Secure Eraser.py

1. """
2. Command Guide ➜ https://limewire.com/d/rL4Ai#3jg5yM4lNy  
3. GUI Version ➜ https://github.com/nitestryker/secure-eraser/blob/main/secure_eraser_all_in_one.py  
4.  
5. © 2025 Nitestryker Software  
6. You are free to edit and distribute this file, but this copyright notice must remain.
7. """
8. import os
9. import random
10. import subprocess
11. import platform
12. import argparse
13. import shutil
14. import tempfile
15. import time
16. import sys
17.  
18. class SecureEraser:
19.     """
20.    A comprehensive secure deletion tool that can:
21.    1. Securely delete individual files
22.    2. Wipe free space to prevent recovery of previously deleted files
23.    3. Securely delete entire directories
24.    4. Wipe entire drives for resale preparation
25.    """
26.    
27.     # DoD 5220.22-M standard wipe patterns
28.     DOD_PATTERNS = [
29.         b'\x00',                         # Pass 1: All zeros
30.         b'\xFF',                         # Pass 2: All ones
31.         b'\x00\xFF\x00\xFF\x00\xFF',     # Pass 3: Alternating bit pattern
32.         b'\x55\xAA\x55\xAA\x55\xAA',     # Pass 4: Another alternating bit pattern
33.         b'\x92\x49\x24',                 # Pass 5: Random pattern
34.         b'\x49\x92\x24\x49\x92',         # Pass 6: Another random pattern
35.         b'\xDB\xB6\xDB\x6D\xB6\xDB',     # Pass 7: Another random pattern
36.     ]
37.    
38.     # Gutmann 35-pass method patterns (simplified representation)
39.     GUTMANN_PASSES = 35
40.    
41.     def __init__(self, passes=3, method="standard"):
42.         """
43.        Initialize with the number of overwrite passes and wiping method.
44.        
45.        Args:
46.            passes: Number of overwrite passes (higher = more secure but slower)
47.            method: Wiping method - "standard", "dod", "gutmann", or "paranoid"
48.                - standard: Uses basic random data (passes parameter determines count)
49.                - dod: Uses DoD 5220.22-M standard (7 passes minimum)
50.                - gutmann: Uses Gutmann 35-pass method
51.                - paranoid: Combines DoD and Gutmann methods plus additional passes
52.        """
53.         self.method = method.lower()
54.        
55.         # Set passes based on method
56.         if self.method == "dod":
57.             self.passes = max(passes, 7)  # Minimum 7 passes for DoD
58.         elif self.method == "gutmann":
59.             self.passes = 35  # Always 35 passes for Gutmann
60.         elif self.method == "paranoid":
61.             self.passes = max(passes, 49)  # DoD + Gutmann + additional
62.         else:  # standard
63.             self.passes = passes
64.            
65.         self.system = platform.system()
66.    
67.     def secure_delete_file(self, file_path):
68.         """
69.        Securely delete a single file by overwriting it multiple times before deletion.
70.        Uses the specified wiping method (standard, DoD, Gutmann, or paranoid).
71.        """
72.         if not os.path.exists(file_path) or not os.path.isfile(file_path):
73.             print(f"File {file_path} does not exist or is not a file.")
74.             return False
75.            
76.         try:
77.             # Get file size
78.             file_size = os.path.getsize(file_path)
79.             file_name = os.path.basename(file_path)
80.            
81.             # Skip empty files
82.             if file_size == 0:
83.                 os.remove(file_path)
84.                 print(f"Empty file {file_name} removed.")
85.                 return True
86.                
87.             print(f"Securely wiping {file_name} ({file_size/1024/1024:.2f} MB) with {self.passes} passes")
88.            
89.             # For large files, use a chunked approach with progress reporting
90.             chunk_size = 1024 * 1024 * 10  # 10MB chunks
91.            
92.             # Multiple overwrite passes
93.             for i in range(self.passes):
94.                 pass_type = "zeros" if i == 0 else "ones" if i == 1 else f"random data (pass {i+1})"
95.                 print(f"Pass {i+1}/{self.passes}: Writing {pass_type}")
96.                
97.                 chunks_total = (file_size + chunk_size - 1) // chunk_size
98.                 chunks_done = 0
99.                 last_percent = -1
100.                
101.                 with open(file_path, 'wb') as f:
102.                     remaining_size = file_size
103.                    
104.                     while remaining_size > 0:
105.                         # Determine chunk size for last chunk
106.                         current_chunk = min(chunk_size, remaining_size)
107.                        
108.                         # Generate appropriate data for this pass
109.                         if i == 0:
110.                             # Pass 1: zeros
111.                             data = b'\x00' * current_chunk
112.                         elif i == 1:
113.                             # Pass 2: ones
114.                             data = b'\xFF' * current_chunk
115.                         else:
116.                             # Other passes: random data
117.                             data = bytes(random.getrandbits(8) for _ in range(current_chunk))
118.                        
119.                         # Write the chunk
120.                         f.write(data)
121.                        
122.                         # Update progress
123.                         remaining_size -= current_chunk
124.                         chunks_done += 1
125.                         percent = int((chunks_done / chunks_total) * 100)
126.                        
127.                         # Only update display when percent changes
128.                         if percent != last_percent:
129.                             progress_bar = "#" * (percent // 2) + " " * (50 - (percent // 2))
130.                             print(f"Progress: [{progress_bar}] {percent}%", end="\r")
131.                             last_percent = percent
132.                            
133.                             # Flush stdout for real-time updates
134.                             sys.stdout.flush()
135.                
136.                 # Ensure data is written to disk
137.                 f.flush()
138.                 os.fsync(f.fileno())
139.                 print()  # New line after progress bar
140.                    
141.             # Finally delete the file
142.             os.remove(file_path)
143.             print(f"File {file_name} has been securely wiped.")
144.             return True
145.        
146.         except Exception as e:
147.             print(f"Error wiping file {file_path}: {e}")
148.             return False
149.    
150.     def secure_delete_directory(self, directory_path):
151.         """
152.        Securely delete an entire directory and its contents.
153.        """
154.         if not os.path.exists(directory_path) or not os.path.isdir(directory_path):
155.             print(f"Directory {directory_path} does not exist or is not a directory.")
156.             return False
157.        
158.         try:
159.             # Walk through the directory and delete all files securely
160.             for root, dirs, files in os.walk(directory_path, topdown=False):
161.                 for file in files:
162.                     self.secure_delete_file(os.path.join(root, file))
163.                
164.                 # Remove empty directories
165.                 for dir in dirs:
166.                     dir_path = os.path.join(root, dir)
167.                     if os.path.exists(dir_path):
168.                         os.rmdir(dir_path)
169.            
170.             # Remove the top directory
171.             os.rmdir(directory_path)
172.             print(f"Directory {directory_path} has been securely wiped.")
173.             return True
174.        
175.         except Exception as e:
176.             print(f"Error wiping directory {directory_path}: {e}")
177.             return False
178.    
179.     def wipe_free_space(self, drive_path):
180.         """
181.        Wipe free space to prevent recovery of previously deleted files.
182.        This is the most important function for ensuring already deleted files can't be recovered.
183.        """
184.         print(f"Wiping free space on {drive_path}...")
185.         print(f"Method: {self.method.upper()} with {self.passes} passes")
186.        
187.         # Get available free space to estimate progress
188.         if self.system == "Windows":
189.             import ctypes
190.             free_bytes = ctypes.c_ulonglong(0)
191.             ctypes.windll.kernel32.GetDiskFreeSpaceExW(ctypes.c_wchar_p(drive_path), None, None, ctypes.pointer(free_bytes))
192.             total_free_space = free_bytes.value
193.         else:
194.             # Unix-based systems
195.             st = os.statvfs(drive_path)
196.             total_free_space = st.f_bavail * st.f_frsize
197.        
198.         print(f"Detected {total_free_space / (1024**3):.2f} GB of free space to wipe")
199.        
200.         # Create a temporary directory on the specified drive
201.         temp_dir = os.path.join(drive_path, "temp_secure_wipe")
202.         os.makedirs(temp_dir, exist_ok=True)
203.        
204.         try:
205.             # Method: Fill the drive with large files until it's full, then delete them
206.             large_file_path = os.path.join(temp_dir, "wipe_file")
207.             chunk_size = 1024 * 1024 * 10  # 10MB chunks
208.             bytes_written = 0
209.             last_percent = 0
210.            
211.             print("Progress: [" + " " * 50 + "] 0%", end="\r")
212.            
213.             # For each pass
214.             for current_pass in range(self.passes):
215.                 # Get pattern based on method and current pass
216.                 pattern = self._get_wipe_pattern(current_pass)
217.                 pattern_name = self._get_pattern_name(current_pass)
218.                
219.                 print(f"\nPass {current_pass+1}/{self.passes}: Writing {pattern_name}")
220.                 bytes_written = 0
221.                 last_percent = 0
222.                
223.                 # Create pattern data for this chunk
224.                 pattern_data = self._generate_pattern_data(pattern, chunk_size)
225.                
226.                 # Write until disk is full
227.                 try:
228.                     with open(large_file_path, 'wb') as f:
229.                         while True:
230.                             f.write(pattern_data)
231.                             f.flush()
232.                             os.fsync(f.fileno())
233.                            
234.                             # Update progress
235.                             bytes_written += chunk_size
236.                             percent = min(100, int((bytes_written / total_free_space) * 100))
237.                            
238.                             # Only update display when percent changes to avoid console spam
239.                             if percent > last_percent:
240.                                 progress_bar = "#" * (percent // 2) + " " * (50 - (percent // 2))
241.                                 print(f"Progress: [{progress_bar}] {percent}%", end="\r")
242.                                 last_percent = percent
243.                                
244.                 except IOError:
245.                     # Expected - disk full
246.                     print(f"\nPass {current_pass+1}/{self.passes} complete - disk full")
247.                
248.                 # Delete the file before next pass
249.                 if os.path.exists(large_file_path):
250.                     os.remove(large_file_path)
251.            
252.             print("\nFinal cleanup - securely removing wipe file")
253.            
254.             # Clean up
255.             shutil.rmtree(temp_dir, ignore_errors=True)
256.             print(f"Complete! Free space on {drive_path} has been wiped with {self.passes} passes using {self.method.upper()} method.")
257.             return True
258.        
259.         except Exception as e:
260.             print(f"\nError wiping free space on {drive_path}: {e}")
261.             # Clean up in case of error
262.             if os.path.exists(temp_dir):
263.                 shutil.rmtree(temp_dir, ignore_errors=True)
264.             return False
265.    
266.     def _get_wipe_pattern(self, pass_number):
267.         """Get the appropriate pattern for the current pass based on wiping method."""
268.         if self.method == "dod":
269.             # DoD 5220.22-M method
270.             pattern_index = min(pass_number, len(self.DOD_PATTERNS) - 1)
271.             return self.DOD_PATTERNS[pattern_index]
272.         elif self.method == "gutmann" or self.method == "paranoid":
273.             # Gutmann method patterns (simplified)
274.             if pass_number < 4:
275.                 # Passes 1-4: Random data
276.                 return None  # Signal to use random data
277.             elif pass_number < 10:
278.                 # Passes 5-10: Specific patterns from DoD
279.                 dod_index = (pass_number - 4) % len(self.DOD_PATTERNS)
280.                 return self.DOD_PATTERNS[dod_index]
281.             elif pass_number < 32:
282.                 # Passes 11-32: Specific bit patterns (simplified to random)
283.                 return None  # Signal to use random data
284.             else:
285.                 # Passes 33-35: Random data again
286.                 return None  # Signal to use random data
287.         else:
288.             # Standard method
289.             if pass_number == 0:
290.                 return b'\x00'  # First pass: zeros
291.             elif pass_number == 1:
292.                 return b'\xFF'  # Second pass: ones
293.             else:
294.                 return None  # Other passes: random data
295.    
296.     def _get_pattern_name(self, pass_number):
297.         """Get a human-readable name for the current pass pattern."""
298.         pattern = self._get_wipe_pattern(pass_number)
299.        
300.         if pattern is None:
301.             return f"random data"
302.         elif pattern == b'\x00':
303.             return "zeros (0x00)"
304.         elif pattern == b'\xFF':
305.             return "ones (0xFF)"
306.         elif pattern == b'\x00\xFF\x00\xFF\x00\xFF':
307.             return "alternating zeros and ones"
308.         elif pattern == b'\x55\xAA\x55\xAA\x55\xAA':
309.             return "alternating 01010101 and 10101010"
310.         elif pattern == b'\x92\x49\x24':
311.             return "DoD pattern 10010010..."
312.         elif pattern == b'\x49\x92\x24\x49\x92':
313.             return "DoD pattern 01001001..."
314.         elif pattern == b'\xDB\xB6\xDB\x6D\xB6\xDB':
315.             return "DoD pattern 11011011..."
316.         else:
317.             return f"special pattern {pattern[:10].hex()}..."
318.    
319.     def _generate_pattern_data(self, pattern, chunk_size):
320.         """Generate a chunk of data using the specified pattern or random data if pattern is None."""
321.         if pattern is None:
322.             # Random data
323.             return bytes(random.getrandbits(8) for _ in range(chunk_size))
324.         else:
325.             # Repeat the pattern to fill the chunk
326.             pattern_length = len(pattern)
327.             repeats = chunk_size // pattern_length
328.             remainder = chunk_size % pattern_length
329.            
330.             return pattern * repeats + pattern[:remainder]
331.    
332.     def wipe_free_space_advanced(self, drive_path):
333.         """
334.        Use platform-specific tools for more thorough free space wiping.
335.        This is a more advanced option that uses built-in OS tools where available.
336.        """
337.         if self.system == "Windows":
338.             return self._wipe_free_space_windows(drive_path)
339.         elif self.system == "Darwin":  # macOS
340.             return self._wipe_free_space_macos(drive_path)
341.         else:  # Linux and other UNIX-like systems
342.             return self._wipe_free_space_linux(drive_path)
343.    
344.     def _wipe_free_space_windows(self, drive_path):
345.         """
346.        Use sdelete from Sysinternals to wipe free space on Windows.
347.        Note: sdelete must be installed and in the system PATH.
348.        """
349.         try:
350.             # Check if sdelete is available
351.             subprocess.run(['sdelete', '-?'], stdout=subprocess.PIPE, stderr=subprocess.PIPE, check=False)
352.            
353.             # Run sdelete to clean free space with progress monitoring
354.             print(f"Using sdelete to wipe free space on {drive_path}...")
355.            
356.             # Configure sdelete based on passes
357.             if self.passes <= 1:
358.                 # Single pass of zeros
359.                 args = ['sdelete', '-z', '-nobanner', drive_path]
360.             else:
361.                 # Multiple passes (sdelete uses 3 passes with -p)
362.                 args = ['sdelete', '-p', str(min(self.passes, 3)), '-nobanner', drive_path]
363.            
364.             print(f"Starting {self.passes} pass(es) with sdelete - This may take a while")
365.             print("Progress indicator from sdelete:")
366.            
367.             # Run sdelete with real-time output
368.             process = subprocess.Popen(
369.                 args,
370.                 stdout=subprocess.PIPE,
371.                 stderr=subprocess.STDOUT,
372.                 universal_newlines=True,
373.                 bufsize=1
374.             )
375.            
376.             # Show real-time progress from sdelete
377.             for line in process.stdout:
378.                 line = line.strip()
379.                 if line:
380.                     print(f"  {line}")
381.            
382.             # Wait for process to complete
383.             return_code = process.wait()
384.            
385.             if return_code == 0:
386.                 print(f"Free space on {drive_path} has been wiped using sdelete.")
387.                 return True
388.             else:
389.                 raise subprocess.CalledProcessError(return_code, args)
390.        
391.         except FileNotFoundError:
392.             print("sdelete not found. Please install SysInternals Suite from Microsoft.")
393.             print("Falling back to basic free space wiping method...")
394.             return self.wipe_free_space(drive_path)
395.        
396.         except subprocess.CalledProcessError as e:
397.             print(f"Error running sdelete: {e}")
398.             print("Falling back to basic free space wiping method...")
399.             return self.wipe_free_space(drive_path)
400.    
401.     def _wipe_free_space_macos(self, drive_path):
402.         """
403.        Use diskutil to wipe free space on macOS.
404.        """
405.         try:
406.             # Get the disk identifier for the given path
407.             df_output = subprocess.check_output(['df', drive_path]).decode('utf-8').strip().split('\n')
408.             disk_id = df_output[1].split()[0]
409.            
410.             print(f"Using diskutil to wipe free space on {disk_id}...")
411.            
412.             # Use diskutil to securely erase free space
413.             # 1 pass for speed, but can be increased for more security
414.             subprocess.run(['diskutil', 'secureErase', 'freespace', str(self.passes), disk_id], check=True)
415.            
416.             print(f"Free space on {drive_path} ({disk_id}) has been wiped using diskutil.")
417.             return True
418.        
419.         except Exception as e:
420.             print(f"Error using diskutil to wipe free space: {e}")
421.             print("Falling back to basic free space wiping method...")
422.             return self.wipe_free_space(drive_path)
423.    
424.     def _wipe_free_space_linux(self, drive_path):
425.         """
426.        Use secure-delete tools (if available) or fallback to manual method on Linux.
427.        """
428.         try:
429.             # Check if sfill (part of secure-delete) is available
430.             subprocess.run(['sfill', '--version'], stdout=subprocess.PIPE, stderr=subprocess.PIPE, check=False)
431.            
432.             print(f"Using sfill to wipe free space on {drive_path}...")
433.            
434.             # Use sfill to securely erase free space
435.             # -l option makes it less secure but faster
436.             subprocess.run(['sfill', '-l', '-v', drive_path], check=True)
437.            
438.             print(f"Free space on {drive_path} has been wiped using sfill.")
439.             return True
440.        
441.         except FileNotFoundError:
442.             print("sfill not found. Please install the secure-delete package.")
443.             print("Falling back to basic free space wiping method...")
444.             return self.wipe_free_space(drive_path)
445.        
446.         except subprocess.CalledProcessError as e:
447.             print(f"Error running sfill: {e}")
448.             print("Falling back to basic free space wiping method...")
449.             return self.wipe_free_space(drive_path)
450.  
451.  
452. def main():
453.     parser = argparse.ArgumentParser(description='Securely wipe files, directories, and free space for safe computer resale.')
454.    
455.     # Create subparsers for different commands
456.     subparsers = parser.add_subparsers(dest='command', help='Command to execute')
457.    
458.     # Parser for the file command
459.     file_parser = subparsers.add_parser('file', help='Securely delete a file')
460.     file_parser.add_argument('path', help='Path to the file')
461.     file_parser.add_argument('--passes', type=int, default=3, help='Number of overwrite passes (default: 3)')
462.     file_parser.add_argument('--method', choices=['standard', 'dod', 'gutmann', 'paranoid'], default='standard',
463.                           help='Wiping method: standard, dod (DoD 5220.22-M), gutmann (35-pass), or paranoid (default: standard)')
464.    
465.     # Parser for the directory command
466.     dir_parser = subparsers.add_parser('directory', help='Securely delete a directory')
467.     dir_parser.add_argument('path', help='Path to the directory')
468.     dir_parser.add_argument('--passes', type=int, default=3, help='Number of overwrite passes (default: 3)')
469.     dir_parser.add_argument('--method', choices=['standard', 'dod', 'gutmann', 'paranoid'], default='standard',
470.                           help='Wiping method: standard, dod (DoD 5220.22-M), gutmann (35-pass), or paranoid (default: standard)')
471.    
472.     # Parser for the freespace command
473.     free_parser = subparsers.add_parser('freespace', help='Wipe free space to prevent recovery of previously deleted files')
474.     free_parser.add_argument('path', help='Path to the drive/partition')
475.     free_parser.add_argument('--advanced', action='store_true', help='Use advanced OS-specific methods if available')
476.     free_parser.add_argument('--passes', type=int, default=3, help='Number of overwrite passes (default: 3)')
477.     free_parser.add_argument('--method', choices=['standard', 'dod', 'gutmann', 'paranoid'], default='standard',
478.                           help='Wiping method: standard, dod (DoD 5220.22-M), gutmann (35-pass), or paranoid (default: standard)')
479.    
480.     # Parser for fullwipe command - new command for computer resale preparation
481.     fullwipe_parser = subparsers.add_parser('fullwipe', help='Complete system wipe for computer resale (WARNING: destroys all data)')
482.     fullwipe_parser.add_argument('drive', help='Drive to wipe (e.g., C:, /dev/sda)')
483.     fullwipe_parser.add_argument('--method', choices=['standard', 'dod', 'gutmann', 'paranoid'], default='dod',
484.                           help='Wiping method: standard, dod (DoD 5220.22-M), gutmann (35-pass), or paranoid (default: dod)')
485.     fullwipe_parser.add_argument('--passes', type=int, default=7, help='Number of overwrite passes (default: 7)')
486.     fullwipe_parser.add_argument('--force', action='store_true', help='Skip confirmation prompt (USE WITH CAUTION)')
487.    
488.     args = parser.parse_args()
489.    
490.     # Create the secure eraser
491.     eraser = SecureEraser(passes=args.passes)
492.    
493.     # Execute the requested command
494.     if args.command == 'file':
495.         eraser = SecureEraser(passes=args.passes, method=args.method)
496.         eraser.secure_delete_file(args.path)
497.     elif args.command == 'directory':
498.         eraser = SecureEraser(passes=args.passes, method=args.method)
499.         eraser.secure_delete_directory(args.path)
500.     elif args.command == 'freespace':
501.         eraser = SecureEraser(passes=args.passes, method=args.method)
502.         if args.advanced:
503.             eraser.wipe_free_space_advanced(args.path)
504.         else:
505.             eraser.wipe_free_space(args.path)
506.     elif args.command == 'fullwipe':
507.         # Special handling for full drive wiping (computer resale preparation)
508.         print("\n" + "="*80)
509.         print("WARNING: FULL DRIVE WIPE REQUESTED".center(80))
510.         print("This will PERMANENTLY DESTROY ALL DATA on the drive!".center(80))
511.         print("Intended for computer resale preparation.".center(80))
512.         print("="*80 + "\n")
513.        
514.         if not args.force:
515.             confirmation = input(f"Are you ABSOLUTELY SURE you want to wipe ALL DATA on {args.drive}? (yes/NO): ")
516.             if confirmation.lower() != "yes":
517.                 print("Operation canceled. No data was modified.")
518.                 return
519.                
520.             confirmation2 = input(f"FINAL WARNING: Type 'I UNDERSTAND THIS DESTROYS ALL DATA' to confirm: ")
521.             if confirmation2 != "I UNDERSTAND THIS DESTROYS ALL DATA":
522.                 print("Operation canceled. No data was modified.")
523.                 return
524.        
525.         print(f"\nInitiating full drive wipe on {args.drive} using {args.method.upper()} method with {args.passes} passes")
526.         print("This process may take several hours to several days depending on drive size and method.")
527.        
528.         # TODO: Implement actual drive wiping using platform-specific tools
529.         # For now we'll just show a message about the appropriate tool to use
530.         if platform.system() == "Windows":
531.             print("\nFor Windows systems, please use DBAN (Darik's Boot and Nuke) for full drive wiping.")
532.             print("Download DBAN from https://dban.org/")
533.             print("Create a bootable USB/DVD and boot from it to wipe the entire drive.")
534.         elif platform.system() == "Darwin":  # macOS
535.             print("\nFor macOS, please use Disk Utility's secure erase feature:")
536.             print("1. Open Disk Utility")
537.             print("2. Select the drive")
538.             print("3. Click 'Erase'")
539.             print("4. Click 'Security Options' and choose the appropriate wiping level")
540.         else:  # Linux
541.             print("\nFor Linux, you can use the 'shred' command for full drive wiping:")
542.             print(f"sudo shred -v -n {args.passes} -z {args.drive}")
543.            
544.         print("\nRecommendation: For the most thorough wipe for computer resale, use dedicated")
545.         print("wiping tools that can create a verification report, such as:")
546.         print("- DBAN (Darik's Boot and Nuke)")
547.         print("- Blancco Drive Eraser")
548.         print("- KillDisk")
549.     else:
550.         parser.print_help()
551.  
552.  
553. if __name__ == "__main__":
554.     main()
555.  
556.