Results 1 to 4 of 4

Thread: Verifying Full Disk Encryption (FDE) on a Windows laptop

  1. #1
    Just burned his ISO
    Join Date
    Aug 2010
    Austin, TX

    Red face Verifying Full Disk Encryption (FDE) on a Windows laptop

    I have been tasked with verifying that FDE has been successfully installed and is working on a windows laptop. My first thought was "BackTrack" Which tools would I use and more importantly how would i use them to prove that the laptops hard drive is fully encrypted, after booting into BackTrack? Autopsy? Strings? Any suggestions would be greatly appreciated.


  2. #2
    Just burned his ISO
    Join Date
    Feb 2010

    Default Re: Verifying Full Disk Encryption (FDE) on a Windows laptop

    My suggestion would be to boot into BackTrack (either on the machine where the disk is installed, or on another machine to which you have attached the disk via a caddy). Start with the Photorec tool, as this will allow you to easily specify the types of file you would like to try and recover from the disk.

    Have fun

  3. #3
    My life is this forum thorin's Avatar
    Join Date
    Jan 2010

    Default Re: Verifying Full Disk Encryption (FDE) on a Windows laptop

    Get Helix or something similar and have a go at trying to recover something from the disk(s).
    e-fense :: Cyber Security & Computer Forensics Software

    TestDisk might also be able to assist you:
    TestDisk - CGSecurity

    Edit: Hmmm now that I think about it I believe the latest incarnations of BT have a forensics offering that could probably help you:
    I'm a compulsive post editor, you might wanna wait until my post has been online for 5-10 mins before quoting it as it will likely change.

    I know I seem harsh in some of my replies. SORRY! But if you're doing something illegal or posting something that seems to be obvious BS I'm going to call you on it.

  4. #4
    Senior Member voidnecron's Avatar
    Join Date
    May 2010

    Default Re: Verifying Full Disk Encryption (FDE) on a Windows laptop

    You could try the Forensics mode of BT, which you can choose from at boot. Read at Forensics | BackTrack Linux - Penetration Testing Distribution what this could do for you.
    <edit> just saw Thorin's edit lol. Ignore my comment above.

    @OP/mods: Shouldn't this post be in a questions part of the forum instead of Howto's ?
    "The difference between RAID1 and RAID0 is that the zero stands for how many files you're gonna have after a harddisk failure."

Similar Threads

  1. How do I install BackTrack with full disk encryption?
    By balding_parrot in forum Frequently Asked Questions
    Replies: 0
    Last Post: 02-28-2010, 07:08 AM
  2. Full HD encryption with Luks and LVM
    By Ulrick13 in forum Beginners Forum
    Replies: 4
    Last Post: 02-01-2010, 03:12 PM
  3. HOWTO: BT4 Pre-Final Full Disk Encryption
    By ESC201 in forum OLD BackTrack 4 Howto
    Replies: 48
    Last Post: 10-21-2009, 07:40 AM
  4. Replies: 4
    Last Post: 06-11-2009, 11:37 PM
  5. Windows PGP whole-disk encryption and Linux
    By stamina in forum OLD Newbie Area
    Replies: 0
    Last Post: 12-21-2007, 05:40 AM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts