- Published on
Python Script to Decrypt Encrypted Data with AWS KMS
- Authors
- Name
- Ruan Bekker
- @ruanbekker
Quick script to decrypt data that was encrypted with your KMS key:
The Script:
The script requires the encrypted scring as an argument:
#!/usr/bin/env python
import boto3
import sys
from base64 import b64decode
try:
encrypted_value = sys.argv[1]
except IndexError:
print("Usage: {} {}".format(sys.argv[0], 'the-encrypted-string'))
exit(1)
session = boto3.Session(
region_name='eu-west-1',
profile_name='default'
)
kms = session.client('kms')
response = kms.decrypt(CiphertextBlob=b64decode(encrypted_value))['Plaintext']
print("Decrypted Value: {}".format(response))
Change the permissions so that the file is executable:
$ chmod +x decrypt.py
Usage:
$ ./decrypt.py asdlaskjdasidausd09q3uoijad09ujd38u309
Decrypted Value: thisIsMyDecryptedValue
Thank You
Thanks for reading, feel free to check out my website, feel free to subscribe to my newsletter or follow me at @ruanbekker on Twitter.
- Linktree: https://go.ruan.dev/links
- Patreon: https://go.ruan.dev/patreon