The PEBakery builder and will not work in winbuilder as a number of commands are not supported. Experimental Driver integration support.
![]()
Learning has never been so easy!
If you have ever tried to use a boot disk to run an anti-virus or malware scan on computer running PGP encryption, you have seen it is not an easy thing to do. The boot disk will likely report the PGP encrypted drive as unformatted.
To get around this, we are going to integrate the PGP drivers into our VistaPE ISO so we can burn it to disk or put it on a USB stick. This is an add-on to the previous How-To 'Creating a VistaPE boot disk / ISO' located here http://community.spiceworks.com/how_to/show/631
Requirements:
- Completed creating a VistaPE boot disk / ISO - http://community.spiceworks.com/how_to/show/631
- Installed version of PGP - Download and install WAIK if you have not already done so - http://www.microsoft.com/downloads/details.aspx?FamilyID=c7d4bc6d-15f3-4284-9123-679830d629f2&DisplayLang=en - Password to unlock the PGP encrypted disk. 8 Steps totalStep 1: Step 1
Go to PGP website and download the proper PE Plug-in for your version of PGP. http://www.symantec.com/business/support/index?page=content&id=TECH149060
Note: It is important to use the SAME version that your area uses otherwise you may not be able gain access to, and may even corrupt your encrypted volumes. Step 2: Step 2
Create a folder called WDE on the root of your C: drive - (C:WDE). In this folder, place the following files from your local install of PGP.
c:Program FilesPGP CorporationPGP Desktoppgpbootb.bin
cProgram FilesPGP CorporationPGP Desktoppgpbootg.bin c:Program FilesPGP CorporationPGP DesktopPGPwde.exe c:Program FilesPGP CorporationPGP DesktopStage1 :note Stage1 is the file name with no extension; c:Windowssystem32PGPsdk.dll c:Windowssystem32PGPsdknl.dII c:Windowssystem32PGPwd.dlI c:Windowssystem32tdriversPGPwded.sys Step 3: Step 3
Create a folder called PGP on the root of your C: drive - (C:PGP).
Extract the files you downloaded in step one. You’ll probably have to extract a resulting zip file (they encapsulate it in another zip file within the original zip file). Finally, you will get the real two files that we want, pgppe.exe and pgpstart.exe. Put these two files in the folder C:PGP Step 4: Step 4
Open a command prompt and go to c:program filesWindows AIKToolsPETools and run the following command. Replace the first x86 with your system architecture (amd64, IA64, x86).
copype.cmd x86 c:winpe_x86
Note: VistaPE can be built on a x64 machine but only VistaPE 32-bit and not VistaPE 64-bit can be built right now.
Step 5: Step 5
Create a batch file called injectpgp.bat and put it in the Winbuilder076 folder. The contents follow:
cd
cd pgp REM Fix path below too move c:Winbuilder076targetvistape-corevistape.wim c:winpe_x86winpe.wim pgppe /winpe c:winpe_x86 c:wde REM Fix path below too move c:winpe_x86winpe.wim c:Winbuilder076targetvistape-corevistape.wim cd Winbuilder076 pause
Note: If your paths are different you will have to fix the file to match your paths. Replace Winbuidler076 with your own path. If successful you should see something similar to below. Where the WDE driver and tools have been installed into winpe.
Step 6: Step 6
Now back in WinBuilder goto the section under Finalize called “Create ISO/CD/USB” Click the Create a new ISO file (since the VistaPE.WIM file has now just been updated with the new version). This is basically to repackage the ISO since vistape.wim has been injected with the pgp plugin.
Step 7: Step 7
The ISO will be in your WinbuilderISO folder. You can burn this ISO to a CD or follow the directions here to but the ISO onto a USB stick. http://community.spiceworks.com/how_to/show/633
Step 8: Step 8
Once booted into VistaPE now PGPWDE should work from the command line. Hit the Start Button then click Run then put in cmd.exe and hit ok.
Below are the PGPWDE commands that can be run from the command line to mount a PGP encrypted HD. Enum is to enumerate list the available drives. Status will tell you if the drive is PGP enabled/encrypted. In the Auth line replace xxxx with your passphrase to mount the drive. Note: Those are double dashes in the command switches except the -p 'xxxx' which is a single dash.
pgpwde --enum
pgpwde --disk 0 --status pgpwde --disk 0 --auth -p “xxxx” pgpwde –h
Now you can finally access your PGP encrypted drive from a boot disk/usb thumb drive.
I simply put the walk-through together for the Spiceworks Community. More information and the people responsible for putting this valuable project together are listed in the References below.
Published: Jul 08, 2010 · Last Updated: Feb 23, 2012
References
0 Comments![]() Comments are closed.
|
AuthorWrite something about yourself. No need to be fancy, just an overview. Archives
December 2022
Categories |