Posted on June 9, 2020 at 11:47 am
To avoid your encrypted disk (Truecrypt, Veracrypt, Bitlocker, etc) from being decrypted your first rule should be to use a strong password, then you need to make sure an attacker cannot access data that was saved in the memory, else he can dump the decryption key that was stored in the memory and then remove the encryption from the encrypted disk.
Here are a few rules to follow:
1) Use a strong 25+ password that uses symbols
2) Disable hibernation on your computer
* To prevent an attacker from stealing a memory image from hiberfil.sys.
3) Always dismount encrypted volumes when not needed
4) Always power off the system
A common software used to decrypt disks is:
https://www.passware.com/kit-forensic/
Other Posts
- Visual C++ Redistributable Runtimes All-in-One
- cURL & Libcurl Binaries for Windows (MinGW 64-bit/32-bit)
- Download cURL & Libcurl 7.46 for Windows XP
- Determine Windows Version with InnoSetup
- Windows Registry Keys used to Get VC_Redist Version Installed
- Install VC_Redist 2015 Silently with InnoSetup
- InnoSetup Pass License Key as Custom Parameter
- Debian Apt-get N: Repository Changed Its Version
Updated Posts
- Linux Delete Files Older Than 3 Months Bash
- Linux Delete Empty Directories Recursively Bash
- Customer emails don't show up in Zendesk
- Get Windows 7, 8, 10 License Information
- Cheapest Alternatives to Mailchimp, Sendinblue, Sendgrid
- Convert InnoSetup EXE Installer to MSI
- Get Serial Number of CPU, RAM, Motherboard, HDD
- Zendesk Remove [Business Name] from Email Subject on Ticket Replies