Book Image

Practical Mobile Forensics - Third Edition

By : Rohit Tamma, Oleg Skulkin, Heather Mahalik, Satish Bommisetty
Book Image

Practical Mobile Forensics - Third Edition

By: Rohit Tamma, Oleg Skulkin, Heather Mahalik, Satish Bommisetty

Overview of this book

Covering up-to-date mobile platforms, this book will focuses on teaching you the most recent techniques for investigating mobile devices. We delve mobile forensics techniques in iOS 9-11, Android 7-8 devices, and Windows 10. We will demonstrate the latest open source and commercial mobile forensics tools, enabling you to analyze and retrieve data effectively. You will learn how to introspect and retrieve data from the cloud, and document and prepare reports of your investigations. By the end of this book, you will have mastered the current operating systems and the relevant techniques to recover data from mobile devices by leveraging open source solutions.

Related Content you might be interested in

Current Title:

Small book image
Practical Mobile Forensics - Third Edition
Rohit Tamma | Oleg Skulkin | Heather Mahalik | Satish Bommisetty
Jan, 2018 | 402 pages
Small book image
Learning Android Forensics
Rohit Tamma | Donnie Tindall | Oleg Skulkin
Dec, 2018 | 328 pages
Small book image
iOS Forensics for Investigators
Gianluca Tiepolo
May, 2022 | 316 pages
Small book image
Mobile Forensics Cookbook
Igor Mikhaylov
Dec, 2017 | 302 pages
Table of Contents (19 chapters)
Title Page
Title Page
Copyright and Credits
Copyright and Credits
Packt Upsell
Packt Upsell
Contributors
Contributors
Preface
Preface
Free Chapter
1
Introduction to Mobile Forensics
Introduction to Mobile Forensics
Why do we need mobile forensics?
Mobile forensics
The mobile phone evidence extraction process
Practical mobile forensic approaches
Potential evidence stored on mobile phones
Examination and analysis
Rules of evidence
Good forensic practices
Summary
2
Understanding the Internals of iOS Devices
Understanding the Internals of iOS Devices
iPhone models
iPhone hardware
iPad models
Understanding the iPad hardware
Apple Watch models
Understanding the Apple Watch hardware
The filesystem
The HFS Plus filesystem
The APFS filesystem
Disk layout
iPhone operating system
Summary
3
Data Acquisition from iOS Devices
Data Acquisition from iOS Devices
Operating modes of iOS devices
Logical acquisition
Filesystem acquisition
Physical acquisition
Summary
4
Data Acquisition from iOS Backups
Data Acquisition from iOS Backups
iTunes backup
Extracting unencrypted backups
Encrypted backup
Working with iCloud backups
Summary
5
iOS Data Analysis and Recovery
iOS Data Analysis and Recovery
Timestamps
Summary
6
iOS Forensic Tools
iOS Forensic Tools
Working with Cellebrite UFED Physical Analyzer
Working with Magnet AXIOM
Working with Belkasoft Evidence Center
Working with Oxygen Forensic Detective
Summary
7
Understanding Android
Understanding Android
The evolution of Android
The Android model
Android security
The Android file hierarchy
The Android file system
Summary
8
Android Forensic Setup and Pre-Data Extraction Techniques
Android Forensic Setup and Pre-Data Extraction Techniques
Setting up the forensic environment for Android
Screen lock bypassing techniques
Gaining root access
Summary
9
Android Data Extraction Techniques
Android Data Extraction Techniques
Data extraction techniques
Summary
10
Android Data Analysis and Recovery
Android Data Analysis and Recovery
Analyzing an Android image
Android data recovery
Summary
11
Android App Analysis, Malware, and Reverse Engineering
Android App Analysis, Malware, and Reverse Engineering
Analyzing Android apps
Reverse engineering Android apps
Android malware
Summary
12
Windows Phone Forensics
Windows Phone Forensics
Windows Phone OS
Security model
Windows Phone filesystem
Data acquisition
Commercial forensic tool acquisition methods
Key artifacts for examination
Summary
13
Parsing Third-Party Application Files
Parsing Third-Party Application Files
Third-party application overview
Encoding versus encryption
Application data storage
Forensic methods used to extract third-party application data
Summary
Other Books You May Enjoy
Other Books You May Enjoy
Leave a review - let other readers know what you think

iPhone operating system

iOS is Apple's most advanced and feature-rich proprietary mobile operating system. It was released with the first generation of the iPhone. When introduced, it was named iPhone OS, and it was later renamed iOS to reflect the unified nature of the operating system that powers all Apple iOS devices, such as the iPhone, iPod touch, iPad, and Apple TV. iOS is derived from core OS X technologies and streamlined to be compact and efficient for mobile devices.

It utilizes a multi-touch interface, where simple gestures are used to operate and control the device, such as swiping your finger across the screen to move to the successive page or pinching your fingers to zoom. In simple terms, iOS assists with the general functioning of the device. iOS is really macOS X with the following significant differences:

  • The architecture for which the kernel and binaries are compiled is ARM-based rather than Intel x86_64
  • The OS X kernel is open source, whereas the iOS kernel remains closed...
Previous Section
End of Section 12
Next Section