How To: Config ShredOS to boot and automatically invoke clean command

[dgdomtar]

We are decomming devices to be given to a non profit. All we need to do essentially is run the Diskpart clean command to wipe the drives.

Can ShredOS be setup to automatically do this once it's booted via USB? IE no interaction?

[PartialVolume]

Yes, you can create a auto nuke device by editing the grub.cfg files and adding nwipe_options=" --autonuke". See https://github.com/PartialVolume/shredos.x86_64?tab=readme-ov-file#how-to-change-the-default-nwipe-options-so-the-change-persists-between-reboots

However, it obviously won't be using DiskPart which is Windows. I couldn't figure out what sort of wipe DiskPart clean is doing. Traditional block writing or ATA secure erase? Any Windows users know?

[gorbiWTF]

https://learn.microsoft.com/en-us/windows-server/administration/windows-commands/clean

On master boot record (MBR) disks, only the MBR partitioning information and hidden sector information is overwritten.

On GUID Partition Table (gpt) disks, the gpt partitioning information, including the Protective MBR, is overwritten. There is no hidden sector information.

A for effort, I guess...

[PartialVolume]

https://learn.microsoft.com/en-us/windows-server/administration/windows-commands/clean

On master boot record (MBR) disks, only the MBR partitioning information and hidden sector information is overwritten.
On GUID Partition Table (gpt) disks, the gpt partitioning information, including the Protective MBR, is overwritten. There is no hidden sector information.

A for effort, I guess...

I guess the clean command is not really for forensic destruction of data. Seems like the bare minimum it can get away with. With a few forensic recovery tools a lot of the data could be recovered quite easily. It does make you wonder how many unsuspecting people use clean thinking they deleted their data.