.technion.ac.il/ https://www.technion.ac.il/en/home-2/ http://arabic.net.technion.ac.il https://www.technion.ac.il/%d7%97%d7%96%d7%95%d7%9f-%d7%94%d7%98%d7%9b%d7%a0%d7%99%d7%95%d7%9f/ https://www.technion.ac.il/%d7%94%d7%99%d7%a1%d7%98%d7%95%d7%a8%d7%99%d7%99%d7%aa-%d7%94%d7%98%d7%9b%d7%a0%d7%99%d7%95%d7%9f/ ht...
Post a Comment
Read more

Gu Energy Gel for Sale

By admin
Get Gu Energy Gel Here - https://bit.ly/3f97Wvz _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _
Post a Comment
Read more

To Kilinochchi or Mankulam?- The Nation- 2008/09/07

By admin
This week saw one of the most ferocious battles since the security forces started their campaign to regain the Wanni around mid last year. The LTTE’s much anticipated counter strike was launched along their newly built trench line from the western coastal town Nachchikudah to the deep interior region Akkarayankulam, a fair distance of 18-20 km in length. This trench line, which is mainly an earth bund of around 7-15 feet at certain places, was built in recent times with heavy machinery cutting across shrub jungles. In a series of waves, the LTTE attacked personnel of the Army’s 58 and 57 Divisions last Wednesday in a battle that lasted 36 hours. The LTTE claimed to have killed up to 100 military personnel, while the military initially claimed that only nine soldiers were killed. However, with the LTTE claiming that they had recovered the bodies of 29 soldiers and posted pictures of the dead on pro-LTTE websites, the Army said that ...
3 comments
Read more