It works with dislocker 0.2.3 from github. Sift with it's underlying Ubuntu Karmic seems to be to old, so that errors have to been disabled while doing the make.
o Installation in Sift:
Code::
cd /usr/local/src
sudo su
git clone git://github.com/Aorimn/dislocker.git dislocker-git
cd dislocker-git
pico src/accesses/rp/Makefile
remove -Werror in line 9 than write out, exit
make file
make install
dislocker --help should show v0.2.3 now
o dislock a bitlocker partition
Code::
mkdir /mnt/dislocker
dislocker -v -r -V encrypted.bitlocker -p123456-123456-123456-123456-123456-123456-123456-123456 -- /mnt/dislocker
Remark: 123456-... stands for the existing recovery key. This one is only a placeholder.
I currently can only open the dislockt files in the mount with Sleuthkit. DFF and PTK doesn't like the mount (doesn't show it)
/edit
There're some errors regarding mount points and the missing loop device mount. Don't use it right now. I'll write it down in the correct manner after some fix up/ testing/ documentation.
↧