[cisco-voip] Bash script to decrypt DRS backups

voip at freemailonline.net voip at freemailonline.net
Wed Mar 9 22:55:41 EST 2016


Hi Pete, 

Thanks for replying. The use case is similar to whats on your website;
to have visibility to all data in the systems. I think in this case, I
would like to see specifically how Cisco encrypts the data and TBH it's
more curiosity than anything. Running version 11. 

On 2016-03-10 12:47, Pete Brown wrote: 

> Just out of curiosity, what's the use case?  And what version(s) would it be used with? 
> Thanks, 
> Pete
> -------------------------
> FROM: cisco-voip <cisco-voip-bounces at puck.nether.net> on behalf of voip--- via cisco-voip <cisco-voip at puck.nether.net>
> SENT: Monday, March 7, 2016 2:49 AM
> TO: cisco-voip at puck.nether.net
> SUBJECT: [cisco-voip] Bash script to decrypt DRS backups 
> Hi All, 
> Been struggling with this; I know that the CUCM DRS backup's are encrypted with a random password and that the random password is encrypted with the Cluster Security password. I'm trying to come up with a Bash script to decrypt. I know Pete Brown came up with this tool for windows: http://www.adhdtech.com/uctools.html however it looks like it's closed source so I'm not sure how the decryption function works. 
> UC Tools - Welcome to ADHDTech [1] 
> www.adhdtech.com 
> These tools are free to download. I'm making them available because I believe that an organization should have visibility to all data in the systems it purchases. 
> From looking through the logs, it looks like some sort of byte to hex conversion takes place in the random password generation and my best guess is the SHA-256 hash value of that password is then added to the XML. Hoping that maybe Pete can shed some light in to this process? 
> Thanks 
> _______________________________________________
> cisco-voip mailing list
> cisco-voip at puck.nether.net
> https://puck.nether.net/mailman/listinfo/cisco-voip


[1] http://www.adhdtech.com/uctools.html
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://puck.nether.net/pipermail/cisco-voip/attachments/20160310/31f29337/attachment.html>

More information about the cisco-voip mailing list