Book Image

iOS Forensics Cookbook

By : Bhanu Birani, Mayank Birani
Book Image

iOS Forensics Cookbook

By: Bhanu Birani, Mayank Birani

Overview of this book

Mobile device forensics is a branch of digital forensics that involves the recovery of evidence or data in a digital format from a device without affecting its integrity. With the growing popularity of iOS-based Apple devices, iOS forensics has developed immense importance. To cater to the need, this book deals with tasks such as the encryption and decryption of files, various ways to integrate techniques withsocial media, and ways to grab the user events and actions on the iOS app. Using practical examples, we’ll start with the analysis keychain and raw disk decryption, social media integration, and getting accustomed to analytics tools. You’ll also learn how to distribute the iOS apps without releasing them to Apple’s App Store. Moving on, the book covers test flights and hockey app integration, the crash reporting system, recovery tools, and their features. By the end of the book, using the aforementioned techniques, you will be able to successfully analyze iOS-based devices forensically.

Related Content you might be interested in

Current Title:

Small book image
iOS Forensics Cookbook
Bhanu Birani | Mayank Birani
Jan, 2016 | 184 pages
No titles found
Table of Contents (13 chapters)
iOS Forensics Cookbook
iOS Forensics Cookbook
Credits
Credits
About the Authors
About the Authors
www.PacktPub.com
www.PacktPub.com
Preface
Preface
Free Chapter
1
Saving and Extracting Data
Saving and Extracting Data
The Documents directory
Saving data using the RAW file
Saving data in the SQLite database
Learning about core data
2
Social Media Integration
Social Media Integration
Integration with Facebook
Integrating with LinkedIn
Integration with Instagram
3
Integrating Data Analytics
Integrating Data Analytics
Introduction
Google Analytics
Flurry Analytics
Flurry with data mining
Integrating Mixpanel
4
App Distribution and Crash Reporting
App Distribution and Crash Reporting
Setting up and integrating TestFlight
Integrating HockeyApp
HockeyApp for crash reporting
5
Demystifying Crash Reports
Demystifying Crash Reports
Crashlytics integration
Desymbolication of crash logs
Analyzing crash reports
6
Forensics Recovery
Forensics Recovery
DFU and Recovery modes
Extracting and reading data
Recovering backups
Extracting data from iTunes backups
Encrypting and decrypting tools
7
Forensics Tools
Forensics Tools
Exploring iPhone Backup Analyzer
Exploring iExplorer
Exploring SQLite browser
Jailbreaking iPhone devices
Index
Index

Analyzing crash reports

In the previous topics, we have seen various ways to generate and gather crash reports. In this section, our primary focus will be on the ways to analyze the crash reports. This will help us better understand the reasons for crashes and their possible fixes. By default, crashes are not generated in a human-readable format; to read crashes, we need to symbolicate them using the .dysm file.

Getting ready

Open Xcode and navigate to the Organizer window. The Organizer window should list all the crashes for all the apps developed by your team. The following steps will help you in analyzing them.

How to do it...

  1. Go to Window | Organizer. Choose Crashes.

  2. Select an app from the left column. The list of applications is fetched from iTunes Connect and it will obtain all the information about every version.

  3. In the second column, you can see the versions and the build of your app that encountered a crash.

  4. To see where exactly in the code there was a crash, navigate to the right panel...

Previous Section
End of Chapter 5
Next Chapter