BitwardenDecryptBrute

This is a slightly modified version of BitwardenDecrypt. In addition to the decryption this version can do wordlist attacks for offline data.json files.

Usage:

bash decrypt.sh /path/to/data.json /path/to/wordlist.txt

BitwardenDecrypt

Decrypts an encrypted Bitwarden data.json file (from the desktop App).
You can safely store data.json as an encrypted, offline backup of your vault knowing you will always be able to decrypt it.

To determine the location of the data.json file see:
https://bitwarden.com/help/article/where-is-data-stored-computer/

Note: BitwardenDecrypt does not work with Bitwarden Encrypted JSON Exports.
These exports lack the Protected Symmetric Key needed to decrypt entries.

Limitations

• Does not work with Bitwarden Encrypted JSON Exports.
  These exports lack the Protected Symmetric Key needed to decrypt entries.
• No validation of the CipherString. I.e. No verification of the MAC before decrypting. Now verifies the MAC.
• Can only decrypt EncryptionType: 2 (AesCbc256_HmacSha256_B64). At the time of writing this is the default used for all entries in the personal vault.
• Does not decrypt anything from a Collection (Organization).
  Initial support for decrypting items from a Collection (Organization). This adds support for decrypting EncryptionType: 4 (Rsa2048_OaepSha1_B64)

License

This project is licensed under the GNU General Public License v3.0 - see the LICENSE file for details

Acknowledgments

• Kyle Spearrin for creating Bitwarden.
• Joshua Stein (Rubywarden) for the reverse engineered Bitwarden documentation.
• GurpreetKang for the code base - BitwardenDecrypt