Solved

Windows: Getting forensic image from truecrypt container (opened) and getting forensic image from nonopened truecrypt container

Posted on 2010-08-25
3
574 Views
Last Modified: 2012-06-27
Hello,

i would like to know to to get a dd image from truecrypt container which is allready mounted

AND

i would like to know how to get it when the file is not mounted.

My environment is a windows box. All Solutions should be freeware.

regards

bytes
0
Comment
Question by:ByteSleuth
  • 2
3 Comments
 
LVL 33

Accepted Solution

by:
Dave Howe earned 500 total points
ID: 33521151
to get it while mounted:

download and unzip http://www.chrysocome.net/dd

use the command dd if=\\.\k: of=drive.img bs=10M

where k: is the drive it is mounted on (change to suit)
drive.img is the target file (must be enough space to store an uncompressed image of the drive)
and 10M is the buffer (chunk) size during the copy - larger sizes mean faster copies, but more memory used.

to get it while not mounted:

just copy the file :)
0
 
LVL 5

Author Comment

by:ByteSleuth
ID: 33521223
Hello

thanks a lot :-)

Here are your points...
0
 
LVL 5

Author Closing Comment

by:ByteSleuth
ID: 33521233
Thanks a lot buddy.
View my other questions about truecrypt-----
0

Featured Post

New! My Passport Wireless Pro Wi-Fi Mobile Storage

Portable wireless storage to offload, edit, and stream anywhere.

High-capacity, wireless mobile storage designed to accompany professional photographers and videographers in the field to easily offload, edit and stream captured photos and high-definition videos.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

#SSL #TLS #Citrix #HTTPS #PKI #Compliance #Certificate #Encryption #StoreFront #Web Interface #Citrix XenApp
There are many Password Managers (PM) out there to choose from. PM's can help with your password habits and routines, but they should not be a crutch you rely on too heavily. I also have an article for company/enterprise PM's.
The Email Laundry PDF encryption service allows companies to send confidential encrypted  emails to anybody. The PDF document can also contain attachments that are embedded in the encrypted PDF. The password is randomly generated by The Email Laundr…
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …

895 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

16 Experts available now in Live!

Get 1:1 Help Now