If you haven't seen Marc Remmert's video on creating a WinFE ISO, here is his video. Although the WinBuilder method greatly simplifies what Marc shows in his video, it certainly recommended to see what is actually happening to a Win"P"E to make it into a Win"F"E, no matter the process used, at least understand the changes being made, the reason for the changes, and the validation of the changes. And for those that insist that WinFE is not WinFE and that it is WinPE...well, you are sorta correct. WinFE is the 'forensic' modification of a WinPE, so it really is something different.
[youtube=http://www.youtube.com/watch?v=J3T5wnPiObI]
On the WinBuilder topic, a great group of beta testers have started to put WinBuilder through its paces. Again, although the end result is that you will be able to create a WinFE ISO with a few clicks, it is best to know what is happening behind the scenes and Marc's video gives you that insight.
Brett's Ramblings
Just before the latest WinBuilder WinFE gets released, would you like to take it on a test run first before the rest of the world gets it? There are some neat features (Bitlocker support, DiskPart batch file, plus others), but the main concern is testing to see if anything needs to be fixed, corrected, added, or taken away from the build.
If you have the time to make a build or two and run it against your computer, send me an email and I'll send you the build (not the ISO, you have to build that, but you get the Winbuilder app to build it). I'd appreciate any comments, good-bad-or indifferent. I'll cut off the number of beta testers as soon as a decent number can reply to this request by email to; This email address is being protected from spambots. You need JavaScript enabled to view it.. So give me your email to get your beta!
A big thanks to Royal Meier for providing a script to modify the registry with a WinBuilder Win7PE build. What I thought would be a difficult task of using WinBuilder to build a WinFE ISO, is turning out to be quite simple, at least for Royal Meier (he makes it look simple anyway).
I am planning that "the" WinFE WinBuilder will be available before Christmas, for Christmas. So far, it works wonderfully, but there are a few tweaks to be added to make it really able to create the Super WinFE ISO without having to spend any time running batch files or typing in commands in a DOS shell.
There are a few other things to be added after the New Year, like Colin Ramsden's work, but that is coming up as well. So, if you have procrastinated all this time to build a WinFE CD/USB, the wait is nearly over.
How cool is it to build your own custom forensically sound boot CD (in a Windows OS...) with a few clicks? It is just plain cool. This is quick and easy, quite super actually.
DFIR Training
Be sure to check out my DFIR Training website for practically the best resources for all things Digital Forensics/Incident Response related.
© 2023 Brett Shavers