Anyone used Elcomsoft Phone Password Breaker with any success decrypting a iTunes backup?
I would add another question
Did anyone managed to get it to break passwords longer than 5-6 characters?
Potential problem that I see is the time that it will take to break a password (we generally do not know what length the password is) and how much time we should let it run until we abort.
RonS
Haven't had a chance to try it yet, but I have a question for RonS regarding UFED's capabilities.
I know the Elcomsoft product uses dictionary based attacks, does UFED work in the same way or are you purely brute forcing it?
I’ve used the trail version twice, which gives you the first 2 letters and the length of the password.
On both occasion it gave what turned out to be the correct result. One was 6 characters long and one was 7.
Both were standard words which were in the dictionary i.e. no numbers or special characters and took less than a minute.
AlexC,
Cellebrite UFED official version does not currently have a password breaking capability.
We do support decrypting the backup once the password is known.
Dictionary attack is better than nothing, but the question is what percentage of the passwords it would break.
I bought it and used it to crack an iPhone backup. It was still running 2 days later so I tried another approach.
I created a dictionary from the case (with FTK)
I loaded dictionary into the Elcomsoft software.
The password 8 characters long (7 letters followed by 1 number) was cracked in about an hour.
It was trying about 20,000 passwords per second.
Perhaps I was lucky but I should point out that I used a machine specifically built for password cracking using a graphics card to do the work.