Saturday, December 1, 2012

Advanced HDD Encryption - The Anti-Thief & Anti-Police Solution PART 1

This is intended for serious privacy enthusiasts for hiding top-secret governmental or military information. The author takes no responsbility for whatever you hide including but not limited to: child pr0n, warez, death of your family or whatever. Please consult with your local laws.

w4r3zh4ck recommends VeraCrypt as a TrueCrypt alternative!
Advanced HDD Encryption - The Anti-Thief & Anti-Police Solution (Tutorial)
Part 1 - Hidden Volume
Difficulty: Medium

Before you start, there are some things you need to know. So please READ! Don't rush.

First of all... Are you serious about some tough privacy ? If yes, then this is for you. If I remember correctly, some time ago there was a banker who did something and the police raided his ass. The FBI tried to crack his encrypted hard drive but failed. Here is the short story:


The FBI has admitted defeat in attempts to break the open source encryption used to secure hard drives seized by Brazilian police during a 2008 investigation.
The Bureau had been called in by the Brazilian authorities after the country's own National Institute of Criminology (INC) had been unable to crack the passphrases used to secure the drives by suspect banker, Daniel Dantas.
Brazilian reports state that two programs were used to encrypt the drives, one of which was the popular and widely-used free open source program TrueCrypt. Experts in both countries apparently spent months trying to discover the passphrases using a dictionary attack, a technique that involves trying out large numbers of possible character combinations until the correct sequence is found.

Now the question is... why the FBI failed to crack his encrypted hard drive ?? BECAUSE HE HAD A STRONG PASSWORD !!!!
Unlike you, he had a password such as:
tJ\Aa=@HX_eVRPGE]}v&$urdoj2xN/M#<n4K
(Note: This is what I assume, and this password actually is just for example, so don't try to login anywhere with this, you will fail.)

Most of you have passwords such as:
  1. password
  2. 123456
  3. 12345678
  4. qwerty
  5. abc123
  6. monkey
  7. 1234567
  8. letmein
  9. trustno1
  10. dragon
  11. baseball
  12. 111111
  13. iloveyou
  14. master
  15. sunshine
  16. ashley
  17. bailey
  18. passw0rd
  19. shadow
  20. 123123
  21. 654321
  22. superman
  23. qazwsx
  24. michael
  25. football
  26. <TELEPHONE NUMBER>
  27. <DATE OF BIRTH> 
Are you fucking serious ??? Let's see how easy it is to break a "password".

Provided that your password is 6 characters (lower case only) it would take: 73 minutes with 1 computer at 500,000 guesses at a second.

Provided that your password is 20 characters with upper & lower case, digits and common punctuations: 1.5590072938048415e+24 years with 1 computer at 500,000 guesses at a second.

Now.... How many trillion years would it take to crack a 64 chars password mixed case when attacked with all the computers in the world combined ???? ...???? The Sun would go supernova and even then, your password won't be cracked !!!!

Do you see now, the importance of strong passwords ? What would you prefer.. to have a weak password, get raided and cracked - face your whole life in jail or would you prefer uncrackable password ?? It's up to you really.

In My Humble Opinion I think that the banker had a normal truecrypt partition. We will be creating a Hidden partition, just for the lulz and for maximum security against any life-threatening situations.

In this guide we will be using a weak password for the outer partition and a 64 chars password for the hidden partition of the drive.

You will need:
Free Time

This is what your encrypted drive/partition would look like:

The basic principle behind this is that you will put some files that you DO NOT WANT TO HIDE in your Outer Volume. So if someone forces you to unlock your drive, you will unlock only the Outer Volume.  
Let's first generate a strong password with KeePass. Head over their site and get yourself the 2.x version and install it. If you wanna store all your passwords in a encrypted database then consider using KeePass. But this section is just about generating a strong password, therefore I will not go into much detail.

After installing KeePass, open it up and create a new sample database. Then open the Tools menu and select Generate Password:


Check the the following boxes:



Now you have a list full of uncrackable passwords. Pick one that suits you and either memorize it or write it down in a txt file in a secret location or as I said above, use KeePass to securely store your password.


Beginning with the encryption 
1. Outer Volume

In this case, I will be using a 117 GB drive and I will give 2 Gb for the outer volume and 115 Gb for the hidden volume.

Fire up TrueCrypt and click Create Volume.


(I will encrypt my drive but if you want an encrypted file container, just select the first option)


Hidden, of course.


Now in this case, I suggest you to have an empty drive, so if available, backup your files and completely format your drive and select Normal mode.



Select your drive. BE SPECIFIC !!! 




AES - Advanced Encryption Standard is the only algorithm you will ever need. It is used by U.S. departments and agencies to encrypt top-secret information.

  

 

For the Outer volume, you need a simple password for example 12345678 or anything you like. If you are forced by someone to unlock your drive, you will only unlock the Outer volume !!!!



You won't be putting large files (over 4 GB) in the Outer volume, so select No.


Leave the filesystem as FAT. DO NOT click Quick Format !!!!



Formatting the Outer Volume will be a time-consuming process, depending on the size of your drive.


Click on Open Outer Volume.


Now this is your outer volume. Put some random files that you DO NOT WANT TO HIDE. Remember, my drive was 117 GB, if you put 5 GB files in your Outer volume, then you will need to set the Hidden Volume to  110 GB !!!!!


The below picture is just for example, to give you some ideas about what you SHOULD put in the Outer Volume.


2. Hidden Volume
Now that you put some files that you don't want to hide in your outer volume, it's time to create the Hidden Volume!
Close the Outer Volume window and continue:


Like I said above, leave the default - AES algorithm !!!


SPECIFY SMALLER SIZE FOR THE HIDDEN VOLUME IF YOU WANT TO PUT MORE FILES IN THE OUTER VOLUME LATER !!!!



Put your UNCRACKABLE password generated by KeePass.


Large files? Yes.


Move your mouse as randomly as possible !!!



READ WHAT IT SAYS !!!!



Congratulations !!! You have officially created the most secure drive ever.
  
The below information is just to "sum up" the whole topic.

Mounting the Outer Volume 

Fire up TrueCrypt and click on Select Device.


Select your encrypted drive


Put your Outer Volume password.


IF YOU WANT TO PUT SOME FILES INSIDE YOUR OUTER VOLUME DON'T FORGET TO PROTECT YOUR HIDDEN VOLUME, OTHERWISE IT WILL GET CORRUPTED !!!!



IF YOU PUT MORE FILES THAN THE SIZE OF YOUR OUTER VOLUME, YOUR HIDDEN VOLUME WILL GET CORRUPTED IF YOU DON'T PROTECT IT !!!!!!!!!


See this ??? Nobody will ever find that you have a hidden volume.
(NOTE: In the "Type" field it says Outer, because I protected the hidden volume. If you mount the outer without protecting the hidden volume, it will show as "normal" so don't worry.)


Mounting the Hidden Volume

Fire up TrueCrypt and click on Select Device.

Select your encrypted drive.


Click on Mount and enter your uncrackable password for the Hidden Volume.






Part 2 - Hidden OS - Coming Soon !

No comments:

Post a Comment