An error occured adding a product to your cart, you may only have 100 items in your cart.

Practical Mobile Forensics - Second Edition

A hands-on guide to mastering mobile forensics for the iOS, Android, and the Windows Phone platforms
Practical Mobile Forensics - Second Edition Book Cover

Practical Mobile Forensics - Second Edition

Heather Mahalik, Rohit Tamma, Satish Bommisetty

3 customer reviews
A hands-on guide to mastering mobile forensics for the iOS, Android, and the Windows Phone platforms
Mapt Subscription
FREE
€29.98/m after trial
eBook
€33.60
RRP €47.98
Save 29%
Print + eBook
€49.99
RRP €49.99
What do I get with a Mapt Pro subscription?
  • Unlimited access to all Packt’s 5,000+ eBooks and Videos
  • Early Access content, Progress Tracking, and Assessments
  • 1 Free eBook or Video to download and keep every month after trial
What do I get with an eBook?
  • Download this book in EPUB, PDF, MOBI formats
  • DRM FREE - read and interact with your content when you want, where you want, and how you want
  • Access this title in the Mapt reader
What do I get with Print & eBook?
  • Get a paperback copy of the book delivered to you
  • Download this book in EPUB, PDF, MOBI formats
  • DRM FREE - read and interact with your content when you want, where you want, and how you want
  • Access this title in the Mapt reader
What do I get with a Video?
  • Download this Video course in MP4 format
  • DRM FREE - read and interact with your content when you want, where you want, and how you want
  • Access this title in the Mapt reader
€0.00
€33.60
€49.99
€29.98p/m after trial
RRP €47.98
RRP €49.99
Subscription
eBook
Print + eBook
Start 30 Day Trial
Subscribe and access every Packt eBook & Video.
 
  • 5,000+ eBooks & Videos
  • 50+ New titles a month
  • 1 Free eBook/Video to keep every month
Start Free Trial
 
Code Files
Preview in Mapt

Book Details

ISBN 139781786464200
Paperback412 pages

Book Description

Mobile phone forensics is the science of retrieving data from a mobile phone under forensically sound conditions. This book is an update to Practical Mobile Forensics and it delves into the concepts of mobile forensics and its importance in today's world.

We will deep dive into mobile forensics techniques in iOS 8 - 9.2, Android 4.4 - 6, and Windows Phone devices. We will demonstrate the latest open source and commercial mobile forensics tools, enabling you to analyze and retrieve data effectively. You will learn how to introspect and retrieve data from cloud, and document and prepare reports for your investigations.

By the end of this book, you will have mastered the current operating systems and techniques so you can recover data from mobile devices by leveraging open source solutions.

Table of Contents

Chapter 1: Introduction to Mobile Forensics
Why do we need mobile forensics?
Mobile forensics
The mobile phone evidence extraction process
Practical mobile forensic approaches
Potential evidence stored on mobile phones
Rules of evidence
Good forensic practices
Summary
Chapter 2: Understanding the Internals of iOS Devices
iPhone models
iPhone hardware
iPad models
Understanding the iPad hardware
Apple Watch models
Understanding the Apple Watch hardware
File system
The HFS Plus file system
Disk layout
iPhone operating system
Summary
Chapter 3: iOS Forensic Tools
Working with Elcomsoft iOS Forensic Toolkit
Oxygen Forensic Detective
Working with Cellebrite UFED Physical Analyzer
Working with BlackLight
Open source or free methods
Working with Magnet ACQUIRE
Working with NowSecureCE
Summary
Chapter 4: Data Acquisition from iOS Devices
Operating modes of iOS devices
Physical acquisition
Encrypted file systems
File system acquisition
Logical acquisition
Bypassing the passcode
Acquisition of jailbroken devices
Summary
Chapter 5: Data Acquisition from iOS Backups
iTunes backup
Working with iCloud backups
Summary
Chapter 6: iOS Data Analysis and Recovery
Timestamps
SQLite databases
Property lists
Other important files
The Apple Watch
Recovering deleted SQLite records
Summary
Chapter 7: Understanding Android
The evolution of Android
The Android model
The Android security
The Android file hierarchy
The Android file system
Summary
Chapter 8: Android Forensic Setup and Pre Data Extraction Techniques
Setting up the forensic environment for Android
Screen lock bypassing techniques
Gaining root access
Summary
Chapter 9: Android Data Extraction Techniques
Data extraction techniques
Summary
Chapter 10: Android Data Analysis and Recovery
Analyzing an Android image
Android data recovery
Summary
Chapter 11: Android App Analysis, Malware, and Reverse Engineering
Analyzing Android apps
Reverse engineering Android apps
Android malware
Summary
Chapter 12: Windows Phone Forensics
Windows Phone OS
The Windows Phone file system
Data acquisition
Summary
Chapter 13: Parsing Third-Party Application Files
Third-party application overview
Encoding versus encryption
Application data storage
Forensic methods used to extract third-party application data
Summary

What You Will Learn

  • Discover the new features in practical mobile forensics
  • Understand the architecture and security mechanisms present in iOS and Android platforms
  • Identify sensitive files on the iOS and Android platforms
  • Set up the forensic environment
  • Extract data on the iOS and Android platforms
  • Recover data on the iOS and Android platforms
  • Understand the forensics of Windows devices
  • Explore various third-party application techniques and data recovery techniques

Authors

Continue reading

Table of Contents

Chapter 1: Introduction to Mobile Forensics
Why do we need mobile forensics?
Mobile forensics
The mobile phone evidence extraction process
Practical mobile forensic approaches
Potential evidence stored on mobile phones
Rules of evidence
Good forensic practices
Summary
Chapter 2: Understanding the Internals of iOS Devices
iPhone models
iPhone hardware
iPad models
Understanding the iPad hardware
Apple Watch models
Understanding the Apple Watch hardware
File system
The HFS Plus file system
Disk layout
iPhone operating system
Summary
Chapter 3: iOS Forensic Tools
Working with Elcomsoft iOS Forensic Toolkit
Oxygen Forensic Detective
Working with Cellebrite UFED Physical Analyzer
Working with BlackLight
Open source or free methods
Working with Magnet ACQUIRE
Working with NowSecureCE
Summary
Chapter 4: Data Acquisition from iOS Devices
Operating modes of iOS devices
Physical acquisition
Encrypted file systems
File system acquisition
Logical acquisition
Bypassing the passcode
Acquisition of jailbroken devices
Summary
Chapter 5: Data Acquisition from iOS Backups
iTunes backup
Working with iCloud backups
Summary
Chapter 6: iOS Data Analysis and Recovery
Timestamps
SQLite databases
Property lists
Other important files
The Apple Watch
Recovering deleted SQLite records
Summary
Chapter 7: Understanding Android
The evolution of Android
The Android model
The Android security
The Android file hierarchy
The Android file system
Summary
Chapter 8: Android Forensic Setup and Pre Data Extraction Techniques
Setting up the forensic environment for Android
Screen lock bypassing techniques
Gaining root access
Summary
Chapter 9: Android Data Extraction Techniques
Data extraction techniques
Summary
Chapter 10: Android Data Analysis and Recovery
Analyzing an Android image
Android data recovery
Summary
Chapter 11: Android App Analysis, Malware, and Reverse Engineering
Analyzing Android apps
Reverse engineering Android apps
Android malware
Summary
Chapter 12: Windows Phone Forensics
Windows Phone OS
The Windows Phone file system
Data acquisition
Summary
Chapter 13: Parsing Third-Party Application Files
Third-party application overview
Encoding versus encryption
Application data storage
Forensic methods used to extract third-party application data
Summary

Book Details

ISBN 139781786464200
Paperback412 pages
Read More
From 3 reviews

Read More Reviews

DEAL OF THE DAY

Sign up here to get exclusive deep discounts on our latest and bestselling eBooks, delivered straight to your inbox every day.

FREE LEARNING FOREVER

Master new IT skills and unlock valuable software & web development knowledge with a FREE eBook every day.

Recommended for You

Practical Mobile Forensics Book Cover
Practical Mobile Forensics
€ 32.38
€ 22.68
Practical Mobile Forensics
Jul 2014
328 pages
€ 22.68
Learning Android Forensics Book Cover
Learning Android Forensics
€ 40.78
€ 28.56
Learning Android Forensics
Apr 2015
322 pages
€ 28.56
Learning Linux Binary Analysis Book Cover
Learning Linux Binary Analysis
€ 39.58
€ 27.72
Learning Linux Binary Analysis
Feb 2016
282 pages
€ 27.72
Learning iOS Forensics Book Cover
Learning iOS Forensics
€ 31.18
€ 21.84
Learning iOS Forensics
Mar 2015
220 pages
€ 21.84
Python Machine Learning Book Cover
Python Machine Learning
€ 39.58
€ 27.72
Python Machine Learning
Sep 2015
454 pages
€ 27.72
Mastering Python Forensics Book Cover
Mastering Python Forensics
€ 34.78
€ 24.36
Mastering Python Forensics
Oct 2015
192 pages
€ 24.36