Restore keys from TWRP backup

[chertov]

Today a column in /data/data/com.google.android.apps.authenticator2/databases/databases is encrypted.
Is it possible to get private key from backup and decrypt keys?

[scito]

I have no idea.

The extract_otp_secret_keys script works only with QR exports from the app. The secrets are already decrypted.

[brand1970]

I tried importing the decrypted keys into a new database (not the encrypted keys ) with a command line via sqlite3 and it works.
The headers of the file "/data/data/com.google.android.apps.authenticator2/databases/databases" (type .db) is :
0|_id|INTEGER|0||1
1|email|TEXT|1||0
2|secret|TEXT|1||0
3|counter|INTEGER|0|0|0
4|type|INTEGER|0||0
5|provider|INTEGER|0|0|0
6|issuer|TEXT|0|NULL|0
7|original_name|TEXT|0|NULL|0

[scito]

I tried importing the decrypted keys into a new database (not the encrypted keys ) with a command line via sqlite3 and it works.

I do not understand what you want to achieve.
How did you decrypt the keys?

[brand1970]

I did a simulated restore, nothing more...
When restoring I didn't use the secret keys but the decrypted ones
which anyone can find either with https://play.google.com/store/apps/details?id=com.beemdevelopment.aegis&hl=en
( https://github.com/beemdevelopment/Aegis )

[shokolatha]

Aegis only decrypts databases of Google Authenticator prior to version 5.10, not the updated versions.
Without the decrypted keys you can't recreate a new database file.
So that's not a correct answer to chertov's question.

I did a simulated restore, nothing more... When restoring I didn't use the secret keys but the decrypted ones which anyone can find either with https://play.google.com/store/apps/details?id=com.beemdevelopment.aegis&hl=en ( https://github.com/beemdevelopment/Aegis )

[scito]

I think nothing can be done within the extract_otp_secrects script. Thus, I close this issue.