IronKey

Don't know, but it's always worth trying the social engineering route. People re-use passwords, so try obtaining every other easier password you can from any source and trying them (pc/notes/etc).
I suspect you're out of luck as the devices look pretty good (but don't know for sure).

One problem with the Ironkey is that you can only try 10 passwords. After that, the device becomes unusable. It kinda limits the passwords I can try.

Thanks.

I personally own two IronKeys. I have tried every thing known to access them without the pass keys. If you can gain access to the computer the Ironkey was set up with you might could break other passwords there and hope they reused them.

In a live analysis course I was giving about a year or so ago, one of the participants found his Ironkey password in the machine's memory dump (much to his chagrin). We didn't spend time looking for indicators to locate the password however - he just did a string search for it.

You might want to do some testing on an Ironkey of your own if you have one. Perhaps isolate and extract the process that uses the password to unlock the USB.

If you find a way to locate the key, you could then look through your suspect's machine's memory dump, pagefile, or hibernation file to see if the password is in there.

(Actually sounds like a good summer project for me to work on unless the folks at Ironkey are on to this and now wiping memory the way TrueCrypt does when volumes are dismounted…)

I personally own two IronKeys. I have tried every thing known to access them without the pass keys. If you can gain access to the computer the Ironkey was set up with you might could break other passwords there and hope they reused them.

That was my idea too. My problem is that the suspect's machine is encrypted with TrueCrypt WDE. So I have to figure out a way to access that machine first… Very easy and simple case… hehe

Thanks