Ethical Hacking Training at InfoSec Institute

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Computer Forensics Computer-Forensics
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

RE: wipe patterns

from [Nick Johnston] Network Security [Permanent Link]
Subject: RE: wipe patterns
Date: Mon, 10 Jul 2006 19:38:25 +0100 
BCWipe from Jetico (http://www.jetico.com/) can be used to create any type
of wipe pattern, and so is quite a likely candidate.



Nick Johnston
+44 7894 105 053
johnston.n@netsyssec.co.uk
http://www.netsyssec.co.uk



-----Original Message-----
From: sec mail [mailto:s3c.mail@gmail.com] 
Sent: 21 April 2006 00:26
To: forensics@securityfocus.com
Subject: wipe patterns

Hi,

Has anyone come across wipe patterns such as these on a Windows host
(unallocated)?


76Tabcdefghijklmnopqrstuvwxyz"

83977Uabcdefghijklmnopqrstuvwxy z

83974Vabcdefghijklmnopqrstuvwxyz

83975Wabcdefghijklmnopqrstuvwxyz

83972Xabcdefghijklmnopqrstuvwxyz

83973Yabcdefghijklmnopqrstuvwxyz

"83970Zabcdefghijklmnopqrstuvwxyz






I have seem these consecutively on an Windows XP machine. It's obvious
that a wiping tool was used on the HDD.

Any ideas on which tool was used ?

Thanks in advance.
[More messages with this same subject...]


<Prev in Thread] Current Thread [Next in Thread>
  • RE: wipe patterns, Nick Johnston <=
Previous by Date:  Re: Determine if data has been stolen from a stolen hdd., David Pick
Next by Date:  Hardware needed for a complete drive acquisition tool kit and techniques for RAID acquisition, Robertson, Seth (JSC-IM)
Previous by Thread:  DFRWS 2006 Challenge Reminder, Brian Carrier
Next by Thread:  Hardware needed for a complete drive acquisition tool kit and techniques for RAID acquisition, Robertson, Seth (JSC-IM)
Indexes:  [Date] [Thread] [Top] [All Lists]