If I delete files on a NTFS partition I can recover them shortly with a very high probability of success. When a file is deleted, only the file system entry is deleted, thus the content of the file will still remain intact for a periode of time, depending on the disk activity afterwards.
How can I make sure that the files will be unrecoverable and what is the best tool to do the job?
Non-Home editions of Windows come with a command-line tool called cipher.exe. In addition to letting you encrypt files with NTFS encryption, it also has a free-space wiping mechanism. e.g.
C:\> cipher /W:C:\
It will then wipe all free space on the designated drive. Other tools can do one-off file wipes, but I like cipher.exe because it is built-in on most Windows editions.
Any tool that overwrites the data is ultimately going to stop casual attackers (and, very likely, even well budgeted attackers). Recovering data from an overwrite on modern hard disk drives is extremely difficult. You can use as fancy a tool as you want (overwrites data with a cryptographically sound random number generator, etc), but in the end even a simple overwrite with zeros will protect you from all but the most sophisticated attackers.
Beware of SSDs and attempting to overwrite data. SSDs do "wear leveling" and tools that simply overwrite files without any awareness to the underlying storage technology may not actually overwrite the data.
I've used SDelete in windows with success. http://technet.microsoft.com/en-us/sysinternals/bb897443.aspx
On a workstation by workstation case you could use a piece of software designed to remove files from the disk, I've used one known as FileShredder.
If you're trying to do something on a corporate scale I would look at companies like Symantec - the name escapes me but I know they had a product which would do what you are looking for.
You could also, if you're worried about the recoverability of file names in that slack space, use a filesystem container, like one from TrueCrypt.
In the days of FAT, the disk defragmentation utilities were able to wipe all free space, what is IMHO very good measure to protect deleted files (even when considering "reserved" sectors - there is only few of them, so only very little data is possibly left) .. but is it available for NTFS as well? I can't find such option.
Any Directory Opus user will have a built-in "secure wipe" feature that does about the same thing every other tool does:
This uses algorithms similar to those recommended by the US NSA and US Department of Defense for securely destroying the contents of a file to make recovery by forensic analysis of the magnetic medium of the disk extremely difficult if not unlikely. The number of passes for each file can be configured in Preferences.
