Writing random data to a drive a whole bunch of times is my preferred method (most times using dd in macos/linux). If you want to get more paranoid up the amount of times. But if you have data that is sensitive physical destruction is a must. Also watching those commercial shredders eat drives is awesome.
If you want to keep (say) the OS on the drive, but make sure that you have cleaned the 'deleted' areas so they're unrecoverable, you can use the Windows command-line tool CIPHER /W to clean all unused disk space (it writes to all empty space 3 times - 0s, 1s/255s, then randoms). It won't get the 'wear levelling' areas, but will clear the rest.
Best thing to do is to encrypt your laptop as soon as you get it, this way you don't have to worry about erasing anything. Although, I personally would just remove the hard drive and destroy it if I was selling the laptop. I recently just bought a new laptop and I immediately removed the hard drive it came with and put in my own 1TB NVME, installed FreeBSD on it, and encrypted it. If I ever have to sell it, I could just put in the original hard drive that has a fresh install of Win10, and has never been used.
@@ShannonMorse Yes, I know. I wrote the comment before watching the whole video and I also wanted to share what I personally do with respect to protecting my data.
Good ole DBAN. What a treat! 😁 I believe the newer SSDs / NVMEs have self encryption enabled. Like you said in the video use the manufacture's tool to reset that encryption key and you're done in seconds vs hours with traditional erasing tools.
I'm working on a Mac, so I'll use the Disk Utility application to erase and re-format the drive. This application includes a few different options for securely erasing the data. It then reformats the drive so that the OS can use it again. Once the disk is empty and reformatted, I have a program of my own that I run which fills up the disk with random data. It'll loop around creating files of some large size, one at time, and filling each one with random data. As disks get larger, the size of this first round of files also gets larger. Eventually the disk is completely full with these random files. I throw those all into the trash, and empty the trash. I then run the program a second time, but this time the files it creates are smaller, probably 89% smaller than the first size. I then take those files, throw them in the trash and empty the trash. In theory I'd do this a third or fourth time, but by then I'm annoyed at how long it takes to do all of this, so I declare victory and am willing to give the disk to someone else for them to use. If there's some kind of problem with the disk such that I can't erase it via software, then I'll do physical damage to the drive. Not as extreme as you describe in the video, but enough such that your average thief isn't going to bother to try to read any data off the disk. I'm sure someone like the CIA could do it, but then there's nothing on my disk that the CIA would care about. I'm just trying to protect myself from people who are looking for passwords to my bank accounts, or other financial information that's important to *me* but not to any government agencies!
Another option is to 1. boot on windows cd/iso/usb 2. in the setup menu -> Press shift+F10 that will give an dos prompt 3. type "diskpart" and then type "list disk" to see disk numbers 4. type "select disk X" where X is the number of the drive to delete 5. Type "clean all" note the "all" on the clean command is important because that tells the clean command to overwrite every sector 6. You now have an clean disk there is fully overwritten and data can not be recovered with any tools. I know and has validate this because my work is Incident response and Forensics and i use this almost daily to clean used disk media
Thanks. I just tried this on an internal SSD. The "clean all" command takes a while to complete; writing all those zeros, I guess. Afterwards, the Windows Disk Management utility was used to reformat the drive, assign a letter designation, and name. The process was pretty straightforward.
There is also a linux command called "shred" does much the same. Personally, I just pull the drives from any computer I'm trying to get rid of, and let the person who buys it deal with putting in a new disk and installing an OS. Then I just keep my old disks in secure storage.
Nice, I used to work for a company that basically did just this. I can't remember the software we used (booted from floppy), but there were different levels that you can choose for data wipes. It would write all 1's and 0's on the entire disk however many times you specify. I also got to work in the area where we had a press that crushed drives. Hot tip, if you have a laptop HDD, the platters can shatter very easily by slapping it on the ground 😄
Aloha! My $99 Acer laptop has a non-removable SSD chip it in. I suppose the way to deal with that...in the hopefully distant future...would be to take a drill to it when the time comes to send it to e-waste. Mahalo for making me THINK!
No doubt there will ge a whole bunch of comments on other ways to securely delete storage. Resetting Windows and then using either SDELETE (Free from SysInternals) or cipher /w (included with Windows) will do a good enough job. If you're really concerned with cleaning normall inaccessible system areas then replace the drive and destroy the origiinal 😉
Whenever I watch a Shannon video, I learn about 2 to 3 softwares that I didnt know about before lol. Im getting a true education. Thanks as usual for your informative videos! Also, say lap/lab top however you want 😂
After secure deleting always took ages, I started just finding one huge file - usually a movie I legally acquired - and fill the drive with copies of it. what I started doing nowadays, just dd if=/udev/random of=/drive to fill up I do that two or three times and am then happy..
This was why I did once love hak5 content and it's why I love this channel. I remember as a kid wanting to get into cyber these sorts of simple breakdowns being invaluable. Thank you Shannon 🎉
A lot of,people use to just do the following Step 1. Press "Windows+R" and type “CMD” in the Run box to open Command Prompt window. Step 2. Type “format X: /fs:NTFS /p:1”(X is the drive letter of your hard drive, NTFS is the file system, p:1 means writing zeros to every sector once) and press Enter. You can type “p:2” to write zeros to each sector for twice.
Your smile at the end, priceless... I still use dban for hdd and dd in case I can't really take the drive out (then load a live OS like FreeBSD that has dd installed). Thanks for sharing.
Fire, fire is always a good option for ssd's, old drives I flatten using the Gutman method of random data and zeros and then use the platters for coffee mug coasters 😁
I heard that if you get one of those pink erasers and vigorously rub all the platters, your data is erased. Make sure you burn the eraser shrapnel for added security. (This works for ssd as well but you rub the transistors instead) It needs to be the pink erasers, and not any other color as the pink pigment is the only pigment molecule that binds electrons properly. Disclaimer: Dont trust comments you read without independent research.
Hello, I hope you are very well, I have a cold but it is not serious, I liked the video and I also love your videos on your RU-vid channel very much, you deserve to have many successes and followers Shannon 🥰💖✨
I prefer the encryption style of Erasing storage media. I did data erasure and R2 audits for years. I miss playing with DBAN, I remembered an abandon project of DBAN that made it look like you were booting into windows very slowly but it was DBAN was running in the background
Using the DD command with a random wiping Linux is what I use to wipe drive when I bring up a pc for my family and friends :) :) Thank you for your content and I hope you are having a great day God bless you and your family God bless you Jeremy Scruggs
Hi Shannon, Very informative, but if I just want to make sure any deleted data is erased on a computer I am currently using? Essentially overwrite the deleted trash can, I’m sure you know what I mean. What tool do I use for that? Is there something already in Windows 10 installation?
I use old disks generally as archives/backups, so never sell working drives, but when they 'appear' to be failing I trash them by hammering a pointed steel chisel through the casing and into the platters. Not yet had to trash an SSD, but I 'assume' that a few strikes with a hammer should take care of it.
IT consultant here. If I'm re-homing a computer, I remove the original hard drive or SSD and leave that with the client who brought in the laptop, telling them to hold onto the drive for six months and then re-use it for their own purposes or destroy it. At their option, I'll resell them a USB enclosure for the drive so they can use it that way. I then install a brand new SSD in the computer and load a fresh OS. If the computer is being donated, then it's just a little extra donation from me. If it's being resold, then I add it to the price of the computer. SSDs up to 1TB are cheap nowadays, so I see little reason to worry about hard drives that might fail in short order or SSDs that might not be possible to completely erase.
If you want to reuse the drive then you can use a free linux distro like dban and do a minimum of a 3 pass wipe which is us government standard or if you want to be more secure give it extra pass wipes but it cant do ssds but something like red key usb can do ssds. But it does cost money. As i was typing this shannon mentioned it dban I did not know shred os was a thing but again red key USB can wipe ssds
i use linux command example sudo shred -vz -n 6 /dev/sdd n meaning number of wipe can be what ever u want and also one pass of zero u can use a live usb linux mint to do this shred is installed on linux by default if u want to delete main hdd fyi
I don't understand why SSD manufacturers don't have a simple, full erase function that can be easily accessed. There should be an industry standard for this. Of course, there is the trust issue. How would you know it was fully erased? You can't verify SSD erasure. Full Disk Encryption is the only for sure solution.
I never sold any of my computers, and I usually hold on to drives until they die. What we need are some tools that overwrite free space under running windows/linux, like the Eraser and FileShredder does for HDD. No one has time (or knowledge) to use the TRIM function. Plus, I don't even think that's working. I tested it on my system drive and I could recover files with plain old Recuva...
So I recently bought a little ChromeOS netbook, ND I went to turn it on to wipe the drive, but it didn't even show which key for bios. I've tried looking it to and ppl have said to try like hold shift+k or a couple other various commands, but none of them worked. Any suggestions?
So I'm guessing magnets don't do the trick anymore? I remember back in the day hackers in movies would always put a magnet on their hard drive. Don't hear anyone mention that method anymore though
I used to bleech it for a bit but now I have a pair of tools and a torch😌 I also think the encrypt then overwrite sounds like an option but I never sell old drives,If I can't use them they get destroyed. BTW is fileshredder any good? Does it actually shred without leaving stuff in free space?
The easier option was mentioned in the video already - encrypt whole drive and forget it, but if you want to make "your life" more complicated, then instead of downloading those ancient software, download a Linux distro and flash it into a USB drive, boot from there and use "dd" command do "Distroy Disk" indeed. ( with this tool, once, I've already ended with one of my HDD's life in the past xD )
Can you please make a tutorial video showing how you make ad free videos? I've noticed that anytime I get a notification and click to watch your videos, there are no ads, it goes straight to your content unlike almost all other videos on RU-vid. Thank you beforehand
My videos are all monetized, but RU-vid seems to think your view is invalid! Apparently they consider some traffic "fake" and as such, I don't get paid for that view. I'm actually losing a ton of revenue because of it. So... you not seeing an ad on my video is not by my choice.
I first delete all data and folders containing data. I boot into WinPe and clean the disk and do a full format. Re-install Windows from Rufus and bitlocker the drive choosing to bitlocker the entire drive. It makes you save the key so I print to PDF and save to a file on the drive that is in a subfolder. I delete the file and subfolder. I choose a 20 character pin at random to protect the drive that must be entered on boot. The 20 character PIN is simply in notepad and not saved. I reboot and there is no key available and no way to boot the computer. The computer can now be shipped to the IT dept of the persons employer. I destroy and discard the drive or simply use it in a USB to NVME enclosure. When I buy a personal computer I remove the SSD and place in another SSD and then replace it with the original SSD for warranty repair or future sale. THis saves money as Laptop manufactures overcharge for large capacity. I also like a SAMSUNG 970 drive and the laptop manufacture was likely not kind enough to install SAMSUNG.
Ugh! I had like over 70 hard drives of all types to get rid of a few months ago. I just ripped off the boards and delivered them to Best Buy for recycling praying that no one would be desperate enough to find the boards and recover the data. I hope Best Buy does the right thing. I'm fretting the day I see some documentary or news report on how they sell it to some 3rd world cranks!
Since I use full disk encryption, I've never felt the need to erase a disk drive. When I get a new SSD, the old one goes into a box as a backup. To anyone else, it's unreadable, random gibberish.
put a drive in the microwave for a couple seconds, everything is 1000% gone, unrecoverable, works for any storage media, do not attempt unless you know what you are doing and are a safe distance from your house.
@@ShannonMorse yes, but honestly I think it's the only viable option, because as you mentioned these devices will store data outside of the regular 'writeable' segments, and who knows maybe your storage device firmware is compromised, they can just ignore a request to delete, etc.