1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

running OS off a USB

Discussion in 'Business & Tax Advice' started by allsystems, Dec 2, 2010.

  1. allsystems

    allsystems Junior Member

    Joined:
    Oct 22, 2010
    Messages:
    122
    Likes Received:
    1
    Hello,I have brought a brand new computer specifically for blackhat stuff. I know that all info is recorded,every site i visit,everything i type etc. So If I run an operating system off a USB drive will all the info be recorded on the udb drive then?Also any programs i install etc will they be run on the USB?I dotn want any traces to be left on the computer. Do you know any good cleaners that delete all the info off the computer and also all internet trails etc.Id really appreciate any help,thanks
     
  2. sirgold

    sirgold Supreme Member

    Joined:
    Jun 25, 2010
    Messages:
    1,260
    Likes Received:
    645
    Occupation:
    Busy proving the Pareto principle right
    Location:
    A hot one
    A linux distro running off the USB running a virtual machine like VM Ware or VirtualBox with winXP (for Win apps) will do the trick. With Luks you can even encrypt the filesystem with the CPU emulation sw if you're really paranoid. Plus don't expect this hack to be as fast as a native solution...
     
  3. allsystems

    allsystems Junior Member

    Joined:
    Oct 22, 2010
    Messages:
    122
    Likes Received:
    1
    Hello,I havnt understood any of what you said. Im not too techy on computers so can you please explain a bit better or show me some links that explain what you mean?Will this mean all the inteernet everything i visit etc will be stored on the usb drive?so my normal operating system will not be touched,only the usb will store my history etc?Let me know,what tyou are sayign sounds secure but i dnt undertsand it
     
  4. xboxps3wow

    xboxps3wow Power Member

    Joined:
    Jan 15, 2010
    Messages:
    737
    Likes Received:
    239
    Occupation:
    student
    Location:
    Chicago
    If you are not too 'techy' than how do you expect to run an OS from an USB and then run Windows within Linux..... oh boy
    Even if you figure out how to do it, it will be too slow to be useful.
     
    • Thanks Thanks x 1
  5. sirgold

    sirgold Supreme Member

    Joined:
    Jun 25, 2010
    Messages:
    1,260
    Likes Received:
    645
    Occupation:
    Busy proving the Pareto principle right
    Location:
    A hot one
    Well, let me rephrase it OP. You need to install a linux distribution (I believe Ubuntu can run off a USB key for instance..) on your USB pendrive. This is gonna be your HOST operating system. Therefore when you boot your PC off a USB device you'll see a "linux login" and a full fledged linux box run, right?

    Now, since a lot of BH programs won't run on linux you need to install a Virtual Machine, in other words a piece of sw that can run your GUEST operating system (Windows) inside linux. A virtual machine will act as a layer of separation between your physical hardware and the Windows OS whose HD files will be contained in a single file. If you get rid of that file from Linux you'll get rid of the entire emulated Windows. Still with me?

    Since Windows will actually run atop of linux if you encrypt the linux file system you'll get an extra layer of separation, therefore an extra layer of security in order not to leave tracks. The cost for all this added security will be in terms of performances that can't be as high as if you ran windows on the real physical hardware.

    But if security is what matters the most to you, this is a feasible and inexpensive solution in terms of $$$.
     
    • Thanks Thanks x 2
  6. allsystems

    allsystems Junior Member

    Joined:
    Oct 22, 2010
    Messages:
    122
    Likes Received:
    1
    sounds good,il check it out and do some more searches on it to find out what all this means.Does this method mean there will be no tracks left on the pc/usb drive?Also can i run programs on it such as firefox etc?i really do appreciate the help
     
  7. allsystems

    allsystems Junior Member

    Joined:
    Oct 22, 2010
    Messages:
    122
    Likes Received:
    1
    also is there a step by step file on this anywhere that i can read up on?Sounds very complicated but if its secure hey im with it
     
  8. florflor

    florflor Senior Member

    Joined:
    Mar 9, 2008
    Messages:
    822
    Likes Received:
    307
    What do you mean "all info is recorded"?

    It isn't.

    I mean, potentially they can do forensics on your hard disk and check your ISP logs as well as server logs of any websites but in terms of your local computer, it is not "all recorded".

    You are better off using something like TrueCrypt to create encrypted containers. Yes, you can put these on USB too.
     
  9. sirgold

    sirgold Supreme Member

    Joined:
    Jun 25, 2010
    Messages:
    1,260
    Likes Received:
    645
    Occupation:
    Busy proving the Pareto principle right
    Location:
    A hot one
    Install linux on a USB key...

    Code:
    https://wiki.ubuntu.com/LiveUsbPendrivePersistent
    Install VirtualBox from linux...

    Code:
    apt-get install virtualbox-ose
    or download it from:

    Code:
    http://www.virtualbox.org
    Run Virtual Box and install Windows

    Ready to go. If you wanna encrypt your linux file system with Luks you'll need to do it BEFORE installing VirtualBox or take advantage of a solution like TrueCrypt as suggested. G00gle is your friend here.
     
    • Thanks Thanks x 1
  10. allsystems

    allsystems Junior Member

    Joined:
    Oct 22, 2010
    Messages:
    122
    Likes Received:
    1
    thank you for this useful post,il google everything and get back to you.By all info is recorded i mean everything that you visit and type on the internet
     
  11. tb0n3

    tb0n3 Newbie

    Joined:
    Nov 28, 2010
    Messages:
    45
    Likes Received:
    20
    If you have a drive or computer seized, you would be amazed at what can be obtained by a forensic specialists.

    Whatever solution you end up with for O/S and drive, make sure your drive solution is inexpensive. Image after initial install and setup. Physically destroy the disk on a regular basis or after any black-hat activity and then re-install from image.

    A company I was consulting for was involved in a civil forensic case. The information on computers wasn't what lead to an indictment. It was the money trail. No matter how complex the trail, sooner or later it ends with the guilty party.
     
  12. allsystems

    allsystems Junior Member

    Joined:
    Oct 22, 2010
    Messages:
    122
    Likes Received:
    1
    got a question about this,what if I used a USB that has hardware encryption on it already and then truecrypt,would I be able to boot off the USB and would I have to enter the password or would it bypass?thanks