Encrypted Disk Detector

  • Rating:
  • Version: 1.1.0
  • Publisher:
    www.jadsoftware.com
  • File Size: 40 KB
  • Date: Jan 01, 2010
  • License: Freeware
  • Category:
    File Encryption
    File & Disk
Encrypted Disk Detector Download
Free Download Encrypted Disk Detector 1.1.0

Encrypted Disk Detector (EDD) is a command-line tool that checks the local physical drives on a system for TrueCrypt, PGP , or Bitlocker encrypted volumes. If no disk encryption signatures are found in the MBR, EDD also displays the OEM ID and, where applicable, the Volume Label for partitions on that drive, checking for Bitlocker volumes.

Encrypted Disk Detector is a portable tool that works on Windows XP, Windows Vista, Windows 2008 Server, and Windows 7.

What it does not do
Encrypted Disk Detector does not attempt to locate encrypted volumes that are not mounted; its purpose is to alert the user of currently accessible drives/volumes that may be encrypted and therefore may be inaccessible if the system was shut down.

Put in other words, EDD does not scan drives for files that might be encrypted containers. If this is what you're looking for, there are other software packages available elsewhere that attempt to do this.

Why use it?
Encrypted Disk Detector is useful during incident response to quickly and non-intrusively check for encrypted volumes on a computer system. The decision can then be made to investigate further and determine whether a live acquisition needs to be made in order to secure and preserve the evidence that would otherwise be lost if the plug was pulled.

Limitations
1. Currently only TrueCrypt, PGP , and Bitlocker encrypted volumes are detected by EDD. Detection of more encryption products will be added to later versions.
2. Not so much a limitation of EDD but worth mentioning: when run in Windows Vista, depending on how the OS is configured, you may need to use the "Run as Administrator" option to successfully run EDD.
3. Requirements
4. Encrypted Disk Detector has been tested on Windows XP and Windows Vista. It should run fine on Windows 2000/2003 Server but will NOT run on Windows 9x and prior.
5. Testing with 64 bit Windows will be done soon.
6. Disk and memory requirements are very minimal (40KB and approx 3MB, respectively).

Now Encrypted Disk Detector also checks mounted logical volumes and attempts to determine if they are encrypted TrueCrypt or PGP volumes. A 100% determination can not be made but an alert is provided to the user who can then further investigate.
Encrypted Disk Detector is now included as part of Microsoft COFEE!

The license of this software is Freeware, you can free download and free use this file encryption software.

More Details:
Related Software: