HiddenOS in Virtualbox

1. Download a copy of xp from here
2. http://thepiratebay.org/torrent/6487579/Microsoft.Windows.XP.SP3.Professional.June.2011
3.  
4. Get virtualbox
5. and guest additions
6. http://www.virtualbox.org/wiki/Downloads
7. Install virtual box
8. Click New and the create virtual machine wizard will open
9. It defaults to xp
10. So all you need to do is name it
11. Then select amount of ram your vm will have
12. I nomally go for 512
13. Click through the next screen, create new hard disk
14. Another wizard will then open.
15. Click through, leaving it on the default dynamically expanding storage and the size of the disk as 10GB
16. Once the wizards are finished you'll be back at the main gui for VB
17. Start your xp vm machine.
18. You'll get a first run wizard
19. Click through the first screen.
20. Then on the select media instalation screen click on the folder icon at the far right and browse for the iso of xp which you have downloaded.
21. Select this and click through.
22. You will get to a blue screen, the XP setup screen.
23. Here you will need to create 2 partitions, one for your decoy OS and one for your hidden OS.
24.  
25. So press c to create a partition.
26. Enter 4000 for the size
27. Then when you get to the format partition screen choose FAT file system(quick)
28. Let it do it's thing and XP set up will just go through its shit
29. Oh and enter an Admin password cos you is gonna run your stuff as admin like a boss
30. When it gets to the setup screens after the install your vm may freeze.
31. If it does click to shutdown the vm and choose power off machine
32.  
33. Restart the vm, it will try and boot from the iso, so go to the devices menu at the top of the vm, cd/dvd devices submenu and click remove disk from virtual drive
34.  
35. Then start the vm again and you should have a nice fresh windows install.
36.  
37. Quick registry hack to enable admin account
38. Click Start, Run and type Regedit.exe
39. Navigate to the following key:
40. HKEY_LOCAL_MACHINE \ SOFTWARE \ Microsoft \ Windows NT \ CurrentVersion \ Winlogon \ SpecialAccounts \ UserList
41. Create a new DWORD Value named Administrator
42. Double-click Administrator, and set 1 as its data
43. Exit the Registry Editor.
44.  
45. Click on devices on the virtual machine menu and choose the bottom entry, install guest additions
46.  
47. Reboot xp and login as administrator
48.  
49. Go to start menu click on run
50. Enter diskmgmt.msc
51. In the unassigned disk space, right click and press new partition, a wizard will open
52. Choose "primary partition"
53. then "do not assign drive letter or drive path"
54. and then "do not format"
55.  
56. Now for the fun stuff
57.  
58. Download truecrypt from here http://www.truecrypt.org/downloads
59. Install and run
60. Click on create volume then the bottom option encrypt the system partition etc
61. At the next screen choose hidden
62. Agree to everything then choose "Single-boot"
63. Click through till you get to "Outer Volume Encryption Option"
64.  
65. This is a decoy true crypt volume that your hidden os will be hidden in
66.  
67. Choose a encryption algorythm and remember it, you have to use the same one all the way through
68. Click through and create a password
69. Choose no on the next screen (large files)
70. Then open the outer volume and put some innocous supposed sekrit files that you don't care if they are found.
71. But only up to a gig
72.  
73. Click through and now choose an encryption algorithm
74. REMEMBER WHICH ONE YOU CHOSE.
75. As you have to use the same one when you do the decoy os
76. Create a password
77. Click through
78. Agree to restart your computer
79.  
80. Enter the hidden os password when propmted and wait hours and fucking hours or so till it's done it's shit
81.  
82. Then you'll be prompted to enter the hidden os password
83. Do so
84.  
85. You'll get some true crypt stuff, read em for your own knowledege then click through
86. You'll then be asked to wipe the original partition
87. Leave the default onepass wipe cos there should be nothing on there you need to worry about
88. Click through and start wiping
89. Go to the devices menu on the virtualbox toolbar for your vm, cd/dvd drive and click the xp iso that should be there
90.  
91. Exit from the windows repair/install screen that shows itself and reboot xp
92. Press any key on the boot screen to start an install
93.  
94. We are now installing the decoy system
95. Choose the first partition the one that's about 4000mb and again format quick with FAT
96.  
97. Let windows do its install again at the end when you get to the let me help set up your computer your vm may freeze, if it does close down the vm using the shut down machine option.
98. Once you are into the normal xp thing again install guest additions.
99.  
100. Reboot then again download truecrypt from here http://www.truecrypt.org/downloads
101. Install it
102. Open it
103. Click create volume
104. Choose bottom option, encrypt system partition etc
105. At the next screen click on NORMAL, NOT HIDDEN
106.  
107. Click encrypt windows system partition, NOT whole drivw
108. Click single boot
109. Then very very important, you have to choose the same encryption algorithm you used the when you encrypted the hidden os
110. Create a password, very different from either of the other 2
111. Click through
112.  
113. Then we get to creating a rescue disk iso which is a little complicated
114. Put a usb drive in. Go to devices again on the virtual box toolbar. and this time got to usb devices, you should see the usb stick you have just plugged in, select it, (you need guest additions to do this, so if you skipped that step do it now). The usb device should now show up in your xp install and disapear from your main deck
115. On the rescue disk screen change the path to f:\TrueCrypt Rescue Disk.iso (Using the drive letter assigned to the usb stick of course)
116. Click next.
117. Now need to verify this or TrueCrypt will bitch so again go to devices in the vbox tool bar unselect the usb stick which should dismount from your VM and reappear in your main deck.
118. Again go to devices but this time cd/dvd devices, Choose a virtual cd/dvd disk file, browse to the usb stick and choose the rescue disk iso.
119. Close the explorer window that opens and in the TC gui click next.
120. It should say successfully verified.
121. Back up to devices, cd/dvd devices but this time click remove disk from virtual drive.
122. In your main deck secure wipe that iso, you don't want it as it may be used by the feds as evidence.
123.  
124. OK, in your vm, click next and you will get to a wipe mode screen.
125. You shouldn't need to do anything but leave it on default (no wipe)
126. as the partition was wiped when you made your hidden OS, but it's your choice, it will increase the time to encrypt though.
127.  
128. On the next screen true crypt will ask to test your install.
129. You'll get a wall of text talking about the encryption process and TC will then ask to reboot. So click yes.
130. Then at the True Crypt Boot Loader screen, enter the password you have just created for your decoy OS.
131. The VM will start and the TC gui will open saying Pretest complete.
132. Then click encrypt to start the encryption of the decoy OS.
133. Again you'll get a wall of text, read it for your own knowledge, click through and wait till TC does it's encryption which should be only about 10 minutes if you didn't didn't use any wipe mode.
134.  
135. Click finish and there you are.
136.  
137. Reboot and at the bootloader screen enter the decoy OS pass to get into that install and the hidden OS for the other.