Book Image

Mastering Mobile Forensics

By : Soufiane Tahiri
Book Image

Mastering Mobile Forensics

By: Soufiane Tahiri

Overview of this book

Mobile forensics presents a real challenge to the forensic community due to the fast and unstoppable changes in technology. This book aims to provide the forensic community an in-depth insight into mobile forensic techniques when it comes to deal with recent smartphones operating systems Starting with a brief overview of forensic strategies and investigation procedures, you will understand the concepts of file carving, GPS analysis, and string analyzing. You will also see the difference between encryption, encoding, and hashing methods and get to grips with the fundamentals of reverse code engineering. Next, the book will walk you through the iOS, Android and Windows Phone architectures and filesystem, followed by showing you various forensic approaches and data gathering techniques. You will also explore advanced forensic techniques and find out how to deal with third-applications using case studies. The book will help you master data acquisition on Windows Phone 8. By the end of this book, you will be acquainted with best practices and the different models used in mobile forensics.
Table of Contents (14 chapters)
Mastering Mobile Forensics
About the Author
About the Reviewer
Preparing a Mobile Forensic Workstation


There are a huge number of mobile device models in use today, and almost every five months new models are manufactured, and most of them use closed operating systems, making forensic process difficult. Our goal is to bridge the gap by giving to the forensic community an in-depth look at mobile forensics techniques by detailing methods on how to gather evidence from mobile devices with different operating systems and how to use the appropriate model.

Seeing the daily increase in the use of smartphone, the unwilling-to-stop development of today's smartphone capabilities, and given the pace at which this development occurs, the forensics professionals, law enforcement, and researchers were and still are in need of producing a standardized framework to follow to assure a well driven investigation. Researches in this scope are not yet done, thus improvement is continually done to keep responding to permanent challenges offered by smartphone manufacturers and mobile operating systems vendors. In this chapter, we showed the importance of smartphone forensic field and discussed some models and frameworks applied in order to correctly lead forensic investigation cases. This chapter also discussed major smartphone forensic challenges, in an effort to help bypass some of the previously presented challenges when commercially available forensic tools cannot deal with some files or file types.

In the next chapter, we will see some low-level techniques that can be applied to gather forensically important evidences independently of the available forensics tools, operating systems, or device subjects of the eventual investigation.