Hi, just 2 things my friend (maybe my source info could be wrong but this what I realize, but I want to help you) 1. Old TP link products (or outdated firmwares) use DES encryption with ecb mode to encrypt their backup files with just one private key. This video shows a firmware using this encryption and he's showing how to locate the not-so-private key. What do you do next exactly? Decrypt the backup file with that key using openSSL. In a windows cmd or linux terminal you would do something like "openssl enc -d des-cbc -k yourkey -in config.bin -out decrypted.bin" this will output the decrypted file but I'm afraid there are some steps more to do to reach the plain text file. 2. Modern Tp link products (or latest firmwares on old products) are using now AES encryption with cbc mode to encrypt their backup files. This is a different approach as you have to provide a key and vector init key. And more steps are needed, basically you decrypt the file with openssl, decompress the file with zlib, remove first 16 bytes of checksum content, decrypt again, and you will have the .xml backup file in plain text. The decryption command would start like "openssl aes-256-cbc -d -K yourKey -iv yourVector -in config.bin | openssl zlib -d -out decrypted.bin" Isn't that just the hex representation of it? Yes, the encryption key could be represented as hex format or base-64. Refer to "Cryptographic key" in google The funny thing is that both methods have been unpuzzled long time ago, and you can find even decryption scripts for tp link backup files.
Forgot to add something. The key should NEVER be the same for everyone. If you buy product A from Tp Link and your friend buy product B from TP link, the key used to decrypt a configuration file should be different. Using the same key for multiple files, especially in cryptographic applications, is generally considered bad practice and reusing them can lead to vulnerabilities, if an attacker gains access to your device, if he's lucky enough he can decrypt backup data of your devices of same manufacturer using the same credentials. Now imagine how many units does Tp link produce and sell? They won't bother setting a random key for every single unit but generate a single one for all of em.
just found your channel, no music, no extra words, just pure distilled useful information and real-life examples. thank you.
No Tplink EC225-G5 dá certo ?
with which you do what next exactly? also is that the actual key? Isn't that just the hex representation of it?
Hi, just 2 things my friend (maybe my source info could be wrong but this what I realize, but I want to help you)
1. Old TP link products (or outdated firmwares) use DES encryption with ecb mode to encrypt their backup files with just one private key. This video shows a firmware using this encryption and he's showing how to locate the not-so-private key. What do you do next exactly? Decrypt the backup file with that key using openSSL. In a windows cmd or linux terminal you would do something like "openssl enc -d des-cbc -k yourkey -in config.bin -out decrypted.bin" this will output the decrypted file but I'm afraid there are some steps more to do to reach the plain text file.
2. Modern Tp link products (or latest firmwares on old products) are using now AES encryption with cbc mode to encrypt their backup files. This is a different approach as you have to provide a key and vector init key. And more steps are needed, basically you decrypt the file with openssl, decompress the file with zlib, remove first 16 bytes of checksum content, decrypt again, and you will have the .xml backup file in plain text. The decryption command would start like "openssl aes-256-cbc -d -K yourKey -iv yourVector -in config.bin | openssl zlib -d -out decrypted.bin"
Isn't that just the hex representation of it? Yes, the encryption key could be represented as hex format or base-64. Refer to "Cryptographic key" in google
The funny thing is that both methods have been unpuzzled long time ago, and you can find even decryption scripts for tp link backup files.
@@Aljjocol Thanks! Also just realized he has a follow up video too so it all makes more sense :)
Forgot to add something. The key should NEVER be the same for everyone. If you buy product A from Tp Link and your friend buy product B from TP link, the key used to decrypt a configuration file should be different. Using the same key for multiple files, especially in cryptographic applications, is generally considered bad practice and reusing them can lead to vulnerabilities, if an attacker gains access to your device, if he's lucky enough he can decrypt backup data of your devices of same manufacturer using the same credentials. Now imagine how many units does Tp link produce and sell? They won't bother setting a random key for every single unit but generate a single one for all of em.
Key use explain?
I have a TP-LINK EAP110 outdoor backup file, I want to open it, can I do it with Windows?
How blank name hostname in tp-link and change hostname tenda Ac7 v3.0
Cool.