Page 1 of 1

End Point Encryption

Posted: 06.10.20, 18:48
by osity
I received a drive that I was able to clone 100% without issue.
It seems that the drive has 'McAfee End Point Encryption' according to it's MBR which has #SAFEBOOT written in it.

Ace blogs has a page on how how to identify End point encryption it in this article https://blog.acelab.eu.com/endpoint-encrytion.html
Are there any details available on how to deal with it?

Thanks in advance.

Re: End Point Encryption

Posted: 06.10.20, 23:05
by Teruel
Sometimes slaving the disk onto a PC with same version number as McAfee End Point Encryption installed - it will invite you to decrypt.

Failing that, you will probably need their some sort of McAfee Decryption tool.

Re: End Point Encryption

Posted: 07.10.20, 02:18
by osity
It's a laptop, but I'll try with a dock. Clever solution attempt, thank you

Re: End Point Encryption

Posted: 29.10.20, 20:58
by osity
Teruel, Do you know where I get find/purchase older versions of McAfee End Point Encryption? I called up McAfee and spoke to several people there but none of them knew what I was asking for, They thought I was inquiring about McAfee antivirus software... :shockable:

Re: End Point Encryption

Posted: 06.11.20, 12:22
by AJ2008
osity wrote:Source of the post Teruel, Do you know where I get find/purchase older versions of McAfee End Point Encryption? I called up McAfee and spoke to several people there but none of them knew what I was asking for, They thought I was inquiring about McAfee antivirus software... :shockable:

Did you solve this after?

Re: End Point Encryption

Posted: 13.11.20, 20:49
by osity
Hi AJ2008, I have not solved this yet. Having some trouble finding endpoint software or plugins at the moment.

Re: End Point Encryption

Posted: 16.11.20, 14:25
by lcoughey
For enpoint encryption (or any other ecryption), I find it easier to tell the client that I cannot decrypt the drive unless they can provide me with the necessary keys and software to work with the encryption.

Re: End Point Encryption

Posted: 16.11.20, 21:49
by osity
Thanks lcoughey, That certainly makes sense and is likely the way it will end up.
My client does have the likely password but that's it. I would imagine it needs a key rather than a single password. Is that the case?