Time
4 hours
Difficulty
Beginner
CEU/CPE
4

Video Transcription

00:00
hi and welcome to Everyday Did your friend six. I'm your hostess and you sent.
00:04
And in today's module of mobile forensics, we're gonna be going over some of the mobile forensics tools available out there.
00:11
As I said, today's video we're gonna go over what the prove records. It's over. Forensics to is,
00:16
and some of the mobile forensics tools available from your open source to your commercial brands
00:23
before we get there were five layers off the Android operating system.
00:35
You every applications, your application framework, your libraries, Andrew run time and the next colonel.
00:42
The Android operating system is a stack of software components, which is roughly divided into five sections
00:48
and for major layers shown.
00:51
So before stepping into the forensics tools, what is a prerequisite for the forensics tools?
00:56
Not only do they have to be classified by the tools classification system,
01:00
everything in of connecting to the device and performing analysis on that way, you're looking at a logical extraction based on the tools classification system. In the previous video,
01:11
some prerequisites for forensics who tools is the fact that you need physical access to the actual device access to the device or known security codes.
01:22
If someone has their SIM card encrypted, you need to know what that PIN code is their mobile. If their phone itself is encrypted, you may need to know the startup code.
01:30
Authentication methods for the device must be known before starting the extraction.
01:37
Most forensics tools required. The vice of you rooted.
01:40
You need the proper cables to connect the device to the workstation itself. Drivers and plug ins installed in the workstation and software
01:49
point in older devices. Some of the software itself may not have the drivers and plug in's already insult, so you may have to go into the site
01:59
for that particular tool and download an additional driver on plug in to be able to connect.
02:04
Those are things that must be known before actually starting forensics process within device.
02:08
So some of the tools we have our or open source, which is this Santa cool forensics clinics are canine Arlen Next distribution. Dif some of the commercial tools is your celebrate mobile forensics software. This could be seen at most over your cellular providers
02:24
when they go ahead and they transfer data from one mobile device to the next. When you purchase a new phone.
02:30
They're actually using either the celebrate or stool very similar to celebrate
02:35
you have your oxygen forensics and your
02:38
Smartphone forensic system. Professional Tool.
02:42
The first tour discusses a sensical forensics clinics.
02:45
It's open source and available on Get Hub. Just note that has not been maintained in the last five years,
02:52
so there's been a decrease of actual movement on it. However you'll see in later videos, it's still kind of hurt. It's still performs accusations to devices such as the Samsung Galaxy as 10.
03:05
The main site is the son to cool Lennox. As you can see,
03:08
screenshot shows the home page of the site.
03:13
They have a few documentation on how twos
03:15
the site, and the package itself is not more maintained. But the Lennox distribution itself has tons of tools that can be used for mobile friends, X mobile, malware and mobile security.
03:28
So this is to get hub for some two clinics.
03:31
As you can see, this is available for anyone to pull down and make any changes to
03:43
this software isn't highly maintain. As you see the last commit with seven. It was five years ago,
03:53
moving over to the home page.
03:54
You can come here and download your sensical. You can use it as a VM or use it on a life CD or life ust
04:03
and it covers mobile forensics, malware and security in itself for the move Mobile platform.
04:11
If you head over to the how tooth,
04:13
they have a few articles on how to not only install it,
04:17
how to do some development
04:20
and how to extract data from mobile device. Granted, this hasn't been
04:26
maintained since 2014 so some of this information may not be useful for the modern Dane devices.
04:34
We also have canine forensics. Like Disc. This Is a life dist.
04:39
This is an open source life just available, which offers forensics environment in a good
04:45
according to the canine site. It aims to offer an intro Operate herbal environment to be used during an actual digital investigation. It's very user friendly as faras the you I and the software modules and tools. The main side itself is the canine dash live dot nets.
05:03
Another neat tool is your celebrate mobile forensic software. As I mentioned,
05:09
the device itself seen on the bottom
05:13
bottom right of your screen
05:14
can be devised that may be seen at your local cell phone providers such as AT and T and T Mobile or so on. This is used for transferring data from one mobile device to the next.
05:27
It's a commercial tool with a mixture of hardware and software solutions provide support and functionality suffer it based only. There also have workstations and portable workstations. Ah, celebrate cells multiple products such as the celebrates schools into the bottom left. You have your Riggott laptops. You even have
05:46
a cable kip that they provide an additional platforms. So software
05:51
to help with any mobile forensics investigation.
05:58
Some of the software that some of the solutions that they have is you
06:02
as e. D. Ultimate.
06:04
And as you can see, they have different tools for different purposes in order to access the data and preserve the chain of custody,
06:14
analysis or review using Celebrate Analytics, celebrate reader
06:18
and then control himself with the central management system
06:25
moving over to the platform. These are some of the hardware that they
06:30
provide for commercial base.
06:31
You have your four PC,
06:33
which is the software only platform that could be used on your hardware choice.
06:40
You have your touch to which is a portable digital forensics platform.
06:46
You're touched, too.
06:48
This is the touch to broker sized.
06:50
This is very similar to the touch to. It has additional added features and
06:56
a nice case around to withstand very tough conditions.
07:00
Then you have your rogue aside laptop.
07:03
You also have a key offsets available.
07:06
Then we have our oxygen. Forensics. This is a commercial tool for software and hardware solutions for software solution for investing vacation purposes.
07:15
You have an enterprise version, which is available.
07:18
They also offer a portable kit with a simple turn on and connect solution, such as the Occident forensics kit.
07:27
They offer cable kit with various ranges of prices so you can get just your basic level of cables or your extreme cable kit for any situation that you may coming on.
07:38
And Oxygen Friends Next also offers a standalone tool for just viewing, ensuring the data. This is just the viewer to help with the analysis portion.
07:47
Some not here to sell you on any is tools. These are just some of the tools that I've come across in my life that have either used
07:54
in a professional or an academic way, or I've come across during research
08:01
and today's lecture, we went over the prerequisites for forensics tools.
08:05
I have some examples of both open source and commercial tools for mobile forensics devices
08:11
and briefly talked about the sun to cool forensics clinic, your canine itis, your celebrate mobile forensic software and oxygen forensics. I hope you enjoyed today's video and I'll catch you on the next one.

Up Next

Everyday Digital Forensics

In this course, you will be presented with an overview of the principles and techniques for digital forensics investigation in the spectrum of file system analysis.

Instructed By

Instructor Profile Image
Yesenia Yser
Engineering Manager, Security Research & Development at SoFL, Women in Tech Committee Member, University Outreach and STEM Instructor
Instructor