Difference between pages "Spyware detection tools" and "Defeating Whole Disk Encryption"
From Forensics Wiki
(Difference between pages)
m (New page: Spyware detection tools can find the presence of spyware (but not always). Some tools will only find spyware on the running system; others can find it on any disk. It is useful to know if...) |
m (New page: PGP Whole Disk Encryption has the ability to generate a "temporary key." Normally the use of the temporary key leaves a trace on the disk being cracked. But according to a recent cyberspea...) |
||
| Line 1: | Line 1: | ||
| − | + | PGP Whole Disk Encryption has the ability to generate a "temporary key." Normally the use of the temporary key leaves a trace on the disk being cracked. But according to a recent cyberspeak podcast, when this feature is used on a hard drive that has a write-blocker attached, it still works. | |
| − | + | Bitlocker: you can unlock a drive with the cscript command, leave the master key in the clear. Use these commands: | |
| − | + | cscript manage-bdg.wsf unlock c: | |
| − | + | cscript manage-bdg.wsf autounlock enable c: | |
| − | + | ||
| − | + | ||
| − | + | ||
| − | + | ||
| − | + | ||
| − | + | ||
| − | + | ||
| − | + | ||
| − | + | ||
| − | + | ||
Revision as of 00:03, 15 October 2007
PGP Whole Disk Encryption has the ability to generate a "temporary key." Normally the use of the temporary key leaves a trace on the disk being cracked. But according to a recent cyberspeak podcast, when this feature is used on a hard drive that has a write-blocker attached, it still works.
Bitlocker: you can unlock a drive with the cscript command, leave the master key in the clear. Use these commands:
cscript manage-bdg.wsf unlock c: cscript manage-bdg.wsf autounlock enable c:
