Batch Decrypt Files: Unlock Encrypted Data With External Passwords

Are you guys tired of manually entering passwords for every single encrypted file when you're trying to recover an old directory? We've all been there, staring at a massive collection of legacy encrypted files or an encrypted-file-vault that feels more like a locked treasure chest than a secure archive. The decryption challenge for these old encrypted directories can be a real headache, especially when you know you have the passwords somewhere, perhaps in a dusty spreadsheet or a forgotten text file. The process of manual password entry for dozens, or even hundreds, of files is not just tedious; it's a huge time sink that no one enjoys.

But what if I told you there’s a new, super-smart way to tackle this? Introducing a game-changing enhancement to efv-decrypt-batch – the --ingest-passwords flag. This feature is set to revolutionize how you interact with your encrypted files, transforming a daunting task into a smooth, automated process. Imagine pointing your decryption tool to an external password list and watching it effortlessly unlock file after file, without you having to lift a finger after the initial setup. This isn't just about convenience; it's about making batch decryption so efficient and straightforward that recovering your precious data becomes a breeze. So, buckle up, because we're about to dive deep into how this awesome new capability will save you a ton of time and frustration, bringing true automation to your encrypted-file-vault management. Get ready to reclaim your data with unprecedented ease!

Why --ingest-passwords is a Game-Changer for Batch Decryption

Let's get real for a sec, guys. The motivation behind adding the --ingest-passwords feature to efv-decrypt-batch comes directly from a common pain point: recovering legacy encrypted directories or managing an extensive encrypted-file-vault where you have a separate, external file containing passwords or hex keys. We've all been there – maybe you used a password manager that exported your old keys, or perhaps you kept a meticulously organized spreadsheet of passwords linked to specific file paths back in the day. The problem is, currently, when you're trying to decrypt files in batch, you have to manually enter each password when efv-decrypt-batch prompts you. If you’re dealing with a handful of files, it's manageable, but what about a large batch decryption operation involving dozens, hundreds, or even thousands of encrypted files? That's where the frustration really kicks in.

This is precisely why ingest passwords is such a monumental improvement. Instead of you sitting there, keyboard-at-the-ready, laboriously typing out each unique key, you can now simply point the tool to your external password list. This feature fundamentally changes the password management workflow for encrypted files, turning what was once a highly interactive and time-consuming process into a nearly fully automated one. It addresses the very real need of users who, quite rightly, expect their tools to be as efficient as possible, especially when dealing with the recovery of sensitive encrypted data. The ability to just load your password list – whether it contains plaintext passwords, hex keys, or even file-specific entries – and let the system do its thing, is not just a convenience; it's a game-changer for anyone serious about efficient encrypted directory recovery and management. This isn't just a small tweak; it's a massive leap forward in making batch decryption genuinely user-friendly and incredibly powerful. So, for all you folks with those legacy encrypted directories gathering digital dust, this is the solution you’ve been waiting for!

How to Use --ingest-passwords: Your Guide to Automated Decryption

Alright, let's get into the nitty-gritty of how this fantastic --ingest-passwords feature actually works. This is where the magic of automated decryption truly shines, turning what was once a manual slog into a streamlined process. Understanding the proposed behavior will show you just how powerful and user-friendly efv-decrypt-batch has become. The core idea is simple: tell the tool where your external password list is, and let it do the heavy lifting before the actual decryption process even properly begins. It's all about front-loading the password discovery so that when efv-decrypt-batch starts its directory walk, it already has a powerful password cache at its disposal, eliminating those pesky prompts.

The Command Line Magic: Getting Started

Using this feature is incredibly straightforward. You'll just add one simple flag to your efv-decrypt-batch command: efv-decrypt-batch --ingest-passwords=/path/to/your-password-list. See? No complex incantations, just a clear path to your password list. This command signals to the tool that you're providing an external source of passwords to aid in the batch decryption of your encrypted files. This simplicity is by design, making it accessible even for those who might not be command-line wizards, ensuring that everyone can benefit from this automated decryption power.

Behind the Scenes: What Happens When You Ingest Passwords

Now, let's peel back the curtain and see what efv-decrypt-batch does when you issue that command. It’s a well-thought-out process designed for both efficiency and security:

1. Reading Your List First: Before it even thinks about touching your encrypted directories, the tool first reads the specified file containing your passwords directly into memory. This initial step is absolutely crucial for kickstarting the automated decryption process. By loading all potential keys at the very beginning, efv-decrypt-batch prepares itself for a smooth, uninterrupted run, ensuring that it doesn't have to pause and ask you for input repeatedly. This proactive approach is what makes batch decryption truly efficient.

2. Smart Parsing: Once the file is in memory, efv-decrypt-batch doesn't just treat it as a blob of text. Oh no, it gets smart! It then parses the file according to the format it detects or that you might specify. This intelligent parsing ensures that whether your external password list is neatly structured TOML, a simple CSV, or just plain text, the tool understands each entry correctly. This flexible input format handling means you don't have to contort your existing password list into a specific shape; efv-decrypt-batch adapts to your data, maximizing convenience.

3. Building the Password Cache: After parsing, each valid entry from your password list is converted into a secure FilePassword instance. These instances are then added to the in-memory known-password cache. What's cool about this, guys, is that it's the same cache that efv-decrypt-batch uses for passwords already loaded from your encrypted-file-vault. This unified password cache is a powerful hub, enabling the tool to rapidly try all known passwords against any encountered encrypted file. It's the engine that powers seamless batch decryption, significantly speeding up the entire decryption process.

4. Secure Clean-up: Here’s a crucial bit for all you security-conscious users: after the password list has been successfully parsed and its contents loaded into memory, the source file itself is securely deleted. This means efv-decrypt-batch will attempt to overwrite and unlink the file, or it will prompt you for confirmation to do so. This step is a vital security measure to prevent your sensitive password list from lingering on disk after its purpose has been served. Your data protection is a top priority, and this secure clean-up ensures that your plaintext passwords aren't accidentally left behind for prying eyes.

5. The Decryption Begins: With the password cache fully loaded and the source file securely handled, efv-decrypt-batch then proceeds with its normal batch decryption process. It starts its usual directory walk, identifying encrypted files and attempting to open them. The key difference now is that any encrypted file that can be successfully opened with one of the ingested passwords from your list will be decrypted without any further prompts. This is where the real batch decryption magic happens, guys! The entire process becomes largely automated, letting you step back and let the tool do the hard work, effortlessly decrypting your encrypted files and reclaiming your data.

Your Password, Your Format: Supported Input Options

One of the coolest things about the --ingest-passwords feature is its flexibility when it comes to input formats. We know that external password lists come in all shapes and sizes, and forcing you to convert your carefully curated data into a specific format would defeat the purpose of convenience. That's why efv-decrypt-batch supports several popular and intuitive formats, making it incredibly easy for you to feed your existing password list directly into the decryption process. This flexible input format approach ensures that no matter how you've stored your encrypted files' keys, this tool is ready to understand them and get to work on your batch decryption tasks. Let's explore the options:

TOML: For Precision-Targeted Passwords

For those of you who need a high degree of precision and organization for your encrypted files, the TOML format is your best friend. TOML (Tom's Obvious, Minimal Language) allows you to associate specific passwords or hex keys with particular file paths. This means you can create a TOML password list where entries are explicitly linked to the encrypted files they belong to. When efv-decrypt-batch encounters a TOML file, it first tries the specified password for that exact file path. If it matches, boom! Decrypted without a hitch. This is incredibly powerful for managing encrypted directories where certain files might have unique, older keys. For example, your TOML password list might look something like this:

["Photos/vacation.jpg.aes"]
password = "oldpass123"
# or you could use a hex key if you have one:
# key_hex = "a3f1c9d2e4b5c6f7..."

["Documents/report.pdf.aes"]
password = "another-pass"

Here, if efv-decrypt-batch finds a file named Photos/vacation.jpg.aes, it will first attempt to decrypt it using "oldpass123". This filename association is brilliant for targeted decryption and significantly speeds up the process for known encrypted files.

CSV: Spreadsheet-Friendly Decryption

If you're more comfortable with spreadsheets or have your encrypted file passwords neatly organized in a comma-separated value (CSV) file, then this format is perfect for you. CSV password lists offer a simple, tabular way to list your encrypted files and their corresponding passwords or hex keys. You can have a header row if you like, or just go straight to the data. The tool will expect columns like path,password or path,key_hex. This makes it super easy to export from various systems or just manually create a list for batch decryption. It's a no-frills, highly effective way to manage a large number of encrypted files from a familiar spreadsheet-friendly format. The flexibility here means you don't have to jump through hoops to get your data into a usable format, allowing for quick and efficient decryption process initiation.

Plaintext: The Global Password Catcher

Sometimes, you just have a list of random passwords or hex keys, maybe from a brain dump or a collection of notes, and you don't necessarily know which password goes with which encrypted file. No worries, guys! efv-decrypt-batch supports simple plaintext files where each line contains one password or one hex key. When you ingest passwords from a plaintext passwords file, all these entries are added to a global known-password list. What does this mean? It means efv-decrypt-batch will try every single one of these passwords against every single encrypted file it encounters during its directory walk. While this doesn't offer filename association like TOML, it's incredibly efficient for cases where you have a pool of potential passwords and just need the tool to try them all. It's a brute-force approach, but a smart one, maximizing your chances of decrypting your encrypted files when specific links are unknown. This broad application makes it an excellent choice for general batch decryption when you have a general password list but lack precise mappings.

Keeping It Secure: Protecting Your Passwords During Decryption

When we're talking about encrypted files and password lists, security is not just important; it's absolutely paramount. The last thing anyone wants is to compromise their data protection while trying to decrypt it. That’s why the --ingest-passwords feature has been designed with robust password security measures baked right in, ensuring that your sensitive information remains protected throughout the decryption process. We understand that entrusting your external password list to any tool requires a high degree of confidence, and efv-decrypt-batch delivers on that front. You can rest assured that your secrets are handled with the utmost care and attention to detail, maintaining the integrity of your encrypted-file-vault and personal data.

First off, all passwords are held in zeroizing FilePassword instances. What does