apt-get install libfuse-dev libpolarssl-dev
wget http://www.hsc.fr/ressources/outils/dislocker/download/dislocker.tar.bz2 tar xvf dislocker.tar.bz2 cd dislocker/src/ make make install
if you get this error running /usr/bin/dislocker :
/usr/bin/dislocker: error while loading shared libraries: libdislocker.so.0: cannot open shared object file: No such file or directory
run this to fix it:
install -pm755 libdislocker.so.0.4.1 /usr/lib install -pm755 libdislocker.so.0 /usr/lib
installation is done.
dislocker by Romain Coltel, v0.4.1 (compiled for Linux/x86_64)
Usage: dislocker [-hqrsv] [-l LOG_FILE] [-o OFFSET] [-V VOLUME DECRYPTMETHOD -F[N]] [— ARGS…]
with DECRYPTMETHOD = -p[RECOVERY_PASSWORD]|-f BEK_FILE|-u[USER_PASSWORD]|-k FVEK_FILE|-c
Options:
-c, —clearkey decrypt volume using a clear key (default)
-f, —bekfile BEKFILE
decrypt volume using the bek file (on USB key)
-F, —force-block N force use of metadata block number N (1, 2 or 3)
-h, —help print this help and exit
-k, —fvek FVEK_FILE decrypt volume using the FVEK directly
-l, —logfile LOG_FILE
put messages into this file (stdout by default)
-o, —offset OFFSET BitLocker partition offset (default is 0)
-p, —recovery-password[RECOVERY_PASSWORD]
decrypt volume using the recovery password method
-q, —quiet do NOT display anything
-r, —readonly do not allow to write on the BitLocker volume
-s, —stateok do not check the volume’s state, assume it’s ok to mount it
-u, —user-password decrypt volume using the user password method
-v, —verbosity increase verbosity (CRITICAL errors are displayed by default)
-V, —volume VOLUME volume to get metadata and keys from
— end of program options, beginning of FUSE’s ones
ARGS are any arguments you want to pass to FUSE. You need to pass at least
the mount-point.
——
Here is how to use it:
after getting list of drives available and choosing proper one using fdisk -l
we mount it in following directories.
mkdir /mnt/tmp mkdir /mnt/bitlocker
dislocker -v -V /dev/sdb3 -u -- /mnt/tmp/ mount -o loop,ro /mnt/tmp/dislocker-file /mnt/bitlocker/