Upload File

usb write protect en us

5
Page 1 Write Protect USB Devices in Windows XP Dustin Hurlbut In the recent release of Windows XP Service Pack 2 (SP2), a new feature was added by Microsoft to allow the write protection of USB block storage devices. This entails a simple Registry modification that requires no hardware devices to write protect thumb drives. This allows us to examine and duplicate USB devices with write protection that previously didn’t exist. To enable this feature, we’ll go step by step to modify the Registry. As in all Registry operations, it is advisable to back up your Registry files prior to modification. You can do this easily by either creating a Restore Point in XP or by using FTK Imager to look at your own drive and export the Registry Files. To create a Restore Point, go to Start > Programs > Accessories > System Tools > System Restore (see below). Once at the System Restore dialog box, select “Create a restore point” and follow the steps. This creates a backup of selected system files that can then be enabled to restore the system back to the state it was in. To create the necessary Registry values to enable USB write protection, follow these steps: Step 1 - Go to Start > Run and type in regedit.

Upload: erol-dizdar

Post on 18-Nov-2014

1.667 views

Category:

Education


0 download

Report

DESCRIPTION

 

TRANSCRIPT

Page 1: Usb Write Protect En Us

Page 1

Write Protect USB Devices in Windows XP

Dustin Hurlbut

In the recent release of Windows XP Service Pack 2 (SP2), a new feature was added by Microsoft to allow the write protection of USB block storage devices. This entails a simple Registry modification that requires no hardware devices to write protect thumb drives. This allows us to examine and duplicate USB devices with write protection that previously didn’t exist. To enable this feature, we’ll go step by step to modify the Registry. As in all Registry operations, it is advisable to back up your Registry files prior to modification. You can do this easily by either creating a Restore Point in XP or by using FTK Imager to look at your own drive and export the Registry Files. To create a Restore Point, go to Start > Programs > Accessories > System Tools > System Restore (see below). Once at the System Restore dialog box, select “Create a restore point” and follow the steps. This creates a backup of selected system files that can then be enabled to restore the system back to the state it was in.

To create the necessary Registry values to enable USB write protection, follow these steps: Step 1 - Go to Start > Run and type in regedit.

Page 2: Usb Write Protect En Us

Page 2

Step 2 - Navigate to HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet and highlight the Control key. The CurrentControlSet key has system information about the current configuration of the machine. The system keeps a backup of this key. You will see the current and backup listed as ControlSet001 and 002 in this example. The select key will show which is valid. The key CurrentControlSet is the one being used at this moment and is the one you want to modify.

Step 3 - Right click on Control and select New > Key. Name the key StorageDevicePolicies.

Select Key Showing the Current Control Set

(001)

Highlight the Control Key

Page 3: Usb Write Protect En Us

Page 3

Step 4 - Right click on StorageDevicePolicies and select DWORD. Name the value WriteProtect.

Step 5 - Right click (or double click) on WriteProtect and select Modify. To write protect USB devices select 1 as the value. To turn off write protection, change this value to 0.

Page 4: Usb Write Protect En Us

Page 4

We have created a new key and value in the Registry that will write protect USB devices. You may want to place this on your examination machine full time. However, if you need to be able to switch back and forth from a write protected state to an non write protected state, it is cumbersome to have to go through this procedure each time. To automate this process, create a .REG file to enable you to select either on or off. To create a write protect switch, right click on the key StorageDevicePolicies we just modified and select "Export". Name it and you can send a file with the extension of .reg to your Desktop. Name it "USB Write Protect ON".

Recreate the key with the switch turned off to un-write protect the USB making another .reg file. You can activate either .reg file by clicking on it to modify the Registry key. Be sure to test and verify this procedure and write protect function. The National Center for Forensic Science (NCFS) has a free program available to automate this function. They also have a five

Page 5: Usb Write Protect En Us

Page 5

step validation process for verification that the program functions properly. This would also work for vali-dation of the process described in this paper. References: 1. Change to Functionality in Microsoft Windows XP Service Pack 2 - Part 7: Other Technologies Published: August 9, 2004 | Updated: September 15, 2004 By Starr Andersen, Technical Writer; Vincent Abella, Technical Editor Microsoft TechNet Article: http://www.microsoft.com/technet/prodtechnol/winxppro/maintain/ sp2otech.mspx 2. National Center for Forensic Science (NIJ) http://ncfs.ucf.edu/home.html - Reference the Link: NCFS Software Write-block XP

© 2005 AccessData Corporation – All rights reserved. Some topics and items in this paper are subject to change. This document is for information purposes only. Ac-cessData makes no warranties, express or implied, in this document. AccessData, Forensic Toolkit, FTK, FTK Imager, Known File Filter, KFF, Password Recovery Toolkit, PRTK, Registry Viewer, Ultimate Toolkit, Li-censeManager and WipeDrive are either registered trademarks or trademarks of AccessData Corporation in the


Promotional Printing USB Samples - bustanprints.com · Promotional Printing USB Samples. USB-7 USB-8 Promotional Printing USB Samples. USB-9 USB-10 Promotional Printing USB Samples

Formal Education - ISACA · Formal Education: (some) ... IMSI (International ... Prepare analysis workstation with drivers installed and write-protect or

iPods, CD/DVD, USB, etc. - How to Protect From the Dangers Within

E522.41 | Automotive USB Power & Protect Corporation [email protected] | Mouser Electronics, Inc. (Catalog- and Online-Distribution) [email protected] | MUJIN Electronics. Co., Ltd

MG206C-USB/MG166CX-USB/MG166C-USB Owner's Manual · MG206C-USB/MG166CX-USB/MG166C-USB Owner’s Manual

Wi-Fi Administration and Operation · nal USB device called a dongle. The dongle is a USB thumb-drive using a proprietary software interface to read and write its contents. It provides

PCA24S08A 1024 × 8-bit CMOS EEPROM with access protection · Lock/unlock function Write protect feature protecting the full memory array against write operations Self timed write

Data Protection Electrically Self-timed Write Cycle (5ms Max) … · † Block Write Protection – Protect 1/4, 1/2, or Entire Array † Write Protect (WP) Pin and Write Disable

USB 3.0 Write Blocker Team Dec 1108 Design review presentation

QEMU-Puppy - A Personal Portable Computer · The USB memory stick is cheap, light and easier to protect. A virtual machine , like QEMU, is cheap, light and easy to protect as well

Parallel Port SmartMedia Reader/Writer REX-SMA02U · SmartMedia, put a Write-Protect label on the SmartMedia. For details, refer to the manual of the SmartMedia. Write-Protect label

• Write Protect Pin for Hardware Data Protection

WP200 - U-Reach...WP200 is the most convenient way to create a write protected USB. There are three write protected solutions to satisfy different requirements. Without the complicated

A Framework for Testing Hardware USB Write Blockers · MSc System and Network Engineering Computer Crime & Forensics A Framework for Testing Hardware USB Write Blockers Authors: Tom

USB 3.0 Hard Drive / Solid State Drive with Physical Write ...€¦ · • Hard Drive Capacities: 500GB, 1T, 2T, 4T & 5T • SSD Capacities: 240GB, 480GB, 1T, & 2T SuperSpeed USB

)F... · • 256B Data EEPROM • Direct, Indirect and Relative Addressing modes • Memory Access Partition (MAP): – Write-protect – Customizable partition • Device

How to password protect your USB flash drive · PDF fileHow to password protect your USB flash ... Recommended password length is 8 symbols ... doesn’t save files in temporary folder

Introducing SanDisk Ultra® Dual USB Drive · SanDisk Ultra® Dual USB Drive: Design 36mm 20mm Designed to fit mobile phones Sliding covers protect the connectors - no more lost caps

Sun Flash PROM Guide for Workstations and Workgroup ... · jumper on the motherboard is write-enable. Therefore, unless you have reset the jumper to the write-protect position at

Protect Pen Drive (USB) Using Password

How to password protect your USB flash drive mod€¦ · • It automatically detects your USB flash drive and offers the best options on how to encrypt your USB flash drive. •

2.5 / 3 / 3.3 V 1M-BIT SERIAL FLASH MEMORY WITH … 021714.pdf · The W25X10CL (1M-bit) ... A Hold pin, Write Protect pin and programmable write protect, with top or bottom array

Test Results for Write-Protected Drive: Apricorn Padlock 3 ......Aug 22, 2019  · enabled. Test the ability of the USB key or USB portable drive to block write commands from the ATA

UPA-USB Device Programmer - CarDiagTool · 4 UPA-USB Device Programmer 1 Overview Features Hex Editor Over write or insert mode Support hexadecimal, decimal, octal and binary systems

2-in-1 flash drive USB 3.0 & Lightning - EMTEC · Transfer speed (Write) Up to 20 MB/s for USB 3.0 10 MB/s for Lightning USB 3.0 compatibility USB 3.0 back compatible with USB 2.0

Cable ID for USB Type-C Cables · Support Custom Structured VDM Writing Over CC Pin Write Protect on Multi One-Time Programmable (OTP) Memory Support I 2C Bus for Programming VDM

ZIL Accelerator: Random Write Revelation - DDRdrive X1 ... · PDF fileZIL Accelerator: Random Write Revelation Christopher George Founder/CTO ... Any SSD which does not power protect

Pocket Ultra Digidrive · 2016-02-16 · • USB 2.0 or Firewire connection • Power from USB or Firewire* port • Read and write to PCMCIA hard drive, ATA Flash. • Read and write

AT24C08D I2C-Compatible 2-Wire Serial EEPROM 8-Kbit Data Sheetww1.microchip.com/downloads/en/DeviceDoc/AT24C08D... · 2.5 Write-Protect (WP) The write-protect input, when connected

MG206C-USB MG166CX-USB MG166C-USB - Yamaha · 2019. 1. 25. · MG206C-USB, MG166CX-USB, MG166C-USB MG206C-USB MG166CX-USB MG166C-USB Mixing Consoles These versatile analog mixers

Configuration Software Manual - Eaton MTL · PDF fileConfiguration Software Manual October 2016 ... Create a New System ... write configurations via USB connected to USB port behind

UPA-USB Device Programmer - EOBDTOOL...4 UPA-USB Device Programmer 1 Overview Features Hex Editor Over write or insert mode Support hexadecimal, decimal, octal and binary systems File

Test Results for Write-Protected Drive: Apricorn ASK3z ... · enabled. Test the ability of the USB key or USB portable drive to block write commands from the ATA and SCSI command

unit 14 installing and maintaining hardware - Web viewSamsung Super Write master (Speed Plus) USB Port . 6 USB Ports . 4 USB Ports. Fire-wire connection. Yes it has a firewall connection

Welcome to USB Secure! - NewSoftwares.netWelcome to USB Secure! USB Secure helps you password protect USB drives, Thumb drives, Memory sticks, Pen drives, Jump drives and Flash drives.It