I truly appreciate dumpkeys's functionality for decrypting and outputting the keychain from an encrypted iPhone backup. Very few tools in the open-source world can achieve this. I was wondering if it would be possible to add the feature to delete a specific keychain entry, if feasible?
Considering that many apps today use the iOS app keychain function to track users, we can't clear the keychain an app leaves on the iPhone even after completely deleting the app. Furthermore, iOS itself doesn't offer any way to view or delete these app-left keychains (only a full device wipe achieves complete deletion, but often we only want to delete the keychain of a specific app).
Adding a keychain deletion feature would be extremely useful and seems feasible. Given the nature of iOS backups, where the hash of every file is recorded in a manifest for verification, directly modifying keychain-backup.plist might corrupt the iOS backup file. However, there are already open-source projects that can handle this issue robustly (though these projects can't decrypt keychain-backup.plist itself, hence the need for this project's assistance). Therefore, the task could be completed simply by correctly deleting the relevant keychain entries from keychain-backup.plist. (To make the entire process make sense, users should be provided with a function to select the keychain-backup.plist file directly, rather than automatically reading the iPhone backup path.)
Thank you so much to the developers for your hard work and dedication!
I truly appreciate dumpkeys's functionality for decrypting and outputting the keychain from an encrypted iPhone backup. Very few tools in the open-source world can achieve this. I was wondering if it would be possible to add the feature to delete a specific keychain entry, if feasible?
Considering that many apps today use the iOS app keychain function to track users, we can't clear the keychain an app leaves on the iPhone even after completely deleting the app. Furthermore, iOS itself doesn't offer any way to view or delete these app-left keychains (only a full device wipe achieves complete deletion, but often we only want to delete the keychain of a specific app).
Adding a keychain deletion feature would be extremely useful and seems feasible. Given the nature of iOS backups, where the hash of every file is recorded in a manifest for verification, directly modifying keychain-backup.plist might corrupt the iOS backup file. However, there are already open-source projects that can handle this issue robustly (though these projects can't decrypt keychain-backup.plist itself, hence the need for this project's assistance). Therefore, the task could be completed simply by correctly deleting the relevant keychain entries from keychain-backup.plist. (To make the entire process make sense, users should be provided with a function to select the keychain-backup.plist file directly, rather than automatically reading the iPhone backup path.)
Thank you so much to the developers for your hard work and dedication!