Notes TrueCrypt VeraCrypt tcplay

Voir :

https://keyj.emphy.de/real-steganography-with-truecrypt/

Voir aussi :

GostCrypt

tcplay

tcplay est une implémentation libre de TrueCrypt inclus dans les dépôts Debian

Device     Boot Start      End  Sectors  Size Id Type
/dev/sda1          32 30031871 30031840 14.3G  c W95 FAT32 (LBA)


0c W95 FAT32 (LBA)

apt-get install fatresize
 
dd if=/dev/urandom of=/dev/sda bs=4096 conv=notrunc status=progress
dd if=/dev/zero of=/dev/sda bs=512 count=1 conv=notrunc
parted --align optimal /dev/sda mklabel msdos mkpart p fat32 1MiB 100%
 
parted -ms /dev/sda print

usb-SanDisk_Ultra_USB_3.0

/dev/sda1 on /media/jibe/6E6F-0B54 type vfat (rw,nosuid,nodev,relatime,uid=1000,gid=1000,fmask=0022,dmask=0022,codepage=437,iocharset=ascii,shortname=mixed,showexec,utf8,flush,errors=remount-ro,uhelper=udisks2)

/dev/sda1: UUID="6E6F-0B54" BLOCK_SIZE="512" TYPE="vfat"

parted /dev/sda
unit s
resizepart 1 15015935s
#mkpart primary ext4 15015936s 30031871s
mkpart primary ext4 15015936s 100%

mkfs.vfat -F 32 -n SANDISK /dev/sda1
 
#tcplay -c -z -d /dev/sda2 -k key1
tcplay -c -z -d /dev/sda2
 
#tcplay -m enc_steg -d /dev/sda2 -k key1
tcplay -m enc_steg -d /dev/sda2
mkfs.ext4 /dev/mapper/enc_steg

rm 2
resizepart 1 100%
fatresize -s max /dev/sda1

Autres

$ /usr/sbin/tcplay --help
...
-a <pbkdf prf algorithm>, --pbkdf-prf=<pbkdf prf algorithm>
         Specifies which hashing function to use for the PBKDF password
         derivation when creating a new volume.
         To see valid options, specify '-a help'.
...

$ /usr/sbin/tcplay -a help
Valid PBKDF PRF algorithms are: RIPEMD160 RIPEMD160 SHA512 whirlpool

tcplay --create --hidden --device=/dev/loop0 --cipher=AES-256-XTS,TWOFISH-256-XTS --pbkdf-prf=whirlpool --keyfile=one.key --cipher-hidden=AES-256-XTS --pbkdf-prf-hidden=whirlpool --keyfile-hidden=hidden.key
 
 
# Creation
tcplay --create --hidden --device=/dev/loop0 --cipher=TWOFISH-256-XTS --pbkdf-prf=whirlpool --keyfile=key1 --keyfile=key2 --cipher-hidden=AES-256-XTS --pbkdf-prf-hidden=whirlpool --keyfile-hidden=key3
 
# Monter le volume
tcplay -m crypt1 -d /dev/loop0 --keyfile=key1 --keyfile=key2
 
# Monter le volume en protegeant le volume caché
tcplay -m crypt1 -d /dev/loop0 --keyfile=key1 --keyfile=key2 --protect-hidden --keyfile-hidden=key3
 
# Monter le volume caché
tcplay -m hidden --device=/dev/loop0 --keyfile=key3
 
mkfs.ntfs -f /dev/mapper/crypt1

Fin

umount /mnt/crypt1/
dmsetup remove crypt1

Autres

Comment marquer la partition FAT en “dirty” ?