Format it as FAT with 1 sector per cluster:
# mkdosfs -s 1 fat-img.ddMount the image in loopback:
mount -o loop fat-img.dd /mnt
Copy file1.dat to /mnt (sector 271)
Copy file2.dat to /mnt (sector 272)
Copy file3.dat to /mnt (sectors 273 & 274)
Copy temp.dat as /mnt/file4.dat (sector 275)
Copy file5.dat to /mnt (sector 276)
Open /mnt/file4.dat in a hexeditor to manually extend it and make it
fragmented. (sectors 275 & 277)
Copy temp.dat as /mnt/file6.dat (sector 278)
Copy file7.dat to /mnt (sector 279)
Open /mnt/file6.dat in a hexeditor to manually extend it and make it
fragmented. (sectors 278 and 280)
- start file (sector 275, offset 0) with 'ck2'
- end first sector (sector 275, offset 507) with '1frag'
- start next sector (sector 277, offset 0) with 'ment1'
- enter random values after 'ment1' to extend the file further.
Copy second to /mnt (sector 281)
Delete /mnt/file5.dat (sector 276)
Unmount the image:
- end the first sector (sector 278, offset 502) with '2fragment ' (note the space)
- begin the second sector (sector 280, offset 0) with 'sentence2'
- enter random values after 'sentence2' to extend the file furter.
# umount /mnt/
Use 'fls' and 'istat' from The Sleuth Kit to identify the sectors that
the following files have allocated:
Open the entire image in a hexeditor to add slack space strings.
Add 'ck1' to byte offset 400 of the sector that file2.dat allocated (272).
Add '2sla' to the final 4 bytes of the last sector that file3.dat allocated (274).
Add '3slack3' to anywhere after 288 bytes of the last sector for
file4.dat (sector 277). (the file has a total size of 800 bytes)
Add '3cross3' so that it crosses any two sectors after the sector that 'second' allocated (281)
- file2.dat (272)
- file3.dat (273, 274)
- file4.dat (275, 277)
- second (281)
Optional: The entire image is currently random values and therefore
will not compress. To make it more portable, find a big area of the image
that is not being used and wipe it with zeros.
- Add '3cro' to sector 283, offset 508
- Add 'ss3' to sector 284, offset 0