The problem
1. I had an encrypted Time Machine backup which was not used for months2. This backup was not on an official Apple Time Capsule or on a USB HDD, but on a WD MyCloud NAS
3. I needed files from this backup
4. After running out of time I only had SSH access to the macOS, no GUI
The struggle
By default, Time Machine is one of the best and easiest backup solution I have seen. As long as you stick to the default use case, where you have one active backup disk, life is pink and happy. But this was not my case.As always, I started to Google what shall I do. One of the first options recommended that I add the backup disk to Time Machine, and it will automagically show the backup snapshots from the old backup. Instead of this, it did not show the old snapshots but started to create a new backup. Panic button has been pressed, backup canceled, back to Google.
Other tutorials recommend to click on the Time Machine icon and pressing alt (Option) key, where I can choose "Browse other backup disks". But this did not list the old Time Machine backup. It did list the backup when selecting disks in Time Machine preferences, but I already tried and failed that way.
YAT (yet another tutorial) recommended to SSH into the NAS, and browse the backup disk, as it is just a simple directory where I can see all the files. But all the files inside where just a bunch of nonsense, no real directory structure.
YAT (yet another tutorial) recommended that I can just easily browse the content of the backup from the Finder by double-clicking on the sparse bundle file. After clicking on it, I can see the disk image on the left part of the Finder, attached as a new disk.
Well, this is true, but because of some bug, when you connect to the Time Capsule, you don't see the sparse bundle file. And I got inconsistent results, for the WD NAS, double-clicking on the sparse bundle did nothing. For the Time Capsule, it did work.
At this point, I had to leave the location where the backup was present, and I only had remote SSH access. You know, if you can't solve a problem, let's complicate things by restrict yourself in solutions.
Finally, I tried to check out some data forensics blogs, and besides some expensive tools, I could find the solution.
The solution
Finally, a blog post provided the real solution - hdiutil.The best part of hdiutil is that you can provide the read-only flag to it. This can be very awesome when it comes to forensics acquisition.
To mount any NAS via SMB:
mount_smbfs afp://<username>@<NAS_IP>/<Share_for_backup> /<mountpoint>
To mount a Time Capsule share via AFP:
mount_afp afp://any_username:password@<Time_Capsule_IP>/<Share_for_backup> /<mountpoint>
And finally this command should do the job:
hdiutil attach test.sparsebundle -readonly
It is nice that you can provide read-only parameter.
If the backup was encrypted and you don't want to provide the password in a password prompt, use the following:
printf '%s' 'CorrectHorseBatteryStaple' | hdiutil attach test.sparsebundle -stdinpass -readonly
Note: if you receive the error "resource temporarily unavailable", probably another machine is backing up to the device
And now, you can find your backup disk under /Volumes. Happy restoring!
Probably it would have been quicker to either enable the remote GUI, or to physically travel to the system and login locally, but that would spoil the fun.
Related posts
- Hacking Tools For Windows 7
- Hack Tools
- Hacking Tools Mac
- Hacker Tools For Pc
- Best Hacking Tools 2020
- Hacking Tools Github
- Hacking Tools Online
- Hacking Tools Kit
- Hacking Tools Windows 10
- Pentest Tools Nmap
- Wifi Hacker Tools For Windows
- Black Hat Hacker Tools
- Hacker Search Tools
- Best Hacking Tools 2019
- Hack Tools For Mac
- Pentest Tools For Ubuntu
- Hacking Tools Mac
- Pentest Tools Bluekeep
- Hacker Tools 2020
- Hacking Tools Hardware
- Hacker Tools Online
- Pentest Tools Tcp Port Scanner
- Hack Tools Online
- Hacking Tools Download
- Hack Tools For Ubuntu
- World No 1 Hacker Software
- Nsa Hack Tools Download
- Pentest Tools For Mac
- Free Pentest Tools For Windows
- Hacker Hardware Tools
- Pentest Tools For Mac
- Growth Hacker Tools
- Hacking Tools Windows 10
- Growth Hacker Tools
- Hacking Tools For Windows
- Hack Tools For Mac
- Hacking Tools 2019
- Pentest Tools Bluekeep
- Hacker Tools 2020
- Hacker Tools
- Hacking Tools Hardware
- Hacking Tools For Windows 7
- Best Pentesting Tools 2018
- Hacker Techniques Tools And Incident Handling
- Hack Apps
- How To Make Hacking Tools
- Hacker Tools Github
- Pentest Tools Url Fuzzer
- Hacker Tools Linux
- Hacker Hardware Tools
- Hacking Tools 2019
- Hacker Tools Software
- Hacker Tools For Pc
- Pentest Tools For Android
- Hacking Tools And Software
- Wifi Hacker Tools For Windows
- Hacker Tool Kit
- Hacker Tools Online
- Hacks And Tools
- Hacking Tools
- Hacking Tools 2019
- Hacker Tools For Mac
- Pentest Reporting Tools
- Game Hacking
- Hack Tools For Windows
- Hacking Tools For Windows 7
- Nsa Hack Tools
- Pentest Tools Free
- Hack Apps
- What Are Hacking Tools
- Hacking Tools 2019
- Pentest Tools Subdomain
- Hacking Tools Pc
- Top Pentest Tools
- Pentest Tools Website Vulnerability
- Pentest Tools Port Scanner
- Best Pentesting Tools 2018
- Hack Tool Apk No Root
- What Is Hacking Tools
- What Is Hacking Tools
- Hack And Tools
- Pentest Box Tools Download
- Tools Used For Hacking
- Hacking Tools For Windows
- Bluetooth Hacking Tools Kali
- Pentest Tools Free
- Hacking Tools Usb
- What Is Hacking Tools
- Pentest Tools
- Pentest Tools Linux
- Best Pentesting Tools 2018
- Hacking Tools Online
- Pentest Tools Download
- Nsa Hack Tools Download
- Top Pentest Tools
- Hacking Tools Windows
- Hacking App
- Hacker Tools Software
- Hacking Tools
- Hacker Tools Linux
- Pentest Reporting Tools
- How To Make Hacking Tools
- Hacking Apps
- Hacking Tools Free Download
- Game Hacking
- Hack Tools
- Pentest Tools Kali Linux
- Hacking Tools For Mac
- Pentest Tools Linux
- Hacker Tools For Ios
- Hacking Tools For Mac
- How To Make Hacking Tools
- Hack Tools 2019
- Pentest Tools Github
No hay comentarios:
Publicar un comentario