End Point Encryption

[osity]

I received a drive that I was able to clone 100% without issue.
It seems that the drive has 'McAfee End Point Encryption' according to it's MBR which has #SAFEBOOT written in it.

Ace blogs has a page on how how to identify End point encryption it in this article https://blog.acelaboratory.com/endpoint-encrytion.html
Are there any details available on how to deal with it?

Thanks in advance.

[Teruel]

Sometimes slaving the disk onto a PC with same version number as McAfee End Point Encryption installed - it will invite you to decrypt.

Failing that, you will probably need their some sort of McAfee Decryption tool.

[osity]

It's a laptop, but I'll try with a dock. Clever solution attempt, thank you

[osity]

Teruel, Do you know where I get find/purchase older versions of McAfee End Point Encryption? I called up McAfee and spoke to several people there but none of them knew what I was asking for, They thought I was inquiring about McAfee antivirus software...

[AJ2008]

Source of the post Teruel, Do you know where I get find/purchase older versions of McAfee End Point Encryption? I called up McAfee and spoke to several people there but none of them knew what I was asking for, They thought I was inquiring about McAfee antivirus software...

Did you solve this after?

[osity]

Hi AJ2008, I have not solved this yet. Having some trouble finding endpoint software or plugins at the moment.

[lcoughey]

For enpoint encryption (or any other ecryption), I find it easier to tell the client that I cannot decrypt the drive unless they can provide me with the necessary keys and software to work with the encryption.

[osity]

Thanks lcoughey, That certainly makes sense and is likely the way it will end up.
My client does have the likely password but that's it. I would imagine it needs a key rather than a single password. Is that the case?