In this chapter, we went through different approaches towards Windows Phone 8.x forensic analysis. In contrast to most mobile OSs, the Windows Phone forensic acquisition and analysis requires manual effort in addition to automated tools. We saw that most of the available forensic tools cannot fully acquire data from a Windows Phone device, which makes it a very challenging platform for forensic examiners. There is no easy way to gain full access to a user's data in a Windows Phone device, and in many cases, many tools and approaches must be used in order to acquire evidence. With the introduction of full disk encryption, even extracting the full memory dump using advanced techniques like JTAG is useless. This makes it more painful for examiners dealing with this OS. As we discussed in this chapter, by adopting the Windows NT kernel, Windows Phone 8.x inherited many of its security enhancement features, making it harder to explore. We also explained the sideloading technique to logically...
Mastering Mobile Forensics
By :
Mastering Mobile Forensics
By:
Overview of this book
Mobile forensics presents a real challenge to the forensic community due to the fast and unstoppable changes in technology. This book aims to provide the forensic community an in-depth insight into mobile forensic techniques when it comes to deal with recent smartphones operating systems
Starting with a brief overview of forensic strategies and investigation procedures, you will understand the concepts of file carving, GPS analysis, and string analyzing. You will also see the difference between encryption, encoding, and hashing methods and get to grips with the fundamentals of reverse code engineering. Next, the book will walk you through the iOS, Android and Windows Phone architectures and filesystem, followed by showing you various forensic approaches and data gathering techniques.
You will also explore advanced forensic techniques and find out how to deal with third-applications using case studies. The book will help you master data acquisition on Windows Phone 8. By the end of this book, you will be acquainted with best practices and the different models used in mobile forensics.
Related Content you might be interested in
Current Title:
Mastering Mobile Forensics
No titles found
Table of Contents (14 chapters)
Mastering Mobile Forensics
Credits
About the Author
About the Reviewer
www.PacktPub.com
Preface
Free Chapter
Mobile Forensics and the Investigation Process Model
Do It Yourself – Low-Level Techniques
iDevices from a Forensic Point of View
Android Forensics
Windows Phone 8 Forensics
Mobile Forensics – Best Practices
Preparing a Mobile Forensic Workstation
Index
Customer Reviews